joddle

I have a number of PCs All running W10 and all connected by lan cable to a Lynksys WAG 200G router. From the control panel, the network cards on the PCs say they are "Intel® 82566DM-2 Gigabit Network Connection" When I transfer files from one PC to another the connection only runs at about 12MBps - is that correct? I had hoped for a lot faster! Any info welcome.

Since moving to W10 I have come across a problem with my lan connection. When I start up my PC (Dell 755) all is fine and connects to the lan and shows up in the network connections as normal. However, If I disable the adapter to do some maintenance work it then won't connect back ie re-enable.. Furthermore, if I drop the window and reopen it the adapter does not show at all - rebooting seems to put it all right gain. Any suggestions please?

Well after several months I seem to have found a near perfect solution - to my printer driver issue. On another forum someone was having a similar problem and advised manually installing the driver for an HP laserjet 3055 - and hey presto it works for the main part.. Even the duplex and multiple numbers.....

Yes that's indeed what Adobe say BUT I know that V10 does works OK for many people in W10 but not sure about V9. Either would be much cheaper than a new version of V11 version. I hope someone can confirm if 9 works OK!

I have ben using Acrobat 8 for many years - It worked fine on XP, Vista and Windows 7 and when I upgraded to W10 all seemed OK at first but now it won't work and want to keep re registering but that does not work either. Adobe say they don't support it now and can't help but I don't want to spend over £180 on the latest version when I only need some of the functions which worked fine in Acrobat 8 - Has anyone successfully used version 9 or 10 with Windows 10? as it would be a lot cheaper for me.

Phew - thanks for that PN - I had thought it might be in June but from what you say I should have plenty of time to do the upgrades - perhaps after 150 W7 ones first!.

I have some PCs in the UK with W7 but am away from home for some considerable time so can't upgrade them to W10. So how long have I got until the free upgrade offer runs out? If possible I would like to upgrade them when I go back to where they are, but that may be early July 2016! Meanwhile there is no way I can get anyone to do this for me as they are in storage at the moment.

I have been running W10 for some time now but today needed to burn a CD - but although my Roxio9 software had transferred to W10 OK it wont now actually run or burn anything and so I tried reinstalling it - then more problems as the install failed! So it seems it's not compatible with W10! So is there any decent free software for basic CD DVD burning that people can recommend ?

Recently a friend of mine has been copying some documents on his Kodak scanner then sending them to my windows PC from his brand new Mac by email. The only issue is that when the emails arrive on my email, it seems the DPI is always reduced to 72 dpi yet when they are scanned they are at 200dpi. He has even confirmed that when he views the files which he saves on his machine they are 200dpi but when they appear as attachments in the email he sends me they somehow have been changed. One other odd thing is that sometimes the files appear to be embedded in the body of the email rather that attached as a file - this seems to be the case when the files are in jpg format. When scanned the resolution is always set at 200dpi (sometimes 150) so we think the scanner is working fine as he can then view the files his end perfectly. Is only when emailed they seem to change. As neither of us are familiar with a Mac or have used Mac e-mailing before, can anyone point us to what we may be doing wrong?

Brilliant - and many thanks - Somehow Imissed that when looking on the teamviewer site.

The best software for this is Syncios - its free and also great for moving video files about too - and has no size limits like iTunes has. Makes transfers as easy and using a pc browser.

I regularly use Teamviewer to help my aged parents manage their PC as I am in Spain an they are in the UK. However a friend now is asking for assistance with some issues but he has a Mac - there is a Mac version for Teamviewer but can it be used across platforms?

I have suggested that to him - but he is not very confident at doing that despite it being pretty easy - I think the thought of reinstalling all his software is the main issue. Still wonder what actually causes the problem - and will MS recognise it as an issue!

We were both looking at the same sites - he was able to read the ones I cold not and I was able to read the ones he could not. We had both just upgrade to W10 and before that could each see our "problem" sites without any issues. Only after W10 did either of us experience any problems. We both tried using Chrome, IE and Edge - all with the same results for our respective sites. He has not reinstalled W10but I have done a clean reinstall and now don't have the problem (at least for now!).

Have a friend who also is finding problems addressing certain sites after upgrading to W10 - the sites are OK and I can see them fine but he cant - same sort of problem I had with some sites when I first upgraded- and always sites he and I were regularly visiting without any issues when using W7!. Beginning to think that the upgrade process hangs onto some settings on sites visited which then affect operation after the upgrade - Maybe a clean install on a fresh or reformatted disk is the better way to go! A bit of a bind to have to reinstall everything but it seems to work. It was pretty easy to download the ISO disk and then reinstall W10 - no issues with the serial number once you have installed the free version as MS hang onto your pc details and you don't then need to input anything during the install process. I was even able to have dual boot using the new W10 header on one PC as I have hung onto XP for some older programmes.

So all I need to do is somehow include all my archive stuff into gmail - but at the moment cant see how to do that. I have 6 main email accounts, three with Gmail and two with Movistar (our Spanish provider) and one with Onetel (an old UK account but still used) At the moment everything seems fine - (but fingers and legs crossed) I did a clean install of W10 again but this time on a wiped disk (so no windows old etc) and at each stage of the PC re-build created a restore point - i.e. one for every software load and every run off the new software.AT the time of writing have almost all my old software reinstalled and its still stable. This time I went straight for Thunderbird 11 and so far so good!!!!!!

I would like to ditch thunderbird but I have a huge email archive I need to refer to all the time - several thousand entries!

Just when I thought it was solved the problem returns - ditching thunderbird makes no difference now although it did when I tested earlier today. No idea where to go now.!

AGGGG - have now found the problem - I did a clean install of Windows 10 and tried connecting - perfect.. Everything working as it should.Then I reinstalled my email account and that's when it fell over. The reason was I was using a very old version of Thunderbird (and the reason for that is that the latest versions won't import my older emails and so if it I stuck with using the rational if it ain't broke don't fix it). Having tried many in between versions of Thunderbird this morning I now have installed version 11 which is stable in W10 but is not the latest by any means - if I try and use anything beyond version11 my older emails appear as blank pages. Thanks for all the advice and suggestions but at least I have found the cause!!

Also just realised - most of the issues with the lay my hat site ae only when I click the third level of links - ie I go in to the site, no problem, click a sub catagory, not problem but then clisk another layer then it fails!

No The printer I am referring to is a Laserjet 1300 - The Envy is working fine and gives no problems. Thanks for all the help - I think I am going to do a clean install - have now downloaded the iso and burned the disk - so ready to go.

Now managed to uninstall the printer drivers using the printui /s /t2 command - but it made no difference to the PC even after rebooting. Seriously thinking of a reinstall of W10 if this is not sorted soon - seems to be the fastest option to get this sorted - I have good backups so not worried about loosing anything Also had mega problems logging into this site today - is that the same issue or something else?

Files above There seems to be no option to uninstall the LaserJet printer in the control panel under Programs and Features I deleted it from the devices though

