Solved FRST Scanned

Hello,

Dell Studio XPS suspected virus. Help please . I've posted the FRST files FRST TXT and Additional txt.

Thank you in advance

Sorry about the first post and attachment.

Thank you

mnisia said:

Hello,

Dell Studio XPS suspected virus. Help please . I've attached the FRST files FRST TXT and Additional txt.

Thank you in advance

Click to expand...

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-07-2017
Ran by Steve (administrator) on STEVE-PC (23-07-2017 04:58:10)
Running from C:\Users\Steve\Downloads
Loaded Profiles: Steve (Available Profiles: Steve & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Sonic Solutions) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
(Sonic Solutions) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssist\uaclauncher.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
(McAfee, Inc.) C:\Program Files\McAfee\VUL\McVulCtr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe
(McAfee, Inc.) C:\Program Files\McAfee\VUL\McVulAlert.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1439_none_7efe016621f50bd0\TiWorker.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RunDLLEntry_THXCfg] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [RunDLLEntry_EptMon] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\EptMon64.dll,RunDLLEntry EptMon64
HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794888 2015-10-03] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10081312 2010-02-22] (Realtek Semiconductor)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe [963584 2009-12-01] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-09-04] (Sonic Solutions)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [556288 2017-05-31] (McAfee, Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1870928 2017-04-04] (Adobe Systems Inc.)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-08-24] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [593216 2015-08-31] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2650576 2017-05-05] (Malwarebytes Corporation)
HKU\S-1-5-21-3518905376-1918425772-3662548586-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [886352 2017-04-04] (Adobe Systems Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk [2016-08-29]
ShortcutTarget: NETGEAR WNA3100 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 209.18.47.62 209.18.47.61
Tcpip\..\Interfaces\{3a1b2148-2a78-4084-ac04-ccbabaddbe37}: [DhcpNameServer] 209.18.47.62 209.18.47.61

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
URLSearchHook: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
SearchScopes: HKLM -> DefaultScope {B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B} URL =
SearchScopes: HKLM -> {903BEF58-2264-4FDD-A4A2-72024AC9D292} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
SearchScopes: HKLM-x32 -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
SearchScopes: HKLM-x32 -> {AB62CE37-C53F-4D77-9489-308327D58331} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001 -> {0C755E98-7D34-4B11-A63A-5F01EB9ABAE7} URL = hxxp://www.bing.com/search?FORM=U220DF&PC=U220&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001 -> {903BEF58-2264-4FDD-A4A2-72024AC9D292} URL =
SearchScopes: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
SearchScopes: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001 -> {AB62CE37-C53F-4D77-9489-308327D58331} URL =
SearchScopes: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001 -> {B291AB8A-3ACA-450E-AD13-3D62D679BAF2} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=C011US837D20110426&p={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-04-18] (McAfee, Inc.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2017-01-14] (Oracle Corporation)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-04-18] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2017-01-14] (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 10.0 Helper -> {DDA57003-0068-4ed2-9D32-4D1EC707D94D} -> c:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2010-03-19] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-04-18] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-04-18] (McAfee, Inc.)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll No File
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-04-18] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-04-18] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2017-05-31] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2017-05-31] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default [2017-07-23]
FF Homepage: Mozilla\Firefox\Profiles\jor6jyfq.default -> hxxps://www.facebook.com/
FF Extension: (LavaFox V2-Blue) - C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default\Extensions\djziggy@gmail.com [2017-05-17]
FF Extension: (HTML5 Notifications) - C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default\Extensions\html5notifications@paxal.net.xpi [2016-04-30]
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017-07-21]
FF SearchPlugin: C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default\searchplugins\McSiteAdvisor.xml [2016-03-12]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-04-13]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2015-09-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-21] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2017-05-31] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-08-24] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-07-14] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2017-01-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2017-01-14] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2017-05-31] ()
FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll [2015-11-09] (McAfee, Inc.)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-08-24] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-07-14] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default [2017-07-23]
CHR Extension: (YouTube) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2017-02-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-07-23]
CHR Extension: (Gmail) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-23]
CHR Extension: (Chrome Media Router) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-23]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-06-18]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-06-18]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 0274261492870408mcinstcleanup; C:\WINDOWS\TEMP\027426~1.EXE [1031928 2017-05-31] (McAfee, Inc.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [68096 1999-09-01] () [File not signed]
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-08-24] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3971264 2017-05-14] (Microsoft Corporation)
R3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1752992 2017-03-29] (Intel Security)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [206712 2017-06-20] (Dell Inc.)
S2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3296632 2017-06-20] (Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217464 2017-06-20] (Dell Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2016-12-21] (Dell Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [230248 2017-05-01] (Dell Inc.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [155080 2017-05-05] (Malwarebytes Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [188264 2017-04-18] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe [984480 2017-06-03] (McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\\McCSPServiceHost.exe [2139832 2017-05-30] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [241656 2017-04-30] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [390656 2017-04-30] (McAfee, Inc.)
R3 mfevtp; C:\WINDOWS\system32\mfevtps.exe [343544 2017-04-30] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1543248 2017-05-31] (McAfee, Inc.)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [128512 2015-04-15] (Motorola Mobility LLC) [File not signed]
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [69964448 2015-04-03] (Microsoft Corporation)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1042288 2017-05-22] (Intel Security, Inc.)
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
S2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [441512 2015-04-03] (Microsoft Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [52696 2017-06-28] (Dell Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-27] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-27] (Microsoft Corporation)
R2 WSWNA3100; C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe [307488 2012-09-03] ()

