Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

COM SURROGATE, and other SYS32 or SYSTEM related files eating up CPU/RAM PART 2


  • Please log in to reply
6 replies to this topic

#1 kazmeo

kazmeo

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 12 April 2018 - 11:22 PM

Following instructions, below is the Farbar Recov. Scan FRS text:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14.03.2018
Ran by kaz (administrator) on KM (12-04-2018 19:23:27)
Running from C:\Users\kaz\Downloads
Loaded Profiles: kaz & SQLTELEMETRY & MSSQLSERVER & SQLServerReportingServices (Available Profiles: kaz & ajmeo_000 & Administrator & SQLTELEMETRY & MSSQLSERVER & SQLServerReportingServices)
Platform: Windows 8.1 (Update) (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlservr.exe
() C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe
(Nitro Software, Inc.) C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe
() C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin\ccSvcHst.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IDS\bin\SISIDSService.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IPS\bin\SISIPSService.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin\ccSvcHst.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IPS\bin\sisipsutil.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server Reporting Services\SSRS\RSHostingService\RSHostingService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlceip.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server Reporting Services\SSRS\Management\RSManagement.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin\SmcGui.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag\Pub\PubMonitor.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server Reporting Services\SSRS\ReportServer\bin\ReportingServicesService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server Reporting Services\SSRS\Portal\RSPortal.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe
(Oracle Corporation) C:\Program Files (x86)\MySQL\MySQL Notifier 1.1\MySQLNotifier.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\qBittorrent\qbittorrent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\WINWORD.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2018-04-08] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2018-04-08] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2018-04-08] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [404376 2015-08-09] ()
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5762408 2013-03-05] (Dell Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3015408 2013-03-05] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-01-25] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [294928 2018-03-22] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642816 2013-05-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [102928 2012-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [307200 2011-06-15] (PowerISO Computing, Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2011-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2904984 2011-09-05] (Adobe Systems Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-01-25] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [839648 2016-03-10] (DivX, LLC)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-23] (Autodesk Inc.)
HKLM-x32\...\Run: [PowerDVD17Agent] => C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe [527400 2017-03-30] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle Corporation)
HKLM-x32\...\Run: [DLDPHSTS] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe [38752 2016-09-29] (Dell Inc.)
HKLM-x32\...\Run: [DLDPHCM] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe [615776 2016-09-29] (Dell Inc.)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132224 2013-02-28] (Qualcomm Atheros Commnucations)
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [27093176 2018-03-14] (Microsoft Corporation)
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\Run: [ReadCube] => C:\Users\kaz\AppData\Local\com.readcube.Desktop\application\ReadCube.exe [150800 2013-11-17] ()
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\kaz\AppData\Local\slack\Update.exe [1584656 2018-04-07] ()
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\Run: [MySQL Notifier] => C:\Program Files (x86)\MySQL\MySQL Notifier 1.1\MySqlNotifier.exe [754176 2016-07-29] (Oracle Corporation)
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\MountPoints2: {b8dba246-4f27-11e3-be65-806e6f6e6963} - "D:\setup.exe" 
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\MountPoints2: {eddc8034-6dc4-11e7-806c-645a04a8ef33} - "F:\EasySuite.exe" 
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\MountPoints2: {eddc8045-6dc4-11e7-806c-645a04a8ef33} - "F:\EasySuite.exe" 
IFEO\3dsmax.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\Acrobat.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\acrodist.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\AdAppMgr.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\afterfx.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\asav.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\databasecompare.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\deliverytray.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\divx player.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\divxcontrolpanellauncher.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\divxconverter.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dldph.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dlp4addresseditor.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\excel.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\formdesigner.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\g2minstaller.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\g2mtranscoder.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\groove.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\hotspot.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\iastorui.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\infopath.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javacpl.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javaw.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javaws.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ltu.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\lync.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\maxfind.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\misc.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msaccess.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoev.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msotd.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoxmled.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mspub.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\nitropdf.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ocpubmgr.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\onenote.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\onenotem.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\outlook.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\pcdlauncher.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\poweriso.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerpnt.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\pwrisovm.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\spreadsheetcompare.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\switchboard.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\UninstallTool.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\visio.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\vpn.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\winproj.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\winword.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2017-12-02]
ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe (AVG Technologies CZ, s.r.o.)
Startup: C:\Users\kaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2017-09-12]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * SmartDefragBootTime.exe
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{5E34FCBB-FB7E-41E3-A1C0-32A495B9410C}: [NameServer] 77.234.40.79
Tcpip\..\Interfaces\{E4B93C0A-B5C1-495F-AB5F-93DB1CD6E8A0}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{EF03EA14-1C35-46A5-864D-B33678714C5E}: [DhcpNameServer] 192.168.1.254
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
URLSearchHook: [S-1-5-80-2652535364-2169709536-2857650723-2622804123-1107741775] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-80-3880718306-3832830129-1677859214-2598158968-1052248003] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-80-4050220999-2730734961-1537482082-519850261-379003301] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKU\S-1-5-21-2102589598-2406682454-3341732434-1001 -> {CDD6637D-4355-432F-89AA-C8C72078DEC0} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2018-02-14] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2018-03-24] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll [2013-02-28] (Qualcomm Atheros Commnucations)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2018-03-24] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2018-02-14] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-02-12] (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-02-12] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-02-14] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-02-14] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-02-14] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-02-14] (Microsoft Corporation)
 