Additional scan result of Farbar Recovery Scan Tool (x86) Version:12-10-2015 Ran by Josh (2015-10-14 15:19:37) Running from C:\Users\Josh\Desktop Microsoft Windows 10 Pro (X86) (2015-09-11 11:58:10) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3513497068-70349356-3136409046-500 - Administrator - Disabled) ASPNET (S-1-5-21-3513497068-70349356-3136409046-1002 - Limited - Enabled) DefaultAccount (S-1-5-21-3513497068-70349356-3136409046-503 - Limited - Disabled) Guest (S-1-5-21-3513497068-70349356-3136409046-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3513497068-70349356-3136409046-1004 - Limited - Enabled) Josh (S-1-5-21-3513497068-70349356-3136409046-1000 - Administrator - Enabled) => C:\Users\Josh ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 32 Bit HP CIO Components Installer (Version: 18.1.4 - Hewlett-Packard) Hidden Adobe Acrobat 8.1.0 Professional (HKLM\...\Adobe Acrobat 8 Professional - English, Français, Deutsch) (Version: 8.1.0 - Adobe Systems) Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.207 - Adobe Systems Incorporated) Adobe Photoshop 7.0 (HKLM\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.) ANT Drivers Installer x86 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden ATI - Software Uninstall Utility (HKLM\...\All ATI Software) (Version: 6.14.10.1022 - ) Audacity 1.3.13 (Unicode) (HKLM\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team) AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - ) Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.13.210 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM\...\{5dfbeba9-9f22-463d-8c95-c861911810a2}) (Version: 1.1.47.11018 - Avira Operations GmbH & Co. KG) Avira Launcher (Version: 1.1.47.11018 - Avira Operations GmbH & Co. KG) Hidden Belarc Advisor 8.5a (HKLM\...\Belarc Advisor) (Version: 8.5.1.0 - Belarc Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform) DivX (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.0 - DivXNetworks, Inc.) Dot4 (HKLM\...\{FF359AAB-AA6A-449F-B75F-21201CD86495}) (Version: 1.0.0.0 - HP) Elevated Installer (Version: 4.1.8.0 - Garmin Ltd or its subsidiaries) Hidden Garmin City Navigator Europe NT 2016.10 (HKLM\...\{53F166AF-9991-45CD-B917-384DDAA243A4}) (Version: 2.0.0.0 - Garmin Ltd or its subsidiaries) Garmin Express (HKLM\...\{44d9dfc0-3a4a-4439-870f-f97550a9bc8d}) (Version: 4.1.8.0 - Garmin Ltd or its subsidiaries) Garmin Express (Version: 4.1.8.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (Version: 4.1.8.0 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.) Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden HP ENVY 4500 series Basic Device Software (HKLM\...\{BCC989C6-7003-4367-8C30-7B88D47D3E79}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) HP ENVY 4500 series Help (HKLM\...\{95BECC50-22B4-4FCA-8A2E-BF77713E6D3A}) (Version: 30.0.0 - Hewlett Packard) HP Support Solutions Framework (HKLM\...\{F6A11738-3EE4-4573-AEA5-6CD5D491C167}) (Version: 12.0.30.81 - Hewlett-Packard Company) Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) MozBackup 1.5.1 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek) Mozilla Firefox 41.0.1 (x86 en-GB) (HKLM\...\Mozilla Firefox 41.0.1 (x86 en-GB)) (Version: 41.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 41.0.1 - Mozilla) Mozilla Thunderbird (2.0.0.24) (HKLM\...\Mozilla Thunderbird (2.0.0.24)) (Version: 2.0.0.24 (en-GB) - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Pixillion Image Converter (HKLM\...\Pixillion) (Version: 2.93 - NCH Software) Product Improvement Study for HP ENVY 4500 series (HKLM\...\{BA386F3E-92B8-4B1D-9C2F-E97B3707FE57}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) Roxio Drag-to-Disc (HKLM\...\{2F4C24E6-CBD4-4AAC-B56F-C9FD44DE5668}) (Version: 9.0 - Roxio) Roxio Easy Media Creator 9 Suite (HKLM\...\{938B1CD7-7C60-491E-AA90-1F1888168240}) (Version: 9.0.088 - Roxio, Inc.) SightSpeed (remove only) (HKLM\...\SightSpeed) (Version: 5.0 (5018) - SightSpeed Inc.) Skype™ 7.12 (HKLM\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.) TeamViewer 10 (HKLM\...\TeamViewer) (Version: 10.0.47484 - TeamViewer) VoipConnect (HKLM\...\VoipConnect_is1) (Version: 4.14 build 766 - Finarea S.A. Switzerland) Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-3513497068-70349356-3136409046-1000_Classes\CLSID\{b2b568c8-3712-4a75-b806-4b3c2fdb06d5}\localserver32 -> C:\Users\Josh\AppData\Local\Temp\{e9513610-f218-4dda-b954-2c7e6ba7cabb}\IDriver.NonElevated.exe => N (the data entry has 6 more characters). ==================== Restore Points ========================= 01-10-2015 11:25:34 Windows Update 10-10-2015 17:55:10 Garmin Express 13-10-2015 11:54:11 Removed HP Update. 14-10-2015 15:14:58 Removed HP Support Solutions Framework ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {04C9B5B6-D68B-4CDD-B4D1-5F0CB4764E4E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {0C96A6E6-2D2A-4A42-BBFB-69537903D881} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {0CC323C4-8F32-4C17-890A-026FCEB7149C} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {15979CB8-F8E9-4BFB-A6D1-9A93038C574F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {16E1F2EA-E0DA-47FE-97D8-84409E5AA4A0} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION Task: {1F4385B4-7590-4E32-9FAF-99338111384F} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {2886E784-12BE-4497-B77E-594BBC9A27AA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION Task: {3574229C-CE40-4F53-B6ED-830D16D30837} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {3ECA04B4-701D-4227-8B33-A94BD3D4EF58} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP) Task: {3F227205-CC35-46E0-A087-DEB971F15CB4} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {45B5CA6D-9FF3-4CE8-AC00-33834F58ED69} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {478DDD9B-F76C-4C37-9384-AEACE854071A} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2015-09-11] () Task: {4C69FA4B-80F7-41D7-901F-1F979ABB5CFF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-15] (Google Inc.) Task: {52649705-94DE-4FCF-8F5B-13E0079B8912} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {5C269701-44BE-40C1-9C34-B8B42054182F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-06-24] (Hewlett-Packard) Task: {671231B0-B070-4885-906A-E9A1A0219472} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-14] (Adobe Systems Incorporated) Task: {6ACCEA2A-D3BE-460E-B707-BEAA1F5CBEE8} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {7377C38A-BCD7-49DC-B34A-2AB170695BB1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION Task: {742F936F-AE13-4169-8B99-5A5AF89DD3D1} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {799064C2-CD1A-4E91-91A9-69678B51B5D6} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {7EE072C2-BF89-4686-90A1-2B2B43DE70B2} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {8174E8C4-733B-47D9-8A1E-6221A1101F3C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION Task: {8DE59BED-4242-4ADF-8CB4-FD5C7EC03959} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {8E397605-E7B2-4A2B-8A0B-5380B7A2F593} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION Task: {93AE9CEA-1C06-4060-8410-06ADFAA002DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {9A227BC2-43EA-4580-AB8E-4237D0C74788} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {9CE7E7A0-E878-473D-B647-679C241CC7B1} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION Task: {AB2F4F3F-5EEF-4617-A172-AE027771A1CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {B4E30429-E383-4F1D-A160-540376C13C44} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION Task: {B8724C41-1FAF-4E88-868E-A9150BBA6130} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B954EB38-DC83-4C5C-91B8-31007E5563A6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION Task: {BE1091F5-150E-48B8-821B-27E8292171E5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-15] (Google Inc.) Task: {C4451DE7-8739-4FC8-AC25-E51B12D68DAE} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CE571C3D-1D41-4BF5-A2D5-EB353C38EC44} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CF053294-4BEF-4746-87EF-803E22F3EE16} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {D0ECDD7D-53FA-4329-A14B-D10AE5CC38BB} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {D26E46BB-E5D8-471A-9B89-5529C18B0773} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd) Task: {D40E1075-949B-41FF-B41F-7C4B8534DA7F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {D7C9340B-B772-45A1-A79D-029888179BC7} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {DD47ED2A-E832-4F9B-903A-CEF729049CD9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DE7D3290-1F8E-4121-B32E-FAC6C8548C8A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F214D466-7DBC-4CA7-8221-E43544308505} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-07-10 10:24 - 2015-07-10 10:24 - 00022528 _____ () C:\WINDOWS\SYSTEM32\ef***t.dll 2015-09-11 23:19 - 2015-09-11 23:19 - 00025088 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2001-07-31 11:17 - 2001-07-31 11:17 - 00094274 _____ () C:\WINDOWS\System32\HPBHealr.dll 2015-09-11 23:19 - 2015-09-11 23:19 - 00301056 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2006-08-10 11:37 - 2006-08-10 11:37 - 04587520 ____R () C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ROXIPP41.dll 2015-10-01 11:02 - 2015-09-17 08:27 - 01766952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-10-01 11:02 - 2015-09-17 08:27 - 01766952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-09-10 15:05 - 2006-08-08 09:18 - 00056056 _____ () C:\WINDOWS\SYSTEM32\DLAAPI_W.DLL 2015-07-10 10:24 - 2015-07-10 10:24 - 00288768 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-07-10 10:24 - 2015-07-10 10:24 - 00111104 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll 2015-10-01 11:02 - 2015-09-17 07:28 - 04317696 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-10-01 11:02 - 2015-09-17 07:25 - 00377856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-10-01 11:02 - 2015-09-17 07:25 - 01183232 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-10-01 11:02 - 2015-09-17 07:26 - 01425920 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 10:25 - 2015-07-10 12:49 - 00107520 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2006-08-14 01:07 - 2006-08-14 01:07 - 00102400 _____ () C:\Program Files\Roxio\Media Experience\DMXLauncher.exe 2015-10-03 08:52 - 2015-10-03 08:52 - 00012800 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe 2015-10-03 08:52 - 2015-10-03 08:52 - 08771072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x86__8wekyb3d8bbwe\Microsoft.Photos.dll 2006-10-01 21:49 - 2006-10-01 21:49 - 00389120 _____ () C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeXMP.dll 2015-09-10 15:46 - 2007-03-22 12:38 - 02748416 ____R () C:\Program Files\Adobe\Acrobat 8.0\Acrobat\LIBMYSQLD.dll 2015-10-08 08:05 - 2015-10-08 08:05 - 05286912 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.5.0_x86__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll 2015-10-08 08:05 - 2015-10-08 08:05 - 01474560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.5.0_x86__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Josh\Desktop\Banks & Accounts:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Desktop\Forums:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Desktop\OSOBS:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Desktop\Property:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Desktop\Tools:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\4stephen.jpg:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\ana-15 12 2012 only.dmsd:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\ana-15 12 2012.dmsd:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\AQA-45278-PM-JUN12.bmp:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Belarc Advisor Computer Profile UKPC_files:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Fax:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\fg-new01.mp4:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\fg-new02.mp4:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Garmin:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\HpReg_Backup:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Jane Camera 1.dmsd:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\jane1.dmsd:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\nacher picture.JPG:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\pip010001.jpg:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\pip010002.jpg:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\pip010003.jpg:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\pip010004.jpg:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\pip010005.jpg:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\popstatement.tif:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Scanned Documents:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\scooter.jpg:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Screen Licence UKPC.tif:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Sonia's wedding.png:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\SyncDroid:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Untitled.tif:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Untitled2.tif:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Updater5:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\video2.dmsd:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Visual Studio 2005:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\Windows10.iso:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\windsurfing.dmsd:Roxio EMC Stream AlternateDataStreams: C:\Users\Josh\Documents\xmasvideo2011.dmsm:Roxio EMC Stream ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3513497068-70349356-3136409046-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg DNS Servers: 80.58.61.250 - 80.58.61.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\StartupFolder: => "Adobe Gamma Loader.lnk" HKLM\...\StartupApproved\Run: => "Acrobat Assistant 8.0" HKLM\...\StartupApproved\Run: => "RoxioDragToDisc" HKLM\...\StartupApproved\Run: => "RoxWatchTray" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe" HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\StartupApproved\Run: => "HP ENVY 4500 series (NET)" HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\StartupApproved\Run: => "GarminExpressTrayApp" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [uDP Query User{DAC30E59-98F8-4EFC-B717-4BDE85855702}C:\program files\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files\voipconnect.com\voipconnect\voipconnect.exe FirewallRules: [TCP Query User{1256721F-7F37-4695-92C5-C74C071633B3}C:\program files\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files\voipconnect.com\voipconnect\voipconnect.exe FirewallRules: [{087ACD47-BC8F-487B-999B-315B53EF56EE}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [uDP Query User{A1F45EB8-D8BB-478F-8F37-935C646B4F42}C:\program files\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files\voipconnect.com\voipconnect\voipconnect.exe FirewallRules: [TCP Query User{63CC4B58-1F34-452E-AFD2-8E043881C017}C:\program files\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files\voipconnect.com\voipconnect\voipconnect.exe FirewallRules: [{E7F0A165-2BCF-4005-B0EC-241BFC014E6E}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\DeviceSetup.exe FirewallRules: [{A5690643-7D94-4560-A27D-83C26A398385}] => (Allow) LPort=5357 FirewallRules: [{4AC02ABC-0823-44E9-A471-D6F7801AA8EE}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{11B76D61-0139-4DD6-9100-4C80D1923C2E}] => (Allow) C:\Users\Josh\AppData\Local\Temp\7zS7E34\HPDiagnosticCoreUI.exe FirewallRules: [{285C4B87-4041-44DF-B380-3963CF5BBA96}] => (Allow) C:\Users\Josh\AppData\Local\Temp\7zS7E34\HPDiagnosticCoreUI.exe FirewallRules: [{D48430D8-E3F0-4919-BEBC-A88DFC16D99B}] => (Allow) C:\Users\Josh\AppData\Local\Temp\7zS02E6\HPDiagnosticCoreUI.exe FirewallRules: [{EE9DD717-2C05-4BF3-BB1C-423038657AE7}] => (Allow) C:\Users\Josh\AppData\Local\Temp\7zS02E6\HPDiagnosticCoreUI.exe FirewallRules: [TCP Query User{7A257C22-A279-4E8D-B1DD-A0990678274D}C:\program files\adobe\acrobat 8.0\acrobat\acrobat.exe] => (Block) C:\program files\adobe\acrobat 8.0\acrobat\acrobat.exe FirewallRules: [uDP Query User{B5898B7C-68FB-46D0-828C-2F8144CAEEDE}C:\program files\adobe\acrobat 8.0\acrobat\acrobat.exe] => (Block) C:\program files\adobe\acrobat 8.0\acrobat\acrobat.exe FirewallRules: [{FEF3442D-9501-4222-B6C1-F0C0865E5D62}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{EC53B9BF-1D82-4DC8-BF48-0E4891FAD6AE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{41A0A6BB-98E3-446B-8780-D4678B567A04}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{C18F89AD-094C-43AF-9910-44358B70989A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{84037027-B8E2-40CD-BA55-C8FFF44778C0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [{059783EE-3612-486A-AFE3-ED4847E483EB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{03E66436-68C2-4D70-9B45-D51E41868ABA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe ==================== Faulty Device Manager Devices ============= Name: PCI Serial Port Description: PCI Serial Port Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: PCI Simple Communications Controller Description: PCI Simple Communications Controller Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (10/14/2015 03:15:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Access is denied. . Error: (10/14/2015 12:30:58 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: aspnet_stateC:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_perf.dll4 Error: (10/13/2015 10:17:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Main755) Description: Activation of application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (10/13/2015 11:54:17 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Access is denied. . Error: (10/13/2015 11:47:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Main755) Description: Activation of application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (10/13/2015 11:30:11 AM) (Source: SyncDroid Helper NT Service) (EventID: 7) (User: ) Description: Error: (10/13/2015 11:30:11 AM) (Source: SyncDroid Helper NT Service) (EventID: 7) (User: ) Description: Error: (10/13/2015 11:20:47 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Main755) Description: Activation of application Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (10/13/2015 11:20:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Main755) Description: Activation of application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (10/12/2015 09:20:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Main755) Description: Activation of application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. System errors: ============= Error: (10/14/2015 08:11:37 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY) Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10. Error: (10/14/2015 08:11:37 