New Laptop Freezing

emmettk90 · Jul 7, 2016

I have just purchased a brand new Acer Aspire E17 with Windows 10 installed and love it. For the first 4-5 days it has been great and has had no problems, but now the last two days it just suddenly freezes and I have to hard shut it down. I have included the system specs below if that helps but if anyone could give me any help at all to fix this rather than sending it back I would really appreciate it.

CPU= Intel Core i3-5005u 2.0Ghz
Graphics= Intel HD 5500, up to 4181 Mb Dynamic Video Memory
Ram= 8gb
Hdd= 1TB

johnb35 · Jul 7, 2016

What are you doing when it freezes? Could be a bad hard drive or bad ram or bad software you installed. Do a system restore back to when it was working correctly and see if it still freezes.

emmettk90 · Jul 8, 2016

I am only using the Internet at the time and I have tried the system restore with no luck.

johnb35 · Jul 8, 2016

Have you scanned for malware since you say it only freezes when using the internet? Does system restore actually take you back to when everything working fine or does it fail?

Run the following programs and post logs it anything is found.

1.

Please download AdwCleaner by Xplode onto your Desktop.

•Please close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Scan.
•After the scan you will need to click on clean for it to delete the adware.
•Your computer will be rebooted automatically. A text file will open after the restart.
•Please post the content of that logfile in your reply.
•You can find the logfile at C:\AdwCleaner[Sn].txt as well - n is the order number.

2.

Please download Junkware Removal Tool to your desktop.

•Shutdown your antivirus to avoid any conflicts.
•Very important that you run the tool in this manner:
Right-mouse click JRT.exe and select Run as administrator
Do NOT just double-click it.
•The tool will open and start scanning your system.
•Please be patient as this can take a while to complete.
•On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
•Post the contents of JRT.txt in your next message.

3.

Please download Malwarebytes' Anti-Malware and save it to your desktop.

Double-click mbam-setup.exe and follow the prompts to install the program.
At the end, be sure a checkmark is placed next to
- Update Malwarebytes' Anti-Malware
- and Launch Malwarebytes' Anti-Malware
then click Finish.
If an update is found, it will download and install the latest version. Please keep updating until it says you have the latest version.
Once the program has loaded, select Perform quick scan, then click Scan.
When the scan is complete, click OK, then Show Results to view the results.
Be sure that everything is checked, and click Remove Selected.
A log will be saved automatically which you can access by clicking on the Logs tab within Malwarebytes' Anti-Malware

If for some reason Malwarebytes will not install or run please download and run Rkill.scr, Rkill.exe, or Rkill.com. If you are still having issues running rkill then try downloading these renamed versions of the same program.

EXPLORER.EXE
IEXPLORE.EXE
USERINIT.EXE
WINLOGON.EXE

But DO NOT reboot the system and then try installing or running Malwarebytes. If Rkill (which is a black box) appears and then disappears right away or you get a message saying rkill is infected, keep trying to run rkill until it over powers the infection and temporarily kills it. Once a log appears on the screen, you can try running malwarebytes or downloading other programs.

Please post the log that Malwarebytes displays on your screen.

4.

Download OTL to your Desktop

•Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
•Click on Minimal Output at the top
•Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
◦When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL. Just post the OTL.txt file in your reply.

Then post the logs from the following 4 programs.

1. Adwcleaner
2. Junkware removal tool
3. Malwarebytes
4. OTL

emmettk90 · Jul 9, 2016

AdwCleaner

# AdwCleaner v5.201 - Logfile created 09/07/2016 at 04:46:30

# Updated 30/06/2016 by ToolsLib

# Database : 2016-07-08.2 [Server]

# Operating system : Windows 10 Home (X64)

# Username : emmet - LAPTOP-FHB2B9PO

# Running from : C:\Users\emmet\Downloads\AdwCleaner.exe

# Option : Clean

# Support : https://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\DriverSetupUtility

[-] Folder Deleted : C:\Users\emmet\AppData\Local\Host App Service

[-] Folder Deleted : C:\Program Files\DriverSetupUtility

[#] Folder Deleted : C:\Users\emmet\AppData\Local\Host App Service

***** [ Files ] *****

[-] File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\App Explorer.lnk

***** [ DLLs ] *****

***** [ WMI ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

[-] Task Deleted : App Explorer

[-] Task Deleted : ACC

[-] Task Deleted : Software Update Application

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Host App Service

[-] Key Deleted : HKCU\Software\csastats

[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service

[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}

[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}

[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}

[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akamaihd.net

[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\uhytajrtpo-a.akamaihd.net

[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akamaihd.net

[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\uhytajrtpo-a.akamaihd.net

***** [ Web browsers ] *****

*************************

:: "Tracing" keys deleted

:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [2569 bytes] - [09/07/2016 04:46:30]

C:\AdwCleaner\AdwCleaner[S1].txt - [2982 bytes] - [09/07/2016 04:38:21]

C:\AdwCleaner\AdwCleaner[S2].txt - [3055 bytes] - [09/07/2016 04:45:07]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2788 bytes] ##########

Junkware Removal Tool

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Malwarebytes

Version: 8.0.7 (07.03.2016)

Operating System: Windows 10 Home x64

Ran by emmet (Administrator) on 09/07/2016 at 5:11:18.23

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

File System: 6

Successfully deleted: C:\ProgramData\1467141235.bdinstall.bin (File)

Successfully deleted: C:\WINDOWS\prefetch\FREEMAKE.TMP-17B32055.pf (File)

Successfully deleted: C:\WINDOWS\prefetch\FREEMAKE.TMP-A5DB1D6D.pf (File)

Successfully deleted: C:\WINDOWS\prefetch\FREEMAKEERRORREPORTER.EXE-FB3BD252.pf (File)

Successfully deleted: C:\WINDOWS\prefetch\FREEMAKEVIDEOCONVERTERFULL.TM-B64BDD67.pf (File)