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [76824 2017-05-02] (McAfee, Inc.)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32960 2017-04-11] (Dell Inc.)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-04-11] (Dell Computer Corporation)
R3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [146856 2015-10-03] (Windows (R) Win 7 DDK provider)
R3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2015-10-03] (Windows (R) Win 7 DDK provider)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [77440 2017-05-05] ()
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [209608 2017-05-31] (McAfee, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2017-07-23] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [476176 2017-05-02] (McAfee, Inc.)
U3 mfeaack01; no ImagePath
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [353808 2017-05-02] (McAfee, Inc.)
U3 mfeavfk03; no ImagePath
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [84536 2017-05-02] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [504336 2017-05-02] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [918544 2017-05-02] (McAfee, Inc.)
U3 mfehidk01; no ImagePath
U3 mfehidk02; no ImagePath
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [495632 2017-04-07] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [107544 2017-04-07] (McAfee, Inc.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [109072 2017-05-02] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252432 2017-05-02] (McAfee, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 NPF; C:\WINDOWS\system32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R3 rzdaendpt; C:\WINDOWS\System32\drivers\rzdaendpt.sys [43720 2015-08-13] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-26] (Razer, Inc.)
R3 rzvkeyboard; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc)
R0 SCMNdisP; C:\WINDOWS\System32\DRIVERS\scmndisp.sys [29472 2012-09-05] (SerComm Corporation)
S3 trufos; C:\WINDOWS\System32\drivers\trufos.sys [350160 2015-05-09] (BitDefender S.R.L.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-23 04:58 - 2017-07-23 05:00 - 00031287 _____ C:\Users\Steve\Downloads\FRST.txt
2017-07-23 04:57 - 2017-07-23 04:58 - 00000000 ____D C:\FRST
2017-07-23 04:57 - 2017-07-23 04:57 - 02382336 _____ (Farbar) C:\Users\Steve\Downloads\FRST64.exe
2017-07-23 04:53 - 2017-07-23 04:54 - 01778176 _____ (Farbar) C:\Users\Steve\Downloads\FRST.exe
2017-07-23 03:36 - 2017-07-23 04:24 - 00004034 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2017-07-23 03:34 - 2017-07-23 03:34 - 00001416 _____ C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update and Privacy Settings.lnk
2017-07-23 03:34 - 2017-07-23 03:34 - 00000000 ____D C:\Users\Steve\AppData\Local\UNP
2017-07-21 12:42 - 2017-07-21 12:42 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Google
2017-07-21 12:11 - 2017-07-21 12:12 - 00000000 ____D C:\Program Files\UNP
2017-07-21 12:11 - 2017-07-21 12:11 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-07-21 11:57 - 2017-07-21 11:57 - 00000000 ____D C:\Program Files (x86)\Dell Update
2017-07-21 11:54 - 2017-07-21 11:54 - 05824512 _____ C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2017-07-03 21:26 - 2017-07-23 03:58 - 00003446 _____ C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare)
2017-07-03 21:26 - 2017-07-03 21:26 - 00002119 _____ C:\Users\Public\Desktop\SupportAssist.lnk
2017-07-03 21:26 - 2017-07-03 21:26 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2017-07-03 21:26 - 2017-07-03 21:26 - 00000000 ____D C:\Program Files\Dell Support Center
2017-07-03 21:22 - 2017-07-03 21:22 - 00003930 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AnonymousRegistration
2017-07-03 21:22 - 2017-07-03 21:22 - 00003896 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2017-07-03 21:21 - 2017-07-03 21:21 - 00000000 ____D C:\ProgramData\SupportAssistAgent
2017-07-03 21:21 - 2017-07-03 21:21 - 00000000 ____D C:\ProgramData\SupportAssist
2017-07-03 21:20 - 2017-07-03 21:20 - 00003202 _____ C:\WINDOWS\System32\Tasks\BundleApplicationRepairToolLauncherTask