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY) Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10. Error: (10/13/2015 10:17:05 PM) (Source: DCOM) (EventID: 10010) (User: Main755) Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca Error: (10/13/2015 10:17:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The User Data Access_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (10/13/2015 10:17:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The User Data Storage_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (10/13/2015 10:17:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Contact Data_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (10/13/2015 10:17:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Sync Host_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (10/13/2015 08:48:26 PM) (Source: DCOM) (EventID: 10016) (User: Main755) Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Main755JoshS-1-5-21-3513497068-70349356-3136409046-1000LocalHost (Using LRPC)Microsoft.WindowsStore_2015.10.5.0_x86__8wekyb3d8bbweS-1-15-2-1609473798-1231923017-684268153-4268514328-882773646-2760585773-1760938157 Error: (10/13/2015 05:25:43 PM) (Source: DCOM) (EventID: 10016) (User: Main755) Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Main755JoshS-1-5-21-3513497068-70349356-3136409046-1000LocalHost (Using LRPC)UnavailableUnavailable Error: (10/13/2015 05:25:37 PM) (Source: DCOM) (EventID: 10016) (User: Main755) Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Main755JoshS-1-5-21-3513497068-70349356-3136409046-1000LocalHost (Using LRPC)UnavailableUnavailable CodeIntegrity: =================================== Date: 2015-10-02 12:41:52.925 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. Date: 2015-10-02 12:41:52.772 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2015-10-02 12:41:52.625 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2015-10-02 12:41:52.371 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. Date: 2015-10-02 12:41:52.216 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2015-10-02 12:41:52.033 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2015-10-02 12:41:49.848 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements. Date: 2015-10-02 12:41:49.094 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements. Date: 2015-09-12 21:48:32.002 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. Date: 2015-09-12 21:48:31.892 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. ==================== Memory info =========================== Processor: Intel® Core2 Duo CPU E6550 @ 2.33GHz Percentage of memory in use: 58% Total physical RAM: 3316.61 MB Available physical RAM: 1392.34 MB Total Virtual: 6644.61 MB Available Virtual: 4186.09 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:458.89 GB) (Free:391.66 GB) NTFS Drive d: (File Library) (Fixed) (Total:390.62 GB) (Free:232.92 GB) NTFS Drive e: (Archive) (Fixed) (Total:1013.41 GB) (Free:325.18 GB) NTFS Drive g: (MainBackup) (Fixed) (Total:931.51 GB) (Free:237.47 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 01F8C637) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=458.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=390.6 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=1013.4 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 8A608A60) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:12-10-2015 Ran by Josh (administrator) on MAIN755 (14-10-2015 15:18:33) Running from C:\Users\Josh\Desktop Loaded Profiles: Josh (Available Profiles: Josh) Platform: Microsoft Windows 10 Pro (X86) Language: English (United States) Internet Explorer Version 11 (Default browser: IE) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe (Sonic Solutions) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Sonic Solutions) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe (Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe () C:\Program Files\Roxio\Media Experience\DMXLauncher.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe (InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (VoipConnect) C:\Program Files\VoipConnect.com\VoipConnect\VoipConnect.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe (Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrobat.exe (Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avwebg7.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avmailc7.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.5.0_x86__8wekyb3d8bbwe\WinStore.Mobile.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-09-10] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\Antivirus\avgnt.exe [782520 2015-09-24] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM\...\Run: [RoxWatchTray] => C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [221184 2006-08-10] (Sonic Solutions) HKLM\...\Run: [DMXLauncher] => C:\Program Files\Roxio\Media Experience\DMXLauncher.exe [102400 2006-08-14] () HKLM\...\Run: [RoxioDragToDisc] => C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe [1116920 2006-07-31] (Sonic Solutions) HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare) HKLM\...\Run: [iSUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-07-27] (InstallShield Software Corporation) HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\Run: [VoipConnect] => C:\Program Files\VoipConnect.com\VoipConnect\VoipConnect.exe [32417376 2015-06-12] (VoipConnect) HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\Run: [skype] => C:\Program Files\Skype\Phone\Skype.exe [57987712 2015-09-28] (Skype Technologies S.A.) HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6495144 2015-09-16] (Piriform Ltd) HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\Run: [HP ENVY 4500 series (NET)] => C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [2427400 2014-07-21] (Hewlett-Packard Development Company, LP) HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\Run: [iSUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-07-27] (InstallShield Software Corporation) HKU\S-1-5-21-3513497068-70349356-3136409046-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2015-09-10] ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254 Tcpip\..\Interfaces\{63c71e4c-b8dd-482d-9654-2f4dd1ccf635}: [DhcpNameServer] 80.58.61.250 80.58.61.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation) BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated) Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-3513497068-70349356-3136409046-1000 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated) Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2015-08-05] (Belarc, Inc.) Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Josh\AppData\Roaming\Mozilla\Firefox\Profiles\bRFz0CC1.default FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_207.dll [2015-10-14] () FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Extension: Avira Browser Safety - C:\Users\Josh\AppData\Roaming\Mozilla\Firefox\Profiles\bRFz0CC1.default\Extensions\abs@avira.com [2015-10-05] FF Extension: Avira SafeSearch Plus - C:\Users\Josh\AppData\Roaming\Mozilla\Firefox\Profiles\bRFz0CC1.default\Extensions\safesearchplus@avira.com [2015-09-09] Chrome: ======= CHR DefaultSearchURL: Default -> hxxps://safesearch.avira.com/#web/result?source=omnibar&q={searchTerms} CHR DefaultSearchKeyword: Default -> Avira CHR DefaultSuggestURL: Default -> hxxps://safesearch.avira.com/suggestions?q={searchTerms}&li=ff&hl=en CHR Profile: C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-11] CHR Extension: (Google Docs) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-11] CHR Extension: (Google Drive) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-11] CHR Extension: (YouTube) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-11] CHR Extension: (Google Search) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-11] CHR Extension: (Avira Browser Safety) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-10-11] CHR Extension: (Google Docs Offline) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-11] CHR Extension: (Avira SafeSearch) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\khjilmcjipkeokomeekfnhkpbnhmgaje [2015-10-11] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-10-11] CHR Extension: (Chrome Web Store Payments) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-11] CHR Extension: (Gmail) - C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-11] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [932912 2015-09-24] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [461672 2015-09-24] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [461672 2015-09-24] (Avira Operations GmbH & Co. KG) R2 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1147720 2015-10-14] (Avira Operations GmbH & Co. KG) R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [240872 2015-09-10] (Avira Operations GmbH & Co. KG) R3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-09-10] (Macrovision Europe Ltd.) [File not signed] S3 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [762272 2015-09-11] (Garmin Ltd. or its subsidiaries) R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [24888 2015-07-26] (Hewlett-Packard Company) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed] S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) S2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [45568 2014-11-17] (Hewlett-Packard) [File not signed] S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [55808 2014-11-17] (Hewlett-Packard) [File not signed] S3 Roxio UPnP Renderer 9; C:\Program Files\Common