Successfully deleted: C:\WINDOWS\prefetch\FREEMAKEVIDEOCONVERTERSETUP.T-A533B801.pf (File)

Registry: 0

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 09/07/2016 at 5:13:03.70

End of JRT log

emmettk90 · Jul 9, 2016

Malware Bytes’ Anti-Malware

Malwarebytes Anti-Malware

www.malwarebytes.org

Scan Date: 09/07/2016

Scan Time: 05:20

Logfile:

Administrator: Yes

Version: 2.2.1.1043

Malware Database: v2016.07.09.03

Rootkit Database: v2016.05.27.01

License: Trial

Malware Protection: Enabled

Malicious Website Protection: Enabled

Self-protection: Disabled

OS: Windows 10

CPU: x64

File System: NTFS

User: emmet

Scan Type: Threat Scan

Result: Completed

Objects Scanned: 297968

Time Elapsed: 11 min, 16 sec

Memory: Enabled

Startup: Enabled

Filesystem: Enabled

Archives: Enabled

Rootkits: Disabled

Heuristics: Enabled

PUP: Enabled

PUM: Enabled

Processes: 0

(No malicious items detected)

Modules: 0

(No malicious items detected)

Registry Keys: 0

(No malicious items detected)

Registry Values: 0

(No malicious items detected)

Registry Data: 0

(No malicious items detected)

Folders: 0

(No malicious items detected)

Files: 0

(No malicious items detected)

Physical Sectors: 0

(No malicious items detected)

(end)

OTL

OTL logfile created on: 09/07/2016 05:35:31 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\emmet\Downloads

64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation

Internet Explorer (Version = 9.11.10586.0)

Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

7.92 Gb Total Physical Memory | 5.75 Gb Available Physical Memory | 72.59% Memory free

9.17 Gb Paging File | 6.92 Gb Available in Paging File | 75.53% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 930.91 Gb Total Space | 650.70 Gb Free Space | 69.90% Space Free | Partition Type: NTFS

Drive F: | 2794.52 Gb Total Space | 853.80 Gb Free Space | 30.55% Space Free | Partition Type: NTFS

Computer Name: LAPTOP-FHB2B9PO | User Name: emmet | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found

PRC - C:\Users\emmet\Downloads\OTL.exe (OldTimer Tools)

PRC - C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe ()

PRC - C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe ()

PRC - C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe (Bitdefender)

PRC - C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Cloud Technology)

PRC - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe (Acer Incorporated)

PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes)

PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes)

PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes)

PRC - C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Bitdefender)

PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)

PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)

PRC - C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe (Dashlane SAS)

PRC - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll ()

MOD - C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe ()

MOD - C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll ()

MOD - C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll ()

MOD - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF ()

========== Services (SafeList) ==========

SRV:64bit: - (NetSetupSvc) -- C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)

SRV:64bit: - (RetailDemo) -- C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)

SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)

SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)

SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)

SRV:64bit: - (DoSvc) -- C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)

SRV:64bit: - (NgcSvc) -- C:\Windows\SysNative\ngcsvc.dll (Microsoft Corporation)

SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)

SRV:64bit: - (tiledatamodelsvc) -- C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)

SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)

SRV:64bit: - (UsoSvc) -- C:\Windows\SysNative\usocore.dll (Microsoft Corporation)

SRV:64bit: - (SensorService) -- C:\Windows\SysNative\SensorService.dll (Microsoft Corporation)

SRV:64bit: - (NgcCtnrSvc) -- C:\Windows\SysNative\NgcCtnrSvc.dll (Microsoft Corporation)

SRV:64bit: - (DmEnrollmentSvc) -- C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)

SRV:64bit: - (icssvc) -- C:\Windows\SysNative\tetheringservice.dll (Microsoft Corporation)

SRV:64bit: - (MapsBroker) -- C:\Windows\SysNative\moshost.dll (Microsoft Corporation)

SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)

SRV:64bit: - (XblAuthManager) -- C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)

SRV:64bit: - (CoreMessagingRegistrar) -- C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)

SRV:64bit: - (tzautoupdate) -- C:\Windows\SysNative\tzautoupdate.dll (Microsoft Corporation)

SRV:64bit: - (SecureLine) -- C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe ()

SRV:64bit: - (VSSERV) -- C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe (Bitdefender)

SRV:64bit: - (UPDATESRV) -- C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe (Bitdefender)

SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)

SRV:64bit: - (XboxNetApiSvc) -- C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)

SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)

SRV:64bit: - (UserManager) -- C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)

SRV:64bit: - (PhoneSvc) -- C:\Windows\SysNative\PhoneService.dll (Microsoft Corporation)

SRV:64bit: - (SmsRouter) -- C:\Windows\SysNative\SmsRouterSvc.dll (Microsoft Corporation)

SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)

SRV:64bit: - (UserDataSvc) -- C:\Windows\SysNative\UserDataService.dll (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc) -- C:\Windows\SysNative\Unistore.dll (Microsoft Corporation)

SRV:64bit: - (XblGameSave) -- C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)

SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc) -- C:\Windows\SysNative\PimIndexMaintenance.dll (Microsoft Corporation)

SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)

SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)

SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)

SRV:64bit: - (ClipSVC) -- C:\Windows\SysNative\ClipSVC.dll (Microsoft Corporation)

SRV:64bit: - (DsSvc) -- C:\Windows\SysNative\dssvc.dll (Microsoft Corporation)

SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)

SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)

SRV:64bit: - (WalletService) -- C:\Windows\SysNative\WalletService.dll (Microsoft Corporation)

SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)

SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)

SRV:64bit: - (IEEtwCollectorService) -- C:\WINDOWS\SysNative\IEEtwCollector.exe (Microsoft Corporation)

SRV:64bit: - (SensorDataService) -- C:\Windows\SysNative\SensorDataService.exe (Microsoft Corporation)

SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)

SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)

SRV:64bit: - (WpnService) -- C:\Windows\SysNative\wpnservice.dll (Microsoft Corporation)

SRV:64bit: - (DevQueryBroker) -- C:\Windows\SysNative\DevQueryBroker.dll (Microsoft Corporation)

SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)

SRV:64bit: - (LicenseManager) -- C:\Windows\SysNative\LicenseManagerSvc.dll (Microsoft Corporation)

SRV:64bit: - (StateRepository) -- C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)

SRV:64bit: - (embeddedmode) -- C:\Windows\SysNative\embeddedmodesvc.dll (Microsoft Corporation)

SRV:64bit: - (AJRouter) -- C:\Windows\SysNative\AJRouter.dll (Microsoft Corporation)

SRV:64bit: - (CDPSvc) -- C:\Windows\SysNative\cdpsvc.dll (Microsoft Corporation)

SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)

SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)

SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)

SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)

SRV:64bit: - (diagnosticshub.standardcollector.service) -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc) -- C:\Windows\SysNative\APHostService.dll (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_52ca31) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_475bf9) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_45659) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_447a5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_40e9b) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_3ec4c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_3e19c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_3a275) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_33d6d5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UserDataSvc_1038faa) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_52ca31) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_475bf9) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_45659) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_447a5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_40e9b) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_3ec4c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_3e19c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_3a275) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_33d6d5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (UnistoreSvc_1038faa) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_52ca31) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_475bf9) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_45659) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_447a5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_40e9b) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_3ec4c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_3e19c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_3a275) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_33d6d5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (PimIndexMaintenanceSvc_1038faa) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_52ca31) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_475bf9) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_45659) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_447a5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_40e9b) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_3ec4c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_3e19c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_3a275) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_33d6d5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (OneSyncSvc_1038faa) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_52ca31) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_475bf9) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_45659) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_447a5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_40e9b) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_3ec4c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_3e19c) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_3a275) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_33d6d5) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (MessagingService_1038faa) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)

SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)

SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)

SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)

SRV:64bit: - (TieringEngineService) -- C:\Windows\SysNative\TieringEngineService.exe (Microsoft Corporation)

SRV:64bit: - (DcpSvc) -- C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation)

SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)

SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)

SRV:64bit: - (EntAppSvc) -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll (Microsoft Corporation)

SRV:64bit: - (dmwappushservice) -- C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)

SRV:64bit: - (MessagingService) -- C:\Windows\SysNative\MessagingService.dll (Microsoft Corporation)

SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)

SRV:64bit: - (WdNisSvc) -- C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation)

SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)

SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmicvmsession) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation)

SRV:64bit: - (UEIPSvc) -- C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe (acer)

SRV:64bit: - (QASvc) -- C:\Program Files\Acer\Acer Quick Access\QASvc.exe (Acer Incorporated)

SRV:64bit: - (QALSvc) -- C:\Program Files\Acer\Acer Quick Access\QALSvc.exe (Acer Incorporated)

SRV:64bit: - (ProductAgentService) -- C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Bitdefender)

SRV:64bit: - (igfxCUIService2.0.0.0) -- C:\Windows\SysNative\igfxCUIService.exe (Intel Corporation)

SRV:64bit: - (ZeroConfigService) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel® Corporation)

SRV:64bit: - (MyWiFiDHCPDNS) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()

SRV:64bit: - (EvtEng) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation)

SRV:64bit: - (RegSrvc) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation)

SRV:64bit: - (Intel(R) -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe (Intel(R) Corporation)

SRV:64bit: - (ePowerSvc) -- C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Acer Incorporated)

SRV - (DmEnrollmentSvc) -- C:\Windows\SysWOW64\Windows.Internal.Management.dll (Microsoft Corporation)

SRV - (PrintNotify) -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)

SRV - (CoreMessagingRegistrar) -- C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)

SRV - (Freemake Improver) -- C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (Freemake)

SRV - (UnistoreSvc) -- C:\Windows\SysWOW64\Unistore.dll (Microsoft Corporation)

SRV - (CCDMonitorService) -- C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe (Acer Incorporated)

SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes)

SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes)

SRV - (StateRepository) -- C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)

SRV - (lfsvc) -- C:\Windows\SysWOW64\lfsvc.dll (Microsoft Corporation)

SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)

SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)

SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)

SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)

SRV - (ibtsiva) -- C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe (Intel Corporation)

SRV - (Dashlane Upgrade Service) -- C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe (Dashlane SAS)

SRV - (isaHelperSvc) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe ()

SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel Corporation)

========== Driver Services (SafeList) ==========

DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes)

DRV:64bit: - (wdiwifi) -- C:\Windows\SysNative\drivers\WdiWiFi.sys (Microsoft Corporation)

DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)

DRV:64bit: - (FileCrypt) -- C:\Windows\SysNative\drivers\filecrypt.sys (Microsoft Corporation)

DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)

DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)

DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)

DRV:64bit: - (Ufx01000) -- C:\Windows\SysNative\drivers\ufx01000.sys (Microsoft Corporation)

DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)

DRV:64bit: - (ufxsynopsys) -- C:\Windows\SysNative\drivers\ufxsynopsys.sys (Microsoft Corporation)

DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)

DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)

DRV:64bit: - (UcmCx0101) -- C:\Windows\SysNative\drivers\UcmCx.sys (Microsoft Corporation)

DRV:64bit: - (xinputhid) -- C:\Windows\SysNative\drivers\xinputhid.sys (Microsoft Corporation)

DRV:64bit: - (ibtusb) -- C:\Windows\SysNative\drivers\ibtusb.sys (Intel Corporation)

DRV:64bit: - (bdfwfpf) -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys (BitDefender LLC)

DRV:64bit: - (ignis) -- C:\Windows\SysNative\drivers\ignis.sys (Bitdefender)

DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)

DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)

DRV:64bit: - (xboxgip) -- C:\Windows\SysNative\drivers\xboxgip.sys (Microsoft Corporation)

DRV:64bit: - (CapImg) -- C:\Windows\SysNative\drivers\capimg.sys (Microsoft Corporation)

DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)

DRV:64bit: - (avckf) -- C:\Windows\SysNative\drivers\avckf.sys (BitDefender)

DRV:64bit: - (avc3) -- C:\Windows\SysNative\drivers\avc3.sys (BitDefender)

DRV:64bit: - (MBAMWebAccessControl) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes Corporation)

DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes)

DRV:64bit: - (trufos) -- C:\Windows\SysNative\drivers\trufos.sys (BitDefender S.R.L.)