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-23 04:59 - 2016-07-16 07:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-23 04:58 - 2016-07-16 07:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-23 04:58 - 2013-07-15 03:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-23 04:57 - 2012-10-13 21:41 - 00000000 ____D C:\Users\Steve\Downloads\Documents\Outlook Files
2017-07-23 04:56 - 2016-07-16 07:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-23 04:50 - 2011-02-24 11:43 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-23 04:25 - 2012-05-12 03:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-07-23 04:24 - 2012-05-12 03:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-07-23 04:24 - 2012-05-12 03:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-07-23 04:20 - 2016-02-13 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2017-07-23 04:15 - 2016-07-16 07:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-07-23 03:59 - 2016-11-27 14:58 - 00000000 ____D C:\Users\Steve\AppData\LocalLow\Mozilla
2017-07-23 03:59 - 2016-11-19 13:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-07-23 03:58 - 2011-02-17 01:53 - 00000000 ____D C:\ProgramData\McAfee
2017-07-23 03:43 - 2017-04-09 13:55 - 00004222 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2017-07-23 03:33 - 2015-04-15 12:19 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-07-21 13:31 - 2014-08-27 12:30 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-07-21 13:07 - 2016-05-01 18:12 - 00000000 ____D C:\Program Files\Common Files\McAfee
2017-07-21 13:05 - 2017-05-17 18:35 - 00000000 __HDC C:\ProgramData\~0
2017-07-21 13:05 - 2016-07-16 07:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-07-21 13:03 - 2016-09-17 05:01 - 00003126 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
2017-07-21 13:01 - 2016-09-17 05:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2017-07-21 12:42 - 2016-06-25 11:45 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2017-07-21 12:00 - 2011-02-24 10:47 - 00000000 ____D C:\Users\Steve\AppData\Local\Adobe
2017-07-21 11:57 - 2011-02-17 01:48 - 00000000 ____D C:\ProgramData\Dell
2017-07-21 11:57 - 2011-02-17 01:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2017-07-21 11:56 - 2016-02-21 22:17 - 00000000 ____D C:\ProgramData\PCDr
2017-07-21 11:54 - 2016-07-16 07:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-07-21 11:54 - 2016-07-16 07:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-07-03 21:35 - 2016-05-01 18:15 - 00000000 ____D C:\Program Files\McAfee
2017-07-03 21:30 - 2016-07-16 02:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-07-03 21:21 - 2015-02-11 20:49 - 00000000 ____D C:\Program Files\Dell
2017-07-03 21:19 - 2016-09-17 04:17 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-30 10:46 - 2016-07-16 07:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 10:46 - 2016-07-16 07:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2016-06-11 23:06 - 2016-06-11 23:06 - 0000033 _____ () C:\Users\Steve\AppData\Roaming\AdobeWLCMCache.dat
2016-09-16 18:37 - 2016-09-16 21:10 - 0007933 _____ () C:\Users\Steve\AppData\Roaming\url.txt
2012-09-14 21:08 - 2016-08-10 19:35 - 0000600 _____ () C:\Users\Steve\AppData\Roaming\winscp.rnd
2013-07-27 23:17 - 2013-08-05 15:10 - 145394418 _____ () C:\Users\Steve\AppData\Local\ACCCx189.zip.aamdownload
2013-07-27 23:17 - 2013-08-05 15:10 - 0001811 _____ () C:\Users\Steve\AppData\Local\ACCCx189.zip.aamdownload.aamd
2013-02-14 19:44 - 2013-05-12 18:11 - 0001456 _____ () C:\Users\Steve\AppData\Local\Adobe Save for Web 13.0 Prefs
2012-09-07 21:10 - 2012-09-14 22:01 - 0000600 _____ () C:\Users\Steve\AppData\Local\PUTTY.RND
2013-09-29 11:43 - 2013-09-29 11:43 - 0000017 _____ () C:\Users\Steve\AppData\Local\resmon.resmoncfg
2012-02-23 22:19 - 2012-02-23 22:19 - 0000000 _____ () C:\Users\Steve\AppData\Local\rx_image32.Cache
2014-12-29 23:11 - 2014-12-29 23:12 - 0000000 _____ () C:\Users\Steve\AppData\Local\{964A0568-C3C2-4F88-9508-6F18AE20110E}
2015-01-08 18:21 - 2015-01-08 18:25 - 0000000 _____ () C:\Users\Steve\AppData\Local\{C7C7B0D2-8B85-480E-B8EE-0C34977D9B3A}
2015-09-12 16:53 - 2015-09-12 16:53 - 0000006 ____S () C:\ProgramData\46eb0065973e3bedb34adf8d685bc929c3681a88
2015-09-05 16:33 - 2015-09-05 16:33 - 0000006 __RSH () C:\ProgramData\ff0d90228beb5860b38cefdafa363523d98969e2
2017-03-10 18:29 - 2017-03-10 20:10 - 0000469 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