FireFox:
========
FF DefaultProfile: fc8zyjgw.default
FF ProfilePath: C:\Users\kaz\AppData\Roaming\Mozilla\Firefox\Profiles\fc8zyjgw.default [2018-03-25]
FF user.js: detected! => C:\Users\kaz\AppData\Roaming\Mozilla\Firefox\Profiles\fc8zyjgw.default\user.js [2018-03-25]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2015-10-21] [Legacy] [not signed]
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2018-03-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2018-03-24] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2016-03-04] (DivX, LLC)
FF Plugin-x32: @enounce.com/MySpeedPlugin -> C:\Program Files (x86)\Enounce\MySpeed\\npmyspd.dll [2016-01-07] ( )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-06-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-06-01] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-02-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2102589598-2406682454-3341732434-1001: @citrixonline.com/appdetectorplugin -> C:\Users\kaz\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2016-10-12] (Citrix Online)
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox","hxxps://outlook.office.com/owa/?path=/mail/inbox","hxxps://www.iptorrents.com/t"
CHR Profile: C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default [2018-04-12]
CHR Extension: (Slides) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Docs) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Google Drive) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Gliffy Diagrams) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmicilclplefnflapjmnngmkkkkpfad [2017-08-11]
CHR Extension: (YouTube) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28]
CHR Extension: (Adblock Plus) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-31]
CHR Extension: (Google Search) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Zotero Connector) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekhagklcjbdpajgpjgmbionohlpdbjgc [2018-02-12]
CHR Extension: (Sheets) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Google Docs Offline) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-03-23]
CHR Extension: (Google Scholar Button) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2017-10-11]
CHR Extension: (Chrome Web Store Payments) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (TeamViewer) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\oooiobdokpcfdlahlmcddobejikcmkfo [2017-10-31]
CHR Extension: (Gmail) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-13]
CHR Extension: (Chrome Media Router) - C:\Users\kaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-22]
CHR Profile: C:\Users\kaz\AppData\Local\Google\Chrome\User Data\System Profile [2018-03-25]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-23] (Autodesk Inc.)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S4 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [227968 2013-02-28] (Qualcomm Atheros Commnucations) [File not signed]
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [304776 2018-03-22] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7607288 2018-03-22] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-01-25] (AVG Technologies CZ, s.r.o.)
S2 CAF; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\Common Agent Framework\CAFServiceMain.exe [3620160 2018-04-10] (Symantec Corporation)
S4 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [208760 2017-07-27] (Dell Inc.)
S4 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3294584 2017-07-27] (Dell Inc.)
S4 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217464 2017-07-27] (Dell Inc.)
S4 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [230248 2017-05-01] (Dell Inc.)
S4 DLDPHSUP; C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe [23904 2016-09-29] (Dell Inc.)
S4 DLNCDB; C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe [277360 2015-02-09] (Dell Inc.)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [143872 2014-10-24] (Microsoft Corporation) [File not signed]
S4 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-06-01] (Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6440736 2018-03-03] (Malwarebytes)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [378848 2015-10-21] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [256840 2015-09-21] (McAfee, Inc.)
S4 mi-raysat_3dsmax2016_64; C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-14] () [File not signed]
R2 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [485048 2017-08-22] (Microsoft Corporation)
R2 MySQL57; C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe [39551488 2017-12-28] () [File not signed]
S3 MySQLRouter; C:\Program Files\MySQL\MySQL Router 2.1\bin\mysqlrouter.exe [387584 2018-02-21] () [File not signed]
R2 NitroDriverReadSpool11; C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe [327368 2016-12-08] (Nitro Software, Inc.)
S4 NitroDriverReadSpool9; C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe [233112 2016-07-28] (Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe [420504 2016-07-28] ()
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
S4 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324608 2018-04-08] (Realtek Semiconductor)
S4 SecureVpn; C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe [5517040 2018-03-14] (AVG Technologies CZ, s.r.o.)
R2 SepMasterService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin\ccSvcHst.exe [157936 2018-02-24] (Symantec Corporation)
S4 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915480 2013-05-23] (SoftThinks SAS)
R2 SISIDSService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IDS\bin\SISIDSService.exe [3177792 2018-04-10] (Symantec Corporation)
R2 SISIPSService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IPS\bin\SISIPSService.exe [101184 2018-04-10] (Symantec Corporation)
R2 SISIPSUtil; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IPS\bin\SISIPSUtil.exe [273728 2018-04-10] (Symantec Corporation)
S3 SNAC; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin64\snac64.exe [378048 2018-02-24] (Symantec Corporation)
S3 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [578744 2017-08-22] (Microsoft Corporation)
R2 SQLServerReportingServices; C:\Program Files\Microsoft SQL Server Reporting Services\SSRS\RSHostingService\RSHostingService.exe [70320 2018-02-27] (Microsoft Corporation)
R2 SQLTELEMETRY; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlceip.exe [246968 2017-08-22] (Microsoft Corporation)
S4 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [53208 2017-09-22] (Dell Inc.)
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [122368 2015-02-26] (Microsoft Corporation) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803952 2017-11-09] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5614592 2018-01-22] (AVG Technologies CZ, s.r.o.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S4 WebUpdate4; C:\WINDOWS\SysWOW64\WebUpdateSvc4.exe [282896 2011-04-08] (Data Perceptions / PowerProgrammer)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
S4 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [81536 2013-03-02] (Atheros) [File not signed]
S2 EraserSvc11731; "C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\ccSvcHst.exe" /h ccCommon [X]
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [4318648 2018-04-08] (Qualcomm Atheros Communications, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [189032 2018-03-22] (AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdiska.sys [166552 2018-03-22] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdrivera.sys [221096 2018-03-22] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsha.sys [193024 2018-03-22] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\System32\drivers\avgbloga.sys [337344 2018-03-22] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniva.sys [51272 2018-03-22] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [39352 2018-03-22] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [139040 2018-03-22] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [102720 2018-03-22] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [76760 2018-03-22] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1019088 2018-03-22] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [452904 2018-03-22] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [198368 2018-03-22] (AVG Technologies CZ, s.r.o.)
S3 avgTap; C:\WINDOWS\system32\DRIVERS\avgTap.sys [54888 2017-11-01] (The OpenVPN Project)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [372920 2018-03-22] (AVG Technologies CZ, s.r.o.)
R1 BHDrvx64; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Data\Definitions\BASHDefs\20180409.001\BHDrvx64.sys [1879632 2018-04-04] (Symantec Corporation)
S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2013-02-28] (Qualcomm Atheros)
R1 ccSettings_{13CAF341-7E36-419E-9151-5A2DBCBE655C}; C:\WINDOWS\System32\Drivers\SEP\0E000F39\044D.105\x64\ccSetx64.sys [179360 2018-02-24] (Symantec Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32960 2017-04-11] (Dell Inc.)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-04-11] (Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [10752 2013-01-24] (OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-04-09] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153168 2018-04-10] (Symantec Corporation)
S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32840 2018-04-08] (ELAN Microelectronic Corp.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-04-08] (REALiX™)
R1 IDSVia64; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Data\Definitions\IPSDefs\20180411.061\IDSvia64.sys [1056920 2018-04-09] (Symantec Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [415976 2015-09-23] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [351120 2015-09-23] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [841944 2015-09-23] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [244544 2015-09-23] (McAfee, Inc.)
S3 ptun0901; C:\WINDOWS\system32\DRIVERS\ptun0901.sys [27136 2014-08-08] (The OpenVPN Project)
S4 RsFx0500; C:\WINDOWS\System32\DRIVERS\RsFx0500.sys [261848 2017-08-22] (Microsoft Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [424384 2018-04-08] (Realsil Semiconductor Corporation)
S3 SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [226304 2014-11-21] (Microsoft Corporation)
S3 SISIDSRegDrv; C:\WINDOWS\system32\Drivers\SISIDSRegDrv.sys [59280 2018-04-10] (Symantec Corporation)
S3 SISIPSDeviceFilter; C:\WINDOWS\system32\Drivers\SISIPSDeviceFilter.sys [61840 2018-04-10] (Symantec Corporation)
R1 SISIPSDriver; C:\WINDOWS\System32\Drivers\SISIPSDriver.sys [272784 2018-04-10] (Symantec Corporation)
S3 SISIPSFileFilter; C:\WINDOWS\system32\Drivers\SISIPSFileFilter.sys [94096 2018-04-10] (Symantec Corporation)
S1 SISIPSNetFilter; C:\WINDOWS\System32\Drivers\SISIPSNetFilter.sys [73616 2018-04-10] (Symantec Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-03-05] (Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [31984 2013-03-05] (Synaptics Incorporated)
R1 SRTSP; C:\WINDOWS\System32\Drivers\SEP\0E000F39\044D.105\x64\SRTSP64.SYS [830104 2018-02-24] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\Drivers\SEP\0E000F39\044D.105\x64\SRTSPX64.SYS [49304 2018-02-24] (Symantec Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 SyDvCtrl; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin64\SyDvCtrl64.sys [44568 2018-02-24] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\symefasi\0603010.014\symefasi64.sys [1790616 2018-04-10] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\Drivers\SEP\0E000F39\044D.105\x64\SymELAM.sys [24192 2018-02-24] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [102552 2018-04-10] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\Drivers\SEP\0E000F39\044D.105\x64\Ironx64.SYS [308888 2018-02-24] (Symantec Corporation)
R1 SYMNETS; C:\WINDOWS\System32\Drivers\SEP\0E000F39\044D.105\x64\SYMNETS.SYS [567968 2018-02-24] (Symantec Corporation)
R1 SysPlant; C:\WINDOWS\System32\Drivers\SysPlant.sys [197960 2018-04-10] (Symantec Corporation)
R1 Teefer2; C:\WINDOWS\system32\DRIVERS\Teefer.sys [122352 2018-02-24] (Symantec Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-11-15] (AVG Netherlands B.V.)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [131144 2017-04-28] (Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [205952 2017-04-28] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
R2 {A14A8EF6-B11D-4356-9ECC-4B937E6CC626}; C:\Program Files (x86)\CyberLink\PowerDVD17\Common\NavFilter\000.fcl [38168 2017-03-22] (CyberLink Corp.)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-04-12 11:50 - 2018-04-12 11:50 - 000267423 _____ C:\Users\kaz\Downloads\01-0116.pdf
2018-04-12 09:48 - 2018-04-12 09:48 - 000018325 _____ C:\Users\kaz\Downloads\Childhood and Beliefs m1.spv
2018-04-12 09:46 - 2018-04-12 09:46 - 000018242 _____ C:\Users\kaz\Downloads\Beliefs and Science m2.spv
2018-04-12 08:13 - 2018-04-12 08:13 - 015600807 _____ C:\Users\kaz\Downloads\Big-Data-eBook.pdf
2018-04-12 07:49 - 2018-04-12 07:49 - 000488538 _____ C:\Users\kaz\Downloads\{1758f2de-3630-4c17-8fae-5b878a21431e}_Marketing_Data___Analytics_FINAL.pdf
2018-04-12 05:25 - 2018-04-12 05:25 - 000000000 ____D C:\Users\kaz\AppData\Local\Power BI Desktop
2018-04-12 05:24 - 2018-04-12 05:24 - 000000000 ____D C:\Users\kaz\Documents\Power BI Desktop
2018-04-12 05:24 - 2018-04-12 05:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Power BI Desktop
2018-04-12 05:24 - 2018-04-12 05:24 - 000000000 ____D C:\Program Files\Microsoft Power BI Desktop
2018-04-12 05:23 - 2018-04-12 05:24 - 000000000 ____D C:\Users\kaz\AppData\Local\Power BI
2018-04-12 05:22 - 2018-04-12 05:22 - 000988112 _____ (Bleeping Computer, LLC) C:\Users\kaz\Downloads\rkill64-4915.exe
2018-04-12 05:15 - 2018-04-12 05:23 - 000001616 _____ C:\Users\kaz\Desktop\Rkill.txt
2018-04-12 05:15 - 2018-04-12 05:15 - 000988112 _____ (Bleeping Computer, LLC) C:\Users\kaz\Downloads\rkill64.exe
2018-04-12 05:13 - 2018-04-12 05:15 - 000000000 ___RD C:\Users\kaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2018-04-12 03:25 - 2018-04-12 03:28 - 193851392 _____ C:\Users\kaz\Downloads\PBIDesktop_x64.msi
2018-04-12 03:25 - 2018-04-12 03:28 - 175259648 _____ C:\Users\kaz\Downloads\PBIDesktop.msi
2018-04-12 03:17 - 2018-04-12 03:17 - 043604600 _____ (Microsoft Corporation) C:\Users\kaz\Downloads\Windows-KB890830-x64-V5.59.exe
2018-04-12 03:11 - 2018-04-12 03:11 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\kaz\Downloads\rkill.exe
2018-04-12 03:09 - 2018-04-12 03:09 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\2165A46D.sys
2018-04-12 03:08 - 2018-04-12 03:08 - 000001743 _____ C:\Users\kaz\Desktop\MB Report.txt
2018-04-12 02:47 - 2018-04-12 05:12 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2018-04-12 02:47 - 2018-04-12 05:03 - 000000000 ____D C:\Users\kaz\Desktop\mbar
2018-04-12 02:47 - 2018-04-12 02:47 - 014178840 _____ (Malwarebytes Corp.) C:\Users\kaz\Downloads\mbar-1.10.3.1001.exe
2018-04-12 02:45 - 2018-04-12 02:45 - 000075619 _____ C:\Users\kaz\Downloads\MTB.txt
2018-04-12 02:44 - 2018-04-12 02:44 - 000892416 _____ (Farbar) C:\Users\kaz\Downloads\MiniToolBox.exe
2018-04-12 02:43 - 2018-04-12 02:43 - 000899584 _____ (Farbar) C:\Users\kaz\Downloads\FSS.exe
2018-04-12 02:43 - 2018-04-12 02:43 - 000003026 _____ C:\Users\kaz\Downloads\FSS.txt
2018-04-12 02:40 - 2018-04-12 02:40 - 000852504 _____ C:\Users\kaz\Downloads\SecurityCheck.exe
2018-04-12 01:38 - 2018-04-12 01:38 - 001314198 _____ C:\Users\kaz\Downloads\Analyses in SPSS.pdf
2018-04-12 01:26 - 2018-04-12 01:26 - 000295257 _____ C:\Users\kaz\Downloads\Reverse-Scoring (1).pdf
2018-04-12 00:32 - 2018-04-12 00:32 - 000034576 _____ C:\Users\kaz\Downloads\how-to-hire-the-right-head-of-bi.pdf
2018-04-12 00:31 - 2018-04-12 00:31 - 000071876 _____ C:\Users\kaz\Downloads\five-data-collections-for-analytics.pdf
2018-04-11 17:41 - 2018-04-11 17:41 - 000112601 _____ C:\Users\kaz\Desktop\march car payment confirm v2.pdf
2018-04-11 02:28 - 2018-04-11 02:34 - 000100793 _____ C:\Users\kaz\Downloads\Addition.txt
2018-04-11 02:26 - 2018-04-12 19:24 - 000041664 _____ C:\Users\kaz\Downloads\FRST.txt
2018-04-11 02:26 - 2018-04-12 19:23 - 000000000 ____D C:\FRST
2018-04-11 02:26 - 2018-04-11 02:26 - 002403328 _____ (Farbar) C:\Users\kaz\Downloads\FRST64.exe
2018-04-11 01:16 - 2018-04-11 01:16 - 003239422 _____ C:\Users\kaz\Downloads\TYD2_data_source_files_only.zip
2018-04-10 22:50 - 2018-04-10 22:50 - 012763136 _____ C:\Users\kaz\Downloads\AmazonRedshiftODBC64-1.4.1.1001.msi
2018-04-10 22:33 - 2018-04-10 22:34 - 018857299 _____ C:\Users\kaz\Downloads\chapter2.zip
2018-04-10 20:03 - 2018-04-10 20:05 - 360635992 _____ (Tableau Software) C:\Users\kaz\Downloads\TableauDesktop-64bit-10-5-2.exe
2018-04-10 12:28 - 2018-04-11 12:10 - 000067632 _____ (Symantec Corporation) C:\WINDOWS\system32\msln.exe
2018-04-10 00:58 - 2018-04-10 00:58 - 000000000 ____D C:\Users\kaz\AppData\Local\Symantec
2018-04-10 00:49 - 2018-04-10 00:49 - 000000000 ____D C:\WINDOWS\System32\Tasks\Symantec Endpoint Protection
2018-04-10 00:48 - 2018-04-10 00:48 - 000102552 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2018-04-10 00:48 - 2018-04-10 00:48 - 000008471 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2018-04-10 00:48 - 2018-04-10 00:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\symefasi
2018-04-10 00:48 - 2018-04-10 00:48 - 000000000 ____D C:\ProgramData\SymEFASI
2018-04-10 00:48 - 2018-04-10 00:48 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2018-04-10 00:47 - 2018-04-12 18:43 - 000000000 ____D C:\ProgramData\Symantec
2018-04-10 00:47 - 2018-04-10 00:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec Endpoint Protection
2018-04-10 00:47 - 2018-04-10 00:47 - 000607936 _____ (Symantec Corporation) C:\WINDOWS\system32\SymVPN.dll
2018-04-10 00:47 - 2018-04-10 00:47 - 000511720 _____ (Symantec Corporation) C:\WINDOWS\system32\sysfer.dll
2018-04-10 00:47 - 2018-04-10 00:47 - 000483520 _____ (Symantec Corporation) C:\WINDOWS\SysWOW64\SymVPN.dll
2018-04-10 00:47 - 2018-04-10 00:47 - 000439016 _____ (Symantec Corporation) C:\WINDOWS\SysWOW64\sysfer.dll
2018-04-10 00:47 - 2018-04-10 00:47 - 000272784 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SISIPSDriver.sys
2018-04-10 00:47 - 2018-04-10 00:47 - 000222400 _____ (Symantec Corporation) C:\WINDOWS\system32\FwsVpn.dll
2018-04-10 00:47 - 2018-04-10 00:47 - 000217792 _____ (Symantec Corporation) C:\WINDOWS\SysWOW64\FwsVpn.dll
2018-04-10 00:47 - 2018-04-10 00:47 - 000197960 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SysPlant.sys
2018-04-10 00:47 - 2018-04-10 00:47 - 000094400 _____ (Symantec Corporation) C:\WINDOWS\system32\snacnp.dll
2018-04-10 00:47 - 2018-04-10 00:47 - 000094096 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SISIPSFileFilter.sys
2018-04-10 00:47 - 2018-04-10 00:47 - 000083648 _____ (Symantec Corporation) C:\WINDOWS\SysWOW64\snacnp.dll
2018-04-10 00:47 - 2018-04-10 00:47 - 000073616 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SISIPSNetFilter.sys
2018-04-10 00:47 - 2018-04-10 00:47 - 000061840 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SISIPSDeviceFilter.sys
2018-04-10 00:47 - 2018-04-10 00:47 - 000059280 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SISIDSRegDrv.sys
2018-04-10 00:47 - 2018-04-10 00:47 - 000047632 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\WGX64.SYS
2018-04-10 00:47 - 2018-04-10 00:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\SEP
2018-04-10 00:47 - 2018-04-10 00:47 - 000000000 ____D C:\ProgramData\regid.1992-12.com.symantec
2018-04-10 00:47 - 2018-04-10 00:47 - 000000000 ____D C:\Program Files (x86)\Symantec
2018-04-10 00:43 - 2018-04-10 18:10 - 000000000 ____D C:\Users\kaz\Downloads\Symantec.Endpoint.Protection.v14.0.3897.1101.x64-RiTUEL
2018-04-09 22:08 - 2018-04-09 22:08 - 000324307 _____ C:\Users\kaz\Downloads\Econ_Problem_set_3__2_.pdf
2018-04-09 00:16 - 2018-04-09 00:16 - 001042448 _____ C:\Users\kaz\Downloads\Logistic-SPSS.PDF
2018-04-08 18:44 - 2018-04-08 18:44 - 009891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2018-04-08 18:44 - 2018-04-08 18:44 - 000424384 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2018-04-08 18:43 - 2018-04-08 18:43 - 000992704 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2018-04-08 18:43 - 2018-04-08 18:43 - 000122816 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2018-04-08 18:42 - 2018-04-08 18:42 - 000480800 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2018-04-08 18:42 - 2018-04-08 18:42 - 000031095 _____ C:\WINDOWS\system32\Drivers\rtwavesEFX.dat
