Today a popup happened where an update to Mozilla firefox happened. Then my Mozilla firefox constantly crashed. When it did a popup occurred saying "restart firefox" or QuiT firefox". I did a f secure online scan no results. I did a trendmirco scon no results. I uninstalled firefox then did a ccleaner scan then reboot then ccleaner scan then reinstall firefox. Then same popup saying " restart forefox or quit forefox. Many times I did a restart firefox & did a refresh forefox ended with same popup error asking to restart forefox ot quirt forefox. everytime asking to send error report. I uninstalled & reinstalled many times & same error. I am at a loss. Please help!!! Below is my DDS report.
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.10586.20
Run by Gary at 22:03:54 on 2015-12-29
Microsoft Windows 10 Pro 10.0.10586.0.1252.1.1033.18.4095.1599 [GMT 8:00]
.
AV: G DATA TOTAL PROTECTION *Disabled/Updated* {545C8713-0744-B079-87F8-349A6D5C8CF0}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Disabled/Updated* {A16C3F68-9280-E053-1818-342707FECF4D}
SP: G DATA TOTAL PROTECTION *Enabled/Outdated* {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G DATA Personal Firewall *Enabled* {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\dashost.exe
C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\atieclxx.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k apphost
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files\Bitdefender Agent\ProductAgentService.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\Program Files\Serviio\bin\ServiioService.exe
C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Program Files\Serviio\bin\ServiioService.exe
C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
C:\WINDOWS\system32\sihost.exe
C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GdBgInx64.exe
C:\WINDOWS\system32\taskhostw.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GDKBFltExe32.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
C:\Program Files\AMD\CNext\CNext\cnext.exe
C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe
C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
C:\Program Files\Serviio\bin\ServiioConsole.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\PROGRA~2\Raptr\raptr_im.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe
C:\Program Files (x86)\Raptr\raptr_ep64.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe\HxMail.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe\HxTsr.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GDKBFltSur64.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = Preserve
uDefault_Page_URL = hxxp://www.google.com
BHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
TB: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -
uRun: [Nero MediaHome 4] "C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
uRun: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
uRun: [Google Update] "C:\Users\Gary\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
uRun: [WinPatrol] C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe -expressboot
uRun: [KiesPDLR.exe] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
uRun: [SmartSwitchPDLR.exe] C:\Program Files (x86)\Samsung\Smart Switch PC\SmartSwitchPDLR.exe Run Kies4
uRun: [Dropbox Update] "C:\Users\Gary\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
uRun: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
uRun: [OneDrive] "C:\Users\Gary\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe"
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
mRun: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
mRun: [Nero MediaHome 4] "C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
mRun: [GDFirewallTray] C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
mRun: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
mRun: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
StartupFolder: C:\Users\Gary\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Gary\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\Gary\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\PalTalk.lnk - C:\Program Files (x86)\Paltalk Messenger\paltalk.exe
StartupFolder: C:\Users\Gary\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Serviio.lnk - C:\Program Files\Serviio\bin\ServiioConsole.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-System: DSCAutomationHostEnabled = dword:2
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files (x86)\Paltalk Messenger\Paltalk.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{3648c94c-571b-4217-a170-5ba36fe383f1} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{6c180abb-3d48-404f-aa22-1c6906757a72} : NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{7e3c209f-fc48-4c40-bbbf-05f49d38d5a7} : DHCPNameServer = 10.12.0.1
TCP: Interfaces\{dfd11378-f819-422b-9f85-14a2836adbea} : DHCPNameServer = 192.168.1.254
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WebCheck - <orphaned>
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-mStart Page = hxxp://www.google.com
x64-mDefault_Page_URL = hxxp://www.google.com
x64-mWinlogon: Userinit = C:\WINDOWS\System32\userinit.exe,C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe,c:\program files (x86)\g data\totalprotection\avkkid\avkcks.exe,
x64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -
x64-BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-TB: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -
x64-Run: [SoundMAX] C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe /tray
x64-Run: [StartCN] "C:\Program Files\AMD\CNext\CNext\cnext.exe" atlogon
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-Run: [InstallerLauncher] "C:\Program Files\Common Files\Bitdefender\SetupInformation\{09FE2C2E-BB0D-4848-A706-AA244FA25FEA}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{09FE2C2E-BB0D-4848-A706-AA244FA25FEA}\Installer.exe"
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
Hosts: 0.0.0.0 fr.a2dfp.net
Hosts: 0.0.0.0 m.fr.a2dfp.net
Hosts: 0.0.0.0 mfr.a2dfp.net
Hosts: 0.0.0.0 ad.a8.net
Hosts: 0.0.0.0 asy.a8ww.net
.
Note: multiple HOSTS entries found. Please refer to Attach.txt
.
============= SERVICES / DRIVERS ===============
.
R0 GDBehave;GDBehave;C:\WINDOWS\System32\drivers\GDBehave.sys [2014-9-2 55808]
R0 mv61xx;mv61xx;C:\WINDOWS\System32\drivers\mv61xx.sys [2011-2-9 181040]
R0 TS4NT;TS4nt driver;C:\WINDOWS\System32\drivers\TS4nt.sys [2014-9-2 98760]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2015-10-30 106520]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2015-10-30 17944]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2015-10-30 199008]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2015-10-30 218624]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2015-10-30 87040]
R1 gddcv;G Data DCV Driver;C:\WINDOWS\System32\drivers\gddcv64.sys [2014-9-2 59904]
R1 GDKBFlt;G Data GDKBFlt Driver;C:\WINDOWS\System32\drivers\GDKBFlt64.sys [2014-9-2 20992]
R1 GDMnIcpt;GDMnIcpt;C:\WINDOWS\System32\drivers\MiniIcpt.sys [2014-9-2 142336]
R1 gdwfpcd;G Data WFP CD;C:\WINDOWS\System32\drivers\gdwfpcd64.sys [2014-9-2 64512]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 GRD;G Data Rootkit Detector Driver;C:\WINDOWS\System32\drivers\GRD.sys [2014-9-2 106272]
R1 HookCentre;HookCentre;C:\WINDOWS\System32\drivers\HookCentre.sys [2014-9-2 61440]
R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\WINDOWS\System32\drivers\hssdrv6.sys [2012-8-2 41704]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-23 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-13 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2014-7-23 172344]
R2 AMD External Events Utility;AMD External Events Utility;C:\WINDOWS\System32\atiesrxx.exe [2015-12-17 254992]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-10-7 77104]
R2 AVKProxy;G Data AntiVirus Proxy;C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2014-10-14 2250360]
R2 AVKService;G DATA Scheduler;C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe [2013-12-19 914552]
R2 AVKWCtl;G Data file system monitor;C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe [2014-5-20 2683760]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2015-10-30 43944]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc [2015-10-30 43944]
R2 HTCMonitorService;HTCMonitorService;C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2013-11-10 87368]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-7-12 1513784]
R2 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