Files\Sonic Shared\RoxioUPnPRenderer9.exe [57344 2006-08-10] (Sonic Solutions) [File not signed] S2 Roxio Upnp Server 9; C:\Program Files\Common Files\Sonic Shared\RoxioUpnpService9.exe [294912 2006-08-10] (Sonic Solutions) [File not signed] S2 RoxLiveShare9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe [303104 2006-08-10] (Sonic Solutions) [File not signed] R3 RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [880640 2006-08-10] (Sonic Solutions) [File not signed] R2 RoxWatch9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [159744 2006-08-10] (Sonic Solutions) [File not signed] S3 stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [73728 2006-07-20] (MicroVision Development, Inc.) [File not signed] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [105352 2015-09-24] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [138800 2015-09-11] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [37896 2015-08-06] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [55912 2015-09-24] (Avira Operations GmbH & Co. KG) R2 DLABMFSM; C:\WINDOWS\System32\DLA\DLABMFSM.SYS [35128 2006-08-08] (Sonic Solutions) R2 DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [32504 2006-08-08] (Sonic Solutions) R2 DLADResM; C:\WINDOWS\System32\DLA\DLADResM.SYS [9432 2006-08-08] (Sonic Solutions) R2 DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [104504 2006-08-08] (Sonic Solutions) R2 DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [26136 2006-08-08] (Sonic Solutions) R2 DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [14552 2006-08-08] (Sonic Solutions) R1 DLARTL_M; C:\WINDOWS\System32\Drivers\DLARTL_M.SYS [28216 2006-08-01] (Sonic Solutions) R2 DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [94680 2006-08-08] (Sonic Solutions) R2 DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [97880 2006-08-08] (Sonic Solutions) S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [132520 2013-06-04] (Windows ® Win 7 DDK provider) S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [17320 2013-06-04] (Windows ® Win 7 DDK provider) R2 DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [51800 2006-08-01] (Sonic Solutions) R3 LVUSBSta; C:\WINDOWS\System32\drivers\LVUSBSta.sys [41888 2015-09-11] (Logitech Inc.) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation) R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [36528 2006-07-24] (Sonic Solutions) [File not signed] S4 RxFilter; C:\WINDOWS\System32\DRIVERS\RxFilter.sys [50688 2006-08-09] (Sonic Solutions) [File not signed] R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [31848 2015-08-06] (Avira Operations GmbH & Co. KG) S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] () S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation) S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161792 2015-07-10] (Microsoft Corporation) U3 aspnet_state; no ImagePath U3 idsvc; no ImagePath S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] U3 wpcsvc; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-10-14 15:18 - 2015-10-14 15:19 - 00017303 _____ C:\Users\Josh\Desktop\FRST.txt 2015-10-14 15:18 - 2015-10-14 15:18 - 00000000 ____D C:\FRST 2015-10-14 15:17 - 2015-10-14 15:18 - 01699840 _____ (Farbar) C:\Users\Josh\Desktop\FRST.exe 2015-10-14 15:04 - 2015-10-14 15:04 - 00016148 _____ C:\WINDOWS\system32\MAIN755_Josh_HistoryPrediction.bin 2015-10-14 12:31 - 2015-10-14 12:31 - 00000715 _____ C:\Users\Josh\Desktop\Batch - Shortcut.lnk 2015-10-13 17:46 - 2015-10-13 17:46 - 00045056 _____ (Northern Codeworks) C:\WINDOWS\NCUNINST.EXE 2015-10-13 17:44 - 2015-10-13 17:54 - 00225207 _____ C:\WINDOWS\hplj1300.his 2015-10-13 17:44 - 2015-10-13 17:54 - 00013930 _____ C:\WINDOWS\hplj1300.ini 2015-10-13 17:43 - 2015-10-13 17:43 - 00000000 ____D C:\Program Files\Common Files\SWF Studio 2015-10-13 12:14 - 2015-10-13 12:15 - 16652576 _____ C:\Users\Josh\Downloads\upd-pcl5-x32-5.9.0.18326 (1).exe 2015-10-13 09:51 - 2015-10-13 09:51 - 00000000 ____D C:\$WINDOWS.~BT 2015-10-13 08:59 - 2015-10-13 09:00 - 2693988352 _____ C:\Users\Josh\Documents\Windows10.iso 2015-10-13 08:32 - 2015-10-13 08:32 - 18277680 _____ (Microsoft Corporation) C:\Users\Josh\Downloads\MediaCreationTool.exe 2015-10-13 08:32 - 2015-10-13 08:32 - 00000000 ___HD C:\$Windows.~WS 2015-10-13 08:10 - 2015-10-13 08:10 - 00001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-10-13 08:10 - 2015-10-13 08:10 - 00001174 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-10-13 08:10 - 2015-10-13 08:10 - 00000000 ____D C:\Program Files\Mozilla Firefox 2015-10-13 08:09 - 2015-10-13 08:09 - 00243672 _____ C:\Users\Josh\Downloads\Firefox Setup Stub 41.0.1.exe 2015-10-12 19:24 - 2015-10-12 19:24 - 00025674 _____ C:\Users\Josh\Downloads\MTB.txt 2015-10-12 19:23 - 2015-10-12 19:23 - 00891392 _____ (Farbar) C:\Users\Josh\Downloads\MiniToolBox.exe 2015-10-12 17:43 - 2015-10-14 15:15 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log 2015-10-12 17:38 - 2015-10-12 17:38 - 00000000 ____D C:\Users\Josh\Downloads\New folder 2015-10-12 17:36 - 2015-10-12 17:39 - 00000000 ____D C:\AdwCleaner 2015-10-12 17:34 - 2015-10-12 17:36 - 01682432 _____ C:\Users\Josh\Downloads\AdwCleaner.exe 2015-10-12 17:22 - 2015-10-12 17:22 - 06677440 _____ (Piriform Ltd) C:\Users\Josh\Downloads\ccsetup510 (2).exe 2015-10-12 17:21 - 2015-10-12 17:22 - 06677440 _____ (Piriform Ltd) C:\Users\Josh\Downloads\ccsetup510.exe 2015-10-12 17:21 - 2015-10-12 17:22 - 06677440 _____ (Piriform Ltd) C:\Users\Josh\Downloads\ccsetup510 (1).exe 2015-10-12 17:07 - 2015-10-12 17:08 - 00002151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk 2015-10-12 17:07 - 2015-10-12 17:08 - 00002139 _____ C:\Users\Public\Desktop\Belarc Advisor.lnk 2015-10-12 17:07 - 2015-10-12 17:07 - 04236400 _____ C:\Users\Josh\Downloads\advisorinstaller.exe 2015-10-12 17:07 - 2015-10-12 17:07 - 00000000 ____D C:\Program Files\Belarc 2015-10-11 18:36 - 2015-10-11 18:36 - 00002278 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-10-11 18:36 - 2015-10-11 18:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-10-11 18:35 - 2015-10-11 18:35 - 00929872 _____ (Google Inc.) C:\Users\Josh\Downloads\ChromeSetup (1).exe 2015-10-11 16:00 - 2015-10-11 18:35 - 00929872 _____ (Google Inc.) C:\Users\Josh\Downloads\ChromeSetup.exe 2015-10-11 10:29 - 2015-10-11 10:29 - 00000000 ____D C:\Users\Josh\AppData\Local\GARMIN_Corp 2015-10-11 10:28 - 2015-10-11 10:29 - 00000000 ____D C:\Users\Josh\AppData\Local\Garmin 2015-10-10 20:01 - 2015-10-10 20:01 - 43056872 _____ (Garmin Ltd or its subsidiaries) C:\Users\Josh\Downloads\GarminExpressInstaller.exe 2015-10-10 19:22 - 2015-10-10 19:23 - 00000000 ____D C:\Users\Josh\Documents\Visual Studio 2005 2015-10-10 17:57 - 2015-10-10 17:57 - 00000000 ____D C:\Users\Josh\Documents\Garmin 2015-10-10 17:55 - 2015-10-11 10:29 - 00000000 ____D C:\Users\Josh\AppData\Roaming\Garmin 2015-10-10 17:55 - 2015-10-10 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2015-10-10 17:55 - 2015-10-10 22:16 - 00000000 ____D C:\Program Files\Garmin 2015-10-10 17:55 - 2015-10-10 22:15 - 00000000 ____D C:\ProgramData\Garmin 2015-10-10 17:55 - 2015-10-10 17:56 - 00000000 ____D C:\Users\Josh\AppData\Local\Garmin_Ltd._or_its_subsid 2015-10-10 17:55 - 2015-10-10 17:55 - 00001933 _____ C:\Users\Public\Desktop\Garmin Express.lnk 2015-10-10 17:55 - 2015-10-10 17:55 - 00000000 ____D C:\Program Files\DIFX 2015-10-10 17:54 - 2015-10-10 17:54 - 43056872 _____ (Garmin Ltd or its subsidiaries) C:\Users\Josh\Downloads\GarminExpress.exe 2015-10-10 13:26 - 2015-10-10 13:26 - 00219648 _____ C:\Users\Josh\Downloads\Members_10_Oct_2015.xls 2015-10-09 15:52 - 2015-10-09 15:52 - 00215552 _____ C:\Users\Josh\Downloads\Members_09_Oct_2015.xls 2015-10-09 12:47 - 2015-10-13 19:25 - 00000000 ____D C:\New folder 2015-10-09 11:26 - 2015-10-09 11:32 - 169869312 _____ C:\Users\Josh\Downloads\slacko-5.7.0-PAE.iso 2015-10-09 11:18 - 2015-10-09 11:18 - 00346631 _____ C:\Users\Josh\Downloads\FDSTD.288.zip 2015-10-09 10:12 - 2015-10-09 10:15 - 276473856 _____ C:\Users\Josh\Downloads\EasyRE for Windows Vista.iso 2015-10-09 08:23 - 2015-10-09 08:23 - 00000000 ___HD C:\OneDriveTemp 2015-10-08 21:47 - 2015-10-14 15:16 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-10-08 21:47 - 2015-10-08 21:47 - 00000000 ____D C:\Users\Josh\AppData\Local\Macromedia 2015-10-08 16:38 - 2015-10-08 16:38 - 00571392 _____ C:\Users\Josh\Documents\everyone-aug15.xls 2015-10-05 18:03 - 2015-10-08 12:26 - 09225216 _____ C:\Users\Josh\Documents\gazette62bw.pub 2015-10-05 12:13 - 2015-10-05 12:13 - 00009939 _____ C:\Users\Josh\Documents\extras.xlsx 2015-10-05 09:34 - 2015-10-05 09:34 - 00020084 _____ C:\Users\Josh\Documents\cc_20151005_093429.reg 2015-10-04 13:42 - 2015-10-04 14:26 - 00013160 _____ C:\Users\Josh\Documents\assoc.xlsx 2015-10-04 13:28 - 2015-10-06 11:40 - 00017969 _____ C:\Users\Josh\Documents\Associates.xlsx 2015-10-02 17:44 - 2015-10-02 17:44 - 00206848 _____ C:\Users\Josh\Documents\HW1.pub 2015-10-02 13:38 - 2015-10-07 19:20 - 00000000 ____D C:\Users\Josh\AppData\Roaming\Audacity 2015-10-02 13:37 - 2015-10-02 13:37 - 00001183 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity 1.3 Beta (Unicode).lnk 2015-10-02 13:37 - 2015-10-02 13:37 - 00001171 _____ C:\Users\Josh\Desktop\Audacity 1.3 Beta (Unicode).lnk 2015-10-02 13:37 - 2015-10-02 13:37 - 00000000 ____D C:\Program Files\Audacity 1.3 Beta (Unicode) 2015-10-02 12:57 - 2015-10-02 13:00 - 277157888 _____ C:\Users\Josh\Downloads\kav_rescue_10.iso 2015-10-02 12:46 - 2015-10-02 12:53 - 658247680 _____ C:\Users\Josh\Downloads\rescue-system.iso 