DRV:64bit: - (gzflt) -- C:\Windows\SysNative\drivers\gzflt.sys (BitDefender LLC)

DRV:64bit: - (BDVEDISK) -- C:\Windows\SysNative\drivers\bdvedisk.sys (BitDefender)

DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)

DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation)

DRV:64bit: - (ReFSv1) -- C:\WINDOWS\SysNative\drivers\refsv1.sys (Microsoft Corporation)

DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)

DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)

DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)

DRV:64bit: - (WindowsTrustedRT) -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys (Microsoft Corporation)

DRV:64bit: - (storqosflt) -- C:\Windows\SysNative\drivers\storqosflt.sys (Microsoft Corporation)

DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)

DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)

DRV:64bit: - (IoQos) -- C:\Windows\SysNative\drivers\ioqos.sys (Microsoft Corporation)

DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)

DRV:64bit: - (MMCSS) -- C:\Windows\SysNative\drivers\mmcss.sys (Microsoft Corporation)

DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)

DRV:64bit: - (UrsCx01000) -- C:\Windows\SysNative\drivers\urscx01000.sys (Microsoft Corporation)

DRV:64bit: - (cnghwassist) -- C:\Windows\SysNative\drivers\cnghwassist.sys (Microsoft Corporation)

DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)

DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)

DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)

DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)

DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)

DRV:64bit: - (Wof) -- C:\WINDOWS\SysNative\drivers\wof.sys (Microsoft Corporation)

DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)

DRV:64bit: - (GpuEnergyDrv) -- C:\Windows\SysNative\drivers\gpuenergydrv.sys (Microsoft Corporation)

DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)

DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)

DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)

DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)

DRV:64bit: - (Ucx01000) -- C:\Windows\SysNative\drivers\Ucx01000.sys (Microsoft Corporation)

DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)

DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)

DRV:64bit: - (tsusbflt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)

DRV:64bit: - (UdeCx) -- C:\Windows\SysNative\drivers\Udecx.sys (Microsoft Corporation)

DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)

DRV:64bit: - (vhf) -- C:\Windows\SysNative\drivers\vhf.sys (Microsoft Corporation)

DRV:64bit: - (WindowsTrustedRTProxy) -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys (Microsoft Corporation)

DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)

DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)

DRV:64bit: - (UrsChipidea) -- C:\Windows\SysNative\drivers\urschipidea.sys (Microsoft Corporation)

DRV:64bit: - (UrsSynopsys) -- C:\Windows\SysNative\drivers\urssynopsys.sys (Microsoft Corporation)

DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)

DRV:64bit: - (mlx4_bus) -- C:\Windows\SysNative\drivers\mlx4_bus.sys (Mellanox)

DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)

DRV:64bit: - (ibbus) -- C:\Windows\SysNative\drivers\ibbus.sys (Mellanox)

DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)

DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)

DRV:64bit: - (LSI_SAS2i) -- C:\Windows\SysNative\drivers\lsi_sas2i.sys (LSI Corporation)

DRV:64bit: - (LSI_SAS3i) -- C:\Windows\SysNative\drivers\lsi_sas3i.sys (Avago Technologies)

DRV:64bit: - (UfxChipidea) -- C:\Windows\SysNative\drivers\UfxChipidea.sys (Microsoft Corporation)

DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)

DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)

DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)

DRV:64bit: - (ndfltr) -- C:\Windows\SysNative\drivers\ndfltr.sys (Mellanox)

DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)

DRV:64bit: - (WinVerbs) -- C:\Windows\SysNative\drivers\winverbs.sys (Mellanox)

DRV:64bit: - (percsas3i) -- C:\Windows\SysNative\drivers\percsas3i.sys (Avago Technologies)

DRV:64bit: - (percsas2i) -- C:\Windows\SysNative\drivers\percsas2i.sys (LSI Corporation)

DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)

DRV:64bit: - (UcmUcsi) -- C:\Windows\SysNative\drivers\UcmUcsi.sys (Microsoft Corporation)

DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)

DRV:64bit: - (storufs) -- C:\Windows\SysNative\drivers\storufs.sys (Microsoft Corporation)

DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)

DRV:64bit: - (WinMad) -- C:\Windows\SysNative\drivers\winmad.sys (Mellanox)

DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (QLogic Corporation)

DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)

DRV:64bit: - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)

DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)

DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)

DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)

DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)

DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)

DRV:64bit: - (hidinterrupt) -- C:\Windows\SysNative\drivers\hidinterrupt.sys (Microsoft Corporation)

DRV:64bit: - (buttonconverter) -- C:\Windows\SysNative\drivers\buttonconverter.sys (Microsoft Corporation)

DRV:64bit: - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)

DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)

DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)

DRV:64bit: - (genericusbfn) -- C:\Windows\SysNative\drivers\genericusbfn.sys (Microsoft Corporation)

DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)

DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)

DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)

DRV:64bit: - (bcmfn) -- C:\Windows\SysNative\drivers\bcmfn.sys (Windows (R) Win 7 DDK provider)

DRV:64bit: - (iaLPSS2i_I2C) -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys (Intel Corporation)

DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)

DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)

DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc.sys (Microsoft Corporation)

DRV:64bit: - (iai2c) -- C:\Windows\SysNative\drivers\iai2c.sys (Intel(R) Corporation)

DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)

DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)

DRV:64bit: - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation)

DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)

DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)

DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)

DRV:64bit: - (CompositeBus) -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys (Microsoft Corporation)

DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)

DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)

DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)

DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)

DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)

DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)

DRV:64bit: - (RadioShim) -- C:\Windows\SysNative\drivers\RadioShim.sys (Acer Incorporated)

DRV:64bit: - (LMDriver) -- C:\Windows\SysNative\drivers\LMDriver.sys (Acer Incorporated)

DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)

DRV:64bit: - (SynRMIHID) -- C:\Windows\SysNative\drivers\SynRMIHID.sys (Synaptics Incorporated)

DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)

DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys (Intel Corporation)

DRV:64bit: - (Netwtw02) -- C:\Windows\SysNative\drivers\Netwtw02.sys (Intel Corporation)

DRV:64bit: - (rt640x64) -- C:\Windows\SysNative\drivers\rt640x64.sys (Realtek )

DRV:64bit: - (RTSUER) -- C:\Windows\SysNative\drivers\RtsUer.sys (Realsil Semiconductor Corporation)

DRV:64bit: - (bdelam) -- C:\Windows\SysNative\drivers\bdelam.sys (Bitdefender)

DRV - (CompositeBus) -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys (Microsoft Corporation)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {3A728D48-0687-4D84-8224-4386DAA1DC01}

IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE:64bit: - HKLM\..\SearchScopes\{3A728D48-0687-4D84-8224-4386DAA1DC01}: "URL" = http://www.bing.com/search?q={searchTerms}&form=PRACE1&src=IE11TR&pc=ACTE

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKLM\..\SearchScopes,DefaultScope = {3A728D48-0687-4D84-8224-4386DAA1DC01}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKLM\..\SearchScopes\{3A728D48-0687-4D84-8224-4386DAA1DC01}: "URL" = http://www.bing.com/search?q={searchTerms}&form=PRACE1&src=IE11TR&pc=ACTE

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer15.msn.com/?pc=ACTE

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer15.msn.com/?pc=ACTE

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = C4 86 7B CB 92 D1 D1 01 [binary data]

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 22 00 00 00 4D 25 82 CB B4 D6 1B EF 15 09 81 D0 55 CD BF AE 14 D0 60 C9 0E 46 83 EC CE CA 61 39 B9 04 B3 4A 61 9C 02 00 00 00 0E 00 00 00 32 67 50 68 72 50 34 4C 2F 54 51 25 33 64 [binary data]

IE - HKCU\..\SearchScopes,DefaultScope = {3A728D48-0687-4D84-8224-4386DAA1DC01}

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll (Foxit Corporation)

FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf: C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll (Foxit Corporation)

FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp: C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll (Foxit Corporation)

FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf: C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll (Foxit Corporation)

FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\BITDEFENDER\BITDEFENDER 2016\BDTBEXT [2016/06/27 19:42:46 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2016/06/27 19:42:46 | 000,000,000 | ---D | M]

O1 HOSTS File: ([2016/07/09 04:49:52 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts

O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)

O4 - HKLM..\Run: [ProductUpdater] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe ()

O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)

O4 - HKCU..\Run: [OneDrive] C:\Users\emmet\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)

O4 - HKCU..\Run: [uTorrent] C:\Users\emmet\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1

O1364bit: - gopher Prefix: missing

O13 - gopher Prefix: missing

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2c206e79-1975-4b14-aab3-3697d06c1e85}: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3d2b9ca9-4da3-418e-b3b1-12c62e09fd75}: DhcpNameServer = 192.17.128.24

O18:64bit: - Protocol\Handler\ms-help - No CLSID value found

O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)

O18:64bit: - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)

O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)

O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)

O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O32 - HKLM CDRom: AutoRun - 1

O34 - HKLM BootExecute: (autocheck autochk *)

O35:64bit: - HKLM\..comfile [open] -- "%1" %*

O35:64bit: - HKLM\..exefile [open] -- "%1" %*

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*

O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2016/07/09 05:18:28 | 000,192,216 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys

[2016/07/09 05:17:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

[2016/07/09 05:17:07 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys

[2016/07/09 05:17:07 | 000,065,408 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys

[2016/07/09 05:17:07 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys

[2016/07/09 05:17:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware

[2016/07/09 05:17:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes

[2016/07/09 04:37:32 | 000,000,000 | ---D | C] -- C:\AdwCleaner

[2016/07/06 13:01:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Synaptics

[2016/07/04 08:02:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SleepStudy

[2016/06/30 01:08:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump

[2016/06/29 12:31:34 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Foxit Software

[2016/06/29 00:16:23 | 000,000,000 | ---D | C] -- C:\Users\emmet\Desktop\Books

[2016/06/28 23:59:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint

[2016/06/28 23:59:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

[2016/06/28 23:59:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER

[2016/06/28 23:59:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services

[2016/06/28 23:58:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHEALTH

[2016/06/28 23:58:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Sync Framework

[2016/06/28 23:58:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

[2016/06/28 23:56:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8

[2016/06/28 23:56:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office

[2016/06/28 23:56:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services

[2016/06/28 23:55:52 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\Microsoft Help

[2016/06/28 23:55:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office

[2016/06/28 23:55:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help

[2016/06/28 23:55:43 | 000,000,000 | RH-D | C] -- C:\MSOCache

[2016/06/28 23:52:56 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\Microsoft Toolkit

[2016/06/28 23:50:13 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\emmet\AppData\Roaming\pcouffin.sys