2018-04-08 18:42 - 2018-04-08 18:42 - 000010945 _____ C:\WINDOWS\system32\Drivers\rtwavesMFX.dat
2018-04-08 18:42 - 2018-04-08 18:42 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2018-04-08 18:40 - 2018-04-08 18:40 - 072520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCORES64.dat
2018-04-08 18:40 - 2018-04-08 18:40 - 013122576 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 012334923 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2018-04-08 18:40 - 2018-04-08 18:40 - 012016256 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\MaxxVoiceAPO30.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 007172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 007096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 005826560 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2018-04-08 18:40 - 2018-04-08 18:40 - 005804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2018-04-08 18:40 - 2018-04-08 18:40 - 004059960 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 003786712 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioMeters64.exe
2018-04-08 18:40 - 2018-04-08 18:40 - 003677160 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2018-04-08 18:40 - 2018-04-08 18:40 - 003509256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 003507688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 003205120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 002210304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 002183672 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO264.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 002050176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001921272 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO232.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001469952 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2018-04-08 18:40 - 2018-04-08 18:40 - 001422920 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001347136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001213656 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 001166152 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000999848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000914016 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000768808 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000691680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000678176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000677664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000642920 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBTHX64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000577832 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBTHX32.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000447712 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000445392 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000410032 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000330552 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000327448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000221960 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000209528 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000203552 _____ (Waves Audio) C:\WINDOWS\system32\MaxxAudioVienna264.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000164424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkXInterface64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000084608 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000074600 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000069920 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll
2018-04-08 18:40 - 2018-04-08 18:40 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2018-04-08 18:39 - 2018-04-08 18:39 - 004318648 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athwbx.sys
2018-04-08 18:38 - 2018-04-08 18:38 - 000602128 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2018-04-08 18:37 - 2018-04-08 18:37 - 000206496 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2018-04-08 18:35 - 2018-04-08 18:35 - 001804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2018-04-08 18:35 - 2018-04-08 18:35 - 000032840 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\Drivers\ETDSMBus.sys
2018-04-08 18:34 - 2018-04-08 18:34 - 000003148 _____ C:\WINDOWS\System32\Tasks\SmartDefrag_AutoAnalyze
2018-04-08 18:34 - 2018-04-08 18:34 - 000002996 _____ C:\WINDOWS\System32\Tasks\SmartDefrag_Startup
2018-04-08 18:34 - 2018-04-08 18:34 - 000002994 _____ C:\WINDOWS\System32\Tasks\SmartDefrag_Update
2018-04-08 18:34 - 2018-04-08 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag
2018-04-08 18:34 - 2017-03-09 13:53 - 000045664 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2018-04-08 18:34 - 2017-03-09 13:53 - 000030744 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2018-04-08 18:34 - 2016-03-25 14:33 - 000128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2018-04-08 18:22 - 2017-08-02 17:58 - 000001192 _____ C:\WINDOWS\system32\Drivers\etc\Block.bat
2018-04-08 18:16 - 2018-04-08 18:34 - 000000000 ____D C:\ProgramData\ProductData
2018-04-08 18:16 - 2018-04-08 18:16 - 000000000 ____D C:\WINDOWS\IObit
2018-04-08 18:14 - 2018-04-12 05:13 - 000002870 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (kaz)
2018-04-08 18:14 - 2018-04-08 18:34 - 000000000 ____D C:\Users\kaz\AppData\Roaming\IObit
2018-04-08 18:14 - 2018-04-08 18:34 - 000000000 ____D C:\Users\kaz\AppData\LocalLow\IObit
2018-04-08 18:14 - 2018-04-08 18:34 - 000000000 ____D C:\ProgramData\IObit
2018-04-08 18:14 - 2018-04-08 18:34 - 000000000 ____D C:\Program Files (x86)\IObit
2018-04-08 18:14 - 2018-04-08 18:14 - 000027552 _____ (REALiX™) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2018-04-08 18:14 - 2018-04-08 18:14 - 000003238 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2018-04-08 18:14 - 2018-04-08 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2018-04-08 18:13 - 2018-04-08 18:13 - 012518992 _____ (IObit ) C:\Users\kaz\Downloads\smart-defrag-setup.exe
2018-04-08 18:13 - 2018-04-08 18:13 - 000001013 _____ C:\Users\kaz\Downloads\IObit.Driver.Booster.4.PRO.v4.5.0.527.Incl.Keygen-AMPED [IPT].torrent
2018-04-08 18:05 - 2018-04-08 18:05 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Easeware
2018-04-08 18:05 - 2018-04-08 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2018-04-08 18:05 - 2018-04-08 18:05 - 000000000 ____D C:\Program Files\Easeware
2018-04-08 18:03 - 2018-04-08 18:04 - 004068952 _____ (Easeware ) C:\Users\kaz\Downloads\DriverEasy_Setup.exe
2018-04-08 17:51 - 2018-04-08 17:51 - 002747488 _____ (Symantec Corporation) C:\Users\kaz\Downloads\FixPoweliks64.exe
2018-04-08 17:48 - 2018-04-08 17:48 - 000549504 _____ (ESET) C:\Users\kaz\Downloads\esetpowelikscleaner (1).exe
2018-04-08 17:48 - 2018-04-08 17:48 - 000000022 _____ C:\Users\kaz\Downloads\ESETPoweliksCleaner.exe_20180408.174807.6656.zip
2018-04-08 17:48 - 2018-04-08 17:48 - 000000022 _____ C:\Users\kaz\Downloads\esetpowelikscleaner (1).exe_20180408.174839.1356.zip
2018-04-08 17:47 - 2018-04-08 17:48 - 000549504 _____ (ESET) C:\Users\kaz\Downloads\ESETPoweliksCleaner.exe
2018-04-08 17:15 - 2018-04-08 17:18 - 000000000 ____D C:\Users\kaz\Downloads\ELSEVIER.COMMERCIAL.DATA.MINING.PROCESSING.ANALYSIS.AND.MODELING.FOR.PREDICTIVE.ANALYTICS.PROJECTS.2014.RETAIL.EPUB.EBOOK-kE
2018-04-08 17:15 - 2018-04-08 17:17 - 000000000 ____D C:\Users\kaz\Downloads\Apress.-.Interview.Questions.in.Business.Analytics.2016.Retail.eBook-BitBook
2018-04-08 06:55 - 2018-04-08 06:56 - 000000000 ____D C:\Users\kaz\Downloads\PACKT.SPARK.COOKBOOK.2015.RETAIL.HAPPY.NEW.YEAR.EBOOK-kE
2018-04-08 06:55 - 2018-04-08 06:56 - 000000000 ____D C:\Users\kaz\Downloads\Oreilly.-.Spark.The.Definitive.Guide.2017.Retail.EPUB.eBook-BitBook
2018-04-08 06:55 - 2018-04-08 06:56 - 000000000 ____D C:\Users\kaz\Downloads\Oreilly.-.High.Performance.Spark.2017.Retail.eBook-BitBook
2018-04-08 06:47 - 2018-04-08 06:48 - 000000000 ____D C:\Users\kaz\Downloads\Wiley.-.Applied.Predictive.Analytics.2014.Retail.eBook-BitBook
2018-04-08 06:46 - 2018-04-09 00:11 - 000000000 ____D C:\Users\kaz\Downloads\Morgan.Kaufmann.-.The.Data.And.Analytics.Playbook.2017.Retail.EPUB.eBook-BitBook
2018-04-08 06:46 - 2018-04-09 00:11 - 000000000 ____D C:\Users\kaz\Downloads\Apress.-.Introduction.To.Google.Analytics.2017.Retail.eBook-BitBook
2018-04-08 06:46 - 2018-04-08 06:50 - 000000000 ____D C:\Users\kaz\Downloads\Wiley.-.Predictive.Analytics.For.Dummies.2014.Retail.eBook-BitBook
2018-04-08 06:46 - 2018-04-08 06:48 - 000000000 ____D C:\Users\kaz\Downloads\R FOR BUSINESS ANALYTICS-SPRINGER pdf-ke
2018-04-08 06:46 - 2018-04-08 06:47 - 000000000 ____D C:\Users\kaz\Downloads\Apress.-.Pro.Salesforce.Analytics.Cloud.2016.Retail.EPUB.eBook-BitBook
2018-04-08 06:46 - 2018-04-08 06:47 - 000000000 ____D C:\Users\kaz\Downloads\Apress.-.Big.Data.Analytics.with.Spark.2016.Retail.EPUB.eBook-BitBook
2018-04-08 06:44 - 2018-04-08 06:44 - 001104167 _____ C:\Users\kaz\Downloads\edm-la-brief.pdf
2018-04-08 06:40 - 2018-04-08 06:40 - 000059769 _____ C:\Users\kaz\Downloads\Transforming-Data-Driven-Classroom-Educational-Psychology-ebook-PDF-0f7537ba6.pdf
2018-04-08 06:38 - 2018-04-08 06:39 - 000001695 _____ C:\Users\kaz\Downloads\R FOR BUSINESS ANALYTICS-SPRINGER pdf-ke [IPT].torrent
2018-04-08 06:28 - 2018-04-08 06:28 - 000001134 _____ C:\Users\kaz\Downloads\Packt.-.Learning.Social.Media.Analytics.With.R.2017.Retail.EPUB.eBook-BitBook [IPT].torrent
2018-04-08 06:19 - 2018-04-08 06:19 - 000611627 _____ C:\Users\kaz\Downloads\trans_spss.pdf
2018-04-07 22:07 - 2018-04-07 22:07 - 000000000 ____D C:\SymCache
2018-04-07 22:00 - 2018-04-07 22:00 - 000000000 ____D C:\ProgramData\WindowsPerformanceRecorder
2018-04-07 21:35 - 2018-04-07 22:08 - 000000000 ____D C:\Users\kaz\AppData\Local\Windows Performance Analyzer
2018-04-07 21:35 - 2018-04-07 21:36 - 000000000 ____D C:\Users\kaz\Documents\WPA Files
2018-04-07 21:31 - 2018-04-07 21:31 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2018-04-07 21:31 - 2018-04-07 21:31 - 000000000 ____D C:\Program Files\Application Verifier
2018-04-07 21:31 - 2018-04-07 21:31 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2018-04-07 21:29 - 2018-04-07 21:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2018-04-07 21:20 - 2018-04-07 21:20 - 000998056 _____ (Microsoft Corporation) C:\Users\kaz\Downloads\sdksetup.exe
2018-04-07 20:37 - 2018-04-07 20:37 - 000117009 _____ C:\Users\kaz\Downloads\Lectures5.pdf
2018-04-07 19:17 - 2018-04-07 19:18 - 000000000 ____D C:\Users\kaz\AnacondaProjects
2018-04-07 19:12 - 2018-04-07 19:12 - 000000000 ____D C:\Users\kaz\AppData\Local\ContinuumIO
2018-04-07 19:12 - 2018-04-07 19:12 - 000000000 ____D C:\Users\kaz\.continuum
2018-04-07 19:11 - 2018-04-07 19:11 - 000000043 _____ C:\Users\kaz\.condarc
2018-04-07 19:10 - 2018-04-07 19:12 - 000000000 ____D C:\Users\kaz\.conda
2018-04-07 19:10 - 2018-04-07 19:10 - 000000000 ____D C:\Users\kaz\AppData\Local\conda
2018-04-07 19:10 - 2018-04-07 19:10 - 000000000 ____D C:\Users\kaz\.anaconda
2018-04-07 19:08 - 2018-04-07 19:08 - 002054662 _____ C:\Users\kaz\Downloads\Fw%3a_SP2018_SOC-6100-01-Regr_Anlys_&_Non-lnr_Mod_(201820-25185)%3a_SOC6100_February_14th.zip
2018-04-07 19:08 - 2018-04-07 19:08 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Code
2018-04-07 19:08 - 2018-04-07 19:08 - 000000000 ____D C:\Users\kaz\.vscode
2018-04-07 19:07 - 2018-04-07 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2018-04-07 19:07 - 2018-04-07 19:07 - 000000000 ____D C:\Program Files\Microsoft VS Code
2018-04-07 19:05 - 2018-04-07 19:05 - 000000000 ____D C:\Users\kaz\Documents\Python Scripts
2018-04-07 19:05 - 2018-04-07 19:05 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)
2018-04-07 18:52 - 2018-04-07 19:07 - 000000000 ____D C:\Users\kaz\Anaconda3
2018-04-07 18:48 - 2018-04-07 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Text Analytics for Surveys 4
2018-04-07 18:47 - 2018-04-07 18:47 - 000519957 _____ C:\Users\kaz\Downloads\2017-08_Anaconda_Starter_Guide_CheatSheet_Web.pdf
2018-04-07 18:39 - 2018-04-07 18:43 - 539221952 _____ (IBM Corp. ) C:\Users\kaz\Downloads\SPSS_TAFS_TRIAL_64B_4.0.1_WIN_ML.exe
2018-04-07 17:02 - 2018-04-07 17:11 - 000000000 ____D C:\ProgramData\Anaconda3
2018-04-07 16:56 - 2018-04-07 17:01 - 563168960 _____ (Anaconda, Inc.) C:\Users\kaz\Downloads\Anaconda3-5.1.0-Windows-x86_64.exe
2018-04-07 14:38 - 2018-04-07 14:38 - 000000000 ____D C:\Users\kaz\AppData\Roaming\IBM
2018-04-07 14:36 - 2018-04-07 14:36 - 000000000 ____D C:\Users\Default\Documents\SafeNet Sentinel
2018-04-07 14:36 - 2018-04-07 14:36 - 000000000 ____D C:\Users\Default User\Documents\SafeNet Sentinel
2018-04-07 14:35 - 2018-04-07 14:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Modeler 18.0
2018-04-07 05:15 - 2018-04-07 05:17 - 000000000 ____D C:\Users\kaz\Downloads\PACKT.IBM.SPSS.MODELER.COOKBOOK.2013.RETAIL.EBOOK-kE
2018-04-07 05:14 - 2018-04-08 05:33 - 000000000 ____D C:\Users\kaz\Downloads\IBM.SPSS.Modeler.v18.Win64-RECOiL
2018-04-06 20:17 - 2018-04-06 20:17 - 000163416 _____ C:\Users\kaz\Downloads\varcomp_ml_method.pdf
2018-04-06 20:03 - 2018-04-06 20:03 - 000295257 _____ C:\Users\kaz\Downloads\Reverse-Scoring.pdf
2018-04-06 17:29 - 2018-04-06 17:32 - 000000000 ____D C:\Users\kaz\Downloads\Packt.-.Data.Visualization.With.D3.4.X.Cookbook.2017.2nd.Edition.Retail.EPUB.eBook-BitBook
2018-04-06 17:23 - 2018-04-06 17:24 - 000000000 ____D C:\Users\kaz\Downloads\Packt.-.Bioinformatics.with.R.Cookbook.2014.RETAIL.EBOOk-NEWSPAPER
2018-04-06 17:22 - 2018-04-06 17:23 - 000000000 ____D C:\Users\kaz\Downloads\OREILLY.BIOINFORMATICS.DATA.SKILLS.2015.RETAIL.EBOOK-kE
2018-04-06 17:19 - 2018-04-06 17:24 - 000000000 ____D C:\Users\kaz\Downloads\WILEY.GETTING.A.BIG.DATA.JOB.FOR.DUMMIES.2015.RETAIL.EPUB.EBOOK-kE
2018-04-06 17:17 - 2018-04-06 17:25 - 000000000 ____D C:\Users\kaz\Downloads\Packt.-.Tableau.Creating.Interactive.Data.Visualizations.2016.RETAiL.ePUB.eBOOK-DiSTRiBUTiON
2018-04-06 17:17 - 2018-04-06 17:25 - 000000000 ____D C:\Users\kaz\Downloads\Packt.-.Big.Data.Analytics.With.Spark.And.Hadoop.2016.Retail.EPUB.eBook-BitBook
2018-04-06 17:14 - 2018-04-06 17:14 - 000000000 ____D C:\Users\kaz\Downloads\Apress.-.Pro.Tableau.2017.Retail.eBook-BitBook
2018-04-06 17:08 - 2018-04-06 17:15 - 000000000 ____D C:\Users\kaz\Downloads\Oreilly.-.Data.Analytics.With.Hadoop.2016.Retail.EPUB.eBook-BitBook
2018-04-06 16:44 - 2018-04-06 16:44 - 000000000 ____D C:\Program Files\Common Files\ResearchSoft
2018-04-06 16:42 - 2018-04-11 12:18 - 000000000 ____D C:\Users\kaz\Desktop\FIXING LAPTOP
2018-04-06 16:41 - 2018-04-06 16:42 - 001010826 _____ C:\Users\kaz\Downloads\ProcessMonitor.zip
2018-04-06 16:12 - 2018-04-06 16:12 - 042753779 _____ C:\Users\kaz\Downloads\Medical-Surgical Nursing, 10th ed - Brunner & Suddarth.pdf
2018-04-06 16:09 - 2018-04-06 16:10 - 005263557 _____ C:\Users\kaz\Downloads\381-Handbook for Brunner and Suddarth's Textbook of Medical-Surgical Nursing, 12th Edition-Suzann.pdf
2018-04-04 20:11 - 2018-04-04 20:11 - 000070923 _____ C:\Users\kaz\Downloads\Certificate in University Teaching Skills_7-2016.pdf
2018-04-04 20:10 - 2018-04-04 20:10 - 000033092 _____ C:\Users\kaz\Downloads\22_Portfolio_Rubric_REVISED.pdf
2018-04-04 17:55 - 2018-04-04 17:55 - 000253978 _____ C:\Users\kaz\Downloads\Summary.pdf
2018-04-04 16:42 - 2018-04-04 17:01 - 000408737 _____ C:\Users\kaz\Downloads\Your-Brain-on-Porn_-Internet-Po-Gary-Wilson.epub
2018-04-04 16:42 - 2018-04-04 16:42 - 000625914 _____ C:\Users\kaz\Downloads\Your-Brain-on-Porn_-Internet-Po-Gary-Wilson.mobi
2018-04-04 16:08 - 2018-04-04 16:08 - 000492510 _____ C:\Users\kaz\Downloads\Binary Logistic Regression.pdf
2018-04-04 16:07 - 2018-04-04 16:07 - 000775168 _____ C:\Users\kaz\Downloads\Binary Logistic Regression.ppt
2018-04-04 15:48 - 2018-04-04 15:48 - 000026069 _____ C:\Users\kaz\Downloads\Credit_Score_Disclosure.pdf
2018-04-04 11:53 - 2018-04-04 11:53 - 000776082 _____ C:\Users\kaz\Downloads\Fw%3a_SP2018_SOC-6100-01-Regr_Anlys_&_Non-lnr_Mod_(201820-25185)%3a_SOC6100_April_4th.zip
2018-04-03 19:10 - 2018-04-03 19:10 - 017132254 _____ C:\Users\kaz\Downloads\Liz Kao, Jon Paz-Salesforce.com For Dummies-For Dummies (2016).pdf
2018-04-03 19:10 - 2018-04-03 19:10 - 011878400 _____ C:\Users\kaz\Downloads\Learning_PHP_MySQL_JavaScript_byRobinNixon.pdf
2018-04-03 17:24 - 2018-04-03 17:29 - 000000000 ___RD C:\Users\kaz\Documents\Scanned Documents
2018-04-03 17:24 - 2018-04-03 17:24 - 000000000 ____D C:\Users\kaz\Documents\Fax
2018-04-03 17:17 - 2018-04-03 17:17 - 000007688 _____ C:\Users\kaz\Downloads\201312_Wage and Income_MEO_100381031761.pdf
2018-04-03 17:16 - 2018-04-03 17:16 - 000008055 _____ C:\Users\kaz\Downloads\201512_Wage and Income_MEO_100381031661.pdf
2018-04-03 17:16 - 2018-04-03 17:16 - 000006530 _____ C:\Users\kaz\Downloads\201412_Wage and Income_MEO_100381031710.pdf
2018-04-03 17:14 - 2018-04-03 17:14 - 000008009 _____ C:\Users\kaz\Downloads\201612_Wage and Income_MEO_100381031137.pdf
2018-04-03 17:13 - 2018-04-03 17:13 - 000011547 _____ C:\Users\kaz\Downloads\201612_Tax Return Transcript_MEO_100381031007.pdf
2018-04-03 12:52 - 2018-04-03 12:52 - 000287416 _____ C:\WINDOWS\Minidump\040318-59046-01.dmp
2018-04-02 16:37 - 2018-04-02 16:37 - 002291020 _____ C:\Users\kaz\Downloads\salesforce-crm-growth-kit.pdf
2018-04-02 16:37 - 2018-04-02 16:37 - 000763938 _____ C:\Users\kaz\Downloads\workbook_text_Heroku.pdf
2018-04-02 16:33 - 2018-04-12 07:09 - 000000000 ____D C:\Users\kaz\Desktop\CREATIVE ANVIL
2018-04-02 16:22 - 2018-04-02 16:22 - 000010723 _____ C:\Users\kaz\Downloads\Kaz_Meo.pdf
2018-04-02 14:57 - 2018-04-02 14:57 - 000130612 _____ C:\Users\kaz\Downloads\fw9.pdf
2018-04-02 14:50 - 2018-04-02 14:50 - 000298461 _____ C:\Users\kaz\Downloads\VCA_User_Guide_IPS.pdf
2018-04-02 14:50 - 2018-04-02 14:50 - 000081857 _____ C:\Users\kaz\Downloads\Form_W-9_.pdf
2018-04-02 10:37 - 2018-04-02 10:39 - 110237696 _____ (TeamSQL, Inc.) C:\Users\kaz\Downloads\TeamSQL+Setup+3.2.190.exe
2018-04-02 04:08 - 2018-04-06 17:40 - 000000000 ____D C:\Users\kaz\Desktop\YOUTUBE
2018-04-02 03:55 - 2018-04-02 03:55 - 000372204 _____ C:\Users\kaz\Downloads\CSCC Map_revised.pdf
2018-04-02 03:42 - 2018-04-02 03:42 - 000228180 _____ C:\Users\kaz\Downloads\IdCard.pdf
2018-04-02 02:47 - 2018-04-02 02:47 - 009841561 _____ C:\Users\kaz\Downloads\SQL All In One For Dummies 2nd Edition Book.pdf
2018-04-02 02:44 - 2018-04-02 08:30 - 000000000 ____D C:\Users\kaz\Downloads\UDEMY_SQL_LEARN_SQL_101_202_AND_303_ALL_IN_1_COURSE_10X_LEARNING_TUTORIAL-kEISO
2018-04-02 00:11 - 2018-04-02 00:19 - 000000000 ____D C:\Users\kaz\Downloads\The.Commuter.2018.DVDRip.XviD.AC3-EVO
2018-04-01 18:35 - 2018-04-01 18:35 - 000000083 _____ C:\Users\kaz\Desktop\DBA 9 cnt grp by
2018-04-01 18:17 - 2018-04-12 02:04 - 000000000 ____D C:\Users\kaz\Desktop\THESIS FINAL RELEASE
2018-04-01 14:29 - 2018-04-01 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2018-04-01 14:29 - 2018-04-01 14:29 - 000000000 ____D C:\Program Files\qBittorrent
2018-04-01 13:50 - 2018-04-01 14:29 - 000000000 ____D C:\Users\kaz\Downloads\UDEMY_ULTIMATE_SQL_AND_DATABASE_CONCEPTS_TUTORIAL-kEISO
2018-04-01 13:50 - 2018-04-01 13:51 - 022476558 _____ (The qBittorrent project) C:\Users\kaz\Downloads\qbittorrent_4.0.4_x64_setup.exe
2018-03-31 15:20 - 2018-03-31 15:20 - 000048209 _____ C:\Users\kaz\Downloads\Sentencing_Table.pdf
2018-03-31 11:48 - 2018-03-31 19:15 - 000000000 ____D C:\Users\kaz\Downloads\PHP eBooks Collection [PDF]
2018-03-31 11:09 - 2018-04-01 13:50 - 050333696 _____ C:\Users\kaz\Downloads\.3b2457a086307ef27ede4d328e60842e0d851e0f.parts
2018-03-31 07:08 - 2018-03-31 07:08 - 000000000 ____D C:\WINDOWS\pss
2018-03-31 06:57 - 2018-03-31 06:57 - 000001128 _____ C:\Users\Public\Desktop\OpenOffice 4.1.5.lnk
2018-03-31 06:57 - 2018-03-31 06:57 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.5
2018-03-31 05:49 - 2018-03-31 05:49 - 583794688 _____ C:\Users\kaz\Downloads\Oculus.2013.BDRip.XviD-EAGLE.avi
2018-03-31 05:49 - 2018-03-31 05:49 - 466092032 _____ C:\Users\kaz\Downloads\Zack Hemsey Disco.rar
2018-03-31 05:49 - 2018-03-31 05:49 - 2636414976 _____ C:\Users\kaz\Downloads\Straight Outta Compton 2015 1080p bluray x265 ac3 6ch aac 2ch -Dtech.mp4
2018-03-31 05:49 - 2018-03-31 05:49 - 112852992 _____ C:\Users\kaz\Downloads\NettersClinicalAnatomy Hansen 2nd ed 2010.pdf
2018-03-31 05:49 - 2018-03-31 05:49 - 000000000 ____D C:\Users\kaz\Downloads\UDEMY_T_SQL_FOR_BEGINNERS_LEARN_TO_QUERY_SQL_SERVER_DATABASES_TUTORIAL-kEISO