2015-10-01 19:54 - 2015-10-01 19:54 - 00035328 _____ C:\Users\Josh\Downloads\POP Q3 2015.xls 2015-10-01 19:51 - 2015-10-01 19:51 - 00025600 _____ C:\Users\Josh\Downloads\exported.xls 2015-10-01 11:03 - 2015-09-17 07:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-10-01 11:02 - 2015-09-25 01:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll 2015-10-01 11:02 - 2015-09-25 01:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll 2015-10-01 11:02 - 2015-09-25 01:18 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2015-10-01 11:02 - 2015-09-25 00:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2015-10-01 11:02 - 2015-09-25 00:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2015-10-01 11:02 - 2015-09-25 00:42 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-10-01 11:02 - 2015-09-25 00:37 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-10-01 11:02 - 2015-09-25 00:30 - 02985472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-10-01 11:02 - 2015-09-25 00:29 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-10-01 11:02 - 2015-09-25 00:28 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll 2015-10-01 11:02 - 2015-09-25 00:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll 2015-10-01 11:02 - 2015-09-25 00:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-10-01 11:02 - 2015-09-25 00:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2015-10-01 11:02 - 2015-09-25 00:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll 2015-10-01 11:02 - 2015-09-25 00:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll 2015-10-01 11:02 - 2015-09-25 00:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll 2015-10-01 11:02 - 2015-09-25 00:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll 2015-10-01 11:02 - 2015-09-25 00:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2015-10-01 11:02 - 2015-09-25 00:11 - 01499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-10-01 11:02 - 2015-09-19 05:50 - 00083160 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll 2015-10-01 11:02 - 2015-09-17 08:28 - 06265168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-10-01 11:02 - 2015-09-17 08:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2015-10-01 11:02 - 2015-09-17 08:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-10-01 11:02 - 2015-09-17 08:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-10-01 11:02 - 2015-09-17 08:28 - 01343952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-10-01 11:02 - 2015-09-17 08:28 - 00680144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys 2015-10-01 11:02 - 2015-09-17 08:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2015-10-01 11:02 - 2015-09-17 08:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-10-01 11:02 - 2015-09-17 08:28 - 00083792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2015-10-01 11:02 - 2015-09-17 08:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-10-01 11:02 - 2015-09-17 08:27 - 01766952 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-10-01 11:02 - 2015-09-17 08:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2015-10-01 11:02 - 2015-09-17 08:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2015-10-01 11:02 - 2015-09-17 08:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll 2015-10-01 11:02 - 2015-09-17 08:26 - 01856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-10-01 11:02 - 2015-09-17 08:26 - 01708376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-10-01 11:02 - 2015-09-17 08:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2015-10-01 11:02 - 2015-09-17 08:26 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2015-10-01 11:02 - 2015-09-17 08:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-10-01 11:02 - 2015-09-17 08:26 - 00436064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2015-10-01 11:02 - 2015-09-17 08:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2015-10-01 11:02 - 2015-09-17 08:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2015-10-01 11:02 - 2015-09-17 08:26 - 00414560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-10-01 11:02 - 2015-09-17 08:26 - 00335696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2015-10-01 11:02 - 2015-09-17 08:26 - 00274272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2015-10-01 11:02 - 2015-09-17 08:26 - 00228192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-10-01 11:02 - 2015-09-17 08:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-10-01 11:02 - 2015-09-17 08:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2015-10-01 11:02 - 2015-09-17 08:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2015-10-01 11:02 - 2015-09-17 08:15 - 00070744 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-10-01 11:02 - 2015-09-17 08:13 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2015-10-01 11:02 - 2015-09-17 08:13 - 00918880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-10-01 11:02 - 2015-09-17 07:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-10-01 11:02 - 2015-09-17 07:51 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-10-01 11:02 - 2015-09-17 07:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2015-10-01 11:02 - 2015-09-17 07:51 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2015-10-01 11:02 - 2015-09-17 07:51 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2015-10-01 11:02 - 2015-09-17 07:49 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-10-01 11:02 - 2015-09-17 07:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll 2015-10-01 11:02 - 2015-09-17 07:49 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe 2015-10-01 11:02 - 2015-09-17 07:48 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll 2015-10-01 11:02 - 2015-09-17 07:48 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-10-01 11:02 - 2015-09-17 07:48 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-10-01 11:02 - 2015-09-17 07:47 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-10-01 11:02 - 2015-09-17 07:47 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2015-10-01 11:02 - 2015-09-17 07:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2015-10-01 11:02 - 2015-09-17 07:46 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2015-10-01 11:02 - 2015-09-17 07:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll 2015-10-01 11:02 - 2015-09-17 07:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-10-01 11:02 - 2015-09-17 07:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2015-10-01 11:02 - 2015-09-17 07:45 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-10-01 11:02 - 2015-09-17 07:45 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2015-10-01 11:02 - 2015-09-17 07:45 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2015-10-01 11:02 - 2015-09-17 07:45 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2015-10-01 11:02 - 2015-09-17 07:45 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2015-10-01 11:02 - 2015-09-17 07:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-10-01 11:02 - 2015-09-17 07:43 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll 2015-10-01 11:02 - 2015-09-17 07:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2015-10-01 11:02 - 2015-09-17 07:42 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2015-10-01 11:02 - 2015-09-17 07:41 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-10-01 11:02 - 2015-09-17 07:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2015-10-01 11:02 - 2015-09-17 07:41 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2015-10-01 11:02 - 2015-09-17 07:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-10-01 11:02 - 2015-09-17 07:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-10-01 11:02 - 2015-09-17 07:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2015-10-01 11:02 - 2015-09-17 07:40 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll 2015-10-01 11:02 - 2015-09-17 07:40 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2015-10-01 11:02 - 2015-09-17 07:40 - 00351744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2015-10-01 11:02 - 2015-09-17 07:40 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 01829376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll 2015-10-01 11:02 - 2015-09-17 07:39 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2015-10-01 11:02 - 2015-09-17 07:39 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll 2015-10-01 11:02 - 2015-09-17 07:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 00926720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-10-01 11:02 - 2015-09-17 07:36 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2015-10-01 11:02 - 2015-09-17 07:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-10-01 11:02 - 2015-09-17 07:35 - 03026432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-10-01 11:02 - 2015-09-17 07:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-10-01 11:02 - 2015-09-17 07:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2015-10-01 11:02 - 2015-09-17 07:35 - 01762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2015-10-01 11:02 - 2015-09-17 07:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2015-10-01 11:02 - 2015-09-17 07:35 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-10-01 11:02 - 2015-09-17 07:34 - 00350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll 2015-10-01 11:02 - 2015-09-17 07:34 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll 2015-10-01 11:02 - 2015-09-17 07:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2015-10-01 11:02 - 2015-09-17 