[2016/06/28 23:50:12 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Vso

[2016/06/28 23:50:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO

[2016/06/28 23:50:04 | 000,000,000 | ---D | C] -- C:\ProgramData\VSO

[2016/06/28 23:50:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VSO

[2016/06/28 23:42:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

[2016/06/28 23:42:09 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner

[2016/06/28 23:40:46 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\vlc

[2016/06/28 23:40:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

[2016/06/28 23:40:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN

[2016/06/28 23:39:08 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR

[2016/06/28 23:37:55 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\uTorrent

[2016/06/28 23:36:22 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\FreemakeVideoConverter

[2016/06/28 23:36:07 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake

[2016/06/28 23:36:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake

[2016/06/28 23:36:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Freemake Shared

[2016/06/28 23:36:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Freemake

[2016/06/28 23:35:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Freemake

[2016/06/28 23:35:15 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\Programs

[2016/06/28 23:34:36 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\cYo

[2016/06/28 23:34:36 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\cYo

[2016/06/28 23:33:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ComicRack

[2016/06/28 23:33:34 | 000,000,000 | ---D | C] -- C:\Program Files\ComicRack

[2016/06/28 20:17:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2016

[2016/06/28 20:16:57 | 000,000,000 | ---D | C] -- C:\ProgramData\BDLogging

[2016/06/28 20:16:35 | 000,023,568 | ---- | C] (Bitdefender) -- C:\WINDOWS\SysNative\drivers\bdelam.sys

[2016/06/28 20:16:16 | 000,087,912 | ---- | C] (BitDefender) -- C:\WINDOWS\SysNative\drivers\bdvedisk.sys

[2016/06/28 20:16:14 | 000,842,152 | ---- | C] (BitDefender) -- C:\WINDOWS\SysNative\drivers\avckf.sys

[2016/06/28 20:16:13 | 001,623,536 | ---- | C] (BitDefender) -- C:\WINDOWS\SysNative\drivers\avc3.sys

[2016/06/28 20:16:03 | 000,299,816 | ---- | C] (Bitdefender) -- C:\WINDOWS\SysNative\drivers\ignis.sys

[2016/06/28 20:15:54 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Bitdefender

[2016/06/28 20:14:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Bitdefender

[2016/06/28 20:14:07 | 000,182,936 | ---- | C] (BitDefender LLC) -- C:\WINDOWS\SysNative\drivers\gzflt.sys

[2016/06/28 20:14:05 | 000,520,032 | ---- | C] (BitDefender S.R.L.) -- C:\WINDOWS\SysNative\drivers\trufos.sys

[2016/06/28 20:14:05 | 000,000,000 | ---D | C] -- C:\Program Files\Bitdefender

[2016/06/28 20:13:55 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\QuickScan

[2016/06/28 20:13:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Bitdefender

[2016/06/28 20:12:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Bitdefender Agent

[2016/06/28 20:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Bitdefender Agent

[2016/06/28 20:12:01 | 000,000,000 | -HSD | C] -- C:\Users\emmet\AppData\Roaming\.#

[2016/06/28 20:05:02 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\ActiveSync

[2016/06/28 18:40:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther

[2016/06/28 18:38:19 | 000,000,000 | ---D | C] -- C:\Windows.old

[2016/06/28 18:28:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies

[2016/06/28 18:28:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild

[2016/06/28 18:28:31 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies

[2016/06/28 18:28:31 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild

[2016/06/28 17:46:46 | 000,000,000 | --SD | C] -- C:\Users\emmet\AppData\Roaming\Microsoft

[2016/06/28 17:46:46 | 000,000,000 | R-SD | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

[2016/06/28 17:46:46 | 000,000,000 | R--D | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

[2016/06/28 17:46:46 | 000,000,000 | R--D | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

[2016/06/28 17:46:46 | 000,000,000 | R--D | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

[2016/06/28 17:46:46 | 000,000,000 | -H-D | C] -- C:\Users\emmet\AppData

[2016/06/28 17:46:46 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\Temp

[2016/06/28 17:46:46 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\Microsoft

[2016/06/28 17:46:46 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

[2016/06/28 17:44:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\sda

[2016/06/28 17:44:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\DAX2

[2016/06/28 17:44:11 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek

[2016/06/28 17:44:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM

[2016/06/28 17:44:03 | 000,086,528 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL

[2016/06/28 17:44:03 | 000,082,432 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL

[2016/06/28 17:43:24 | 000,000,000 | ---D | C] -- C:\Program Files\Intel

[2016/06/28 17:43:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel

[2016/06/28 17:42:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2016/06/28 17:10:26 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\WildTangent

[2016/06/28 17:09:33 | 000,658,000 | ---- | C] (WildTangent, Inc.) -- C:\ProgramData\uninstall573002.exe

[2016/06/28 16:45:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\MRT

[2016/06/28 16:29:01 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\CrashDumps

[2016/06/28 16:16:03 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\AVAST Software

[2016/06/28 11:38:58 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Macromedia

[2016/06/28 11:37:06 | 000,000,000 | R--D | C] -- C:\Users\emmet\OneDrive

[2016/06/28 11:36:56 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\NetworkTiles

[2016/06/28 11:36:14 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\MicrosoftEdge

[2016/06/28 11:35:49 | 000,000,000 | ---D | C] -- C:\Users\emmet\PicStream

[2016/06/28 11:35:41 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\clear.fi

[2016/06/28 11:35:30 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\CareCenter

[2016/06/28 11:34:26 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\Comms

[2016/06/28 11:34:19 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\AOP SDK

[2016/06/28 11:33:25 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\Publishers

[2016/06/28 11:33:08 | 000,000,000 | -H-D | C] -- C:\ProgramData\O949

[2016/06/28 11:32:52 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM_YAHOO

[2016/06/28 11:32:43 | 000,000,000 | R--D | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

[2016/06/28 11:32:43 | 000,000,000 | R--D | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