R2 ProductAgentService;Product Agent Service;C:\Program Files\Bitdefender Agent\ProductAgentService.exe [2015-10-16 857288]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2015-12-29 2102496]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2015-12-29 224712]
R2 Serviio;Serviio;C:\Program Files\Serviio\bin\ServiioService.exe [2015-3-21 327680]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service;C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2015-7-25 743688]
R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2015-10-30 78848]
R2 tiledatamodelsvc;Tile Data model server;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\WINDOWS\System32\drivers\AtihdWT6.sys [2015-9-18 102912]
R3 gddcd;G Data DCD Driver;C:\WINDOWS\System32\drivers\gddcd64.sys [2014-9-2 79872]
R3 GDFwSvc;G Data Personal Firewall;C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [2014-8-21 3228136]
R3 GDPkIcpt;GDPkIcpt;C:\WINDOWS\System32\drivers\PktIcpt.sys [2014-9-2 64000]
R3 GDScan;G Data Scanner;C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [2014-5-20 700536]
R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
R3 lvrs64;Logitech RightSound Filter Driver;C:\WINDOWS\System32\drivers\lvrs64.sys [2015-11-27 351520]
R3 LVUVC64;@oem48.inf,%PID_0825_DD%(UVC);Logitech HD Webcam C270(UVC);C:\WINDOWS\System32\drivers\lvuvc64.sys [2015-11-27 4758176]
R3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\drivers\mbam.sys [2014-7-12 25816]
R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2015-10-30 20480]
R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
R3 yukonw8;NDIS6.3 Miniport Driver for Marvell Yukon Ethernet Legacy Controllers;C:\WINDOWS\System32\drivers\yk63x64.sys [2015-10-30 288768]
S1 PCC_DSCP;Personal Communicator DSCP Driver;C:\WINDOWS\System32\drivers\PCC_DSCP_x64.sys [2013-2-21 21152]
S2 dlfxap;dlfxap;C:\Program Files\Has Apps Com\dlfxap.exe [2015-10-16 8192]
S2 dlfxap_updater_service;dlfxap_updater_service;C:\Program Files\Has Apps Com\dlfxap_updater_service.exe [2015-10-16 6144]
S2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S2 GDBackupSvc;G DATA Backup Service;C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [2014-8-21 3844216]
S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService [2015-10-30 43944]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-7-12 1135416]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2015-12-29 1750712]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-7-9 327296]
S2 winservicej;Win Auto Update Service;C:\WINDOWS\System32\updtSer\winservicej.exe --> C:\WINDOWS\System32\updtSer\winservicej.exe [?]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2015-10-30 1135456]
S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 amdkmafd;AMD Audio Bus Lower Filter;C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-7-29 40720]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\WINDOWS\System32\drivers\ssadadb.sys [2013-4-10 38080]
S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2015-10-30 43944]
S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-10-30 43944]
S3 bcmfn;bcmfn Service;C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2015-10-30 9728]
S3 BthHFSrv;Bluetooth Handsfree Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2015-10-30 43944]
S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2015-12-18 117248]
S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-10-30 43944]
S3 DcpSvc;DataCollectionPublishingService;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2015-7-25 110720]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 embeddedmode;embeddedmode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
S3 fssfltr;fssfltr;C:\WINDOWS\System32\drivers\fssfltr.sys [2012-4-14 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]
S3 FsUsbExDisk;FsUsbExDisk;C:\Windows\SysWOW64\FsUsbExDisk.Sys [2013-2-18 37344]
S3 GDTunerSvc;G DATA Tuner Service;C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [2014-5-28 1637496]
S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 htcnprot;HTC NDIS Protocol Driver;C:\WINDOWS\System32\drivers\htcnprot.sys [2013-10-17 36928]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2015-10-30 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2015-10-30 113152]
S3 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2015-10-30 673120]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-10-30 43944]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\WINDOWS\System32\ieetwcollector.exe [2015-10-30 117760]
S3 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2015-10-30 46432]
S3 IoQos;IoQos;C:\WINDOWS\System32\drivers\ioqos.sys [2015-10-30 26624]
S3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\WINDOWS\System32\drivers\mwac.sys [2014-7-12 64216]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-10-30 43944]
S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2015-10-30 930656]
S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 Revoflt;Revoflt;C:\WINDOWS\System32\drivers\revoflt.sys [2014-12-30 31800]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2015-10-30 155488]
S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2015-10-30 43944]
S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\WINDOWS\System32\drivers\ssadbus.sys [2013-4-10 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\WINDOWS\System32\drivers\ssadmdfl.sys [2013-4-10 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\WINDOWS\System32\drivers\ssadmdm.sys [2013-4-10 188232]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\WINDOWS\System32\drivers\ssadserd.sys [2013-4-10 158024]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2015-7-25 206080]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2015-10-30 79200]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2015-10-30 290304]
S3 TSNxGService;G DATA Filesafe Service;C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [2014-7-1 255608]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2015-10-30 45056]
S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2015-10-30 28512]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2015-10-30 254816]
S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 131424]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 27488]
S3 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2015-10-30 31744]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 vmicvmsession;Hyper-V VM Session Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 w3logsvc;W3C Logging Service;C:\WINDOWS\System32\svchost.exe -k apphost [2015-10-30 43944]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2015-10-30 694784]
S3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2015-10-30 118112]
S3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2015-10-30 364464]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2015-10-30 43944]
S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2015-10-30 26976]
S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2015-10-30 59232]
S3 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 WpnService;Windows Push Notifications Service;C:\WINDOWS\System32\svchost.exe -k wswpnservice [2015-10-30 43944]
S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2015-10-30 238592]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2015-10-30 26112]
S4 CDPSvc;Connected Device Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
.
=============== Created Last 30 ================
.
2015-12-29 05:48:02 20760 ----a-w- C:\WINDOWS\System32\sdnclean64.exe
2015-12-29 04:11:10 -------- d-----w- C:\Program Files\CCleaner
2015-12-29 03:29:55 236384 ----a-w- C:\ProgramData\1451359608.bdinstall.bin
2015-12-28 10:15:47 316168 ----a-w- C:\WINDOWS\System32\drivers\tmcomm.sys
2015-12-28 09:41:06 -------- d-----w- C:\Users\Gary\AppData\Local\FSDART
2015-12-28 09:40:37 -------- d-----w- C:\Users\Gary\AppData\Local\F-Secure
2015-12-28 09:40:37 -------- d-----w- C:\ProgramData\F-Secure
2015-12-24 11:49:44 -------- d-----w- C:\Program Files\iPod
2015-12-24 11:49:44 -------- d-----w- C:\Program Files (x86)\iTunes
2015-12-24 11:49:43 -------- d---a-w- C:\Program Files\iTunes
2015-12-21 03:17:36 -------- d---a-w- C:\Program Files (x86)\AMD
2015-12-19 07:09:17 11154520 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D20AAEA-5AD5-4A9C-8D50-D7E77EA24161}\mpengine.dll
2015-12-19 03:24:04 1190000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\NisBackup\gapaengine.dll
2015-12-19 03:24:02 1190000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A78547EC-0F96-4995-AC7D-178DF06B0D98}\gapaengine.dll
2015-12-18 11:41:28 -------- d-----w- C:\Users\Gary\AppData\Local\Thunderbird
2015-12-18 08:17:03 16984064 ----a-w- C:\WINDOWS\System32\Windows.UI.Xaml.dll