07:34 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2015-10-01 11:02 - 2015-09-17 07:34 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys 2015-10-01 11:02 - 2015-09-17 07:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2015-10-01 11:02 - 2015-09-17 07:33 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll 2015-10-01 11:02 - 2015-09-17 07:33 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll 2015-10-01 11:02 - 2015-09-17 07:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-10-01 11:02 - 2015-09-17 07:32 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2015-10-01 11:02 - 2015-09-17 07:32 - 00989696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2015-10-01 11:02 - 2015-09-17 07:32 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2015-10-01 11:02 - 2015-09-17 07:32 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2015-10-01 11:02 - 2015-09-17 07:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2015-10-01 11:02 - 2015-09-17 07:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2015-10-01 11:02 - 2015-09-17 07:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2015-10-01 11:02 - 2015-09-17 07:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2015-10-01 11:02 - 2015-09-17 07:31 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2015-10-01 11:02 - 2015-09-17 07:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2015-10-01 11:02 - 2015-09-17 07:30 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-10-01 11:02 - 2015-09-17 07:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2015-10-01 11:02 - 2015-09-17 07:30 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2015-10-01 11:02 - 2015-09-17 07:30 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2015-10-01 11:02 - 2015-09-17 07:30 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2015-10-01 11:02 - 2015-09-17 07:30 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2015-10-01 11:02 - 2015-09-17 07:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll 2015-10-01 11:02 - 2015-09-17 07:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll 2015-10-01 11:02 - 2015-09-17 07:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-10-01 11:02 - 2015-09-17 07:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2015-10-01 11:02 - 2015-09-17 07:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-10-01 11:02 - 2015-09-17 07:29 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-10-01 11:02 - 2015-09-17 07:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-10-01 11:02 - 2015-09-17 07:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2015-10-01 11:02 - 2015-09-17 07:28 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2015-10-01 11:02 - 2015-09-17 07:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll 2015-10-01 11:02 - 2015-09-17 07:27 - 01380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2015-10-01 11:02 - 2015-09-17 07:27 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-10-01 11:02 - 2015-09-17 07:27 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-10-01 11:02 - 2015-09-17 07:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2015-10-01 11:02 - 2015-09-13 03:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2015-09-30 18:48 - 2015-10-12 17:24 - 00000000 ____D C:\Users\Josh\AppData\Roaming\TeamViewer 2015-09-30 18:48 - 2015-10-04 12:51 - 00001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-09-30 18:48 - 2015-10-04 12:51 - 00001058 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk 2015-09-30 18:48 - 2015-10-04 12:51 - 00000000 ____D C:\Program Files\TeamViewer 2015-09-28 12:45 - 2015-09-28 12:45 - 00648704 _____ C:\Users\Josh\Downloads\MicrosoftFixit50135.msi 2015-09-27 14:08 - 2015-09-27 14:08 - 00000000 _____ C:\Users\Josh\AppData\Local\rx_image.Cache 2015-09-26 22:02 - 2015-09-26 22:02 - 00215552 _____ C:\Users\Josh\Documents\Members_26_Sept_2015.xls 2015-09-24 15:06 - 2015-09-24 15:06 - 00395528 _____ (Microsoft Corporation) C:\WINDOWS\system32\coin98ip.dll 2015-09-24 14:48 - 2014-11-20 08:09 - 00196336 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmml175.dll 2015-09-24 14:48 - 2014-11-20 08:09 - 00171760 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmja175.dll 2015-09-24 14:48 - 2014-11-20 08:09 - 00157936 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmpm081.dll 2015-09-24 14:48 - 2014-11-20 08:09 - 00134896 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmtp175.dll 2015-09-24 14:48 - 2014-11-20 08:09 - 00062704 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmpw081.dll 2015-09-24 14:48 - 2014-11-20 08:07 - 00424688 _____ (Hewlett-Packard Corporation) C:\WINDOWS\system32\hpcpn175.dll 2015-09-24 14:44 - 2015-09-24 14:45 - 17455344 _____ C:\Users\Josh\Downloads\upd-pcl6-x32-6.0.0.18849.exe 2015-09-24 14:36 - 2015-09-24 14:37 - 02449376 _____ (Megaify Software ) C:\Users\Josh\Downloads\DriverToolkitInstaller.exe 2015-09-24 14:32 - 2015-09-24 14:32 - 03347789 _____ C:\Users\Josh\Downloads\lj1300unipcl6xp64-th.exe 2015-09-22 18:40 - 2015-09-22 18:40 - 00160358 _____ C:\Users\Josh\Documents\cc_20150922_184032.reg 2015-09-22 18:39 - 2015-09-22 18:39 - 06667640 _____ (Piriform Ltd) C:\Users\Josh\Downloads\ccsetup509.exe 2015-09-22 03:32 - 2015-10-12 17:23 - 00000000 ____D C:\WINDOWS\Minidump 2015-09-21 21:07 - 2015-10-11 16:30 - 00098520 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-09-21 21:07 - 2015-09-21 21:08 - 00001129 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-09-21 21:07 - 2015-09-21 21:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-09-21 21:07 - 2015-09-21 21:08 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2015-09-21 21:07 - 2015-09-21 21:07 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-09-21 21:07 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-09-21 21:07 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-09-21 21:07 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2015-09-21 15:27 - 2015-10-13 19:19 - 00000000 ____D C:\Email 2015-09-21 11:37 - 2015-09-21 11:37 - 00215552 _____ C:\Users\Josh\Documents\Members_19_Sept_2015.xls 2015-09-20 10:16 - 2015-09-20 10:18 - 00000000 ____D C:\ProgramData\BSD 2015-09-20 10:16 - 2015-09-20 10:16 - 00000000 ____D C:\ProgramData\Auslogics 2015-09-20 10:15 - 2015-09-20 10:16 - 08880704 _____ (Auslogics Labs Pty Ltd ) C:\Users\Josh\Downloads\driver-updater-setup.exe 2015-09-20 09:14 - 2015-09-20 09:14 - 00002125 _____ C:\Users\Public\Desktop\NCH Suite.lnk 2015-09-20 09:14 - 2015-09-20 09:14 - 00001207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixillion Image Converter.lnk 2015-09-20 09:14 - 2015-09-20 09:14 - 00001195 _____ C:\Users\Public\Desktop\Pixillion Image Converter.lnk 2015-09-20 09:14 - 2015-09-20 09:14 - 00000000 ____D C:\ProgramData\NCH Software 2015-09-20 09:14 - 2015-09-20 09:14 - 00000000 ____D C:\Program Files\NCH Software 2015-09-20 09:13 - 2015-09-20 09:13 - 00634944 _____ (NCH Software) C:\Users\Josh\Downloads\pixsetup.exe 2015-09-19 20:57 - 2015-10-05 19:33 - 00000000 ____D C:\Users\Josh\AppData\Local\Mozilla 2015-09-19 13:30 - 2015-09-19 13:31 - 22327974 _____ C:\Users\Josh\Downloads\park-v1.7.8 (1).zip 2015-09-19 13:16 - 2015-09-19 13:17 - 22327974 _____ C:\Users\Josh\Downloads\park-v1.7.8.zip 2015-09-19 13:12 - 2015-09-19 13:12 - 00000000 ____D C:\ProgramData\Hewlett-Packard 2015-09-19 13:12 - 2015-09-19 13:12 - 00000000 _____ C:\WINDOWS\HPMProp.INI 2015-09-19 13:12 - 2014-06-17 03:57 - 00055688 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmnque.dll 2015-09-19 13:12 - 2014-06-17 03:57 - 00055688 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmnndps.dll 2015-09-19 13:12 - 2014-06-17 03:55 - 00103200 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpmlm135.dll 2015-09-19 13:12 - 2014-06-17 03:52 - 00196896 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmml170.dll 2015-09-19 13:12 - 2014-06-17 03:52 - 00171296 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmja170.dll 2015-09-19 13:12 - 2014-06-17 03:52 - 00134944 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpmtp170.dll 2015-09-19 13:12 - 2014-06-17 03:51 - 00421664 _____ (Hewlett-Packard Corporation) C:\WINDOWS\system32\hpcpn170.dll 2015-09-19 13:12 - 2011-02-11 15:23 - 00167480 _____ (Hewlett-Packard) C:\WINDOWS\system32\hppccompio.dll 2015-09-19 13:12 - 2009-02-25 17:32 - 00059928 _____ (Hewlett-Packard) C:\WINDOWS\system32\fxcompchannel.dll 2015-09-19 13:02 - 2015-09-19 13:03 - 16652576 _____ C:\Users\Josh\Downloads\upd-pcl5-x32-5.9.0.18326.exe 2015-09-19 12:51 - 2015-09-19 12:51 - 01056768 _____ C:\Users\Josh\Downloads\Dot4x86.msi 2015-09-19 12:30 - 2015-09-19 12:30 - 00070144 _____ C:\Users\Josh\Documents\aircruise.pub 2015-09-18 15:44 - 2015-09-18 15:44 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2015-09-18 12:52 - 2015-09-18 12:52 - 00000000 ____D C:\Users\Josh\AppData\Roaming\HMYGSetting 2015-09-18 12:52 - 2015-09-18 12:52 - 00000000 ____D C:\Users\Josh\AppData\Local\Wondershare 2015-09-18 12:52 - 2015-09-18 12:52 - 00000000 ____D C:\ProgramData\Wondershare 2015-09-18 12:52 - 2015-09-18 12:52 - 00000000 ____D C:\Program Files\Common Files\Wondershare 2015-09-18 12:51 - 2015-09-18 12:52 - 43541680 _____ (Wondershare ) C:\Users\Josh\Downloads\mobile-transfer.exe 2015-09-18 12:44 - 2015-09-18 12:53 - 00000000 ____D C:\Users\Josh\.android 2015-09-18 12:39 - 2015-10-13 11:30 - 00000000 ____D C:\Users\Josh\AppData\Roaming\SyncDroid 2015-09-18 12:39 - 2015-09-18 12:39 - 00000000 ____D C:\Users\Josh\Documents\SyncDroid 2015-09-18 12:38 - 2015-09-18 12:39 - 24931000 _____ (JunTu