[2016/06/28 11:32:42 | 000,000,000 | R--D | C] -- C:\Users\emmet\Searches

[2016/06/28 11:32:42 | 000,000,000 | R--D | C] -- C:\Users\emmet\Contacts

[2016/06/28 11:32:36 | 000,000,000 | ---D | C] -- C:\Program Files\Accessory Store

[2016/06/28 11:32:34 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Adobe

[2016/06/28 11:32:23 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\VirtualStore

[2016/06/28 11:32:23 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane

[2016/06/28 11:32:22 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\Packages

[2016/06/28 11:32:20 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Local\TileDataLayer

[2016/06/28 11:32:18 | 000,000,000 | -HSD | C] -- C:\Users\emmet\IntelGraphicsProfiles

[2016/06/28 11:32:17 | 000,000,000 | ---D | C] -- C:\Users\emmet\AppData\Roaming\Intel

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Videos

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Saved Games

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Pictures

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Music

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Links

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Favorites

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Downloads

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Documents

[2016/06/28 11:29:07 | 000,000,000 | R--D | C] -- C:\Users\emmet\Desktop

[2016/06/28 11:29:07 | 000,000,000 | ---D | C] -- C:\Users\emmet\Roaming

[2016/06/28 11:23:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Dashlane

[2016/06/28 11:22:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\oem

[3 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]

[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2016/07/09 05:19:11 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys

[2016/07/09 05:17:09 | 000,001,175 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

[2016/07/09 04:56:29 | 000,879,220 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI

[2016/07/09 04:56:29 | 000,748,860 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat

[2016/07/09 04:56:29 | 000,143,258 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat

[2016/07/09 04:51:07 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2016/07/09 04:50:24 | 000,000,180 | ---- | M] () -- C:\WINDOWS\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

[2016/07/09 04:49:52 | 000,000,824 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts

[2016/07/09 04:49:12 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys

[2016/07/09 04:49:04 | 3400,458,240 | -HS- | M] () -- C:\hiberfil.sys

[2016/07/07 19:25:28 | 890,376,988 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP

[2016/06/29 10:25:34 | 000,416,152 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT

[2016/06/28 23:50:13 | 000,099,384 | ---- | M] () -- C:\Users\emmet\AppData\Roaming\inst.exe

[2016/06/28 23:50:13 | 000,082,816 | ---- | M] (VSO Software) -- C:\Users\emmet\AppData\Roaming\pcouffin.sys

[2016/06/28 23:50:13 | 000,007,859 | ---- | M] () -- C:\Users\emmet\AppData\Roaming\pcouffin.cat

[2016/06/28 23:50:13 | 000,001,167 | ---- | M] () -- C:\Users\emmet\AppData\Roaming\pcouffin.inf

[2016/06/28 23:50:11 | 000,001,309 | ---- | M] () -- C:\Users\emmet\Desktop\ConvertXToDVD 5.lnk

[2016/06/28 23:42:11 | 000,000,867 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk

[2016/06/28 23:41:35 | 000,001,143 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk

[2016/06/28 23:38:18 | 000,000,900 | ---- | M] () -- C:\Users\emmet\Desktop\µTorrent.lnk

[2016/06/28 23:36:07 | 000,001,397 | ---- | M] () -- C:\Users\Public\Desktop\Freemake Video Converter.lnk

[2016/06/28 23:33:36 | 000,000,885 | ---- | M] () -- C:\Users\Public\Desktop\ComicRack.lnk

[2016/06/28 20:43:09 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf

[2016/06/28 20:17:48 | 000,000,385 | ---- | M] () -- C:\WINDOWS\SysNative\user_gensett.xml

[2016/06/28 20:17:03 | 000,002,274 | ---- | M] () -- C:\Users\Public\Desktop\Bitdefender 2016.lnk

[2016/06/28 18:37:38 | 000,015,703 | ---- | M] () -- C:\WINDOWS\SysNative\OEMDefaultAssociations.xml

[2016/06/28 18:36:51 | 000,002,186 | ---- | M] () -- C:\WINDOWS\SysWow64\AppxProvisioning.xml

[2016/06/28 18:36:46 | 002,656,952 | ---- | M] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll

[2016/06/28 18:36:46 | 001,862,008 | ---- | M] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll

[2016/06/28 18:36:46 | 000,235,008 | ---- | M] () -- C:\WINDOWS\SysNative\MTF.dll

[2016/06/28 18:36:46 | 000,002,186 | ---- | M] () -- C:\WINDOWS\SysNative\AppxProvisioning.xml

[2016/06/28 18:36:43 | 000,162,816 | ---- | M] () -- C:\WINDOWS\SysWow64\MTF.dll

[2016/06/28 17:59:03 | 000,024,768 | ---- | M] () -- C:\WINDOWS\diagwrn.xml

[2016/06/28 17:59:03 | 000,024,768 | ---- | M] () -- C:\WINDOWS\diagerr.xml

[2016/06/28 17:54:43 | 000,022,744 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat

[2016/06/28 17:44:26 | 032,931,716 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\rtkhdasetting.zip

[2016/06/28 17:44:24 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl

[2016/06/28 17:44:06 | 000,000,200 | ---- | M] () -- C:\WINDOWS\SysNative\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat

[2016/06/28 11:32:14 | 000,016,148 | ---- | M] () -- C:\WINDOWS\SysNative\LAPTOP-FHB2B9PO_defaultuser0_HistoryPrediction.bin

[2016/06/16 16:45:39 | 000,299,816 | ---- | M] (Bitdefender) -- C:\WINDOWS\SysNative\drivers\ignis.sys

[3 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]

[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2016/07/09 05:17:09 | 000,001,175 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

[2016/07/07 12:32:52 | 890,376,988 | ---- | C] () -- C:\WINDOWS\MEMORY.DMP

[2016/06/28 23:50:13 | 000,099,384 | ---- | C] () -- C:\Users\emmet\AppData\Roaming\inst.exe