2018-03-31 05:24 - 2018-04-02 11:58 - 000000000 ____D C:\Users\kaz\Desktop\SQL MASTERY
2018-03-31 05:04 - 2018-03-31 05:04 - 000095451 _____ C:\Users\kaz\Downloads\TeachYourselfSQL_MySQL.zip
2018-03-31 05:04 - 2018-03-31 05:04 - 000091417 _____ C:\Users\kaz\Downloads\TeachYourselfSQL_OracleExpress.zip
2018-03-31 04:55 - 2018-03-31 04:55 - 000000000 ____D C:\Users\kaz\source
2018-03-31 04:55 - 2018-03-31 04:55 - 000000000 ____D C:\Users\kaz\AppData\Local\Notepad++
2018-03-31 04:54 - 2018-04-12 05:03 - 000000000 ____D C:\Program Files\Notepad++
2018-03-31 04:54 - 2018-03-31 04:55 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Notepad++
2018-03-31 04:54 - 2018-03-31 04:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2018-03-31 04:53 - 2018-03-31 04:54 - 000000000 ____D C:\Users\kaz\AppData\Local\.IdentityService
2018-03-30 20:57 - 2018-03-30 21:13 - 000454656 _____ C:\Users\kaz\Documents\Database1.accdb
2018-03-30 19:20 - 2018-03-31 19:08 - 000000000 ____D C:\Users\kaz\AppData\Roaming\obs-studio
2018-03-30 19:19 - 2018-03-30 19:19 - 008952928 _____ (Sublime HQ Pty Ltd ) C:\Users\kaz\Downloads\Sublime Text Build 3143 x64 Setup.exe
2018-03-30 19:19 - 2018-03-30 19:19 - 000000900 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk
2018-03-30 19:19 - 2018-03-30 19:19 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Sublime Text 3
2018-03-30 19:19 - 2018-03-30 19:19 - 000000000 ____D C:\Users\kaz\AppData\Local\Sublime Text 3
2018-03-30 19:19 - 2018-03-30 19:19 - 000000000 ____D C:\Program Files\Sublime Text 3
2018-03-30 19:11 - 2018-03-30 19:11 - 000001224 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2018-03-30 19:11 - 2018-03-30 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2018-03-30 19:11 - 2018-03-30 19:11 - 000000000 ____D C:\Program Files (x86)\obs-studio
2018-03-30 19:07 - 2018-03-30 19:09 - 111670320 _____ (obsproject.com) C:\Users\kaz\Downloads\OBS-Studio-21.1-Full-Installer.exe
2018-03-30 19:05 - 2018-03-30 19:05 - 000000000 ____D C:\Users\kaz\AppData\Roaming\HeidiSQL
2018-03-30 19:05 - 2018-03-30 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HeidiSQL
2018-03-30 19:05 - 2018-03-30 19:05 - 000000000 ____D C:\ProgramData\HeidiSQL
2018-03-30 19:05 - 2018-03-30 19:05 - 000000000 ____D C:\Program Files\HeidiSQL
2018-03-30 18:36 - 2018-03-30 18:41 - 010458478 _____ (Ansgar Becker ) C:\Users\kaz\Downloads\HeidiSQL_9.5.0.5196_Setup.exe
2018-03-30 18:24 - 2018-03-30 18:24 - 000741613 _____ C:\Users\kaz\Downloads\sakila-db.zip
2018-03-30 18:17 - 2018-03-30 18:17 - 000000000 ____D C:\Users\kaz\AppData\Roaming\MySQL
2018-03-30 18:12 - 2018-03-30 18:12 - 000003636 _____ C:\WINDOWS\System32\Tasks\MySQLNotifierTask
2018-03-30 18:11 - 2018-03-30 18:11 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Oracle
2018-03-30 17:55 - 2018-04-03 19:06 - 000000000 ____D C:\Users\kaz\Desktop\HIRE RIGHT
2018-03-30 16:29 - 2018-03-30 16:29 - 000907733 _____ C:\Users\kaz\Downloads\UBER Tax.pdf
2018-03-29 22:15 - 2018-03-29 22:15 - 000906999 _____ C:\Users\kaz\Downloads\d746f033-7a2f-4525-89d9-9d56c4d9f090.pdf
2018-03-29 11:40 - 2018-03-29 11:40 - 000024644 _____ C:\Users\kaz\Downloads\MSAR Medical School MCATs and GPAs.xlsx
2018-03-29 11:37 - 2018-03-29 11:37 - 000000000 ____D C:\Users\kaz\AppData\Roaming\OpenOffice
2018-03-29 11:34 - 2018-03-31 06:56 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4
2018-03-29 10:29 - 2018-03-29 10:30 - 140756235 _____ C:\Users\kaz\Downloads\Apache_OpenOffice_4.1.5_Win_x86_install_en-US.exe
2018-03-29 10:28 - 2018-03-29 10:28 - 000011807 _____ C:\Users\kaz\Downloads\TeachYourselfSQL_OpenOfficeBase (1).zip
2018-03-29 10:21 - 2018-03-29 10:21 - 000028545 _____ C:\Users\kaz\Downloads\TeachYourselfSQL_Access2007.zip
2018-03-29 10:21 - 2018-03-29 10:21 - 000002588 _____ C:\Users\kaz\Downloads\TeachYourselfSQL_SQLite.zip
2018-03-29 10:17 - 2018-03-29 10:17 - 000011807 _____ C:\Users\kaz\Downloads\TeachYourselfSQL_OpenOfficeBase.zip
2018-03-29 08:00 - 2018-03-29 08:00 - 000854325 _____ C:\Users\kaz\Downloads\Sense_Corp_Insights-Analytics_Imperative_for_Telcom.pdf
2018-03-29 04:21 - 2018-03-29 04:21 - 000379746 _____ C:\Users\kaz\Downloads\Other Disclosures and Authorizations.pdf
2018-03-29 02:55 - 2018-03-29 02:55 - 060462288 _____ (Skype Technologies S.A.) C:\Users\kaz\Downloads\Skype-8.18.0.6.exe
2018-03-28 23:45 - 2018-03-28 23:45 - 402915328 _____ C:\Users\kaz\Downloads\Good Will Hunting (1997) BRRIP 450MB - ThePecko.mkv
2018-03-28 23:45 - 2018-03-28 23:45 - 000000000 ____D C:\Users\kaz\Downloads\Wiley.-.Beginning.Programming.With.Python.For.Dummies.2018.2nd.Edition.Retail.EPUB.eBook-BitBook
2018-03-28 23:01 - 2018-04-07 21:39 - 005189296 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-03-27 23:13 - 2018-04-05 04:06 - 000000000 ____D C:\Users\kaz\Documents\Visual Studio 2015
2018-03-27 23:13 - 2018-03-27 23:13 - 000000000 ____D C:\Users\kaz\Documents\SQL Server Management Studio
2018-03-27 23:06 - 2018-03-30 18:37 - 000000000 ____D C:\ProgramData\MySQL
2018-03-27 23:06 - 2018-03-30 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2018-03-27 23:06 - 2018-03-30 18:13 - 000000000 ____D C:\Program Files\MySQL
2018-03-27 23:06 - 2018-03-30 18:13 - 000000000 ____D C:\Program Files (x86)\MySQL
2018-03-27 23:06 - 2018-03-27 23:06 - 000000000 ____D C:\WINDOWS\System32\Tasks\MySQL
2018-03-27 23:05 - 2018-03-27 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2018-03-27 23:02 - 2018-03-27 23:02 - 019542016 _____ C:\Users\kaz\Downloads\mysql-installer-web-community-5.7.21.0.msi
2018-03-27 23:01 - 2018-03-28 17:43 - 000000000 ____D C:\xampp
2018-03-27 22:56 - 2018-03-27 22:56 - 011496288 _____ C:\Users\kaz\Downloads\phpMyAdmin-4.7.9-all-languages.zip
2018-03-27 22:55 - 2018-03-27 22:56 - 128837328 _____ (Bitnami) C:\Users\kaz\Downloads\xampp-win32-7.2.3-0-VC15-installer.exe
2018-03-25 19:26 - 2018-03-25 19:26 - 000090567 _____ C:\Users\kaz\Desktop\Account Info.pdf
2018-03-25 19:05 - 2018-03-25 19:05 - 000000000 ____D C:\Users\kaz\AppData\Local\AOL
2018-03-25 19:04 - 2018-03-25 19:24 - 000000722 ____H C:\IPH.PH
2018-03-25 19:04 - 2018-03-25 19:04 - 006653096 _____ (AOL Inc.) C:\Users\kaz\Downloads\aol-instant-messenger-7-5-14-8-Install_AIM.exe
2018-03-25 17:47 - 2018-03-25 17:47 - 004576353 _____ C:\Users\kaz\Downloads\MBA_TepperSchool_PTOH_VB2017 pdf (1).pdf
2018-03-25 17:46 - 2018-03-25 17:46 - 004576353 _____ C:\Users\kaz\Downloads\MBA_TepperSchool_PTOH_VB2017 pdf.pdf
2018-03-25 17:25 - 2018-03-25 17:31 - 000000000 ____D C:\Users\kaz\Desktop\ONLINE MBA
2018-03-25 06:48 - 2018-03-25 06:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-03-24 18:15 - 2018-03-27 23:23 - 000000000 ____D C:\Users\kaz\Desktop\LAPTOP HEALTH
2018-03-24 18:14 - 2018-03-24 18:14 - 000000000 ____D C:\Users\kaz\Desktop\FRIENDS
2018-03-24 15:43 - 2018-03-24 15:43 - 000033172 _____ C:\Users\kaz\Downloads\coolerm_CoolerMaster_multi_82427_$5-$20_4-1-2018.pdf
2018-03-24 15:33 - 2018-03-24 15:49 - 1526726656 _____ C:\Users\kaz\Downloads\Three Kings 1999 DVDRip x264 MPOD.mkv
2018-03-24 15:33 - 2018-03-24 15:35 - 071774582 _____ C:\Users\kaz\Downloads\LSAT PREP.rar
2018-03-24 06:22 - 2018-03-24 06:22 - 000001457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017 (SSDT).lnk
2018-03-24 06:22 - 2018-03-24 06:22 - 000001304 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2018-03-24 06:21 - 2018-03-31 04:56 - 000000000 ____D C:\Users\kaz\Documents\Visual Studio 2017
2018-03-24 06:21 - 2018-03-24 06:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017
2018-03-24 06:19 - 2018-03-24 06:19 - 000001507 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017.lnk
2018-03-24 06:01 - 2018-03-24 06:01 - 000000000 ____D C:\Users\kaz\AppData\Roaming\vstelemetry
2018-03-24 06:01 - 2018-03-24 06:01 - 000000000 ____D C:\Users\kaz\AppData\Local\ServiceHub
2018-03-24 06:00 - 2018-03-24 06:28 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Visual Studio Setup
2018-03-24 06:00 - 2018-03-24 06:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2018-03-24 06:00 - 2018-03-24 06:00 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Microsoft Visual Studio
2018-03-24 05:59 - 2018-03-24 05:59 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2018-03-24 05:48 - 2018-03-24 05:48 - 001608056 _____ (Microsoft Corporation) C:\Users\kaz\Downloads\SSDT-Setup-ENU.exe
2018-03-24 05:46 - 2018-03-24 05:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server Tools 17
2018-03-24 05:45 - 2018-03-24 05:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2018-03-24 05:41 - 2018-03-24 05:41 - 000000000 ____D C:\Users\kaz\AppData\Local\Microsoft_Corporation
2018-03-24 05:40 - 2018-04-08 03:06 - 000000000 ____D C:\Users\SQLServerReportingServices
2018-03-24 05:40 - 2018-03-24 05:40 - 000000020 ___SH C:\Users\SQLServerReportingServices\ntuser.ini
2018-03-24 05:40 - 2017-02-01 02:06 - 000000000 ____D C:\Users\SQLServerReportingServices\AppData\Roaming\Downloaded Installations
2018-03-24 05:40 - 2016-04-14 15:02 - 000000000 ____D C:\Users\SQLServerReportingServices\AppData\Roaming\TuneUp Software
2018-03-24 05:40 - 2016-04-11 13:25 - 000000000 ____D C:\Users\SQLServerReportingServices\AppData\Local\AVG
2018-03-24 05:40 - 2015-10-21 15:06 - 000000000 ____D C:\Users\SQLServerReportingServices\AppData\Roaming\Macromedia
2018-03-24 05:40 - 2015-10-17 00:20 - 000000000 ____D C:\Users\SQLServerReportingServices\AppData\Local\Microsoft Help
2018-03-24 05:40 - 2014-11-21 03:52 - 000000369 _____ C:\Users\SQLServerReportingServices\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2018-03-24 05:40 - 2014-11-21 03:52 - 000000369 _____ C:\Users\SQLServerReportingServices\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2018-03-24 05:39 - 2018-03-24 05:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server Reporting Services
2018-03-24 05:39 - 2018-03-24 05:39 - 000000000 ____D C:\Program Files\Microsoft SQL Server Reporting Services
2018-03-24 05:38 - 2018-03-24 05:38 - 097632680 _____ (Microsoft Corporation) C:\Users\kaz\Downloads\SQLServerReportingServices.exe
2018-03-24 05:33 - 2018-03-24 05:33 - 000320424 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2018-03-24 05:33 - 2018-03-24 05:33 - 000189864 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2018-03-24 05:33 - 2018-03-24 05:33 - 000189864 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2018-03-24 05:32 - 2018-03-24 05:33 - 000000000 ____D C:\Program Files\Java
2018-03-24 05:32 - 2018-03-24 05:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2018-03-24 05:24 - 2018-03-24 05:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2018-03-24 05:23 - 2018-03-24 06:23 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2018-03-24 05:21 - 2018-03-24 05:21 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf
2018-03-24 05:20 - 2018-03-24 05:24 - 146893216 _____ (Oracle Corporation) C:\Users\kaz\Downloads\jdk-7u80-windows-x64.exe
2018-03-24 05:19 - 2018-03-24 06:27 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2018-03-24 05:19 - 2018-03-24 05:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2018-03-24 05:12 - 2018-03-24 05:12 - 000000000 ____D C:\ProgramData\VsTelemetry
2018-03-24 05:04 - 2018-03-24 05:09 - 841270624 _____ (Microsoft Corporation) C:\Users\kaz\Downloads\SSMS-Setup-ENU.exe
2018-03-24 05:02 - 2018-04-08 03:06 - 000000000 ____D C:\Users\SQLTELEMETRY
2018-03-24 05:02 - 2018-04-08 03:05 - 000000000 ____D C:\Users\MSSQLSERVER
2018-03-24 05:02 - 2018-03-24 05:02 - 000000020 ___SH C:\Users\SQLTELEMETRY\ntuser.ini
2018-03-24 05:02 - 2018-03-24 05:02 - 000000020 ___SH C:\Users\MSSQLSERVER\ntuser.ini
2018-03-24 05:02 - 2017-08-22 22:17 - 000060600 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-MSSQL14.MSSQLSERVER-sqlagtctr.dll
2018-03-24 05:02 - 2017-08-22 22:17 - 000051896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf-MSSQL14.MSSQLSERVER-sqlagtctr.dll
2018-03-24 05:02 - 2017-02-01 02:06 - 000000000 ____D C:\Users\SQLTELEMETRY\AppData\Roaming\Downloaded Installations
2018-03-24 05:02 - 2017-02-01 02:06 - 000000000 ____D C:\Users\MSSQLSERVER\AppData\Roaming\Downloaded Installations
2018-03-24 05:02 - 2016-04-14 15:02 - 000000000 ____D C:\Users\SQLTELEMETRY\AppData\Roaming\TuneUp Software
2018-03-24 05:02 - 2016-04-14 15:02 - 000000000 ____D C:\Users\MSSQLSERVER\AppData\Roaming\TuneUp Software
2018-03-24 05:02 - 2016-04-11 13:25 - 000000000 ____D C:\Users\SQLTELEMETRY\AppData\Local\AVG
2018-03-24 05:02 - 2016-04-11 13:25 - 000000000 ____D C:\Users\MSSQLSERVER\AppData\Local\AVG
2018-03-24 05:02 - 2015-10-21 15:06 - 000000000 ____D C:\Users\SQLTELEMETRY\AppData\Roaming\Macromedia
2018-03-24 05:02 - 2015-10-21 15:06 - 000000000 ____D C:\Users\MSSQLSERVER\AppData\Roaming\Macromedia
2018-03-24 05:02 - 2015-10-17 00:20 - 000000000 ____D C:\Users\SQLTELEMETRY\AppData\Local\Microsoft Help
2018-03-24 05:02 - 2015-10-17 00:20 - 000000000 ____D C:\Users\MSSQLSERVER\AppData\Local\Microsoft Help
2018-03-24 05:02 - 2014-11-21 03:52 - 000000369 _____ C:\Users\SQLTELEMETRY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2018-03-24 05:02 - 2014-11-21 03:52 - 000000369 _____ C:\Users\SQLTELEMETRY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2018-03-24 05:02 - 2014-11-21 03:52 - 000000369 _____ C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2018-03-24 05:02 - 2014-11-21 03:52 - 000000369 _____ C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2018-03-24 05:01 - 2018-03-24 05:01 - 000000000 ____D C:\WINDOWS\system32\RsFx
2018-03-24 05:01 - 2017-08-22 22:16 - 000186552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hadrres.dll
2018-03-24 05:01 - 2017-08-22 22:16 - 000128184 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-MSSQLSERVER-sqlctr14.0.1000.169.dll
2018-03-24 05:01 - 2017-08-22 22:16 - 000111288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf-MSSQLSERVER-sqlctr14.0.1000.169.dll
2018-03-24 05:01 - 2017-08-22 22:16 - 000088248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fssres.dll
2018-03-24 05:00 - 2018-03-24 05:00 - 000000000 ____D C:\Program Files\Microsoft Visual Studio 10.0
2018-03-24 04:58 - 2018-03-24 05:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2017
2018-03-24 04:48 - 2018-03-24 04:48 - 002154617 _____ C:\Users\kaz\Downloads\1b41f1b389cf4f3a8ac6bb0760a983d6.pdf
2018-03-24 04:45 - 2018-03-24 04:57 - 000000000 ____D C:\SQLServer2017Media
2018-03-24 04:44 - 2018-03-24 04:44 - 005469336 _____ (Microsoft Corporation) C:\Users\kaz\Downloads\SQLServer2017-SSEI-Dev.exe
2018-03-23 20:41 - 2018-03-24 06:50 - 004198400 _____ C:\Users\kaz\Downloads\.f14b4781247c88d3f824a113a5856e0d7c255b27.parts
2018-03-23 20:41 - 2018-03-23 20:41 - 000000000 ____D C:\Users\kaz\Downloads\Star.Wars.The.Last.Jedi.2017.BRRip.XviD.AC3-EVO
2018-03-23 19:51 - 2018-04-11 04:10 - 000000000 ____D C:\Users\kaz\Downloads\New folder
2018-03-23 19:30 - 2018-03-23 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-03-23 19:30 - 2018-01-18 09:03 - 000076200 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2018-03-23 19:29 - 2018-04-12 03:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-03-23 19:10 - 2018-03-23 19:49 - 000000000 ____D C:\Users\kaz\Downloads\Apress.-.Beginning.Data.Science.In.R.2017.Retail.eBook-BitBook
2018-03-23 18:36 - 2018-03-23 18:36 - 000006763 _____ C:\Users\kaz\Desktop\AdwCleaner[S1].txt
2018-03-22 16:52 - 2018-03-22 16:52 - 000000000 ____D C:\Users\kaz\Documents\Navicat
2018-03-22 16:47 - 2018-03-22 16:47 - 000001052 _____ C:\Users\Public\Desktop\Navicat for MariaDB.lnk
2018-03-22 16:47 - 2018-03-22 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremiumSoft
2018-03-22 16:47 - 2018-03-22 16:47 - 000000000 ____D C:\Program Files\PremiumSoft
2018-03-22 14:03 - 2018-03-22 14:01 - 000381816 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2018-03-22 12:26 - 2018-03-22 14:05 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2018-03-22 11:42 - 2018-03-22 11:42 - 000000000 ____D C:\Program Files\Malwarebytes
2018-03-22 11:37 - 2018-03-22 11:39 - 000000000 ____D C:\Users\kaz\Downloads\OREILLY.INTRODUCING.GITHUB.2014.RETAIL.EPUB.EBOOK-kE
2018-03-22 11:37 - 2018-03-22 11:37 - 000000000 ____D C:\Users\kaz\Downloads\Wiley.-.Professional.Git.2017.Retail.eBook-BitBook
2018-03-22 11:37 - 2018-03-22 11:37 - 000000000 ____D C:\Users\kaz\Downloads\OReilly.Version.Control.with.Git.2nd.Edition.Aug.2012.RETAIL.eBook-ELOHiM
2018-03-22 11:36 - 2018-03-23 15:28 - 000000000 ____D C:\Users\kaz\Downloads\OReilly.Python.For.Data.Analysis.Data.Wrangling.With.Pandas.NumPy.And.IPython.2nd.Edition.2017.RETAIL.AZW.eBook-repackb00k
2018-03-22 11:36 - 2018-03-22 16:38 - 000000000 ____D C:\Users\kaz\Downloads\O.Reilly.Media.-.Python.Data.Science.Handbook.2017.Retail.EPUB.eBook-BitBook
2018-03-22 11:36 - 2018-03-22 11:37 - 000000000 ____D C:\Users\kaz\Downloads\LEARNING R  A STEP-BY-STEP FUNCTION GUIDE TO DATA ANALYSIS-OREILLY pdf-ke
2018-03-22 11:36 - 2018-03-22 11:36 - 000000000 ____D C:\Users\kaz\Downloads\Python for Data Science For Dummies
2018-03-22 11:36 - 2018-03-22 11:36 - 000000000 ____D C:\Users\kaz\Downloads\Packt.-.Learning.Social.Media.Analytics.With.R.2017.Retail.EPUB.eBook-BitBook
2018-03-22 09:15 - 2018-04-03 12:51 - 1294615926 _____ C:\WINDOWS\MEMORY.DMP
2018-03-22 01:27 - 2018-04-02 14:57 - 000000000 ____D C:\Users\kaz\Desktop\VARSITY
2018-03-21 15:59 - 2018-03-21 15:59 - 000000000 ____D C:\Users\kaz\Downloads\Molecular.and.Cell.Biology.For.Dummies.2009.Retail.Ebook-DiSTRiBUTiON
2018-03-21 15:59 - 2018-03-21 15:59 - 000000000 ____D C:\Users\kaz\Downloads\How It Works Collection (6 Books) Amazing Chemistry, Physics, Biology, Electricity, Geography and Science (2015) (PDF) (EBOOK)
2018-03-21 15:59 - 2018-03-21 15:59 - 000000000 ____D C:\Users\kaz\Downloads\DATA MINING FOR SYSTEMS BIOLOGY-SPRINGER pdf-ke
2018-03-21 14:50 - 2018-03-21 14:50 - 000000000 ____D C:\Users\kaz\AppData\Roaming\twaindata
2018-03-16 21:51 - 2018-03-16 21:51 - 000001260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableau 10.5.lnk
2018-03-16 21:51 - 2018-03-16 21:51 - 000001248 _____ C:\Users\Public\Desktop\Tableau 10.5.lnk
2018-03-16 21:48 - 2018-03-16 21:49 - 000000000 ____D C:\Users\kaz\Downloads\DATA SCIENCE FOR BUSINESS  WHAT YOU NEED TO KNOW ABOUT DATA MINING AND DATA-ANALYTIC THINKING-OREILLY pdf-ke
2018-03-16 21:45 - 2018-04-10 20:24 - 000000000 ____D C:\Users\kaz\Downloads\Oreilly.-.Communicating.Data.with.Tableau.2014.Retail.eBook-BitBook
2018-03-16 21:45 - 2018-03-16 21:45 - 000000000 ____D C:\Users\kaz\Downloads\Wiley.-.Tableau.Your.Data..2016.2nd.Edition.Retail.EPUB.eBook-BitBook
2018-03-16 21:33 - 2018-03-16 21:33 - 000000000 ____D C:\Users\kaz\Downloads\TableauAutoUpdate
2018-03-16 17:55 - 2018-03-31 07:08 - 000000000 ____D C:\Users\kaz\AppData\Local\ElevatedDiagnostics
2018-03-16 17:19 - 2018-03-28 17:43 - 000000000 ____D C:\Users\kaz\AppData\Local\Dell Printer Hub
2018-03-16 17:19 - 2014-10-09 13:07 - 000276480 _____ (Dell Inc.) C:\WINDOWS\SysWOW64\dltfp4zFM.DLL
2018-03-16 17:19 - 2011-01-08 01:56 - 000130048 _____ C:\WINDOWS\SysWOW64\dltfp4zJBF.DLL
2018-03-16 17:18 - 2018-03-23 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
2018-03-16 17:17 - 2018-03-16 18:35 - 000000000 ____D C:\Program Files (x86)\Dell Printers
2018-03-16 17:14 - 2015-01-20 13:20 - 000019456 _____ C:\WINDOWS\system32\dlt6p4zlm.dll
2018-03-16 17:14 - 2014-10-09 13:07 - 000276480 _____ (Dell Inc.) C:\WINDOWS\system32\dltfp4zFm.DLL
2018-03-16 17:14 - 2014-10-09 09:38 - 000261120 _____ (Dell Inc.) C:\WINDOWS\system32\dlt6p4zusb.dll
2018-03-16 17:14 - 2011-01-08 01:56 - 000130048 _____ C:\WINDOWS\system32\dltfp4zjbf.DLL
2018-03-16 17:13 - 2018-03-16 17:13 - 000005275 _____ C:\WINDOWS\SysWOW64\CommonSetting.ini
2018-03-16 17:13 - 2018-03-16 17:13 - 000005275 _____ C:\WINDOWS\CommonSetting.ini
2018-03-16 16:40 - 2018-03-16 16:40 - 000000000 ____D C:\Users\Public\Dell
2018-03-16 16:40 - 2015-01-15 14:20 - 002290688 _____ (Dell Inc.) C:\WINDOWS\system32\dltsp4zreg.dll
2018-03-16 16:40 - 2014-11-25 11:28 - 000046080 _____ (Dell Inc.) C:\WINDOWS\system32\dltsp4zwia.dll
2018-03-16 16:40 - 2014-11-25 11:22 - 000091136 _____ (Dell Inc.) C:\WINDOWS\system32\dltsp4zimghelper.dll
2018-03-16 16:40 - 2014-11-14 08:48 - 000025088 _____ (Dell Inc.) C:\WINDOWS\system32\dltsp4zimgfilter.dll
2018-03-16 16:39 - 2015-01-20 10:21 - 000018432 _____ C:\WINDOWS\system32\dltpp4zlm.dll
2018-03-16 16:38 - 2014-11-11 10:51 - 000026624 _____ (Dell Inc.) C:\WINDOWS\system32\dltfp4zLM.DLL
2018-03-14 17:33 - 2018-03-14 17:33 - 000907733 _____ C:\Users\kaz\Desktop\UBER Tax.pdf
2018-03-14 17:19 - 2018-03-14 17:19 - 000000000 ____D C:\Users\kaz\Desktop\Medical Science