2015-12-18 05:45:05 -------- d-----w- C:\WINDOWS\System32\SleepStudy
2015-12-17 20:04:24 -------- dc----w- C:\WINDOWS\Panther
2015-12-17 20:00:28 -------- d-----w- C:\Windows.old
2015-12-17 19:55:59 -------- d-----w- C:\WINDOWS\System32\Microsoft
2015-12-17 19:52:36 -------- d-----w- C:\WINDOWS\SysWow64\BestPractices
2015-12-17 19:52:36 -------- d-----w- C:\WINDOWS\System32\msmq
2015-12-17 19:52:36 -------- d-----w- C:\WINDOWS\System32\BestPractices
2015-12-17 19:52:35 -------- d-----w- C:\inetpub
2015-12-17 19:51:41 778936 ----a-w- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
2015-12-17 19:51:41 35480 ----a-w- C:\WINDOWS\SysWow64\TsWpfWrp.exe
2015-12-17 19:51:41 103120 ----a-w- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-12-17 19:51:36 35480 ----a-w- C:\WINDOWS\System32\TsWpfWrp.exe
2015-12-17 19:51:36 1166520 ----a-w- C:\WINDOWS\System32\PresentationNative_v0300.dll
2015-12-17 19:51:35 124624 ----a-w- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll
2015-12-17 07:40:02 -------- d-----w- C:\Users\Gary\AppData\Local\MicrosoftEdge
2015-12-17 05:06:29 -------- d-----w- C:\Users\Gary\AppData\Local\ActiveSync
2015-12-17 04:59:23 -------- d-sh--we C:\ProgramData\Documents
2015-12-17 04:59:23 -------- d-sh--w- C:\Recovery
2015-12-17 04:44:39 -------- d-----w- C:\WINDOWS\System32\wbem\Performance
2015-12-17 04:40:39 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\good
2015-12-17 04:40:39 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\bad
2015-12-17 04:28:06 -------- d-----w- C:\Program Files (x86)\Common Files\SpeechEngines
2015-12-17 04:28:02 -------- d-----w- C:\Program Files\Common Files\SpeechEngines
2015-12-17 04:11:22 0 ----a-w- C:\WINDOWS\ativpsrm.bin
2015-12-17 04:11:18 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2015-12-17 04:11:17 -------- d---a-w- C:\Program Files\AMD
2015-12-17 04:10:20 2718208 ----a-w- C:\WINDOWS\SysWow64\PrintConfig.dll
2015-12-17 04:07:58 -------- d-----w- C:\WINDOWS\System32\wbem\MOF
2015-12-16 19:45:42 143080 ----a-w- C:\WINDOWS\SysWow64\atiuxpag.dll
2015-12-16 19:45:10 10919104 ----a-w- C:\WINDOWS\System32\atiumd64.dll
2015-12-16 19:44:58 130616 ----a-w- C:\WINDOWS\System32\atiu9p64.dll
2015-12-16 19:44:56 88032 ----a-w- C:\WINDOWS\System32\atimpc64.dll
2015-12-16 19:44:56 81200 ----a-w- C:\WINDOWS\SysWow64\atimpc32.dll
2015-12-16 19:44:42 11011560 ----a-w- C:\WINDOWS\SysWow64\atidxx32.dll
2015-12-16 19:44:10 8426376 ----a-w- C:\WINDOWS\SysWow64\amdxc32.dll
2015-12-16 19:44:02 88032 ----a-w- C:\WINDOWS\System32\amdpcom64.dll
2015-12-16 19:44:00 81200 ----a-w- C:\WINDOWS\SysWow64\amdpcom32.dll
2015-12-16 19:44:00 471344 ----a-w- C:\WINDOWS\System32\amdmiracast.dll
2015-12-16 19:43:56 151968 ----a-w- C:\WINDOWS\System32\amdhcp64.dll
2015-12-16 19:43:56 138416 ----a-w- C:\WINDOWS\SysWow64\amdhcp32.dll
2015-12-16 19:43:48 128568 ----a-w- C:\WINDOWS\System32\amdave64.dll
2015-12-16 19:41:18 97808 ----a-w- C:\WINDOWS\SysWow64\mantleaxl32.dll
2015-12-16 19:41:18 104976 ----a-w- C:\WINDOWS\System32\mantleaxl64.dll
2015-12-16 19:41:16 136208 ----a-w- C:\WINDOWS\System32\mantle64.dll
2015-12-16 19:41:14 203792 ----a-w- C:\WINDOWS\System32\hsa-thunk64.dll
2015-12-16 19:41:14 122384 ----a-w- C:\WINDOWS\SysWow64\mantle32.dll
2015-12-16 19:41:12 183312 ----a-w- C:\WINDOWS\SysWow64\hsa-thunk.dll
2015-12-16 19:41:08 232464 ----a-w- C:\WINDOWS\System32\dgtrayicon.exe
2015-12-16 19:41:06 12816 ----a-w- C:\WINDOWS\SysWow64\detoured.dll
2015-12-16 19:41:06 12816 ----a-w- C:\WINDOWS\System32\detoured.dll
2015-12-16 19:41:02 243728 ----a-w- C:\WINDOWS\System32\clinfo.exe
2015-12-16 19:37:32 199696 ----a-w- C:\WINDOWS\System32\atitmm64.dll
2015-12-16 19:37:30 97808 ----a-w- C:\WINDOWS\System32\atisamu64.dll
2015-12-16 19:37:26 89616 ----a-w- C:\WINDOWS\SysWow64\atisamu32.dll
2015-12-16 19:37:24 25848848 ----a-w- C:\WINDOWS\SysWow64\atioglxx.dll
2015-12-16 19:35:16 341520 ----a-w- C:\WINDOWS\System32\ATIODE.exe
2015-12-16 19:34:50 59920 ----a-w- C:\WINDOWS\System32\ATIODCLI.exe
2015-12-16 19:34:22 31385616 ----a-w- C:\WINDOWS\System32\atio6axx.dll
2015-12-16 19:32:02 40464 ----a-w- C:\WINDOWS\System32\atimuixx.dll
2015-12-16 19:29:52 78864 ----a-w- C:\WINDOWS\SysWow64\atiglpxx.dll
2015-12-16 19:29:52 78864 ----a-w- C:\WINDOWS\System32\atiglpxx.dll
2015-12-16 19:29:48 84504 ----a-w- C:\WINDOWS\System32\atig6pxx.dll
2015-12-16 19:29:48 166416 ----a-w- C:\WINDOWS\System32\atig6txx.dll
2015-12-16 19:29:38 254992 ----a-w- C:\WINDOWS\System32\atiesrxx.exe
2015-12-16 19:29:16 561168 ----a-w- C:\WINDOWS\System32\atieclxx.exe
2015-12-16 19:28:56 171032 ----a-w- C:\WINDOWS\System32\atieah64.exe
2015-12-16 19:28:56 154128 ----a-w- C:\WINDOWS\SysWow64\atieah32.exe
2015-12-16 19:28:54 451088 ----a-w- C:\WINDOWS\System32\atidemgy.dll
2015-12-16 19:28:36 71184 ----a-w- C:\WINDOWS\System32\aticalrt64.dll
2015-12-16 19:28:14 60944 ----a-w- C:\WINDOWS\SysWow64\aticalrt.dll
2015-12-16 19:27:52 15720464 ----a-w- C:\WINDOWS\System32\aticaldd64.dll
2015-12-16 19:27:20 14310928 ----a-w- C:\WINDOWS\SysWow64\aticaldd.dll
2015-12-16 19:26:12 64528 ----a-w- C:\WINDOWS\System32\aticalcl64.dll
2015-12-16 19:26:10 57872 ----a-w- C:\WINDOWS\SysWow64\aticalcl.dll
2015-12-16 19:26:08 375824 ----a-w- C:\WINDOWS\System32\atiapfxx.exe
2015-12-16 19:25:26 950288 ----a-w- C:\WINDOWS\SysWow64\atiadlxx.dll
2015-12-16 19:25:22 1281552 ----a-w- C:\WINDOWS\System32\atiadlxx.dll
2015-12-16 19:25:20 52240 ----a-w- C:\WINDOWS\System32\drivers\ati2erec.dll
2015-12-16 19:25:02 49992720 ----a-w- C:\WINDOWS\System32\amdocl64.dll
2015-12-16 19:22:22 27605008 ----a-w- C:\WINDOWS\System32\amdocl12cl64.dll
2015-12-16 19:19:06 59408 ----a-w- C:\WINDOWS\System32\amdmmcl6.dll
2015-12-16 19:19:04 48144 ----a-w- C:\WINDOWS\SysWow64\amdmmcl.dll
2015-12-16 19:17:14 6651920 ----a-w- C:\WINDOWS\System32\amdmantle64.dll
2015-12-16 19:16:20 5232656 ----a-w- C:\WINDOWS\SysWow64\amdmantle32.dll
2015-12-16 19:15:26 686608 ----a-w- C:\WINDOWS\System32\amdlvr64.dll
2015-12-16 19:15:22 571408 ----a-w- C:\WINDOWS\SysWow64\amdlvr32.dll
2015-12-16 19:13:50 213520 ----a-w- C:\WINDOWS\System32\amdgfxinfo64.dll
2015-12-16 19:13:50 143376 ----a-w- C:\WINDOWS\System32\amdhdl64.dll
2015-12-16 19:13:50 132112 ----a-w- C:\WINDOWS\SysWow64\amdhdl32.dll
2015-12-16 19:13:48 198672 ----a-w- C:\WINDOWS\SysWow64\amdgfxinfo32.dll
2015-12-16 19:13:46 305392 ----a-w- C:\WINDOWS\System32\drivers\amdacpksd.sys
2015-12-16 19:13:44 73744 ----a-w- C:\WINDOWS\System32\OpenCL.dll
2015-12-16 19:13:44 68112 ----a-w- C:\WINDOWS\SysWow64\OpenCL.dll
2015-12-16 18:07:46 10339016 ----a-w- C:\WINDOWS\System32\amdxc64.dll
2015-12-12 19:55:36 16148 ----a-w- C:\WINDOWS\System32\PRECIOUS_FixCompter_HistoryPrediction.bin
2015-12-12 03:12:07 -------- d-----w- C:\Users\Gary\AppData\Local\{9FCA7744-EE46-47F4-A543-ECB6C1C39E14}
2015-12-11 03:13:27 -------- d-----w- C:\Users\Gary\AppData\Local\{C844550B-3B77-4ED6-8388-89913379B9B3}
2015-12-10 03:05:04 -------- d-----w- C:\Users\Gary\AppData\Local\{FD5F7BB8-96E9-4523-A72D-66641B8C686C}
2015-12-09 14:39:36 -------- d-----w- C:\Users\Gary\AppData\Local\{B9BF0C63-6F92-420E-B2BF-56E0414A7618}
2015-12-09 11:15:09 9479872 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerInstaller.exe
2015-12-09 03:59:21 -------- d-----w- C:\Users\Gary\AppData\Local\{1015EF6F-0C03-4427-851D-98EB7DD4D21D}
2015-12-08 03:40:04 -------- d-----w- C:\Users\Gary\AppData\Local\{74E36C3F-81F4-43E6-AA05-5A0C8043D410}
2015-12-07 03:14:41 -------- d-----w- C:\Users\Gary\AppData\Local\{285D0F49-69CD-48E7-8424-921477431F71}
2015-12-06 05:41:12 -------- d-----w- C:\Users\Gary\AppData\Local\{D98E3054-9969-4395-B778-9D664553BC5D}
2015-12-05 16:42:00 -------- d-----w- C:\Users\Gary\AppData\Local\{7A56DBAA-3DF9-4634-83D3-0F1BE009C6B5}
2015-12-05 03:50:37 -------- d-----w- C:\Users\Gary\AppData\Local\{D4AA99FC-D9C8-4B9B-A743-9DC17662EA2E}
2015-12-04 03:38:47 -------- d-----w- C:\Users\Gary\AppData\Local\{95F412B8-CEC6-4BE1-9198-083E6A19A26F}
2015-12-03 03:19:30 -------- d-----w- C:\Users\Gary\AppData\Local\{CB1597CF-B813-4121-86E6-FC4CBBA1D1AD}
2015-12-02 03:35:50 -------- d-----w- C:\Users\Gary\AppData\Local\{1D08A572-B8B8-4641-8A9F-3C2B3EA250BE}
2015-12-01 04:04:31 -------- d-----w- C:\Users\Gary\AppData\Local\{D240323C-2DB3-420C-9C14-1A45395BAA00}
2015-11-30 17:53:38 -------- d-----w- C:\Users\Gary\AppData\Roaming\X-Chat 2
2015-11-30 17:53:37 -------- d-----w- C:\Program Files (x86)\xchat
2015-11-30 15:12:39 -------- d-----w- C:\Users\Gary\AppData\Local\{34A4B8FE-E5A4-4729-A045-7ED51C0CB602}
2015-11-30 03:12:14 -------- d-----w- C:\Users\Gary\AppData\Local\{69AE3069-4C1F-46BF-B9CA-8F2FC76BB83E}
.
==================== Find3M ====================
.