[2016/06/28 23:50:13 | 000,007,859 | ---- | C] () -- C:\Users\emmet\AppData\Roaming\pcouffin.cat

[2016/06/28 23:50:13 | 000,001,167 | ---- | C] () -- C:\Users\emmet\AppData\Roaming\pcouffin.inf

[2016/06/28 23:50:11 | 000,001,309 | ---- | C] () -- C:\Users\emmet\Desktop\ConvertXToDVD 5.lnk

[2016/06/28 23:42:11 | 000,000,867 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk

[2016/06/28 23:40:18 | 000,001,143 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk

[2016/06/28 23:38:18 | 000,000,900 | ---- | C] () -- C:\Users\emmet\Desktop\µTorrent.lnk

[2016/06/28 23:36:07 | 000,001,397 | ---- | C] () -- C:\Users\Public\Desktop\Freemake Video Converter.lnk

[2016/06/28 23:33:36 | 000,000,885 | ---- | C] () -- C:\Users\Public\Desktop\ComicRack.lnk

[2016/06/28 20:43:09 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf

[2016/06/28 20:17:48 | 000,000,385 | ---- | C] () -- C:\WINDOWS\SysNative\user_gensett.xml

[2016/06/28 20:17:03 | 000,002,274 | ---- | C] () -- C:\Users\Public\Desktop\Bitdefender 2016.lnk

[2016/06/28 18:40:47 | 000,037,616 | ---- | C] () -- C:\WINDOWS\SysWow64\license.rtf

[2016/06/28 18:40:47 | 000,037,616 | ---- | C] () -- C:\WINDOWS\SysNative\license.rtf

[2016/06/28 18:36:51 | 000,002,186 | ---- | C] () -- C:\WINDOWS\SysWow64\AppxProvisioning.xml

[2016/06/28 18:36:46 | 002,656,952 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll

[2016/06/28 18:36:46 | 001,862,008 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll

[2016/06/28 18:36:46 | 000,235,008 | ---- | C] () -- C:\WINDOWS\SysNative\MTF.dll

[2016/06/28 18:36:46 | 000,002,186 | ---- | C] () -- C:\WINDOWS\SysNative\AppxProvisioning.xml

[2016/06/28 18:36:43 | 000,162,816 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll

[2016/06/28 17:54:43 | 000,022,744 | ---- | C] () -- C:\WINDOWS\SysNative\emptyregdb.dat

[2016/06/28 17:49:55 | 000,001,576 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

[2016/06/28 17:44:26 | 032,931,716 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\rtkhdasetting.zip

[2016/06/28 17:44:24 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl

[2016/06/28 17:44:06 | 000,000,200 | ---- | C] () -- C:\WINDOWS\SysNative\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat

[2016/06/28 17:44:06 | 000,000,180 | ---- | C] () -- C:\WINDOWS\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

[2016/06/28 11:37:06 | 000,002,367 | ---- | C] () -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

[2016/06/28 11:35:41 | 000,001,333 | ---- | C] () -- C:\Users\emmet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HD Audio Manager.lnk

[2016/06/28 11:32:14 | 000,016,148 | ---- | C] () -- C:\WINDOWS\SysNative\LAPTOP-FHB2B9PO_defaultuser0_HistoryPrediction.bin

[2016/04/27 06:31:30 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2015/10/30 08:24:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat

[2015/10/30 08:24:43 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT

[2015/10/30 08:18:39 | 000,164,224 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll

[2015/10/30 08:18:36 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat

[2015/10/30 08:18:36 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll

[2015/10/30 08:18:34 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll

[2015/10/30 08:18:31 | 000,252,928 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll

[2015/10/30 08:18:31 | 000,029,184 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe

[2015/10/30 08:18:29 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll

[2015/10/30 08:18:29 | 000,293,376 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll

[2015/10/30 08:18:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll

[2015/10/30 08:18:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini

[2015/10/30 08:18:23 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat

[2015/10/30 08:17:40 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin

========== ZeroAccess Check ==========

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

"" = C:\Windows\SysNative\windows.storage.dll -- [2016/06/28 18:36:43 | 006,605,504 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\windows.storage.dll -- [2016/06/28 18:36:43 | 005,240,960 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64

"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015/10/30 08:17:43 | 000,987,648 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = %systemroot%\system32\wbem\fastprox.dll -- [2015/10/30 08:18:21 | 000,765,440 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64

"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015/10/30 08:17:45 | 000,518,656 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2016/06/28 20:42:25 | 000,000,000 | -HSD | M] -- C:\Users\emmet\AppData\Roaming\.#

[2016/06/28 16:16:03 | 000,000,000 | ---D | M] -- C:\Users\emmet\AppData\Roaming\AVAST Software

[2016/06/28 20:27:04 | 000,000,000 | ---D | M] -- C:\Users\emmet\AppData\Roaming\Bitdefender

[2016/06/28 23:34:36 | 000,000,000 | ---D | M] -- C:\Users\emmet\AppData\Roaming\cYo

[2016/06/29 12:31:34 | 000,000,000 | ---D | M] -- C:\Users\emmet\AppData\Roaming\Foxit Software

[2016/06/28 20:13:55 | 000,000,000 | ---D | M] -- C:\Users\emmet\AppData\Roaming\QuickScan

[2016/07/09 05:11:21 | 000,000,000 | ---D | M] -- C:\Users\emmet\AppData\Roaming\uTorrent

[2016/06/28 23:50:13 | 000,000,000 | ---D | M] -- C:\Users\emmet\AppData\Roaming\Vso

[2016/06/28 17:10:26 | 000,000,000 | ---D | M] -- C:\Users\emmet\AppData\Roaming\WildTangent

========== Purity Check ==========

< End of report >

New Laptop Freezing

emmettk90

New Member

johnb35

Administrator

emmettk90

New Member

johnb35

Administrator

emmettk90

New Member

emmettk90

New Member