2018-03-14 09:51 - 2018-03-02 13:55 - 000834552 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-03-14 09:51 - 2018-03-02 13:55 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-03-13 23:26 - 2018-02-14 16:45 - 000145024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-13 23:26 - 2018-02-13 09:20 - 001994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-03-13 23:26 - 2018-02-13 09:20 - 001560064 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-03-13 23:26 - 2018-02-13 09:20 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-03-13 23:26 - 2018-02-13 09:20 - 000655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-03-13 23:26 - 2018-02-13 09:20 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-03-13 23:26 - 2018-02-13 09:20 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2018-03-13 23:26 - 2018-02-13 09:20 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-03-13 23:26 - 2018-02-13 09:20 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-03-13 23:26 - 2018-02-13 09:20 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-03-13 23:25 - 2018-03-03 02:24 - 007407960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-03-13 23:25 - 2018-03-03 02:24 - 000419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-03-13 23:25 - 2018-03-03 02:11 - 001737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-03-13 23:25 - 2018-03-03 02:11 - 001676064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-03-13 23:25 - 2018-03-03 02:11 - 001536120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-03-13 23:25 - 2018-03-03 02:11 - 001500432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-03-13 23:25 - 2018-03-03 02:11 - 001371352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-03-13 23:25 - 2018-03-03 00:23 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2018-03-13 23:25 - 2018-03-03 00:22 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2018-03-13 23:25 - 2018-02-18 15:53 - 004168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2018-03-13 23:25 - 2018-02-16 10:51 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-03-13 23:25 - 2018-02-16 10:51 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-03-13 23:25 - 2018-02-16 10:45 - 025742848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-03-13 23:25 - 2018-02-16 10:44 - 013678080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-03-13 23:25 - 2018-02-16 10:28 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-03-13 23:25 - 2018-02-16 10:24 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-03-13 23:25 - 2018-02-16 10:24 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2018-03-13 23:25 - 2018-02-16 10:19 - 020286976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-03-13 23:25 - 2018-02-16 09:37 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2018-03-13 23:25 - 2018-02-16 09:37 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2018-03-13 23:25 - 2018-02-15 10:15 - 003241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-03-13 23:25 - 2018-02-15 09:57 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-03-13 23:25 - 2018-02-10 15:24 - 000178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-03-13 23:25 - 2018-02-10 14:29 - 000274272 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-03-13 23:25 - 2018-02-10 14:29 - 000124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NV_AGP.SYS
2018-03-13 23:25 - 2018-02-10 14:29 - 000065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ULIAGPKX.SYS
2018-03-13 23:25 - 2018-02-10 14:29 - 000062304 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AGP440.sys
2018-03-13 23:25 - 2018-02-10 14:29 - 000021856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys
2018-03-13 23:25 - 2018-02-10 14:29 - 000017240 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys
2018-03-13 23:25 - 2018-02-10 14:25 - 000533856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-03-13 23:25 - 2018-02-10 14:08 - 001307328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-03-13 23:25 - 2018-02-10 14:06 - 000356184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-03-13 23:25 - 2018-02-10 12:50 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-03-13 23:25 - 2018-02-10 12:40 - 002901504 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-03-13 23:25 - 2018-02-10 12:40 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-03-13 23:25 - 2018-02-10 12:37 - 005779968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-03-13 23:25 - 2018-02-10 12:27 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-03-13 23:25 - 2018-02-10 12:26 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-03-13 23:25 - 2018-02-10 12:20 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-03-13 23:25 - 2018-02-10 12:10 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-03-13 23:25 - 2018-02-10 12:09 - 003757056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2018-03-13 23:25 - 2018-02-10 12:06 - 002295296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-03-13 23:25 - 2018-02-10 12:03 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-03-13 23:25 - 2018-02-10 12:01 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2018-03-13 23:25 - 2018-02-10 12:00 - 000661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-03-13 23:25 - 2018-02-10 11:59 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-03-13 23:25 - 2018-02-10 11:58 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-03-13 23:25 - 2018-02-10 11:57 - 015281664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-03-13 23:25 - 2018-02-10 11:54 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-03-13 23:25 - 2018-02-10 11:52 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-03-13 23:25 - 2018-02-10 11:50 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-03-13 23:25 - 2018-02-10 11:50 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-03-13 23:25 - 2018-02-10 11:48 - 001436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-03-13 23:25 - 2018-02-10 11:47 - 002134016 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-03-13 23:25 - 2018-02-10 11:46 - 002412544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2018-03-13 23:25 - 2018-02-10 11:44 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-03-13 23:25 - 2018-02-10 11:43 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-03-13 23:25 - 2018-02-10 11:40 - 004496384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-03-13 23:25 - 2018-02-10 11:39 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-03-13 23:25 - 2018-02-10 11:35 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-03-13 23:25 - 2018-02-10 11:34 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-03-13 23:25 - 2018-02-10 11:34 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-03-13 23:25 - 2018-02-10 11:33 - 002058240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-03-13 23:25 - 2018-02-10 11:33 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-03-13 23:25 - 2018-02-10 11:30 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-03-13 23:25 - 2018-02-10 11:29 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-03-13 23:25 - 2018-02-10 11:23 - 001545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-03-13 23:25 - 2018-02-10 11:12 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-03-13 23:25 - 2018-02-10 11:11 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-03-13 23:25 - 2018-02-10 11:09 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-03-13 23:25 - 2018-02-08 12:37 - 002779648 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2018-03-13 23:25 - 2018-02-08 11:57 - 002464256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2018-03-13 23:25 - 2018-02-02 15:42 - 003320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-03-13 23:25 - 2018-02-02 14:24 - 003610112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-03-13 23:25 - 2018-01-26 14:04 - 001115648 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2018-03-13 23:25 - 2018-01-12 13:18 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2018-03-13 23:25 - 2018-01-12 12:26 - 000393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2018-03-13 23:25 - 2018-01-11 13:39 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2018-03-13 23:25 - 2018-01-11 13:39 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcshext.dll
2018-03-13 23:25 - 2018-01-11 13:34 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2018-03-13 23:25 - 2018-01-11 13:28 - 001562624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2018-03-13 23:25 - 2018-01-11 13:19 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2018-03-13 23:25 - 2018-01-11 13:10 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2018-03-13 23:25 - 2018-01-11 13:10 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2018-03-13 23:25 - 2018-01-11 13:04 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2018-03-13 23:25 - 2018-01-11 12:55 - 002003456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2018-03-13 23:25 - 2018-01-11 12:42 - 002923520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2018-03-13 23:25 - 2018-01-11 12:13 - 001695744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-03-13 23:25 - 2018-01-10 09:48 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-03-13 23:25 - 2018-01-09 02:04 - 000276312 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-03-13 23:25 - 2018-01-09 01:09 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2018-03-13 23:25 - 2018-01-09 01:06 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2018-03-13 23:25 - 2018-01-09 00:35 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2018-03-13 23:25 - 2018-01-09 00:35 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2018-03-13 23:25 - 2018-01-09 00:32 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2018-03-13 23:25 - 2018-01-09 00:29 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2018-03-13 23:25 - 2018-01-09 00:19 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2018-03-13 23:25 - 2018-01-09 00:09 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2018-03-13 23:25 - 2018-01-09 00:05 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2018-03-13 23:25 - 2018-01-08 23:59 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2018-03-13 23:25 - 2018-01-08 23:49 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2018-03-13 23:25 - 2018-01-08 23:46 - 001096192 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-03-13 23:25 - 2018-01-08 23:39 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2018-03-13 22:34 - 2018-03-13 22:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-04-12 19:11 - 2016-12-30 18:51 - 000000000 ____D C:\Users\kaz\AppData\Roaming\qBittorrent
2018-04-12 05:50 - 2012-07-26 02:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-04-12 05:28 - 2013-08-22 08:36 - 000000000 ____D C:\WINDOWS\Inf
2018-04-12 05:22 - 2017-10-11 09:42 - 136971704 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-04-12 05:22 - 2015-10-13 20:16 - 136971704 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-04-12 05:16 - 2013-08-22 09:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-04-12 05:12 - 2015-10-17 12:21 - 000000000 __RDO C:\Users\kaz\OneDrive
2018-04-11 23:37 - 2018-02-26 04:44 - 000000000 ____D C:\Users\kaz\Desktop\RAIN MAKER
2018-04-11 21:40 - 2017-12-02 20:05 - 000003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2018-04-11 21:25 - 2013-08-22 08:25 - 001572864 ___SH C:\WINDOWS\system32\config\BBI
2018-04-11 21:18 - 2017-09-11 22:29 - 000000000 ____D C:\Users\kaz\Downloads\Adept.PDF.Password.Remover.v3.60.WinAll.Incl.Keygen-FALLEN
2018-04-11 17:21 - 2018-02-26 04:40 - 000000000 ____D C:\Users\kaz\Desktop\REBUILD
2018-04-11 13:48 - 2018-02-26 04:37 - 000000000 ____D C:\Users\kaz\Desktop\MIKE AL  2018
2018-04-11 05:39 - 2012-07-26 00:26 - 000000199 _____ C:\WINDOWS\win.ini
2018-04-11 04:02 - 2016-01-10 02:09 - 000000000 ____D C:\Users\kaz\Downloads\Microsoft Toolkit 2.6 BETA 5 Official Torrent
2018-04-11 04:02 - 2014-03-01 22:09 - 000000000 ____D C:\Users\kaz\Downloads\Microsoft Toolkit 2.5 Official Torrent
2018-04-11 01:15 - 2015-09-13 12:08 - 000000000 ____D C:\Users\kaz\AppData\Local\Packages
2018-04-10 19:24 - 2016-08-22 21:07 - 000000000 ____D C:\Users\kaz\Desktop\JOBS
2018-04-10 19:19 - 2017-03-15 20:01 - 000000000 ____D C:\Users\kaz\Desktop\Thesis
2018-04-10 13:43 - 2014-11-21 03:44 - 000175002 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-04-10 00:48 - 2013-08-22 08:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2018-04-10 00:48 - 2012-07-26 03:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-04-09 04:20 - 2018-01-12 04:45 - 000000000 ____D C:\Users\kaz\Desktop\DATA ANALYSIS
2018-04-08 19:42 - 2015-09-13 12:17 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2102589598-2406682454-3341732434-1001
2018-04-08 18:42 - 2015-10-17 00:07 - 001019725 _____ C:\WINDOWS\system32\Drivers\rtwavesskdy.dat
2018-04-08 18:41 - 2015-10-17 00:06 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-04-08 17:18 - 2017-07-03 03:43 - 000000000 ____D C:\Users\kaz\Desktop\STATISTICS LESSONS
2018-04-08 05:31 - 2013-11-16 21:18 - 000000000 ____D C:\Program Files\Common Files\mcafee
2018-04-08 05:30 - 2017-01-28 17:43 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Slack
2018-04-08 04:26 - 2017-01-31 18:30 - 000000000 ____D C:\Users\kaz\AppData\Local\Deployment
2018-04-08 03:46 - 2015-10-17 00:16 - 000000000 ____D C:\Users\kaz
2018-04-07 21:29 - 2016-01-13 11:01 - 000000000 ____D C:\ProgramData\Package Cache
2018-04-07 15:28 - 2017-02-03 00:39 - 000000000 ____D C:\Users\kaz\Desktop\HCARE
2018-04-07 15:27 - 2018-01-06 22:10 - 000000000 ____D C:\Users\kaz\Desktop\SPSS SOFTWARE
2018-04-07 15:05 - 2017-01-28 17:43 - 000000000 ____D C:\Users\kaz\AppData\Local\slack
2018-04-07 15:04 - 2017-01-28 17:43 - 000002128 _____ C:\Users\kaz\Desktop\Slack.lnk
2018-04-07 15:04 - 2017-01-28 17:43 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2018-04-07 15:04 - 2017-01-28 17:42 - 000000000 ____D C:\Users\kaz\AppData\Local\SquirrelTemp
2018-04-07 14:29 - 2018-01-06 21:23 - 000000014 _____ C:\WINDOWS\SysWOW64\ssprs.tgz
2018-04-07 14:29 - 2018-01-06 21:23 - 000000000 _____ C:\WINDOWS\SysWOW64\ssprs.dll
2018-04-07 14:29 - 2018-01-06 21:22 - 000000219 _____ C:\WINDOWS\SysWOW64\lsprst7.tgz
2018-04-07 14:29 - 2018-01-06 21:22 - 000000205 _____ C:\WINDOWS\SysWOW64\lsprst7.dll
2018-04-07 14:29 - 2018-01-06 21:22 - 000000016 ____H C:\WINDOWS\SysWOW64\servdat.slm
2018-04-06 16:45 - 2016-04-19 16:37 - 000000000 ____D C:\ProgramData\Thomson.ResearchSoft.Installers
2018-04-06 16:45 - 2016-04-19 16:37 - 000000000 ____D C:\Program Files (x86)\EndNote X7
2018-04-06 16:44 - 2016-04-19 16:38 - 000000000 ____D C:\Users\Public\Documents\EndNote
2018-04-06 16:44 - 2016-04-19 16:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EndNote
2018-04-04 04:08 - 2015-10-17 17:28 - 000000000 ____D C:\WINDOWS\Minidump
2018-04-03 13:03 - 2017-12-30 20:14 - 000000000 ____D C:\Users\kaz\Desktop\T25 and DVD apps
2018-04-03 13:01 - 2015-10-17 00:16 - 000000000 ____D C:\Users\ajmeo_000
2018-04-03 13:01 - 2015-10-17 00:16 - 000000000 ____D C:\Users\Administrator
2018-04-02 11:37 - 2018-03-12 11:32 - 000002164 _____ C:\Users\kaz\Desktop\TeamSQL.lnk
2018-04-02 11:37 - 2018-03-12 11:32 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSQL, Inc
2018-04-02 11:37 - 2018-03-12 11:31 - 000000000 ____D C:\Users\kaz\AppData\Local\TeamSQL
2018-03-31 04:57 - 2018-02-26 04:36 - 000000000 ____D C:\Users\kaz\Desktop\TIME MANAGE
2018-03-29 03:02 - 2016-02-07 21:46 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Skype
2018-03-28 23:04 - 2015-09-13 12:20 - 000003330 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-03-28 23:04 - 2015-09-13 12:20 - 000003202 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-03-28 17:26 - 2017-02-08 22:22 - 000003324 _____ C:\WINDOWS\System32\Tasks\PCDDataUploadTask
2018-03-28 17:26 - 2017-02-08 22:22 - 000003204 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2018-03-27 23:06 - 2017-07-03 04:49 - 000000469 _____ C:\WINDOWS\ODBCINST.INI
2018-03-26 08:13 - 2017-01-03 01:55 - 000003822 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1483426521
2018-03-26 08:13 - 2016-04-29 11:05 - 000003704 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2018-03-25 17:50 - 2014-03-02 15:55 - 000000000 ____D C:\The KMPlayer
2018-03-25 06:48 - 2017-06-30 09:48 - 000001135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk
2018-03-25 06:48 - 2017-04-03 20:59 - 000001328 _____ C:\Users\Public\Desktop\Skype.lnk
2018-03-25 06:48 - 2017-04-03 20:59 - 000000000 ___RD C:\Program Files (x86)\Skype
2018-03-25 06:48 - 2017-01-03 01:54 - 000000000 ____D C:\Program Files (x86)\Opera
2018-03-25 06:48 - 2016-02-07 21:46 - 000000000 ____D C:\ProgramData\Skype
2018-03-24 18:25 - 2017-06-28 05:42 - 000000000 ____D C:\Users\kaz\Desktop\FAM
2018-03-24 14:55 - 2013-08-22 10:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-03-24 11:56 - 2013-08-22 10:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-03-24 06:25 - 2016-11-10 00:43 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2018-03-24 06:25 - 2016-01-09 23:40 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2018-03-24 06:22 - 2013-08-22 10:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-03-24 06:21 - 2015-10-17 02:25 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-03-24 06:21 - 2013-08-22 10:36 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-03-24 05:33 - 2016-04-23 13:53 - 000000000 ____D C:\ProgramData\Oracle
2018-03-24 05:32 - 2016-04-23 13:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-03-24 05:26 - 2017-07-03 04:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2018-03-24 05:21 - 2017-07-03 04:48 - 000000000 ____D C:\WINDOWS\system32\1033
2018-03-23 18:59 - 2014-10-07 21:12 - 000000000 ____D C:\AdwCleaner
2018-03-22 23:14 - 2017-11-27 07:52 - 000000000 ____D C:\Users\kaz\Downloads\Nitro.Pro.v11.0.5.271.x64.Incl.Keymaker-CORE
2018-03-22 22:14 - 2015-08-22 07:57 - 000000000 ____D C:\Users\kaz\Downloads\AVG Pc TuneUp 2015 KeyGenerator
2018-03-22 16:45 - 2015-09-13 12:21 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-22 16:45 - 2015-09-13 12:21 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-03-22 16:30 - 2015-09-22 10:16 - 000000000 ____D C:\Users\kaz\AppData\Roaming\Nitro
2018-03-22 14:03 - 2017-12-02 20:38 - 000003916 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2018-03-22 14:01 - 2017-12-02 20:38 - 001019088 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2018-03-22 14:01 - 2017-12-02 20:38 - 000452904 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2018-03-22 14:01 - 2017-12-02 20:38 - 000372920 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2018-03-22 14:01 - 2017-12-02 20:38 - 000198368 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2018-03-22 14:01 - 2017-12-02 20:38 - 000189032 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2018-03-22 14:01 - 2017-12-02 20:38 - 000139040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2018-03-22 14:01 - 2017-12-02 20:38 - 000102720 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2018-03-22 14:01 - 2017-12-02 20:38 - 000076760 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2018-03-22 14:01 - 2017-12-02 20:38 - 000039352 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys
2018-03-22 14:00 - 2017-12-02 20:38 - 000337344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbloga.sys
2018-03-22 14:00 - 2017-12-02 20:38 - 000221096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdrivera.sys
2018-03-22 14:00 - 2017-12-02 20:38 - 000193024 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsha.sys
2018-03-22 14:00 - 2017-12-02 20:38 - 000166552 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdiska.sys
2018-03-22 14:00 - 2017-12-02 20:38 - 000051272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniva.sys
2018-03-22 01:29 - 2016-08-08 22:04 - 000000000 ____D C:\Users\kaz\Desktop\MASTERS PROGRAM
2018-03-16 21:51 - 2017-07-03 04:52 - 000000000 ____D C:\Users\kaz\Documents\My Tableau Repository
2018-03-16 21:49 - 2017-07-03 04:49 - 000000000 ____D C:\Program Files\Tableau
2018-03-16 18:35 - 2013-11-16 20:59 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-03-14 11:06 - 2013-08-22 10:36 - 000000000 ____D C:\WINDOWS\rescache
2018-03-14 00:33 - 2015-10-21 13:57 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-03-14 00:33 - 2013-08-22 10:36 - 000000000 ___RD C:\WINDOWS\ToastData
2018-03-14 00:23 - 2015-10-13 20:16 - 000000000 ____D C:\WINDOWS\system32\MRT
 