2015-12-29 06:02:23 192216 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
2015-12-17 19:52:31 96768 ----a-w- C:\WINDOWS\SysWow64\mqoa.tlb
2015-12-16 19:45:42 162784 ----a-w- C:\WINDOWS\System32\atiuxp64.dll
2015-12-16 19:45:40 8168856 ----a-w- C:\WINDOWS\SysWow64\atiumdva.dll
2015-12-16 19:45:28 9158496 ----a-w- C:\WINDOWS\SysWow64\atiumdag.dll
2015-12-16 19:45:18 9105552 ----a-w- C:\WINDOWS\System32\atiumd6a.dll
2015-12-16 19:45:00 112392 ----a-w- C:\WINDOWS\SysWow64\atiu9pag.dll
2015-12-16 19:44:54 13313544 ----a-w- C:\WINDOWS\System32\atidxx64.dll
2015-12-16 19:44:32 1519232 ----a-w- C:\WINDOWS\System32\aticfx64.dll
2015-12-16 19:44:28 1249664 ----a-w- C:\WINDOWS\SysWow64\aticfx32.dll
2015-12-16 19:43:48 120200 ----a-w- C:\WINDOWS\SysWow64\amdave32.dll
2015-12-16 19:41:06 874000 ----a-w- C:\WINDOWS\System32\coinst_15.30.dll
2015-12-16 19:31:38 679952 ----a-w- C:\WINDOWS\System32\drivers\atikmpag.sys
2015-12-16 19:31:14 23969808 ----a-w- C:\WINDOWS\System32\drivers\atikmdag.sys
2015-12-16 19:29:50 151056 ----a-w- C:\WINDOWS\SysWow64\atigktxx.dll
2015-12-16 19:25:26 950288 ----a-w- C:\WINDOWS\SysWow64\atiadlxy.dll
2015-12-16 19:21:20 22357008 ----a-w- C:\WINDOWS\SysWow64\amdocl12cl.dll
2015-12-16 19:20:32 41519120 ----a-w- C:\WINDOWS\SysWow64\amdocl.dll
2015-12-09 03:39:31 301728 ------w- C:\WINDOWS\System32\MpSigStub.exe
2015-12-07 04:57:01 973664 ----a-w- C:\WINDOWS\SysWow64\LicenseManager.dll
2015-12-07 04:55:42 1281376 ----a-w- C:\WINDOWS\System32\LicenseManager.dll
2015-12-07 04:49:31 412512 ----a-w- C:\WINDOWS\System32\wifitask.exe
2015-12-07 04:47:58 116720 ----a-w- C:\WINDOWS\SysWow64\mfps.dll
2015-12-07 04:47:57 925064 ----a-w- C:\WINDOWS\SysWow64\mfplat.dll
2015-12-07 04:47:57 898184 ----a-w- C:\WINDOWS\SysWow64\mfsrcsnk.dll
2015-12-07 04:47:54 716928 ----a-w- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
2015-12-07 04:45:46 264544 ----a-w- C:\WINDOWS\System32\ContentDeliveryManager.Utilities.dll
2015-12-07 04:15:40 1035776 ----a-w- C:\WINDOWS\System32\XboxNetApiSvc.dll
2015-12-07 04:15:08 75776 ----a-w- C:\WINDOWS\System32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-07 04:10:37 824320 ----a-w- C:\WINDOWS\System32\WpcWebFilter.dll
2015-12-07 04:09:36 30208 ----a-w- C:\WINDOWS\System32\StorageUsage.dll
2015-12-07 04:09:27 92160 ----a-w- C:\WINDOWS\System32\policymanagerprecheck.dll
2015-12-07 04:09:07 133120 ----a-w- C:\WINDOWS\System32\flvprophandler.dll
2015-12-07 04:07:43 134656 ----a-w- C:\WINDOWS\System32\wificonnapi.dll
2015-12-07 04:07:34 77312 ----a-w- C:\WINDOWS\System32\ProvPluginEng.dll
2015-12-07 04:06:52 231936 ----a-w- C:\WINDOWS\System32\KnobsCore.dll
2015-12-07 04:06:38 199168 ----a-w- C:\WINDOWS\System32\InstallAgent.exe
2015-12-07 04:06:36 50176 ----a-w- C:\WINDOWS\apppatch\apppatch64\acspecfc.dll
2015-12-07 04:06:32 572928 ----a-w- C:\WINDOWS\SysWow64\WpcWebFilter.dll
2015-12-07 04:05:28 36864 ----a-w- C:\WINDOWS\System32\BackgroundTransferHost.exe
2015-12-07 04:05:15 192000 ----a-w- C:\WINDOWS\System32\provisioningcsp.dll
2015-12-07 04:04:28 56320 ----a-w- C:\WINDOWS\System32\provtool.exe
2015-12-07 04:04:20 66560 ----a-w- C:\WINDOWS\System32\moshost.dll
2015-12-07 04:03:46 13017600 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
2015-12-07 04:02:54 477696 ----a-w- C:\WINDOWS\apppatch\AcSpecfc.dll
2015-12-07 04:02:49 161280 ----a-w- C:\WINDOWS\SysWow64\InstallAgent.exe
2015-12-07 04:02:01 269824 ----a-w- C:\WINDOWS\System32\moshostcore.dll
2015-12-07 04:01:43 34304 ----a-w- C:\WINDOWS\SysWow64\BackgroundTransferHost.exe
2015-12-07 04:01:07 543232 ----a-w- C:\WINDOWS\System32\StoreAgent.dll
2015-12-07 04:00:55 323072 ----a-w- C:\WINDOWS\System32\MSFlacDecoder.dll
2015-12-07 04:00:52 203776 ----a-w- C:\WINDOWS\System32\NetSetupSvc.dll
2015-12-07 04:00:51 210432 ----a-w- C:\WINDOWS\System32\wcmcsp.dll
2015-12-07 04:00:40 618496 ----a-w- C:\WINDOWS\System32\StorSvc.dll
2015-12-07 03:59:52 286208 ----a-w- C:\WINDOWS\System32\provhandlers.dll
2015-12-07 03:59:49 292352 ----a-w- C:\WINDOWS\System32\provengine.dll
2015-12-07 03:59:37 558080 ----a-w- C:\WINDOWS\System32\MBMediaManager.dll
2015-12-07 03:59:16 165376 ----a-w- C:\WINDOWS\System32\provdatastore.dll
2015-12-07 03:58:17 459776 ----a-w- C:\WINDOWS\System32\MapConfiguration.dll
2015-12-07 03:57:48 387072 ----a-w- C:\WINDOWS\System32\qdvd.dll
2015-12-07 03:57:40 409088 ----a-w- C:\WINDOWS\SysWow64\StoreAgent.dll
2015-12-07 03:57:28 270848 ----a-w- C:\WINDOWS\SysWow64\MSFlacDecoder.dll
2015-12-07 03:56:27 497152 ----a-w- C:\WINDOWS\System32\mfmkvsrcsnk.dll
2015-12-07 03:56:18 607232 ----a-w- C:\WINDOWS\System32\wcmsvc.dll
2015-12-07 03:55:38 7979008 ----a-w- C:\WINDOWS\System32\mos.dll
2015-12-07 03:55:02 346112 ----a-w- C:\WINDOWS\SysWow64\MapConfiguration.dll
2015-12-07 03:54:56 850432 ----a-w- C:\WINDOWS\System32\MapsStore.dll
2015-12-07 03:54:56 569856 ----a-w- C:\WINDOWS\SysWow64\qdvd.dll
2015-12-07 03:53:28 381952 ----a-w- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll
2015-12-07 03:51:16 1318912 ----a-w- C:\WINDOWS\System32\wifinetworkmanager.dll
2015-12-07 03:51:00 223232 ----a-w- C:\WINDOWS\System32\fveapibase.dll
2015-12-07 03:50:55 1131520 ----a-w- C:\WINDOWS\System32\Windows.Media.Audio.dll
2015-12-07 03:49:01 1105920 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll
2015-12-07 03:48:02 6297088 ----a-w- C:\WINDOWS\SysWow64\mos.dll
2015-12-07 03:47:02 3428864 ----a-w- C:\WINDOWS\System32\Windows.Media.dll
2015-12-07 03:45:53 683008 ----a-w- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
2015-12-07 03:45:45 900608 ----a-w- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll
2015-12-07 03:45:44 2582016 ----a-w- C:\WINDOWS\System32\MFMediaEngine.dll
2015-12-07 03:44:48 2796032 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.dll
2015-12-07 03:43:35 931328 ----a-w- C:\WINDOWS\System32\MSMPEG2ENC.DLL
2015-12-07 03:43:07 2598400 ----a-w- C:\WINDOWS\System32\NetworkMobileSettings.dll
2015-12-07 03:41:02 2061824 ----a-w- C:\WINDOWS\SysWow64\MFMediaEngine.dll
2015-12-07 03:40:47 3593216 ----a-w- C:\WINDOWS\System32\win32kfull.sys
2015-12-07 03:40:23 1995776 ----a-w- C:\WINDOWS\System32\ActiveSyncProvider.dll
2015-12-07 03:40:08 1706496 ----a-w- C:\WINDOWS\SysWow64\ActiveSyncProvider.dll
2015-12-07 03:39:24 764928 ----a-w- C:\WINDOWS\System32\fveapi.dll
2015-12-07 03:38:14 871936 ----a-w- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL
2015-12-07 03:33:04 375296 ----a-w- C:\WINDOWS\System32\MDEServer.exe
2015-12-07 03:32:46 126464 ----a-w- C:\WINDOWS\System32\dialserver.dll
2015-12-01 00:33:29 826872 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2015-12-01 00:33:29 176632 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2015-10-30 09:07:33 96256 ----a-w- C:\WINDOWS\System32\auditpolmsg.dll
2015-10-30 09:03:16 6359040 ----a-w- C:\WINDOWS\System32\NlsData0009.dll
2015-10-30 09:03:16 5739520 ----a-w- C:\WINDOWS\System32\prm0009.dll
2015-10-30 09:03:16 2629632 ----a-w- C:\WINDOWS\System32\NlsLexicons0009.dll
2015-10-30 09:03:15 4847616 ----a-w- C:\WINDOWS\SysWow64\NlsData0009.dll
2015-10-30 09:03:15 2629632 ----a-w- C:\WINDOWS\SysWow64\NlsLexicons0009.dll
2015-10-30 09:02:01 12288 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\NdisImPlatform.sys.mui
2015-10-30 09:02:00 8704 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\fwpkclnt.sys.mui
2015-10-30 09:01:59 7168 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\ndiscap.sys.mui
2015-10-30 09:01:59 4096 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\wfplwfs.sys.mui
.