Software, Inc. ) C:\Users\Josh\Downloads\syncdroid.exe 2015-09-17 21:14 - 2015-10-08 12:23 - 09211904 _____ C:\Users\Josh\Documents\gazette62.pub 2015-09-17 19:20 - 2015-09-17 19:20 - 00571392 _____ C:\Users\Josh\Downloads\everyone-aug15 (2).xls 2015-09-17 19:20 - 2015-09-17 19:20 - 00571392 _____ C:\Users\Josh\Downloads\everyone-aug15 (1).xls 2015-09-17 17:51 - 2015-09-17 17:51 - 00000000 ____D C:\Jane Files 2015-09-17 10:31 - 2015-09-17 10:32 - 00203776 _____ C:\Users\Josh\Downloads\members (1).xls 2015-09-17 10:31 - 2015-09-17 10:31 - 00571392 _____ C:\Users\Josh\Downloads\everyone-aug15.xls 2015-09-17 08:34 - 2015-09-17 08:34 - 00000000 ____D C:\Users\Josh\AppData\LocalLow\Temp 2015-09-16 19:38 - 2015-09-16 19:38 - 00000000 ____D C:\WINDOWS\system32\Drivers\en-GB 2015-09-16 19:38 - 2015-09-16 19:38 - 00000000 ____D C:\WINDOWS\en-GB 2015-09-16 19:21 - 2015-09-16 19:21 - 00000000 ____D C:\Users\Josh\AppData\Local\speech 2015-09-16 17:25 - 2015-10-13 22:14 - 00398336 ___SH C:\Users\Josh\Documents\Thumbs.db 2015-09-15 18:24 - 2015-09-15 18:24 - 00002191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2015-09-15 18:24 - 2015-09-15 18:24 - 00000000 ____D C:\Users\Josh\AppData\LocalLow\Google 2015-09-15 18:23 - 2015-10-14 14:28 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-15 18:23 - 2015-10-14 08:02 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-15 18:23 - 2015-10-11 18:36 - 00000000 ____D C:\Users\Josh\AppData\Local\Google 2015-09-15 18:23 - 2015-10-11 18:35 - 00000000 ____D C:\Program Files\Google 2015-09-15 11:20 - 2015-09-15 11:20 - 00203776 _____ C:\Users\Josh\Downloads\members.xls 2015-09-14 20:38 - 2015-09-14 20:38 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ____D C:\Users\Josh\Documents\Fax 2015-09-14 18:53 - 2015-09-14 18:53 - 00000350 _____ C:\Users\Josh\Documents\AGMAgenda15.log 2015-09-14 18:36 - 2015-09-14 18:36 - 00000000 ____D C:\Users\Josh\Documents\HpReg_Backup 2015-09-14 18:28 - 2015-10-13 11:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2015-09-14 18:28 - 2015-09-21 19:09 - 00000000 ____D C:\Users\Josh\AppData\Roaming\HpUpdate 2015-09-14 18:28 - 2015-09-14 18:28 - 00002253 _____ C:\Users\Public\Desktop\HP ENVY 4500 series.lnk 2015-09-14 18:28 - 2015-09-14 18:28 - 00001215 _____ C:\Users\Public\Desktop\Shop for Supplies - HP ENVY 4500 series.lnk 2015-09-14 18:28 - 2015-09-14 18:28 - 00000000 ____D C:\ProgramData\Visan 2015-09-14 18:28 - 2014-07-21 15:33 - 00597512 ____N (Hewlett-Packard Development Company, LP) C:\WINDOWS\system32\HPDiscoPMC511.dll 2015-09-14 18:26 - 2015-10-13 11:54 - 00000000 ____D C:\Program Files\HP 2015-09-14 18:26 - 2015-09-14 18:36 - 00000000 ____D C:\ProgramData\HP 2015-09-14 18:26 - 2015-09-14 18:26 - 00000057 _____ C:\ProgramData\Ament.ini 2015-09-14 18:25 - 2015-09-14 18:28 - 00000000 ____D C:\Users\Josh\AppData\Local\HP 2015-09-14 18:19 - 2015-09-14 18:19 - 00000000 ____D C:\Users\Josh\AppData\Local\Hewlett-Packard 2015-09-14 18:15 - 2015-10-13 17:48 - 00000000 ____D C:\Program Files\Hewlett-Packard ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-10-14 15:15 - 2015-09-09 19:58 - 00000000 ____D C:\WINDOWS\system32\appmgmt 2015-10-14 15:11 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\sru 2015-10-14 15:02 - 2015-09-09 19:23 - 00000000 ____D C:\Users\Josh\AppData\Roaming\Skype 2015-10-14 12:31 - 2015-09-10 08:23 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-10-14 12:27 - 2015-09-10 08:23 - 141105520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-10-14 12:27 - 2015-07-10 10:20 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-10-14 12:09 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\Microsoft.NET 2015-10-14 08:06 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-10-14 08:02 - 2015-09-11 14:32 - 00000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs 2015-10-13 19:32 - 2015-09-11 13:41 - 00887614 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-10-13 11:48 - 2015-07-10 11:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-10-13 11:47 - 2015-07-10 08:59 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-10-13 09:51 - 2015-09-11 23:22 - 00000000 ___DC C:\WINDOWS\Panther 2015-10-13 08:10 - 2015-09-11 14:36 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2015-10-12 19:19 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-10-12 17:22 - 2015-09-09 20:32 - 00001034 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-10-12 17:22 - 2015-09-09 20:32 - 00000000 ____D C:\Program Files\CCleaner 2015-10-12 08:21 - 2015-09-09 18:27 - 00001165 _____ C:\Users\Public\Desktop\Avira Launcher.lnk 2015-10-12 08:21 - 2015-09-09 18:27 - 00000000 ____D C:\ProgramData\Package Cache 2015-10-12 08:21 - 2015-09-09 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-10-10 19:23 - 2015-09-09 18:38 - 00000000 ____D C:\Users\Josh\AppData\Local\Microsoft Help 2015-10-09 21:13 - 2015-09-11 14:02 - 00000000 ___RD C:\Users\Josh\OneDrive 2015-10-09 10:17 - 2015-09-10 15:02 - 00000000 ____D C:\ProgramData\Roxio 2015-10-09 07:40 - 2015-09-11 23:22 - 00000000 __SHD C:\Recovery 2015-10-08 21:47 - 2015-09-10 11:58 - 00000000 ____D C:\Users\Josh\AppData\Local\Adobe 2015-10-08 09:08 - 2015-09-11 14:31 - 00019154 _____ C:\WINDOWS\system32\lvcoinst.log 2015-10-07 21:23 - 2015-09-11 13:27 - 00000000 ____D C:\Users\Josh 2015-10-07 08:33 - 2015-09-09 19:11 - 00001383 _____ C:\Users\Josh\Desktop\Internet Explorer.lnk 2015-10-07 08:17 - 2015-09-09 19:23 - 00000000 ____D C:\ProgramData\Skype 2015-10-06 11:36 - 2015-09-10 19:38 - 00015916 _____ C:\Users\Josh\Documents\MasManTax-q3-2015.xlsx 2015-10-03 17:05 - 2015-09-10 19:38 - 00040448 _____ C:\Users\Josh\Documents\MasMananas2015.xls 2015-10-02 19:36 - 2015-07-10 10:29 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2015-10-02 19:36 - 2015-07-10 10:29 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2015-10-02 08:07 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\rescache 2015-10-02 03:34 - 2015-07-10 10:28 - 00000000 ___SD C:\WINDOWS\system32\F12 2015-10-02 03:34 - 2015-07-10 10:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-10-02 03:34 - 2015-07-10 10:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-10-02 03:34 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-10-02 03:34 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-10-02 03:34 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-10-02 03:34 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\Provisioning 2015-10-02 03:34 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\L2Schemas 2015-10-02 03:32 - 2015-07-10 11:53 - 00465640 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-09-30 21:56 - 2015-09-09 18:27 - 00132528 _____ C:\Users\Josh\AppData\Local\GDIPFONTCACHEV1.DAT 2015-09-30 08:05 - 2015-09-09 19:08 - 00001185 _____ C:\Users\Josh\Desktop\VoipConnect.lnk 2015-09-29 17:38 - 2015-09-10 15:08 - 00000000 ____D C:\Users\Josh\AppData\Roaming\Roxio 2015-09-29 12:14 - 2013-10-19 16:41 - 00000000 ___RD C:\Users\Josh\Desktop\OSOBS 2015-09-24 20:04 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2015-09-24 15:53 - 2015-09-09 18:30 - 00105352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2015-09-24 15:53 - 2015-09-09 18:30 - 00055912 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys 2015-09-23 15:30 - 2013-10-19 16:41 - 00000000 ___RD C:\Users\Josh\Desktop\Forums 2015-09-22 15:03 - 2015-09-09 15:19 - 00000000 ____D C:\Users\Josh\AppData\Local\VirtualStore 2015-09-22 12:06 - 2009-07-14 04:04 - 00000541 _____ C:\WINDOWS\win.ini 2015-09-21 12:41 - 2015-09-10 19:47 - 00000726 _____ C:\Users\Josh\Documents\Flat Location.kmz 2015-09-18 18:15 - 2013-10-19 14:34 - 00000000 ____D C:\Backup 2015-09-17 14:23 - 2015-09-09 17:23 - 00000355 _____ C:\Users\Josh\Desktop\Computer - Shortcut.lnk 2015-09-16 20:34 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\en-GB 2015-09-16 19:38 - 2015-07-10 12:49 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-16 19:38 - 2015-07-10 12:42 - 00000000 ____D C:\WINDOWS\system32\WCN 2015-09-16 19:38 - 2015-07-10 12:42 - 00000000 ____D C:\WINDOWS\system32\slmgr 2015-09-16 19:38 - 2015-07-10 10:28 - 00000000 ___RD C:\WINDOWS\MiracastView 2015-09-16 19:38 - 2015-07-10 10:28 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-09-16 19:38 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\IME 2015-09-16 19:38 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\Help 2015-09-16 19:38 - 2015-07-10 10:28 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-09-16 19:38 - 2015-07-10 10:28 - 00000000 ____D C:\Program Files\Windows Defender 2015-09-16 19:38 - 2015-07-10 10:28 - 00000000 ____D C:\Program Files\Common Files\System 2015-09-16 19:20 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-09-16 19:18 - 2015-09-10 19:48 - 00000000 ____D C:\Users\Josh\Documents\Belarc Advisor Computer Profile UKPC_files 2015-09-14 18:26 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\twain_32 2015-09-14 15:45 - 2015-09-10 15:45 - 00000000 ____D C:\Program Files\Common Files\Adobe ==================== Files in the root of some directories ======= 2015-09-27 14:08 - 2015-09-27 14:08 - 0000000 _____ () C:\Users\Josh\AppData\Local\rx_image.Cache 2009-06-12 15:44 - 2009-06-12 15:44 - 0008504 _____ () C:\Users\Josh\AppData\Local\Tempmain_01.jpg 2015-09-14 18:26 - 2015-09-14 18:26 - 0000057 _____ () C:\ProgramData\Ament.ini Some files in TEMP: ==================== C:\Users\Josh\AppData\Local\Temp\avgnt.exe C:\Users\Josh\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-10-11 10:03 ==================== End of FRST.txt ============================