==================== Files in the root of some directories =======
 
2017-02-16 16:30 - 2017-02-16 15:07 - 000012542 _____ () C:\Program Files (x86)\Common Files\client.wyc
2017-06-08 05:47 - 2017-06-08 05:47 - 000000132 _____ () C:\Users\kaz\AppData\Roaming\Adobe PNG Format CS6 Prefs
2016-08-31 00:25 - 2017-11-09 19:19 - 000000366 _____ () C:\Users\kaz\AppData\Roaming\com.crackdat.crackdatsuite.xml
2017-05-15 05:58 - 2017-05-15 05:58 - 000000000 _____ () C:\Users\kaz\AppData\Local\{40B8B32D-31E6-4EB5-A8F7-9C42215FC7F3}
 
Some zero byte size files/folders:
==========================
C:\Windows\SysWOW64\nsprs.dll
C:\Windows\SysWOW64\serauth1.dll
C:\Windows\SysWOW64\serauth2.dll
C:\Windows\SysWOW64\ssprs.dll
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2018-04-11 22:59
 
==================== End of FRST.txt ============================


BC AdBot (Login to Remove)

 


#2 kazmeo

kazmeo
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 13 April 2018 - 06:19 PM

The addition file is posted below:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by kaz (12-04-2018 19:25:38)
Running from C:\Users\kaz\Downloads
Windows 8.1 (Update) (X64) (2015-10-17 17:13:54)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2102589598-2406682454-3341732434-500 - Administrator - Disabled) => C:\Users\Administrator
ajmeo_000 (S-1-5-21-2102589598-2406682454-3341732434-1003 - Limited - Enabled) => C:\Users\ajmeo_000
Guest (S-1-5-21-2102589598-2406682454-3341732434-501 - Limited - Disabled)
kaz (S-1-5-21-2102589598-2406682454-3341732434-1001 - Administrator - Enabled) => C:\Users\kaz
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Symantec Endpoint Protection (Enabled - Up to date) {D13BD399-83A0-E2CF-BE1A-249478F15ABB}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: AVG Antivirus (Enabled - Up to date) {C50510DE-367A-330C-FD5C-556ACFB11243}
AS: Symantec Endpoint Protection (Enabled - Up to date) {6A5A327D-A59A-ED41-84AA-1FE603761006}
AS: AVG Antivirus (Enabled - Up to date) {7E64F13A-1040-3C82-C7EC-6E18B43658FE}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Symantec Endpoint Protection (Enabled) {E90052BC-C9CF-E397-9545-8DA186221DC0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Active Directory Authentication Library for SQL Server (HKLM\...\{AA4514EC-4DB3-43F9-9FB8-C3C0C720D1D6}) (Version: 14.0.3015.40 - Microsoft Corporation)
Active@ ISO Burner 3.0 (HKLM-x32\...\{3B756F35-2504-429A-B36C-EA0961B6A2C0}_is1) (Version: 3.0 - LSoft Technologies Inc)
Adept PDF Password Remover 3.60 (HKLM-x32\...\Adept PDF Password Remover 3.60_is1) (Version:  - AdeptPDF Studio)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Connect 9 Add-in (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\Adobe Connect 9 Add-in) (Version: 11,9,976,291 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Digital Editions 2.0 (HKLM-x32\...\Adobe Digital Editions 2.0) (Version: 2.0.1 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Amazon Kindle (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\Amazon Kindle) (Version: 1.19.2.46095 - Amazon)
Amazon Redshift ODBC Driver 64-bit (HKLM\...\{788C401A-726B-4CE7-8BC2-89FD7967A6ED}) (Version: 1.2.7 - Amazon Corporate LLC)
AMD Catalyst Install Manager (HKLM\...\{40497F68-4E40-7578-7288-E38074390E79}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Application Verifier x64 External Package (HKLM\...\{77F3D72C-465F-BD51-890E-CC3914B1365F}) (Version: 8.100.26936 - Microsoft) Hidden
ArcGIS 10.3.1 for Desktop (HKLM-x32\...\{831DD630-F230-49C6-AD41-312E8E0F9CEE}) (Version: 10.3.4959 - Environmental Systems Research Institute, Inc.) Hidden
ArcGIS 10.3.1 for Desktop (HKLM-x32\...\ArcGIS 10.3.1 for Desktop) (Version: 10.3.4959 - Environmental Systems Research Institute, Inc.)
Atom (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\atom) (Version: 1.19.3 - GitHub Inc.)
Autodesk 3ds Max 2016 (HKLM\...\{52B37EC7-D836-0410-0464-3C24BCED2010}) (Version: 18.0.873.0 - Autodesk) Hidden
Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk)
Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk)
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.19 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk)
Autodesk Backburner 2016 (HKLM-x32\...\{8C5F38D2-9EFE-49A4-B3F5-BF3210FED168}) (Version: 16.0.0.0 - Autodesk)
Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk)
Autodesk DirectConnect 2016 64-bit (HKLM\...\{7A12802C-4864-423D-9732-3A22577CE006}) (Version: 10.0.110.1 - Autodesk) Hidden
Autodesk DirectConnect 2016 64-bit (HKLM\...\Autodesk DirectConnect 2016 64-bit) (Version: 10.0.110.1 - Autodesk)
Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk)
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.19 - Autodesk)
Autodesk Maya 2016 (HKLM\...\{3905B678-DC8D-4D5E-AA95-EA254D6C1239}) (Version: 16.0.1312.0 - Autodesk) Hidden
Autodesk Maya 2016 (HKLM\...\Autodesk Maya 2016) (Version: 16.0.1312.0 - Autodesk)
Autodesk MotionBuilder 2016 (HKLM\...\{EEB8F213-FF32-470F-B409-47DC28E658FF}) (Version: 16.0.0.17 - Autodesk) Hidden
Autodesk MotionBuilder 2016 (HKLM\...\Autodesk MotionBuilder 2016) (Version: 16.0.0.17 - Autodesk)
Autodesk Mudbox 2016 (HKLM\...\{B33F7E81-3398-4FC5-B947-C5989A103D91}) (Version: 10.0.0.166 - Autodesk) Hidden
Autodesk Mudbox 2016 (HKLM\...\Autodesk Mudbox 2016) (Version: 10.0.0.166 - Autodesk)
Autodesk ReCap 2016 (HKLM\...\{F6FD1651-0000-1033-0102-387BAF9B3B0A}) (Version: 1.5.0.33 - Autodesk) Hidden
Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2016 (HKLM\...\{0BB716E0-1600-0610-0000-097DC2F354DF}) (Version: 16.0.421.0 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max 2016 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2016) (Version: 16.0.421.0 - Autodesk)
Autodesk Suite Exclusives 2016 (HKLM\...\{D0F82C64-3E66-4B12-B12C-3F79C0F731C1}) (Version: 3.0.0.0 - Autodesk)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 18.2.3046 - AVG Technologies)
AVG PC TuneUp (HKLM-x32\...\{9C775BB6-1453-45EB-8C78-A5CC5199113D}) (Version: 16.77.3 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.77.3.23060 - AVG Technologies)
AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.1.588.1 - AVG)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Browser for SQL Server 2017 (HKLM-x32\...\{CF8EEB96-E7E7-4EF7-A0A1-559F09953156}) (Version: 14.0.1000.169 - Microsoft Corporation)
calibre (HKLM-x32\...\{C5E7301A-D0AC-4687-A90F-DEB1F46E005B}) (Version: 2.38.0 - Kovid Goyal)
Citrix Online Launcher (HKLM-x32\...\{09DA5EE2-7E46-4DC4-96F9-BFEE50D40659}) (Version: 1.0.408 - Citrix)
Core Temp 1.11 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.11 - ALCPU)
Crack the DAT 6.0.3 (HKLM-x32\...\{DCE61563-DA83-47CD-B6E6-D25BEC21B301}_is1) (Version:  - Crack DAT)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink PowerDVD 17 (HKLM-x32\...\{D15BFD7F-6BBA-49A7-A6B1-14C00DCA6842}) (Version: 17.0.1523.60 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.5.0.0 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.5.0.0 - Dell Inc.)
Dell Color MFP E525w (HKLM-x32\...\{65A8DF04-CEDD-4C92-8FC9-D71D1A5B9357}) (Version: 1.028.2015 - Dell Inc.) Hidden
Dell Color MFP E525w (HKLM-x32\...\InstallShield_{65A8DF04-CEDD-4C92-8FC9-D71D1A5B9357}) (Version: 1.028.2015 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{98CB551E-EDB1-4535-82A6-E3258597F64E}) (Version: 2.7.1000.0 - Dell Products, LP)
Dell Printer Hub (HKLM-x32\...\{98F3B1BD-3D7C-42EC-8149-18E3FE9ECE22}) (Version: 2.0.0.47 - Dell Inc.) Hidden
Dell Printer Hub (HKLM-x32\...\InstallShield_{98F3B1BD-3D7C-42EC-8149-18E3FE9ECE22}) (Version: 2.0.0.47 - Dell Inc.)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 2.0.6875.668 - Dell)
Dell SupportAssistAgent (HKLM\...\{18EF001B-B005-46CB-917B-112BA69ED85E}) (Version: 2.0.3.10 - Dell)
Dell System Detect (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 16.3.13.5 - Synaptics Incorporated)
Dell Update (HKLM-x32\...\{F91263FA-BE4D-439D-9C0A-2E7204E0E9E3}) (Version: 1.9.20.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.41 - DivX, LLC)
Download Updater (AOL LLC) (HKLM-x32\...\SoftwareUpdUtility) (Version:  - ) <==== ATTENTION
Driver Booster 4.5 (HKLM-x32\...\Driver Booster_is1) (Version: 4.5.0 - IObit)
Driver Easy 5.6.1 (HKLM\...\DriverEasy_is1) (Version: 5.6.1 - Easeware)
E514dw_E515dn_E515dw Scan Plugin (HKLM-x32\...\{AB72F66E-D98D-47F8-95A1-F5012E208A8F}) (Version: 2.0.0.31 - Dell Inc.) Hidden
E525w Scan Plugin (HKLM-x32\...\{A4378F49-96AF-48DE-BF40-5D9ED469AC33}) (Version: 2.0.0.31 - Dell Inc.) Hidden
EndNote X7 (HKLM-x32\...\{86B3F2D6-AC2B-0017-8AE1-F2F77F781B0C}) (Version: 17.8.0.11583 - Thomson Reuters)
Epic Games Launcher (HKLM-x32\...\{2DE76AAC-8061-4D9B-B7BA-A7CFBE0F8048}) (Version: 1.1.86.0 - Epic Games, Inc.)
FARO LS 1.1.503.3 (64bit) (HKLM-x32\...\{1C05E654-FB81-4274-BF32-292E3707701D}) (Version: 5.3.3.38662 - FARO Scanner Production)
Final Draft (HKLM-x32\...\{E8FDC52C-83F4-4A0F-AA65-D0E8C0F3302F}) (Version: 9.0.0.163 - Final Draft, Inc.)
FMW 1 (HKLM\...\{273A8690-0AA7-4325-95ED-238F69490C0E}) (Version: 1.227.9 - AVG Technologies) Hidden
Freemake Video Converter version 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation)
GitHub (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\5f7eb300e2ea4ebf) (Version: 3.3.4.0 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
HeidiSQL (HKLM\...\HeidiSQL_is1) (Version:  - Ansgar Becker)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
IBM SPSS Amos 24 (HKLM-x32\...\{A24026D3-0E0B-49F1-8FC8-65E254EB421F}) (Version: 24.0.0.0 - IBM Corp)
IBM SPSS Modeler 18.0 (HKLM\...\{52EED97C-F49F-4DBA-9B29-8CB652C29D81}) (Version: 18.0.0.0 - IBM Corp.)
IBM SPSS Statistics 20 (HKLM-x32\...\{F4247229-CCB7-4CA5-A700-4A0057F67CF4}_is1) (Version:  - IBM)
IBM SPSS Statistics 24 (HKLM\...\{4762AE15-E5A3-43BF-8822-1CFC70FB147A}) (Version: 24.0.0.0 - IBM Corp)
IBM SPSS Statistics Subscription (HKLM\...\{02D81DCC-13D1-465C-9292-E46956489CA1}) (Version: 1.0.0.903 - IBM Corp)
IBM SPSS Text Analytics for Surveys 4 (HKLM\...\{E8127EC8-0EF6-48C0-A83F-BA17AC1B4B20}) (Version: 4.0.1.1 - IBM Corp.)
iClone v6.4 PRO (HKLM-x32\...\{9FDDEF0B-4D60-4A36-981B-269C787DB23E}) (Version: 6.4.2527.1 - Reallusion Inc.)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.3.1520 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 7 Update 80 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417080FF}) (Version: 7.0.800 - Oracle)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java SE Development Kit 7 Update 80 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170800}) (Version: 1.7.0.800 - Oracle)
JobTabs Job Search & Resume (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\JobTabs) (Version: 5.0.0.1858 - JobTabs, LLC)
Kits Configuration Installer (HKLM-x32\...\{B74E65FD-CC47-41C5-4B89-791A3F61942D}) (Version: 8.100.25984 - Microsoft) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 3.4.4.2398 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.4.2398 - Malwarebytes)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft ODBC Driver 13 for SQL Server (HKLM\...\{76CF9EF4-ABA0-484E-8042-12B99499AF5F}) (Version: 14.0.1000.169 - Microsoft Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Power BI Desktop (x64) (HKLM\...\{353C17E1-5220-4AF1-8A7F-E83D1836CD3B}) (Version: 2.57.5068.501 - Microsoft Corporation)
Microsoft Project Professional 2016 (HKLM\...\Office16.PRJPRO) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{E534493E-80D2-4E37-8020-3ECAC55D9DB5}) (Version: 10.53.6000.34 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{4D2C56FF-7F36-4B49-A97A-24F0522D41D7}) (Version: 11.3.6540.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB  (HKLM\...\{9097BF1A-13A0-4A4A-A1F8-473E2A669863}) (Version: 13.1.4001.0 - Microsoft Corporation)
Microsoft SQL Server 2017 (64-bit) (HKLM\...\Microsoft SQL Server SQL2017) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2017 Policies  (HKLM-x32\...\{256EDCB9-A64D-433C-A1DC-C76F02475915}) (Version: 14.0.1000.169 - Microsoft Corporation)
Microsoft SQL Server 2017 Setup (English) (HKLM\...\{405252DC-ADF7-4BC8-95F5-F89DE513DD62}) (Version: 14.0.1000.169 - Microsoft Corporation)
Microsoft SQL Server 2017 T-SQL Language Service  (HKLM\...\{27124A2B-8384-498D-8EB2-22B06F9F662B}) (Version: 14.0.17230.0 - Microsoft Corporation)
Microsoft SQL Server 2017 T-SQL Language Service  (HKLM\...\{C8A51693-98B9-4AB1-91B8-9A1B86729D5F}) (Version: 14.0.1000.169 - Microsoft Corporation)
Microsoft SQL Server Data Tools for Visual Studio 2017 (SSDT) (HKLM-x32\...\edb889d6) (Version: 15.6.27428.2015 - Microsoft Corporation)
Microsoft SQL Server Data-Tier Application Framework (x86) (HKLM-x32\...\{F13867E5-6039-44C7-9569-77A6E7CD560E}) (Version: 14.0.3953.4 - Microsoft Corporation)
Microsoft SQL Server Management Studio - 17.6 (HKLM-x32\...\{6c3abe2b-03c7-4bbb-8e4b-73926ea8a8f7}) (Version: 14.0.17230.0 - Microsoft Corporation)
Microsoft SQL Server Reporting Services (HKLM-x32\...\{2b5ed51b-1779-4104-9230-d54fd428e21a}) (Version: 14.0.6632.39446 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2017 (HKLM\...\{AC92C896-149B-4254-80CF-D1FC8BF4E831}) (Version: 14.0.3015.40 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2017 (HKLM-x32\...\{FBD0D997-4E36-4B10-8471-BD7CF42ECE7F}) (Version: 14.0.3006.16 - Microsoft Corporation)
Microsoft Visio Professional 2016 (HKLM\...\Office16.VISPRO) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2015 Shell (Isolated) (HKLM-x32\...\{d2981c27-a434-4c9a-96c7-0209e97c4eac}) (Version: 14.0.23107.10 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.22.1 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.15.3248.309 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{ab213ab7-4792-4c6f-a3fa-8485d06c3475}) (Version: 14.0.23829 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 Language Support (HKLM-x32\...\{bd4ef7af-dfb1-472e-8fa4-1b97f360a3e7}) (Version: 14.0.23107.20 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2017 (HKLM\...\{20B328C9-C6BB-434A-928A-00F05CD820B8}) (Version: 14.0.1000.169 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{5BABDA39-61CF-41EE-992D-4054B6649A9B}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{ED6C77F9-4D7E-447C-9EC0-9A212D075535}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 54.0 (x64 en-US) (HKLM\...\Mozilla Firefox 54.0 (x64 en-US)) (Version: 54.0 - Mozilla)
MSI Development Tools (HKLM-x32\...\{CF3A1CA6-5E5E-B4BD-6CF1-363056816CA2}) (Version: 8.100.26898 - Microsoft Corporation) Hidden
MySpeed Plugin v5.5.1 (HKLM-x32\...\{22466D09-BBE0-49A9-B6E5-C7C4C2DE36DA}) (Version: 5.05.0421 - Enounce Incorporated)
MySQL Connector Python v2.1.7 for Python v2.7 (HKLM-x32\...\{7F38FCCA-6AF4-4BCD-A144-B4F24EE1BD53}) (Version: 2.1.7 - Oracle)
MySQL Connector/C 6.1 (HKLM\...\{EFBE5AED-E6E8-42AC-9092-B9D5A69616C8}) (Version: 6.1.11 - Oracle Corporation)
MySQL Connector/ODBC 5.3 (HKLM\...\{EA9613B3-B91C-43D8-A1F9-50C76E2386A8}) (Version: 5.3.10 - Oracle Corporation)
MySQL Documents 5.7 (HKLM-x32\...\{7A263052-DCA7-4F35-9BD0-1E06CD4D55F0}) (Version: 5.7.21 - Oracle Corporation)
MySQL Examples and Samples 5.7 (HKLM-x32\...\{F8B5A2DA-5DF0-48CB-BEF7-9BB74257846B}) (Version: 5.7.21 - Oracle Corporation)
MySQL For Excel 1.3.7 (HKLM-x32\...\{7EA542EB-66B1-430E-A368-8C1967FC8184}) (Version: 1.3.7 - Oracle)
MySQL Installer - Community (HKLM-x32\...\{9E3CA8BC-3E0E-494B-89E1-4AE9577C9469}) (Version: 1.4.23.0 - Oracle Corporation)
MySQL Notifier 1.1.7 (HKLM-x32\...\{724CDD73-430E-47DA-8F4E-7DF2000BA268}) (Version: 1.1.7 - Oracle)
MySQL Router 2.1 (HKLM\...\{03EEE969-6520-46B8-B705-95BED969D8C7}) (Version: 2.1.6 - Oracle Corporation)
MySQL Server 5.7 (HKLM\...\{3FAF469E-B671-4ED9-AB0D-CF8D41E35319}) (Version: 5.7.21 - Oracle Corporation)
MySQL Shell 1.0.11 (HKLM\...\{CF25BF0A-B0F7-40DA-B409-553152D7DBB6}) (Version: 1.0.11 - Oracle and/or its affiliates)
MySQL Utilities (HKLM\...\{BEDAC2EF-DBA2-4B25-857A-7DF385FA645E}) (Version: 1.6.5 - Oracle Corporation)
MySQL Workbench 6.3 CE (HKLM\...\{E90FE565-E4A2-49E7-94D9-5B8025C972A1}) (Version: 6.3.10 - Oracle Corporation)
Nitro Pro (HKLM\...\{438855BB-C155-4130-9A21-22EB65CAF536}) (Version: 11.0.3.134 - Nitro)
Nitro Pro 9 (HKLM\...\{1E347E8D-DB86-43EE-B301-EE953C44BF3C}) (Version: 9.5.4.22 - Nitro)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.0 - OBS Project)
OpenOffice 4.1.5 (HKLM-x32\...\{ABCAD346-4F4B-49E9-9AA1-28EF8C26059D}) (Version: 4.15.9789 - Apache Software Foundation)
Opera Stable 52.0.2871.30 (HKLM-x32\...\Opera 52.0.2871.30) (Version: 52.0.2871.30 - Opera Software)
Oracle VM VirtualBox 5.1.22 (HKLM\...\{8D5E4D4D-5E0C-4448-B018-5DDEF1E208D9}) (Version: 5.1.22 - Oracle Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.8 - PowerISO Computing, Inc.)
PowerXpressHybrid (HKLM-x32\...\{51FDC2DE-0917-46B7-EAEC-5377504701DE}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
PremiumSoft Navicat 11.2 for MariaDB (HKLM\...\PremiumSoft Navicat for MariaDB_is1) (Version: 11.2.16 - PremiumSoft CyberTech Ltd.)
psqlODBC_x64 (HKLM\...\{3D4F4C5A-28C7-441D-81DC-2AA2C1A61B6A}) (Version: 09.06.0201 - PostgreSQL Global Development Group)
PX Profile Update (HKLM-x32\...\{A85474B2-30B3-2757-1958-4483E958BE9E}) (Version: 1.00.1. - AMD) Hidden
Python 3.6.1 (32-bit) (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\{1babc3bc-6a32-44f7-bf4d-60eec36c9ad1}) (Version: 3.6.1150.0 - Python Software Foundation)
Python 3.6.1 Add to Path (32-bit) (HKLM-x32\...\{ED8BD450-5015-4CB3-95B5-2D93F23E111B}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Core Interpreter (32-bit debug) (HKLM-x32\...\{DDE4284B-3D78-41AB-83EC-B23CFADB37F1}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Core Interpreter (32-bit symbols) (HKLM-x32\...\{CA18213E-705E-455A-A6C3-79E794CE2C60}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Core Interpreter (32-bit) (HKLM-x32\...\{E63E60CA-437B-4894-8395-81F2F66483B0}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Development Libraries (32-bit debug) (HKLM-x32\...\{733C13EA-4882-411B-BF87-51C8B9ECA879}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Development Libraries (32-bit) (HKLM-x32\...\{3029D656-0C32-4AC9-84FB-A15056F356CC}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Documentation (32-bit) (HKLM-x32\...\{D1198C40-C6F5-4FFB-B98C-79BF1FE706C1}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Executables (32-bit debug) (HKLM-x32\...\{6DD56F86-3ECA-4995-A9E8-66A525386656}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Executables (32-bit symbols) (HKLM-x32\...\{AC49BBD8-3865-453C-88E1-23477B8EF017}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Executables (32-bit) (HKLM-x32\...\{A7036382-80F1-4FC1-B244-D31AA50337F4}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 pip Bootstrap (32-bit) (HKLM-x32\...\{899F7F28-F6D3-4E5B-8FBE-F7929036172A}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Standard Library (32-bit debug) (HKLM-x32\...\{61F6B641-5AF2-4976-82FC-3D688B5785A6}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Standard Library (32-bit symbols) (HKLM-x32\...\{29916D9A-3D47-4F42-BFB5-8E2FF3611EFB}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Standard Library (32-bit) (HKLM-x32\...\{3BCCB89B-CD98-4F78-8436-78847FABFD68}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Tcl/Tk Support (32-bit debug) (HKLM-x32\...\{4204C035-E200-4C3F-9ED5-3E7B76E3B1B1}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Tcl/Tk Support (32-bit symbols) (HKLM-x32\...\{6F4FCA92-056A-4D06-AE1C-316172A45D21}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Tcl/Tk Support (32-bit) (HKLM-x32\...\{F6ED0771-FE83-4A1C-BE65-A06CB65B46D5}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Test Suite (32-bit debug) (HKLM-x32\...\{C18E87F0-AFB2-4A4F-AFB1-AB33C9C64767}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Test Suite (32-bit symbols) (HKLM-x32\...\{DEBAD329-43F8-4726-962F-341B771B610D}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Test Suite (32-bit) (HKLM-x32\...\{F44EF183-905E-48BB-998E-53FC99B36FE3}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Utility Scripts (32-bit) (HKLM-x32\...\{2AA7DAB3-6778-42A7-9F33-22615234540E}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.4 (Anaconda3 5.1.0 64-bit) (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\Python 3.6.4 (Anaconda3 5.1.0 64-bit)) (Version: 5.1.0 - Anaconda, Inc.)
Python Launcher (HKLM-x32\...\{323AC113-C6CE-4F99-842F-4936332D055A}) (Version: 3.6.5923.0 - Python Software Foundation)
qBittorrent 4.0.4 (HKLM-x32\...\qBittorrent) (Version: 4.0.4 - The qBittorrent project)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.222 - Qualcomm Atheros Communications)
Quicken 2016 (HKLM-x32\...\{519B4ED1-AF5F-4812-B2A8-B18D783AEFE8}) (Version: 25.1.14.12 - Intuit)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.018 - Dell Inc.)
R for Windows 3.3.3 (HKLM\...\R for Windows 3.3.3_is1) (Version: 3.3.3 - R Core Team)
ReadCube (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\ReadCube) (Version:  - Labtiva, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
ResearchSoft Direct Export Helper (HKLM-x32\...\ResearchSoft Direct Export Helper) (Version:  - Thomson Reuters)
Resume Builder and Job Search Manager (HKLM-x32\...\{E4BAA8A5-EFFD-484D-81FB-195392B05059}) (Version: 1.8 - ValidateJOB)
Roslyn Language Services - x86 (HKLM-x32\...\{5B47029B-1E62-30FF-906E-694851C22782}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
SDK Debuggers (HKLM-x32\...\{9274C832-3D8A-A294-FDE8-8B9272357098}) (Version: 8.100.26936 - Microsoft Corporation) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype version 8.18 (HKLM-x32\...\Skype_is1) (Version: 8.18 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\slack) (Version: 3.1.1 - Slack Technologies)
Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.8.5 - IObit)
Snagit 11 (HKLM-x32\...\{68723B04-57EC-11E1-A6A8-9E2D4824019B}) (Version: 11.1.0 - TechSmith Corporation)
Software Update Wizard (Redist) 4.5 (HKLM-x32\...\Software Update Wizard (Redist)) (Version: 4.5 - PowerProgrammer)
SQL Server 2017 Batch Parser (HKLM\...\{2C6E8311-28BD-4615-9545-6E39E8E83A4B}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Client Tools Extensions (HKLM\...\{06324A5D-66BB-4FAC-8D0B-9FEC1B230FFF}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Client Tools Extensions (HKLM\...\{200F38B2-1492-4576-B08C-78F2C2C953FC}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Common Files (HKLM\...\{9D1C0509-D490-4E9E-ACF5-A73E5C53742D}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Common Files (HKLM\...\{B777C4C0-A1CD-4AB9-99B1-AD5FBED6F8E5}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Common Files (HKLM-x32\...\{6CE9A8AA-C478-4706-BD28-95993D52B5A1}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Common Files (HKLM-x32\...\{D17B5D3D-3BC7-4AFA-AD90-600B5453826E}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Connection Info (HKLM\...\{89A7644F-E056-4EC1-BFDE-9D1A531D6855}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Connection Info (HKLM\...\{A9A443F5-56E1-4FC6-937C-5F481345A843}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Database Engine Services (HKLM\...\{28EEF6BA-A23A-42D2-86BA-A6BEE723B969}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Database Engine Services (HKLM\...\{DED314CA-0EFE-4593-9D66-EF75E5289A4C}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Database Engine Shared (HKLM\...\{0E22DBB4-691B-400C-B52D-8DFE8EC421AA}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Database Engine Shared (HKLM\...\{793F1C1E-5C83-4E33-A29B-6EAA7C1E791C}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 DMF (HKLM\...\{B9998A13-5563-496C-B95E-597FFC70B670}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 DMF (HKLM\...\{D7D28BBF-3B0E-43F0-A457-331F1CD9E9EB}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Integration Services Scale Out Management Portal (HKLM\...\{6BD8D100-B16C-409E-B0EA-BF508D7874EC}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Integration Services Scale Out Management Portal (HKLM\...\{91C5EE43-29D1-4720-AB65-5E2E0FE25990}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Management Studio Extensions (HKLM-x32\...\{6492E746-1C5D-48C2-A92A-97D431F74664}) (Version: 14.0.3006.16 - Microsoft Corporation) Hidden
SQL Server 2017 Management Studio Extensions (HKLM-x32\...\{70C24F35-7E36-45FC-B289-3D2849E5556B}) (Version: 14.0.3006.16 - Microsoft Corporation) Hidden
SQL Server 2017 Shared Management Objects (HKLM\...\{10855B1A-F7F2-4D8A-A725-9287C73BED5A}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Shared Management Objects (HKLM\...\{6CBBF624-696C-499E-948D-ADBAFFA2F548}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Shared Management Objects Extensions (HKLM\...\{8C515C22-BE07-4908-985C-0AA9349E1ED4}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 Shared Management Objects Extensions (HKLM\...\{C6D92730-3EC0-47B1-8F6C-6F5635D1EFAC}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 SQL Diagnostics (HKLM\...\{DFA6A906-3024-49DE-87AD-750EAED2FA49}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 XEvent (HKLM\...\{12D2DB8D-80FF-4152-8F51-EDB3BD3C6976}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server 2017 XEvent (HKLM\...\{AA2A015C-C210-413B-95F6-BF9D3CDD6E0D}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{1E91199B-358C-41FE-AAA4-C35FAAB8E274}) (Version: 14.0.17230.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{8DA0EF50-183D-440B-920A-86EA87A81FCE}) (Version: 14.0.17230.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Analysis Services (HKLM\...\{C97ABCE2-DC11-4055-8A9B-E708C081480C}) (Version: 14.0.17230.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM\...\{EABA2C32-A11B-4901-B5AF-B30B4B3DE197}) (Version: 14.0.17230.0 - Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM\...\{35663C18-0E83-47D3-8C0E-A74AB0109A58}) (Version: 14.0.17230.0 - Microsoft Corporation) Hidden
Stata 14 (HKLM-x32\...\{BB31D61A-AFF4-4E2F-B9CD-611C2E51402A}) (Version: 14.0 - StataCorp LP)
Sublime Text Build 3143 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Symantec Endpoint Protection (HKLM\...\{577FBFA6-33CB-4D9A-8286-0DF9236E5A59}) (Version: 14.0.3897.1101 - Symantec Corporation)
Tableau 10.3 (10300.17.0615.2100) (HKLM\...\{D4F99573-5EA2-4395-91A3-B551A6CA6F18}) (Version: 10.3.677 - Tableau Software) Hidden
Tableau 10.3 (10300.17.0615.2100) (HKLM-x32\...\{7aa0ae9d-82fa-49e0-861f-315f27ebf80c}) (Version: 10.3.677 - Tableau Software)
Tableau 10.5 (10500.18.0305.1200) (HKLM\...\{8986B61F-9484-40A8-B782-CC9C6AD68513}) (Version: 10.5.1418 - Tableau Software) Hidden
Tableau 10.5 (10500.18.0305.1200) (HKLM-x32\...\{de34b492-22dd-4bc5-b22f-e88cb0ad1581}) (Version: 10.5.1418 - Tableau Software)
TeamSQL (HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\TeamSQL) (Version: 3.2.190 - TeamSQL, Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.88438 - TeamViewer)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.8.0.121 - PandoraTV)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Skype for Business 2015 (KB4018334) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E27BA6F9-6C03-4D1F-B34F-E3B1AB6B5C36}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4018334) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E27BA6F9-6C03-4D1F-B34F-E3B1AB6B5C36}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4018334) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{E27BA6F9-6C03-4D1F-B34F-E3B1AB6B5C36}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4018323) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C611D846-95F7-482D-A1DD-35E805BC82A6}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4018323) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PRJPRO_{C611D846-95F7-482D-A1DD-35E805BC82A6}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4018323) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C611D846-95F7-482D-A1DD-35E805BC82A6}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4018323) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.VISPRO_{C611D846-95F7-482D-A1DD-35E805BC82A6}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4018323) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}_Office16.PROPLUS_{C611D846-95F7-482D-A1DD-35E805BC82A6}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Enterprise 2017 (HKLM-x32\...\1b4c57ab) (Version: 15.6.27428.2015 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
vs_communitymsi (HKLM-x32\...\{C2749223-157E-48F0-9410-A510361D6803}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{40040E64-50EB-4FCF-B209-DA0B20821759}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{02DD895F-089F-4A63-81A9-78D00142AF20}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{E6A92308-33DF-494B-A91A-3B80FBC97F2B}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{8EB2C670-04C2-482D-BACD-B4095E27FD39}) (Version: 15.6.27309 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{6B45EEA3-85F8-4B26-B952-6830A45F2688}) (Version: 15.6.27323 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{13E08AD0-D6AC-44C4-9F5B-0AE2EB56B105}) (Version: 15.6.27421 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{6DFE6F8D-B61D-4348-AB70-4ABF1210DFD5}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Software Development Kit for Windows 8.1 (HKLM-x32\...\{ed3a6e6d-9661-4357-abe4-fcc03dc57a07}) (Version: 8.100.26936 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinX DVD Ripper Platinum 8.5.1 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version:  - Digiarty Software, Inc.)
WPT Redistributables (HKLM-x32\...\{64F3FB9A-9250-B2D6-00B4-50BE0358AEE8}) (Version: 8.100.26936 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{BFF81CB5-E8C7-4184-FBB4-74ADFBC6CCCB}) (Version: 8.100.26936 - Microsoft) Hidden
XAMPP (HKLM-x32\...\xampp) (Version: 7.2.3-0 - Bitnami)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ContextMenuHandlers1: [$PowerDVD] -> {E72C61D0-C453-42BA-84C9-88AEE3DEE676} => C:\ProgramData\CyberLink\PowerDVD17\OpenWith\PDVD_Shell64.dll [2017-03-30] (CyberLink Corp.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2011-09-05] (Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-03-18] ()
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvAppExt.dll [2013-02-28] (Qualcomm Atheros Commnucations)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2018-03-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2018-01-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll -> No File
ContextMenuHandlers1: [LDVPMenu] -> {8BEEE74D-455E-4616-A97A-F6E86C317F32} => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin64\vpshell2.dll [2018-02-24] (Symantec Corporation)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 9\NPShellExtension.dll [2016-07-28] (Nitro PDF)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2011-06-15] (PowerISO Computing, Inc.)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit)
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 11\DLLx64\SnagitShellExt64.dll [2012-09-07] (TechSmith Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll -> No File
ContextMenuHandlers2: [LDVPMenu] -> {8BEEE74D-455E-4616-A97A-F6E86C317F32} => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin64\vpshell2.dll [2018-02-24] (Symantec Corporation)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ShellContextExt.dll [2013-02-28] (Qualcomm Atheros Commnucations)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-03] (Malwarebytes)
ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2018-01-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2018-01-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2011-06-15] (PowerISO Computing, Inc.)
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 11\DLLx64\SnagitShellExt64.dll [2012-09-07] (TechSmith Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-05-05] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-08-09] (Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2011-09-05] (Adobe Systems Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2018-03-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [LDVPMenu] -> {8BEEE74D-455E-4616-A97A-F6E86C317F32} => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin64\vpshell2.dll [2018-02-24] (Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-03] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2011-06-15] (PowerISO Computing, Inc.)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (Alexander Roshal)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0355ECAC-669E-478E-AEDB-A00495A9D30D} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\DivXUpdate.exe [2016-03-01] (DivX, LLC)
Task: {0776C3DB-85B8-48E8-99FD-2ACF78F7559D} - System32\Tasks\Symantec Endpoint Protection\Symantec Endpoint Protection Error Analyzer => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin\SymErr.exe [2018-02-24] (Symantec Corporation)
Task: {1691C069-B45D-480C-8D69-2CA0A4A505C6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-13] (Google Inc.)
Task: {201949D9-D4F2-4902-B093-5CE2CFA61CAF} - \AutoKMS -> No File <==== ATTENTION
Task: {25284985-BDEB-4D77-A810-3E8FC6429850} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {29CB05FA-DF35-46B2-B403-C5DB69C3AAC0} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [2018-03-14] (AVG Technologies CZ, s.r.o.)
Task: {2A398562-1FA2-4C3B-9FC9-087D15F3B342} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [2017-07-28] (IObit)
Task: {4333D239-A729-45ED-8B9A-324784FBE6E7} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.5.0\Scheduler.exe [2017-07-26] (IObit)
Task: {49AF1D24-EC83-4637-AA54-A56AF4B66179} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {4F9E6A9F-7631-40A8-A34C-87AA9B867BB3} - System32\Tasks\Driver Booster SkipUAC (kaz) => C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DriverBooster.exe [2017-07-28] (IObit)
Task: {5A4D9599-1276-4794-89CA-4CEF3907F866} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2018-03-22] (AVG Technologies CZ, s.r.o.)
Task: {5DAC6EFF-96A7-4E34-B33F-6951501BF1C0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {5FCE6AED-734D-408A-9669-C8709FE8FCB7} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2018-01-29] (IObit)
Task: {62B2902E-C995-4C3F-918F-59BC182A97D5} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-12-19] (Oracle Corporation)
Task: {70A7B54D-ED1F-4C69-811E-5ABCA798ADB7} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)
Task: {75B39214-808C-408E-AE43-1DBE66533D9F} - System32\Tasks\Dell\Dell System Registration => C:\Program Files (x86)\System Registration\prodreg.exe [2012-07-09] (Dell, Inc.)
Task: {811EF946-F0C9-432E-B477-1CE9134FA984} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2017-09-14] (PC-Doctor, Inc.)
Task: {81642220-3EC5-4280-9FE9-F0382B9F5970} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)
Task: {88339D79-2E88-4F03-9C1B-3E072C4FC230} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe [2017-09-22] (Dell Inc.)
Task: {888086C2-BE6B-4703-A0B8-CDCE4D994A79} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {96A190D7-2476-42E3-BC19-7203FD6EB456} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {9947D127-3B22-480E-9F47-4647F6CEFA82} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {A82B9CB2-FDFF-43EB-B7C9-20988BB615F2} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2017-09-14] (PC-Doctor, Inc.)
Task: {AB19C348-3BB4-417E-889C-5B06D3DEA5FC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {BB2356BB-D0FB-4713-BB44-A871A7FDE50A} - System32\Tasks\MySQL\Installer\ManifestUpdate => c:\program files (x86)\mysql\mysql installer for windows\mysqlinstallerconsole.exe [2017-12-23] (Oracle Corporation)
Task: {BE631F69-4106-4277-A376-C90FEE2DDD8F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2018-04-12] (Microsoft Corporation)
Task: {C5885335-E745-4F55-AE93-6487B8BAF057} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2018-02-12] (AVG Technologies CZ, s.r.o.)
Task: {C788533E-7139-482A-84BF-08F4821E5636} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {D14D96E7-C367-4F30-8C41-CD714B069433} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {D98E9B13-E6B1-4488-9F92-660FF2AAE003} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit)
Task: {D9ABF878-043E-4A45-9FA1-C2825E96010A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-13] (Google Inc.)
Task: {DEB19D0B-9D93-422C-AD53-59C71DAA456C} - System32\Tasks\Opera scheduled Autoupdate 1483426521 => c:\program files (x86)\opera\launcher.exe [2018-03-21] (Opera Software)
Task: {DFAEB789-9F64-4055-AC7C-6F3D9C243422} - System32\Tasks\MySQLNotifierTask => C:\Program Files (x86)\MySQL\MySQL Notifier 1.1\MySQLNotifier.exe [2016-07-29] (Oracle Corporation)
Task: {E76F82F7-7B90-4CEB-BC77-C95FB8396FA9} - System32\Tasks\Symantec Endpoint Protection\Symantec Endpoint Protection Error Processor => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin\SymErr.exe [2018-02-24] (Symantec Corporation)
Task: {EF640345-1CD4-460A-83AF-5666FCC27A4B} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2018-01-22] (AVG Technologies CZ, s.r.o.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
ShortcutWithArgument: C:\Users\kaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gliffy Diagrams.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=bhmicilclplefnflapjmnngmkkkkpfad
ShortcutWithArgument: C:\Users\kaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\TeamViewer.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=oooiobdokpcfdlahlmcddobejikcmkfo
ShortcutWithArgument: C:\Users\kaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\kaz\Anaconda3\Scripts\activate.bat C:\Users\kaz\Anaconda3
ShortcutWithArgument: C:\Users\kaz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\1ebd56dad7f13a36\Skype.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=lifbcibllhkdhoafpjfnlhfpfgnpldfl
 