============= FINISH: 22:05:59.18 ===============
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.10586.20
Run by Gary at 22:03:54 on 2015-12-29
Microsoft Windows 10 Pro 10.0.10586.0.1252.1.1033.18.4095.1599 [GMT 8:00]
.
AV: G DATA TOTAL PROTECTION *Disabled/Updated* {545C8713-0744-B079-87F8-349A6D5C8CF0}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Disabled/Updated* {A16C3F68-9280-E053-1818-342707FECF4D}
SP: G DATA TOTAL PROTECTION *Enabled/Outdated* {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G DATA Personal Firewall *Enabled* {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\dashost.exe
C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\atieclxx.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k apphost
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files\Bitdefender Agent\ProductAgentService.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\Program Files\Serviio\bin\ServiioService.exe
C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Program Files\Serviio\bin\ServiioService.exe
C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
C:\WINDOWS\system32\sihost.exe
C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GdBgInx64.exe
C:\WINDOWS\system32\taskhostw.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GDKBFltExe32.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
C:\Program Files\AMD\CNext\CNext\cnext.exe
C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe
C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
C:\Program Files\Serviio\bin\ServiioConsole.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\PROGRA~2\Raptr\raptr_im.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe
C:\Program Files (x86)\Raptr\raptr_ep64.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe\HxMail.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe\HxTsr.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GDKBFltSur64.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = Preserve
uDefault_Page_URL = hxxp://www.google.com
BHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
TB: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -
uRun: [Nero MediaHome 4] "C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
uRun: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
uRun: [Google Update] "C:\Users\Gary\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
uRun: [WinPatrol] C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe -expressboot
uRun: [KiesPDLR.exe] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
uRun: [SmartSwitchPDLR.exe] C:\Program Files (x86)\Samsung\Smart Switch PC\SmartSwitchPDLR.exe Run Kies4
uRun: [Dropbox Update] "C:\Users\Gary\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
uRun: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
uRun: [OneDrive] "C:\Users\Gary\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe"
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
mRun: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
mRun: [Nero MediaHome 4] "C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
mRun: [GDFirewallTray] C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
mRun: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
mRun: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
StartupFolder: C:\Users\Gary\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Gary\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\Gary\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\PalTalk.lnk - C:\Program Files (x86)\Paltalk Messenger\paltalk.exe
StartupFolder: C:\Users\Gary\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Serviio.lnk - C:\Program Files\Serviio\bin\ServiioConsole.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-System: DSCAutomationHostEnabled = dword:2
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files (x86)\Paltalk Messenger\Paltalk.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{3648c94c-571b-4217-a170-5ba36fe383f1} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{6c180abb-3d48-404f-aa22-1c6906757a72} : NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{7e3c209f-fc48-4c40-bbbf-05f49d38d5a7} : DHCPNameServer = 10.12.0.1
TCP: Interfaces\{dfd11378-f819-422b-9f85-14a2836adbea} : DHCPNameServer = 192.168.1.254
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WebCheck - <orphaned>
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-mStart Page = hxxp://www.google.com
x64-mDefault_Page_URL = hxxp://www.google.com
x64-mWinlogon: Userinit = C:\WINDOWS\System32\userinit.exe,C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe,c:\program files (x86)\g data\totalprotection\avkkid\avkcks.exe,
x64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -
x64-BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-TB: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -
x64-Run: [SoundMAX] C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe /tray
x64-Run: [StartCN] "C:\Program Files\AMD\CNext\CNext\cnext.exe" atlogon
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-Run: [InstallerLauncher] "C:\Program Files\Common Files\Bitdefender\SetupInformation\{09FE2C2E-BB0D-4848-A706-AA244FA25FEA}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{09FE2C2E-BB0D-4848-A706-AA244FA25FEA}\Installer.exe"
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
Hosts: 0.0.0.0 fr.a2dfp.net
Hosts: 0.0.0.0 m.fr.a2dfp.net
Hosts: 0.0.0.0 mfr.a2dfp.net
Hosts: 0.0.0.0 ad.a8.net
Hosts: 0.0.0.0 asy.a8ww.net
.
Note: multiple HOSTS entries found. Please refer to Attach.txt
.
============= SERVICES / DRIVERS ===============
.
R0 GDBehave;GDBehave;C:\WINDOWS\System32\drivers\GDBehave.sys [2014-9-2 55808]
R0 mv61xx;mv61xx;C:\WINDOWS\System32\drivers\mv61xx.sys [2011-2-9 181040]
R0 TS4NT;TS4nt driver;C:\WINDOWS\System32\drivers\TS4nt.sys [2014-9-2 98760]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2015-10-30 106520]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2015-10-30 17944]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2015-10-30 199008]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2015-10-30 218624]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2015-10-30 87040]
R1 gddcv;G Data DCV Driver;C:\WINDOWS\System32\drivers\gddcv64.sys [2014-9-2 59904]
R1 GDKBFlt;G Data GDKBFlt Driver;C:\WINDOWS\System32\drivers\GDKBFlt64.sys [2014-9-2 20992]
R1 GDMnIcpt;GDMnIcpt;C:\WINDOWS\System32\drivers\MiniIcpt.sys [2014-9-2 142336]
R1 gdwfpcd;G Data WFP CD;C:\WINDOWS\System32\drivers\gdwfpcd64.sys [2014-9-2 64512]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 GRD;G Data Rootkit Detector Driver;C:\WINDOWS\System32\drivers\GRD.sys [2014-9-2 106272]
R1 HookCentre;HookCentre;C:\WINDOWS\System32\drivers\HookCentre.sys [2014-9-2 61440]
R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\WINDOWS\System32\drivers\hssdrv6.sys [2012-8-2 41704]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-23 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-13 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2014-7-23 172344]
R2 AMD External Events Utility;AMD External Events Utility;C:\WINDOWS\System32\atiesrxx.exe [2015-12-17 254992]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-10-7 77104]
R2 AVKProxy;G Data AntiVirus Proxy;C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2014-10-14 2250360]
R2 AVKService;G DATA Scheduler;C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe [2013-12-19 914552]
R2 AVKWCtl;G Data file system monitor;C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe [2014-5-20 2683760]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2015-10-30 43944]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc [2015-10-30 43944]
R2 HTCMonitorService;HTCMonitorService;C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2013-11-10 87368]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-7-12 1513784]
R2 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
R2 ProductAgentService;Product Agent Service;C:\Program Files\Bitdefender Agent\ProductAgentService.exe [2015-10-16 857288]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2015-12-29 2102496]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2015-12-29 224712]
R2 Serviio;Serviio;C:\Program Files\Serviio\bin\ServiioService.exe [2015-3-21 327680]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service;C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2015-7-25 743688]
R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2015-10-30 78848]
R2 tiledatamodelsvc;Tile Data model server;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\WINDOWS\System32\drivers\AtihdWT6.sys [2015-9-18 102912]
R3 gddcd;G Data DCD Driver;C:\WINDOWS\System32\drivers\gddcd64.sys [2014-9-2 79872]
R3 GDFwSvc;G Data Personal Firewall;C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [2014-8-21 3228136]
R3 GDPkIcpt;GDPkIcpt;C:\WINDOWS\System32\drivers\PktIcpt.sys [2014-9-2 64000]
R3 GDScan;G Data Scanner;C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [2014-5-20 700536]
R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
R3 lvrs64;Logitech RightSound Filter Driver;C:\WINDOWS\System32\drivers\lvrs64.sys [2015-11-27 351520]
R3 LVUVC64;@oem48.inf,%PID_0825_DD%(UVC);Logitech HD Webcam C270(UVC);C:\WINDOWS\System32\drivers\lvuvc64.sys [2015-11-27 4758176]
R3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\drivers\mbam.sys [2014-7-12 25816]
R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2015-10-30 20480]
R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
R3 yukonw8;NDIS6.3 Miniport Driver for Marvell Yukon Ethernet Legacy Controllers;C:\WINDOWS\System32\drivers\yk63x64.sys [2015-10-30 288768]
S1 PCC_DSCP;Personal Communicator DSCP Driver;C:\WINDOWS\System32\drivers\PCC_DSCP_x64.sys [2013-2-21 21152]
S2 dlfxap;dlfxap;C:\Program Files\Has Apps Com\dlfxap.exe [2015-10-16 8192]
S2 dlfxap_updater_service;dlfxap_updater_service;C:\Program Files\Has Apps Com\dlfxap_updater_service.exe [2015-10-16 6144]
S2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S2 GDBackupSvc;G DATA Backup Service;C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [2014-8-21 3844216]
S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService [2015-10-30 43944]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-7-12 1135416]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2015-12-29 1750712]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-7-9 327296]
S2 winservicej;Win Auto Update Service;C:\WINDOWS\System32\updtSer\winservicej.exe --> C:\WINDOWS\System32\updtSer\winservicej.exe [?]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2015-10-30 1135456]
S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 amdkmafd;AMD Audio Bus Lower Filter;C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-7-29 40720]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\WINDOWS\System32\drivers\ssadadb.sys [2013-4-10 38080]
S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2015-10-30 43944]
S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-10-30 43944]
S3 bcmfn;bcmfn Service;C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2015-10-30 9728]
S3 BthHFSrv;Bluetooth Handsfree Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2015-10-30 43944]
S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2015-12-18 117248]
S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-10-30 43944]
S3 DcpSvc;DataCollectionPublishingService;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2015-7-25 110720]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 embeddedmode;embeddedmode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
S3 fssfltr;fssfltr;C:\WINDOWS\System32\drivers\fssfltr.sys [2012-4-14 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]
S3 FsUsbExDisk;FsUsbExDisk;C:\Windows\SysWOW64\FsUsbExDisk.Sys [2013-2-18 37344]
S3 GDTunerSvc;G DATA Tuner Service;C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [2014-5-28 1637496]
S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 htcnprot;HTC NDIS Protocol Driver;C:\WINDOWS\System32\drivers\htcnprot.sys [2013-10-17 36928]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2015-10-30 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2015-10-30 113152]
S3 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2015-10-30 673120]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-10-30 43944]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\WINDOWS\System32\ieetwcollector.exe [2015-10-30 117760]
S3 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2015-10-30 46432]
S3 IoQos;IoQos;C:\WINDOWS\System32\drivers\ioqos.sys [2015-10-30 26624]
S3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\WINDOWS\System32\drivers\mwac.sys [2014-7-12 64216]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-10-30 43944]
S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2015-10-30 930656]
S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 Revoflt;Revoflt;C:\WINDOWS\System32\drivers\revoflt.sys [2014-12-30 31800]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2015-10-30 155488]
S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2015-10-30 43944]
S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\WINDOWS\System32\drivers\ssadbus.sys [2013-4-10 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\WINDOWS\System32\drivers\ssadmdfl.sys [2013-4-10 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\WINDOWS\System32\drivers\ssadmdm.sys [2013-4-10 188232]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\WINDOWS\System32\drivers\ssadserd.sys [2013-4-10 158024]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2015-7-25 206080]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2015-10-30 79200]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2015-10-30 290304]
S3 TSNxGService;G DATA Filesafe Service;C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [2014-7-1 255608]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2015-10-30 45056]
S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2015-10-30 28512]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2015-10-30 254816]
S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 94048]
S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 131424]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 28512]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2015-10-30 57696]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 27488]
S3 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2015-10-30 31744]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 vmicvmsession;Hyper-V VM Session Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-10-30 43944]
S3 w3logsvc;W3C Logging Service;C:\WINDOWS\System32\svchost.exe -k apphost [2015-10-30 43944]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-10-30 43944]
S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2015-10-30 694784]
S3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2015-10-30 118112]
S3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2015-10-30 364464]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2015-10-30 43944]
S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2015-10-30 26976]
S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2015-10-30 59232]
S3 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S3 WpnService;Windows Push Notifications Service;C:\WINDOWS\System32\svchost.exe -k wswpnservice [2015-10-30 43944]
S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2015-10-30 238592]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-10-30 43944]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2015-10-30 26112]
S4 CDPSvc;Connected Device Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-10-30 43944]
.
=============== Created Last 30 ================
.
2015-12-29 05:48:02 20760 ----a-w- C:\WINDOWS\System32\sdnclean64.exe
2015-12-29 04:11:10 -------- d-----w- C:\Program Files\CCleaner
2015-12-29 03:29:55 236384 ----a-w- C:\ProgramData\1451359608.bdinstall.bin
2015-12-28 10:15:47 316168 ----a-w- C:\WINDOWS\System32\drivers\tmcomm.sys
2015-12-28 09:41:06 -------- d-----w- C:\Users\Gary\AppData\Local\FSDART
2015-12-28 09:40:37 -------- d-----w- C:\Users\Gary\AppData\Local\F-Secure
2015-12-28 09:40:37 -------- d-----w- C:\ProgramData\F-Secure
2015-12-24 11:49:44 -------- d-----w- C:\Program Files\iPod
2015-12-24 11:49:44 -------- d-----w- C:\Program Files (x86)\iTunes
2015-12-24 11:49:43 -------- d---a-w- C:\Program Files\iTunes
2015-12-21 03:17:36 -------- d---a-w- C:\Program Files (x86)\AMD
2015-12-19 07:09:17 11154520 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D20AAEA-5AD5-4A9C-8D50-D7E77EA24161}\mpengine.dll
2015-12-19 03:24:04 1190000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\NisBackup\gapaengine.dll
2015-12-19 03:24:02 1190000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A78547EC-0F96-4995-AC7D-178DF06B0D98}\gapaengine.dll
2015-12-18 11:41:28 -------- d-----w- C:\Users\Gary\AppData\Local\Thunderbird
2015-12-18 08:17:03 16984064 ----a-w- C:\WINDOWS\System32\Windows.UI.Xaml.dll
2015-12-18 05:45:05 -------- d-----w- C:\WINDOWS\System32\SleepStudy
2015-12-17 20:04:24 -------- dc----w- C:\WINDOWS\Panther
2015-12-17 20:00:28 -------- d-----w- C:\Windows.old
2015-12-17 19:55:59 -------- d-----w- C:\WINDOWS\System32\Microsoft
2015-12-17 19:52:36 -------- d-----w- C:\WINDOWS\SysWow64\BestPractices
2015-12-17 19:52:36 -------- d-----w- C:\WINDOWS\System32\msmq
2015-12-17 19:52:36 -------- d-----w- C:\WINDOWS\System32\BestPractices
2015-12-17 19:52:35 -------- d-----w- C:\inetpub
2015-12-17 19:51:41 778936 ----a-w- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
2015-12-17 19:51:41 35480 ----a-w- C:\WINDOWS\SysWow64\TsWpfWrp.exe
2015-12-17 19:51:41 103120 ----a-w- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-12-17 19:51:36 35480 ----a-w- C:\WINDOWS\System32\TsWpfWrp.exe
2015-12-17 19:51:36 1166520 ----a-w- C:\WINDOWS\System32\PresentationNative_v0300.dll
2015-12-17 19:51:35 124624 ----a-w- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll
2015-12-17 07:40:02 -------- d-----w- C:\Users\Gary\AppData\Local\MicrosoftEdge
2015-12-17 05:06:29 -------- d-----w- C:\Users\Gary\AppData\Local\ActiveSync
2015-12-17 04:59:23 -------- d-sh--we C:\ProgramData\Documents
2015-12-17 04:59:23 -------- d-sh--w- C:\Recovery
2015-12-17 04:44:39 -------- d-----w- C:\WINDOWS\System32\wbem\Performance
2015-12-17 04:40:39 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\good
2015-12-17 04:40:39 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\bad
2015-12-17 04:28:06 -------- d-----w- C:\Program Files (x86)\Common Files\SpeechEngines
2015-12-17 04:28:02 -------- d-----w- C:\Program Files\Common Files\SpeechEngines
2015-12-17 04:11:22 0 ----a-w- C:\WINDOWS\ativpsrm.bin
2015-12-17 04:11:18 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2015-12-17 04:11:17 -------- d---a-w- C:\Program Files\AMD
2015-12-17 04:10:20 2718208 ----a-w- C:\WINDOWS\SysWow64\PrintConfig.dll
2015-12-17 04:07:58 -------- d-----w- C:\WINDOWS\System32\wbem\MOF
2015-12-16 19:45:42 143080 ----a-w- C:\WINDOWS\SysWow64\atiuxpag.dll
2015-12-16 19:45:10 10919104 ----a-w- C:\WINDOWS\System32\atiumd64.dll
2015-12-16 19:44:58 130616 ----a-w- C:\WINDOWS\System32\atiu9p64.dll
2015-12-16 19:44:56 88032 ----a-w- C:\WINDOWS\System32\atimpc64.dll
2015-12-16 19:44:56 81200 ----a-w- C:\WINDOWS\SysWow64\atimpc32.dll
2015-12-16 19:44:42 11011560 ----a-w- C:\WINDOWS\SysWow64\atidxx32.dll
2015-12-16 19:44:10 8426376 ----a-w- C:\WINDOWS\SysWow64\amdxc32.dll
2015-12-16 19:44:02 88032 ----a-w- C:\WINDOWS\System32\amdpcom64.dll
2015-12-16 19:44:00 81200 ----a-w- C:\WINDOWS\SysWow64\amdpcom32.dll
2015-12-16 19:44:00 471344 ----a-w- C:\WINDOWS\System32\amdmiracast.dll
2015-12-16 19:43:56 151968 ----a-w- C:\WINDOWS\System32\amdhcp64.dll
2015-12-16 19:43:56 138416 ----a-w- C:\WINDOWS\SysWow64\amdhcp32.dll
2015-12-16 19:43:48 128568 ----a-w- C:\WINDOWS\System32\amdave64.dll
2015-12-16 19:41:18 97808 ----a-w- C:\WINDOWS\SysWow64\mantleaxl32.dll
2015-12-16 19:41:18 104976 ----a-w- C:\WINDOWS\System32\mantleaxl64.dll
2015-12-16 19:41:16 136208 ----a-w- C:\WINDOWS\System32\mantle64.dll
2015-12-16 19:41:14 203792 ----a-w- C:\WINDOWS\System32\hsa-thunk64.dll
2015-12-16 19:41:14 122384 ----a-w- C:\WINDOWS\SysWow64\mantle32.dll
2015-12-16 19:41:12 183312 ----a-w- C:\WINDOWS\SysWow64\hsa-thunk.dll
2015-12-16 19:41:08 232464 ----a-w- C:\WINDOWS\System32\dgtrayicon.exe
2015-12-16 19:41:06 12816 ----a-w- C:\WINDOWS\SysWow64\detoured.dll
2015-12-16 19:41:06 12816 ----a-w- C:\WINDOWS\System32\detoured.dll
2015-12-16 19:41:02 243728 ----a-w- C:\WINDOWS\System32\clinfo.exe
2015-12-16 19:37:32 199696 ----a-w- C:\WINDOWS\System32\atitmm64.dll