==================== Loaded Modules (Whitelisted) ==============
 
2018-03-16 17:14 - 2015-01-20 13:20 - 000019456 _____ () C:\WINDOWS\System32\dlt6p4zlm.dll
2018-03-16 16:39 - 2015-01-20 10:21 - 000018432 _____ () C:\WINDOWS\System32\dltpp4zLM.DLL
2017-02-22 23:56 - 2017-02-22 23:56 - 008911560 _____ () C:\Program Files\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2018-03-18 18:40 - 2018-03-18 18:40 - 000230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2017-12-28 05:06 - 2017-12-28 05:06 - 039551488 _____ () C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe
2016-07-28 18:44 - 2016-07-28 18:44 - 000420504 _____ () C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
2013-02-28 22:14 - 2013-02-28 22:14 - 000011264 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-02-28 22:11 - 2013-02-28 22:11 - 000086016 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\Map\MAP.dll
2013-02-28 22:15 - 2013-02-28 22:15 - 000012928 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe
2018-03-22 16:44 - 2018-03-20 01:00 - 004435288 _____ () C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\libglesv2.dll
2018-03-22 16:43 - 2018-03-20 01:00 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\libegl.dll
2018-02-15 18:20 - 2018-02-15 18:20 - 025091072 _____ () C:\Program Files\qBittorrent\qbittorrent.exe
2015-10-18 09:00 - 2015-10-18 09:00 - 000183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\ErrorReporting.dll
2015-09-19 05:27 - 2015-09-19 05:27 - 000293440 _____ () C:\Program Files\Microsoft Office\Office16\IEAWSDC.DLL
2017-11-30 06:20 - 2018-04-10 00:47 - 000071488 ____C () C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IDS\bin\ExcpHandler.dll
2017-11-30 06:20 - 2018-04-10 00:47 - 000085824 ____C () C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IPS\bin\zlib1.dll
2017-11-30 06:20 - 2018-04-10 00:47 - 000173376 ____C () \\?\C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\SAEP\IPS\extensions\sisipsext.dll
2017-12-02 20:05 - 2017-12-02 20:04 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2018-03-22 14:01 - 2018-03-22 14:01 - 067127976 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll
2018-03-22 14:01 - 2018-03-22 14:01 - 000289008 _____ () C:\Program Files (x86)\AVG\Antivirus\streamback.dll
2018-03-22 14:01 - 2018-03-22 14:01 - 000281328 _____ () C:\Program Files (x86)\AVG\Antivirus\tasks_core.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\Windows:nlsPreferences [514]
AlternateDataStreams: C:\WINDOWS\system32\msln.exe:3250bc905248649d603e1fa84366816b [1490]
AlternateDataStreams: C:\Users\kaz\Cookies:QUBZHv4OKFvUYzOwNmqPFDZ8UQ2 [2096]
AlternateDataStreams: C:\Users\kaz\AppData\Local\Temp:kr0LfMmUn19hUILKeAhfy424b3rS [2094]
AlternateDataStreams: C:\Users\kaz\AppData\Local\Temporary Internet Files:IKVdEcGMvgxoYNbILEDqKy6d2 [2298]
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ccSettings_{13CAF341-7E36-419E-9151-5A2DBCBE655C}.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SepMasterService => ""="Service"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\sharepoint.com -> hxxps://sluedu-files.sharepoint.com
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2012-07-26 00:26 - 2018-04-08 18:31 - 000001269 _____ C:\WINDOWS\system32\Drivers\etc\hosts
 