2015-12-16 19:37:30 97808 ----a-w- C:\WINDOWS\System32\atisamu64.dll
2015-12-16 19:37:26 89616 ----a-w- C:\WINDOWS\SysWow64\atisamu32.dll
2015-12-16 19:37:24 25848848 ----a-w- C:\WINDOWS\SysWow64\atioglxx.dll
2015-12-16 19:35:16 341520 ----a-w- C:\WINDOWS\System32\ATIODE.exe
2015-12-16 19:34:50 59920 ----a-w- C:\WINDOWS\System32\ATIODCLI.exe
2015-12-16 19:34:22 31385616 ----a-w- C:\WINDOWS\System32\atio6axx.dll
2015-12-16 19:32:02 40464 ----a-w- C:\WINDOWS\System32\atimuixx.dll
2015-12-16 19:29:52 78864 ----a-w- C:\WINDOWS\SysWow64\atiglpxx.dll
2015-12-16 19:29:52 78864 ----a-w- C:\WINDOWS\System32\atiglpxx.dll
2015-12-16 19:29:48 84504 ----a-w- C:\WINDOWS\System32\atig6pxx.dll
2015-12-16 19:29:48 166416 ----a-w- C:\WINDOWS\System32\atig6txx.dll
2015-12-16 19:29:38 254992 ----a-w- C:\WINDOWS\System32\atiesrxx.exe
2015-12-16 19:29:16 561168 ----a-w- C:\WINDOWS\System32\atieclxx.exe
2015-12-16 19:28:56 171032 ----a-w- C:\WINDOWS\System32\atieah64.exe
2015-12-16 19:28:56 154128 ----a-w- C:\WINDOWS\SysWow64\atieah32.exe
2015-12-16 19:28:54 451088 ----a-w- C:\WINDOWS\System32\atidemgy.dll
2015-12-16 19:28:36 71184 ----a-w- C:\WINDOWS\System32\aticalrt64.dll
2015-12-16 19:28:14 60944 ----a-w- C:\WINDOWS\SysWow64\aticalrt.dll
2015-12-16 19:27:52 15720464 ----a-w- C:\WINDOWS\System32\aticaldd64.dll
2015-12-16 19:27:20 14310928 ----a-w- C:\WINDOWS\SysWow64\aticaldd.dll
2015-12-16 19:26:12 64528 ----a-w- C:\WINDOWS\System32\aticalcl64.dll
2015-12-16 19:26:10 57872 ----a-w- C:\WINDOWS\SysWow64\aticalcl.dll
2015-12-16 19:26:08 375824 ----a-w- C:\WINDOWS\System32\atiapfxx.exe
2015-12-16 19:25:26 950288 ----a-w- C:\WINDOWS\SysWow64\atiadlxx.dll
2015-12-16 19:25:22 1281552 ----a-w- C:\WINDOWS\System32\atiadlxx.dll
2015-12-16 19:25:20 52240 ----a-w- C:\WINDOWS\System32\drivers\ati2erec.dll
2015-12-16 19:25:02 49992720 ----a-w- C:\WINDOWS\System32\amdocl64.dll
2015-12-16 19:22:22 27605008 ----a-w- C:\WINDOWS\System32\amdocl12cl64.dll
2015-12-16 19:19:06 59408 ----a-w- C:\WINDOWS\System32\amdmmcl6.dll
2015-12-16 19:19:04 48144 ----a-w- C:\WINDOWS\SysWow64\amdmmcl.dll
2015-12-16 19:17:14 6651920 ----a-w- C:\WINDOWS\System32\amdmantle64.dll
2015-12-16 19:16:20 5232656 ----a-w- C:\WINDOWS\SysWow64\amdmantle32.dll
2015-12-16 19:15:26 686608 ----a-w- C:\WINDOWS\System32\amdlvr64.dll
2015-12-16 19:15:22 571408 ----a-w- C:\WINDOWS\SysWow64\amdlvr32.dll
2015-12-16 19:13:50 213520 ----a-w- C:\WINDOWS\System32\amdgfxinfo64.dll
2015-12-16 19:13:50 143376 ----a-w- C:\WINDOWS\System32\amdhdl64.dll
2015-12-16 19:13:50 132112 ----a-w- C:\WINDOWS\SysWow64\amdhdl32.dll
2015-12-16 19:13:48 198672 ----a-w- C:\WINDOWS\SysWow64\amdgfxinfo32.dll
2015-12-16 19:13:46 305392 ----a-w- C:\WINDOWS\System32\drivers\amdacpksd.sys
2015-12-16 19:13:44 73744 ----a-w- C:\WINDOWS\System32\OpenCL.dll
2015-12-16 19:13:44 68112 ----a-w- C:\WINDOWS\SysWow64\OpenCL.dll
2015-12-16 18:07:46 10339016 ----a-w- C:\WINDOWS\System32\amdxc64.dll
2015-12-12 19:55:36 16148 ----a-w- C:\WINDOWS\System32\PRECIOUS_FixCompter_HistoryPrediction.bin
2015-12-12 03:12:07 -------- d-----w- C:\Users\Gary\AppData\Local\{9FCA7744-EE46-47F4-A543-ECB6C1C39E14}
2015-12-11 03:13:27 -------- d-----w- C:\Users\Gary\AppData\Local\{C844550B-3B77-4ED6-8388-89913379B9B3}
2015-12-10 03:05:04 -------- d-----w- C:\Users\Gary\AppData\Local\{FD5F7BB8-96E9-4523-A72D-66641B8C686C}
2015-12-09 14:39:36 -------- d-----w- C:\Users\Gary\AppData\Local\{B9BF0C63-6F92-420E-B2BF-56E0414A7618}
2015-12-09 11:15:09 9479872 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerInstaller.exe
2015-12-09 03:59:21 -------- d-----w- C:\Users\Gary\AppData\Local\{1015EF6F-0C03-4427-851D-98EB7DD4D21D}
2015-12-08 03:40:04 -------- d-----w- C:\Users\Gary\AppData\Local\{74E36C3F-81F4-43E6-AA05-5A0C8043D410}
2015-12-07 03:14:41 -------- d-----w- C:\Users\Gary\AppData\Local\{285D0F49-69CD-48E7-8424-921477431F71}
2015-12-06 05:41:12 -------- d-----w- C:\Users\Gary\AppData\Local\{D98E3054-9969-4395-B778-9D664553BC5D}
2015-12-05 16:42:00 -------- d-----w- C:\Users\Gary\AppData\Local\{7A56DBAA-3DF9-4634-83D3-0F1BE009C6B5}
2015-12-05 03:50:37 -------- d-----w- C:\Users\Gary\AppData\Local\{D4AA99FC-D9C8-4B9B-A743-9DC17662EA2E}
2015-12-04 03:38:47 -------- d-----w- C:\Users\Gary\AppData\Local\{95F412B8-CEC6-4BE1-9198-083E6A19A26F}
2015-12-03 03:19:30 -------- d-----w- C:\Users\Gary\AppData\Local\{CB1597CF-B813-4121-86E6-FC4CBBA1D1AD}
2015-12-02 03:35:50 -------- d-----w- C:\Users\Gary\AppData\Local\{1D08A572-B8B8-4641-8A9F-3C2B3EA250BE}
2015-12-01 04:04:31 -------- d-----w- C:\Users\Gary\AppData\Local\{D240323C-2DB3-420C-9C14-1A45395BAA00}
2015-11-30 17:53:38 -------- d-----w- C:\Users\Gary\AppData\Roaming\X-Chat 2
2015-11-30 17:53:37 -------- d-----w- C:\Program Files (x86)\xchat
2015-11-30 15:12:39 -------- d-----w- C:\Users\Gary\AppData\Local\{34A4B8FE-E5A4-4729-A045-7ED51C0CB602}
2015-11-30 03:12:14 -------- d-----w- C:\Users\Gary\AppData\Local\{69AE3069-4C1F-46BF-B9CA-8F2FC76BB83E}
.
==================== Find3M ====================
.
2015-12-29 06:02:23 192216 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
2015-12-17 19:52:31 96768 ----a-w- C:\WINDOWS\SysWow64\mqoa.tlb
2015-12-16 19:45:42 162784 ----a-w- C:\WINDOWS\System32\atiuxp64.dll
2015-12-16 19:45:40 8168856 ----a-w- C:\WINDOWS\SysWow64\atiumdva.dll
2015-12-16 19:45:28 9158496 ----a-w- C:\WINDOWS\SysWow64\atiumdag.dll
2015-12-16 19:45:18 9105552 ----a-w- C:\WINDOWS\System32\atiumd6a.dll
2015-12-16 19:45:00 112392 ----a-w- C:\WINDOWS\SysWow64\atiu9pag.dll
2015-12-16 19:44:54 13313544 ----a-w- C:\WINDOWS\System32\atidxx64.dll
2015-12-16 19:44:32 1519232 ----a-w- C:\WINDOWS\System32\aticfx64.dll
2015-12-16 19:44:28 1249664 ----a-w- C:\WINDOWS\SysWow64\aticfx32.dll
2015-12-16 19:43:48 120200 ----a-w- C:\WINDOWS\SysWow64\amdave32.dll
2015-12-16 19:41:06 874000 ----a-w- C:\WINDOWS\System32\coinst_15.30.dll
2015-12-16 19:31:38 679952 ----a-w- C:\WINDOWS\System32\drivers\atikmpag.sys
2015-12-16 19:31:14 23969808 ----a-w- C:\WINDOWS\System32\drivers\atikmdag.sys
2015-12-16 19:29:50 151056 ----a-w- C:\WINDOWS\SysWow64\atigktxx.dll
2015-12-16 19:25:26 950288 ----a-w- C:\WINDOWS\SysWow64\atiadlxy.dll
2015-12-16 19:21:20 22357008 ----a-w- C:\WINDOWS\SysWow64\amdocl12cl.dll
2015-12-16 19:20:32 41519120 ----a-w- C:\WINDOWS\SysWow64\amdocl.dll
2015-12-09 03:39:31 301728 ------w- C:\WINDOWS\System32\MpSigStub.exe
2015-12-07 04:57:01 973664 ----a-w- C:\WINDOWS\SysWow64\LicenseManager.dll
2015-12-07 04:55:42 1281376 ----a-w- C:\WINDOWS\System32\LicenseManager.dll
2015-12-07 04:49:31 412512 ----a-w- C:\WINDOWS\System32\wifitask.exe
2015-12-07 04:47:58 116720 ----a-w- C:\WINDOWS\SysWow64\mfps.dll
2015-12-07 04:47:57 925064 ----a-w- C:\WINDOWS\SysWow64\mfplat.dll
2015-12-07 04:47:57 898184 ----a-w- C:\WINDOWS\SysWow64\mfsrcsnk.dll
2015-12-07 04:47:54 716928 ----a-w- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
2015-12-07 04:45:46 264544 ----a-w- C:\WINDOWS\System32\ContentDeliveryManager.Utilities.dll
2015-12-07 04:15:40 1035776 ----a-w- C:\WINDOWS\System32\XboxNetApiSvc.dll
2015-12-07 04:15:08 75776 ----a-w- C:\WINDOWS\System32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-07 04:10:37 824320 ----a-w- C:\WINDOWS\System32\WpcWebFilter.dll
2015-12-07 04:09:36 30208 ----a-w- C:\WINDOWS\System32\StorageUsage.dll
2015-12-07 04:09:27 92160 ----a-w- C:\WINDOWS\System32\policymanagerprecheck.dll
2015-12-07 04:09:07 133120 ----a-w- C:\WINDOWS\System32\flvprophandler.dll
2015-12-07 04:07:43 134656 ----a-w- C:\WINDOWS\System32\wificonnapi.dll
2015-12-07 04:07:34 77312 ----a-w- C:\WINDOWS\System32\ProvPluginEng.dll
2015-12-07 04:06:52 231936 ----a-w- C:\WINDOWS\System32\KnobsCore.dll
2015-12-07 04:06:38 199168 ----a-w- C:\WINDOWS\System32\InstallAgent.exe
2015-12-07 04:06:36 50176 ----a-w- C:\WINDOWS\apppatch\apppatch64\acspecfc.dll
2015-12-07 04:06:32 572928 ----a-w- C:\WINDOWS\SysWow64\WpcWebFilter.dll
2015-12-07 04:05:28 36864 ----a-w- C:\WINDOWS\System32\BackgroundTransferHost.exe
2015-12-07 04:05:15 192000 ----a-w- C:\WINDOWS\System32\provisioningcsp.dll
2015-12-07 04:04:28 56320 ----a-w- C:\WINDOWS\System32\provtool.exe
2015-12-07 04:04:20 66560 ----a-w- C:\WINDOWS\System32\moshost.dll
2015-12-07 04:03:46 13017600 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
2015-12-07 04:02:54 477696 ----a-w- C:\WINDOWS\apppatch\AcSpecfc.dll
2015-12-07 04:02:49 161280 ----a-w- C:\WINDOWS\SysWow64\InstallAgent.exe
2015-12-07 04:02:01 269824 ----a-w- C:\WINDOWS\System32\moshostcore.dll
2015-12-07 04:01:43 34304 ----a-w- C:\WINDOWS\SysWow64\BackgroundTransferHost.exe
2015-12-07 04:01:07 543232 ----a-w- C:\WINDOWS\System32\StoreAgent.dll
2015-12-07 04:00:55 323072 ----a-w- C:\WINDOWS\System32\MSFlacDecoder.dll
2015-12-07 04:00:52 203776 ----a-w- C:\WINDOWS\System32\NetSetupSvc.dll
2015-12-07 04:00:51 210432 ----a-w- C:\WINDOWS\System32\wcmcsp.dll
2015-12-07 04:00:40 618496 ----a-w- C:\WINDOWS\System32\StorSvc.dll
2015-12-07 03:59:52 286208 ----a-w- C:\WINDOWS\System32\provhandlers.dll
2015-12-07 03:59:49 292352 ----a-w- C:\WINDOWS\System32\provengine.dll
2015-12-07 03:59:37 558080 ----a-w- C:\WINDOWS\System32\MBMediaManager.dll
2015-12-07 03:59:16 165376 ----a-w- C:\WINDOWS\System32\provdatastore.dll
2015-12-07 03:58:17 459776 ----a-w- C:\WINDOWS\System32\MapConfiguration.dll
2015-12-07 03:57:48 387072 ----a-w- C:\WINDOWS\System32\qdvd.dll
2015-12-07 03:57:40 409088 ----a-w- C:\WINDOWS\SysWow64\StoreAgent.dll
2015-12-07 03:57:28 270848 ----a-w- C:\WINDOWS\SysWow64\MSFlacDecoder.dll
2015-12-07 03:56:27 497152 ----a-w- C:\WINDOWS\System32\mfmkvsrcsnk.dll
2015-12-07 03:56:18 607232 ----a-w- C:\WINDOWS\System32\wcmsvc.dll
2015-12-07 03:55:38 7979008 ----a-w- C:\WINDOWS\System32\mos.dll
2015-12-07 03:55:02 346112 ----a-w- C:\WINDOWS\SysWow64\MapConfiguration.dll
2015-12-07 03:54:56 850432 ----a-w- C:\WINDOWS\System32\MapsStore.dll
2015-12-07 03:54:56 569856 ----a-w- C:\WINDOWS\SysWow64\qdvd.dll
2015-12-07 03:53:28 381952 ----a-w- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll
2015-12-07 03:51:16 1318912 ----a-w- C:\WINDOWS\System32\wifinetworkmanager.dll
2015-12-07 03:51:00 223232 ----a-w- C:\WINDOWS\System32\fveapibase.dll
2015-12-07 03:50:55 1131520 ----a-w- C:\WINDOWS\System32\Windows.Media.Audio.dll
2015-12-07 03:49:01 1105920 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll
2015-12-07 03:48:02 6297088 ----a-w- C:\WINDOWS\SysWow64\mos.dll
2015-12-07 03:47:02 3428864 ----a-w- C:\WINDOWS\System32\Windows.Media.dll
2015-12-07 03:45:53 683008 ----a-w- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
2015-12-07 03:45:45 900608 ----a-w- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll
2015-12-07 03:45:44 2582016 ----a-w- C:\WINDOWS\System32\MFMediaEngine.dll
2015-12-07 03:44:48 2796032 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.dll
2015-12-07 03:43:35 931328 ----a-w- C:\WINDOWS\System32\MSMPEG2ENC.DLL
2015-12-07 03:43:07 2598400 ----a-w- C:\WINDOWS\System32\NetworkMobileSettings.dll
2015-12-07 03:41:02 2061824 ----a-w- C:\WINDOWS\SysWow64\MFMediaEngine.dll
2015-12-07 03:40:47 3593216 ----a-w- C:\WINDOWS\System32\win32kfull.sys
2015-12-07 03:40:23 1995776 ----a-w- C:\WINDOWS\System32\ActiveSyncProvider.dll
2015-12-07 03:40:08 1706496 ----a-w- C:\WINDOWS\SysWow64\ActiveSyncProvider.dll
2015-12-07 03:39:24 764928 ----a-w- C:\WINDOWS\System32\fveapi.dll
2015-12-07 03:38:14 871936 ----a-w- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL
2015-12-07 03:33:04 375296 ----a-w- C:\WINDOWS\System32\MDEServer.exe
2015-12-07 03:32:46 126464 ----a-w- C:\WINDOWS\System32\dialserver.dll
2015-12-01 00:33:29 826872 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2015-12-01 00:33:29 176632 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2015-10-30 09:07:33 96256 ----a-w- C:\WINDOWS\System32\auditpolmsg.dll
2015-10-30 09:03:16 6359040 ----a-w- C:\WINDOWS\System32\NlsData0009.dll
2015-10-30 09:03:16 5739520 ----a-w- C:\WINDOWS\System32\prm0009.dll
2015-10-30 09:03:16 2629632 ----a-w- C:\WINDOWS\System32\NlsLexicons0009.dll
2015-10-30 09:03:15 4847616 ----a-w- C:\WINDOWS\SysWow64\NlsData0009.dll
2015-10-30 09:03:15 2629632 ----a-w- C:\WINDOWS\SysWow64\NlsLexicons0009.dll
2015-10-30 09:02:01 12288 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\NdisImPlatform.sys.mui
2015-10-30 09:02:00 8704 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\fwpkclnt.sys.mui
2015-10-30 09:01:59 7168 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\ndiscap.sys.mui
2015-10-30 09:01:59 4096 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\wfplwfs.sys.mui
.
============= FINISH: 22:05:59.18 ===============