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 updater.techsmith.com
127.0.0.1 camtasiatudi.techsmith.com
127.0.0.1 t loud.cloudapp.net
127.0.0.1 assets.cloud.techsmith.com
127.0.0.1                   example.net
127.0.0.1 idb.iobit.com
127.0.0.1 asc55.iobit.com
127.0.0.1 is360.iobit.com
127.0.0.1 asc.iobit.com
127.0.0.1 pf.iobit.com
127.0.0.1 iunins.iobit.com
127.0.0.1 sd.iobit.com
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\kaz\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\kazaroojwed.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
MSCONFIG\Services: Browser => 3
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: CryptSvc => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: RichVideo => 2
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: WebUpdate4 => 2
HKLM\...\StartupApproved\StartupFolder: => "AVG Secure VPN.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "RtHDVBg"
HKLM\...\StartupApproved\Run: => "RtHDVBg_PushButton"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "QuickSet"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe Acrobat Speed Launcher"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "DivXMediaServer"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKLM\...\StartupApproved\Run32: => "DLDPHSTS"
HKLM\...\StartupApproved\Run32: => "DLDPHCM"
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\StartupApproved\Run: => "ReadCube"
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\StartupApproved\Run: => "ares"
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\StartupApproved\Run: => "com.squirrel.slack.slack"
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\StartupApproved\Run: => "EDO-Soft Sticky Notes"
HKU\S-1-5-21-2102589598-2406682454-3341732434-1001\...\StartupApproved\Run: => "Aim"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{047BC708-EC2A-4460-9509-0F67C207A9DA}] => (Allow) LPort=1900
FirewallRules: [{F75D6F4E-1F7D-4214-A7F1-0A66FBF92675}] => (Allow) LPort=2869
FirewallRules: [{534398E4-9199-4188-A709-6215BD369098}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C0BED98F-3C33-4801-BD93-76618459F0F0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{2C6E47B9-F632-41F4-A95A-A10DC4A05B9A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{089224CB-3CCE-4F35-9A1C-686179BDDA08}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{E9D5E137-67C4-4495-B61F-4D0E7A4B643F}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{DE90D12E-5B0E-4ADE-9D15-22D5074D5682}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{822A185C-9FF8-4E85-99A9-BB76896A84AB}] => (Allow) LPort=7935
FirewallRules: [{99446E63-AADE-4744-ADB6-E529B0181A03}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{5E503AEB-9440-4732-B8CA-317F35925114}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{EB9AD521-974E-470C-8EB1-A666778BB83D}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{AE085E49-5DC9-4149-9D29-B0A2BFF1D44A}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{AFE8D017-50A2-4582-BAA1-0D8617A87AD3}] => (Allow) LPort=1688
FirewallRules: [{3D82D76D-DD2C-4F9B-9065-A8F42327E9F1}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{D1A9E8D9-7B84-4744-A440-CDF5D9538CAC}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{E148934A-4D1B-46A9-B218-3EC2E8C4AF56}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{90A04DC9-A2AA-4F4D-A2C2-AE4E4408AD38}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [TCP Query User{8C34B161-58C7-402D-891D-6D9ED43A9460}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{1FFE7DBA-F510-47CE-97F6-FF8F68D2D8C4}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{2F6DA84A-997A-4DC1-8E15-F22F8B118F9F}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{4102FA54-2FC9-40D4-92EB-B7C14E22CFFA}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{42F04E72-2543-4867-876C-814535F82464}C:\program files (x86)\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ibm\spss\statistics\20\jre\bin\javaw.exe
FirewallRules: [UDP Query User{93B04EE1-4827-4308-9973-A8F1AF892B77}C:\program files (x86)\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ibm\spss\statistics\20\jre\bin\javaw.exe
FirewallRules: [TCP Query User{77C5A51B-CA84-4A89-BA8B-34CBE11F1A37}C:\program files (x86)\ibm\spss\statistics\20\stats.exe] => (Allow) C:\program files (x86)\ibm\spss\statistics\20\stats.exe
FirewallRules: [UDP Query User{08887326-E962-42C9-80FD-DCB160BE2429}C:\program files (x86)\ibm\spss\statistics\20\stats.exe] => (Allow) C:\program files (x86)\ibm\spss\statistics\20\stats.exe
FirewallRules: [{78D12D31-CE3B-4B1B-B64D-38821BC3E6D3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6E0C4C0D-A489-42CD-8812-F6043B27F6C5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E2F740DC-D881-4FCB-9F79-3F87B206C963}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B999B396-7EF7-4741-B5F6-9A999B892C46}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{078FA3EA-019B-418A-B4F4-B2A919AF033B}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{1F65BE99-DF2D-473A-81FC-8330C8B54C32}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{2D62AD9D-4476-4F14-AE34-7E30B1DC9EAA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{DB7C98AC-73DD-4215-B8B9-99159164F5AE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F76AED59-D58E-49EF-91DA-B4C856D26014}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A633BCAD-2066-43CD-9009-CA7BB27C2C4C}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
FirewallRules: [{63840589-EDA7-483E-B855-EFE0046EE5C4}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
FirewallRules: [{F1226683-45F4-4DAF-8741-BDD0B0C4CDDB}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
FirewallRules: [{6928FF69-466C-4795-B1C8-528E95C0A96D}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
FirewallRules: [{092684F5-3451-4B64-A3BB-BD3F5F4D6A8F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D997BC6C-8CA8-4D9E-8C1C-14DBBD7CB75E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{DC29FD82-2C72-4515-85B5-619481A04AA7}] => (Block) %ProgramFiles%\Reallusion\iClone 6\Bin64\iClone.exe
FirewallRules: [{D57689FB-FAE9-481D-A690-FAB60ECF65E5}] => (Block) %ProgramFiles%\Reallusion\iClone 6\Bin64\iClone.exe
FirewallRules: [{A53D72C8-F458-48DA-BA3F-6415B5A175C8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5C0E4F8D-F1E4-4CD5-9CB6-9FE133B92B0D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0D7705A7-405D-4A1C-ADD6-E4C2C400512A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4581D516-BC9E-416B-9B3A-3339819333D1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{2A0E7226-CEE8-47B8-883B-16BEC6867DC2}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD.exe
FirewallRules: [{9D283639-F5EA-4EC1-AD06-F6E82D65B578}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Kernel\DMS\CLMSServerPDVD17.exe
FirewallRules: [{EF855CC2-BBE7-4371-9270-70603CE029EE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe
FirewallRules: [{08C3BAD3-3480-4C7B-80C1-1EDD16B0982D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Movie\PowerDVDMovie.exe
FirewallRules: [{425E1592-460A-42BA-B7E4-A87D3274084C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\CastingStation.exe
FirewallRules: [{DC23724A-D85D-4559-B65A-B0FBE47266BB}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe
FirewallRules: [{2D666AA7-D855-4172-B6A9-A24CA5490DE3}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe
FirewallRules: [{5DCA3649-A0E9-45C6-AFB2-FF9AB0C5DAC1}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe
FirewallRules: [{B4F3B9E8-BB6F-4399-998D-82C9000BAAE3}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe
FirewallRules: [{CFFFD395-ABF6-490C-B76D-02253C9AA340}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com
FirewallRules: [{B5C77D63-B31E-41CA-A659-6E9CB3ADB70B}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com
FirewallRules: [{EE121412-DB7E-496B-91A5-E90B4FC9A508}] => (Allow) c:\program files (x86)\opera\51.0.2830.26\opera.exe
FirewallRules: [TCP Query User{30567E23-459A-4DF2-A80A-3524FB4243F8}C:\program files (x86)\dell printers\dell printer hub\dldph.exe] => (Allow) C:\program files (x86)\dell printers\dell printer hub\dldph.exe
FirewallRules: [UDP Query User{04B4F163-0224-40DF-9607-66FCBD31D49E}C:\program files (x86)\dell printers\dell printer hub\dldph.exe] => (Allow) C:\program files (x86)\dell printers\dell printer hub\dldph.exe
FirewallRules: [{2FCE9CD5-E817-40D5-B21A-A5A4DA7210D3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{C986ACD6-2D88-491A-9284-E17EAA3894EC}C:\program files (x86)\dell printers\dell printer hub\dldphsts.exe] => (Allow) C:\program files (x86)\dell printers\dell printer hub\dldphsts.exe
FirewallRules: [UDP Query User{ECE634FE-FEAC-4347-B933-24AC8D2E0CAD}C:\program files (x86)\dell printers\dell printer hub\dldphsts.exe] => (Allow) C:\program files (x86)\dell printers\dell printer hub\dldphsts.exe
FirewallRules: [{DFD0A348-140E-408F-B87C-1A0C318438A6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{9D156B84-E533-4027-8A70-1468314A95AA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{0A338D48-E5EF-4D2B-ACAD-658DB4C83058}] => (Allow) c:\program files (x86)\opera\52.0.2871.30\opera.exe
FirewallRules: [TCP Query User{ED65D0FD-FBCB-4D72-A67B-5CB8C4E25380}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{73C49484-65C8-4461-BAE5-650E3EADF4CF}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{815F9DCF-A80A-4761-870A-42A128301953}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{F25C9B81-E2D8-4B9F-B98E-3D588250BE3B}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{ECC900B2-00E7-4F0E-BB71-1A49D25372A1}] => (Allow) LPort=3306
FirewallRules: [{DCA76290-BEF6-4BA4-9436-F36CEFE9AE25}] => (Allow) LPort=3306
FirewallRules: [{0251F1A8-DDC2-4FBF-92AE-47A0A15636AB}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe
FirewallRules: [{1F7B44FA-298F-4499-9B91-DBB7217156CB}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe
FirewallRules: [TCP Query User{16168216-AE02-4D05-84D3-A02513FDDDE0}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe
FirewallRules: [UDP Query User{02F4CBB3-E3AE-4BA9-B845-8E9FA817ECA6}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe
FirewallRules: [TCP Query User{196551CB-6944-49E8-98A4-24786732F6C8}C:\program files (x86)\ibm\spss\statistics\20\stats.exe] => (Allow) C:\program files (x86)\ibm\spss\statistics\20\stats.exe
FirewallRules: [UDP Query User{BC1D86EA-3E0F-4A37-BEA4-3067ECAE0E23}C:\program files (x86)\ibm\spss\statistics\20\stats.exe] => (Allow) C:\program files (x86)\ibm\spss\statistics\20\stats.exe
FirewallRules: [TCP Query User{49A477B4-6E72-47EF-AF8B-0BC4F3E7405E}C:\program files (x86)\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Block) C:\program files (x86)\ibm\spss\statistics\20\jre\bin\javaw.exe
FirewallRules: [UDP Query User{F37E0097-251D-4B82-871B-DF224F3DF975}C:\program files (x86)\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Block) C:\program files (x86)\ibm\spss\statistics\20\jre\bin\javaw.exe
FirewallRules: [TCP Query User{5E0582D7-0EA7-424C-B600-CC3E38C0A433}C:\program files\ibm\spss\statistics\24\stats.exe] => (Allow) C:\program files\ibm\spss\statistics\24\stats.exe
FirewallRules: [UDP Query User{FFCE2D26-BED4-43E9-A7FD-62572490D0D3}C:\program files\ibm\spss\statistics\24\stats.exe] => (Allow) C:\program files\ibm\spss\statistics\24\stats.exe
FirewallRules: [TCP Query User{38DB79EF-4817-43E5-BE88-B6E0B775C8EA}C:\program files\ibm\spss\modeler\18.0\bin\modelerclient.exe] => (Allow) C:\program files\ibm\spss\modeler\18.0\bin\modelerclient.exe
FirewallRules: [UDP Query User{7A42EBE4-38F0-41E9-BC9E-83343A73F52C}C:\program files\ibm\spss\modeler\18.0\bin\modelerclient.exe] => (Allow) C:\program files\ibm\spss\modeler\18.0\bin\modelerclient.exe
FirewallRules: [TCP Query User{634D3E16-559E-46D1-88AF-8E40A1A0A7BC}C:\program files\ibm\spss\modeler\18.0\bin\modelerserver.exe] => (Allow) C:\program files\ibm\spss\modeler\18.0\bin\modelerserver.exe
FirewallRules: [UDP Query User{751A9055-13BA-4988-A670-682FA970F9AE}C:\program files\ibm\spss\modeler\18.0\bin\modelerserver.exe] => (Allow) C:\program files\ibm\spss\modeler\18.0\bin\modelerserver.exe
FirewallRules: [TCP Query User{EA6C86DD-B3AA-4A76-AC81-0578FB5CCD0B}C:\program files\ibm\spss\text analytics for surveys\4\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\text analytics for surveys\4\jre\bin\javaw.exe
FirewallRules: [UDP Query User{1CEF278F-BA3E-4370-819D-7DC52EB73C18}C:\program files\ibm\spss\text analytics for surveys\4\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\text analytics for surveys\4\jre\bin\javaw.exe
FirewallRules: [{2A7A03AF-394F-4DE6-AC02-ED3480DD16A1}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
FirewallRules: [{9E34DF67-AA2C-4918-84DE-3ABE79AB1D80}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DriverBooster.exe
FirewallRules: [{B79E93A1-3F5D-44D6-83A0-85E13B5DCCB7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DriverBooster.exe
FirewallRules: [{5709B081-F1D0-4E0F-BEE7-B90917225867}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DBDownloader.exe
FirewallRules: [{9025BF18-56B8-4B2C-8D93-2C431582FBAD}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DBDownloader.exe
FirewallRules: [{6D3D5329-25AF-4C04-9453-67CCDAC1C550}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\AutoUpdate.exe
FirewallRules: [{6987C306-B892-42BA-8CC4-53E860FB50E8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\AutoUpdate.exe
FirewallRules: [{DB09449F-EE18-417D-B786-EB7CE0BBFF05}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin\ccSvcHst.exe
FirewallRules: [{5A3A650F-C209-4CCF-8519-CC5841454C29}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin\ccSvcHst.exe
FirewallRules: [{DD65ECF1-56BD-4241-81EA-55A27267A2E8}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin64\snac64.exe
FirewallRules: [{CE576717-23EF-4CFC-A20F-1509442EE34A}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.0.3897.1101.105\Bin64\snac64.exe
FirewallRules: [{A9E2704C-B6EC-4419-B09D-92E230FC58D7}] => (Allow) C:\Program Files\Microsoft Power BI Desktop\bin\msmdsrv.exe
 
==================== Restore Points =========================
 
09-04-2018 06:09:04 Scheduled Checkpoint
12-04-2018 05:02:55 Malwarebytes Anti-Rootkit Restore Point
 
==================== Faulty Device Manager Devices =============
 
Name: TAP Adapter V9 for Private Tunnel
Description: TAP Adapter V9 for Private Tunnel
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP Provider V9 for Private Tunnel
Service: ptun0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: TAP Adapter V9 for Private Tunnel #2
Description: TAP Adapter V9 for Private Tunnel
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP Provider V9 for Private Tunnel
Service: ptun0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: AVG TAP Adapter v3
Description: AVG TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: avgTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
 
Name: Microsoft Visual Studio Location Simulator Sensor
Description: Microsoft Visual Studio Location Simulator Sensor
Class Guid: {5175d334-c371-4806-b3ba-71fd53c9258d}
Manufacturer: Microsoft Corporation
Service: SensorsSimulatorDriver
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
 
Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (04/12/2018 05:12:28 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (04/12/2018 05:12:27 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
 
Error: (04/12/2018 05:12:27 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (04/12/2018 05:25:06 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (04/12/2018 05:25:06 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
 
Error: (04/12/2018 05:25:06 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (04/12/2018 05:25:06 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (04/12/2018 05:25:06 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
 
System errors:
=============
Error: (04/12/2018 05:11:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
 
Error: (04/12/2018 05:11:09 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Presentation Foundation Font Cache 3.0.0.0 service to connect.
 
Error: (04/12/2018 05:08:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Symantec Eraser Service service failed to start due to the following error: 
The system cannot find the file specified.
 
Error: (04/12/2018 05:07:00 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Crash dump initialization failed!
 
Error: (04/11/2018 10:47:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Symantec Eraser Service service failed to start due to the following error: 
The system cannot find the file specified.
 
Error: (04/11/2018 10:46:36 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Crash dump initialization failed!
 
Error: (04/11/2018 09:26:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Symantec Eraser Service service failed to start due to the following error: 
The system cannot find the file specified.
 
Error: (04/11/2018 09:25:44 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Crash dump initialization failed!
 
 
Windows Defender:
===================================
Date: 2017-12-02 18:31:15.529
Description: 
Windows Defender has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 115.44.0.0
Update Source: Microsoft Malware Protection Center
Signature Type: Network Inspection System
Update Type: Full
Current Engine Version: 
Previous Engine Version: 2.1.11804.0
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2017-12-02 18:31:15.514
Description: 
Windows Defender has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.217.1039.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.12603.0
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2017-12-02 18:31:15.514
Description: 
Windows Defender has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.217.1039.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.12603.0
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2017-12-02 18:31:15.436
Description: 
Windows Defender has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.217.1039.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.12603.0
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 
Date: 2017-12-02 18:22:02.584
Description: 
Windows Defender has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 115.44.0.0
Update Source: Microsoft Malware Protection Center
Signature Type: Network Inspection System
Update Type: Full
Current Engine Version: 
Previous Engine Version: 2.1.11804.0
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
CodeIntegrity:
===================================
 
Date: 2017-04-01 06:30:41.004
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
Date: 2017-04-01 06:30:40.321
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
Date: 2017-04-01 06:30:39.307
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
Date: 2017-04-01 06:30:38.233
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
Date: 2017-04-01 06:30:36.508
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
Date: 2017-04-01 06:30:34.677
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
Date: 2017-04-01 06:30:30.703
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
Date: 2017-04-01 06:30:26.171
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-4500U CPU @ 1.80GHz
Percentage of memory in use: 41%
Total physical RAM: 14738.96 MB
Available physical RAM: 8659.14 MB
Total Virtual: 29586.96 MB
Available Virtual: 23223.06 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:917.49 GB) (Free:242.08 GB) NTFS
Drive f: (CDROM) (CDROM) (Total:0.36 GB) (Free:0 GB) UDF
 
\\?\Volume{9a2c6287-f8fb-40a3-8d3c-f407d4f6091f}\ (WINRETOOLS) (Fixed) (Total:0.48 GB) (Free:0.19 GB) NTFS
\\?\Volume{40435d3d-533e-410e-89d8-3d01926869c7}\ () (Fixed) (Total:0.44 GB) (Free:0.12 GB) NTFS
\\?\Volume{97024bc9-76ff-4cd8-a894-35d65cf10cbb}\ (PBR Image) (Fixed) (Total:12.45 GB) (Free:0.66 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 9491A49C)
 
Partition: GPT.
 
==================== End of Addition.txt ============================


#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,733 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 PM

Posted 17 April 2018 - 11:25 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> https://www.bleepingcomputer.com/logreply/675452 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,733 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 PM

Posted 22 April 2018 - 11:30 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!

#5 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,257 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:02:31 AM

Posted 08 May 2018 - 02:44 PM

Please let me know if you still need help with this issue.


regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#6 kazmeo

kazmeo
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 08 May 2018 - 07:52 PM

YES, what can I do? I have gone in circle here and done everything accordingly but than was informed it would be some time until someone can get to me.

 

Thank you so much



#7 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,257 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:02:31 AM

Posted 08 May 2018 - 11:33 PM

That is because you didn't post the required logs, the ones you have provided in your first post are quite old and you never reacted to logbot's reply with the requested information. :)

 

Please rerun FRST, check the "90 days" option and run a new scan. Your original logs show no malware though, the only issue I see there is way too many AVs installed, which may cause serious issues.

 

I'd recommend you to completely uninstall both AVG and Symantec and see if that makes any change in performance.


regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users