Files to move or delete:
====================
C:\Users\Steve\nero11v2.exe


Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-05 16:59

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-07-2017
Ran by Steve (23-07-2017 11:40:33)
Running from C:\Users\Steve\Downloads\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-17 09:06:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3518905376-1918425772-3662548586-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3518905376-1918425772-3662548586-503 - Limited - Disabled)
Guest (S-1-5-21-3518905376-1918425772-3662548586-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3518905376-1918425772-3662548586-1003 - Limited - Enabled)
Steve (S-1-5-21-3518905376-1918425772-3662548586-1001 - Administrator - Enabled) => C:\Users\Steve

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.1430 - Adobe Systems Incorporated)
Adobe Audition CC 2015 (HKLM-x32\...\{839A3566-AED6-4787-A849-5CBE2B1DC6AE}) (Version: 8.1.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.8.0.310 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.1 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.5 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2015 (HKLM-x32\...\{EE2A0AA8-0386-11E5-8603-BC82F5DB1A71}) (Version: 16.1.2 - Adobe Systems Incorporated)
Adobe Dreamweaver CS3 (HKLM-x32\...\Adobe_7328fdfcb73660ec8b11d5a3d5c6232) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Dreamweaver CS6 (HKLM-x32\...\{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}) (Version: 12.2.0 - Adobe Systems Incorporated)
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Flash Professional CS6 (HKLM-x32\...\{BD5669B5-49FF-4490-B956-E9D7CB9B0ADC}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CC 2015 (HKLM-x32\...\ILST_19_2_1) (Version: 19.2.1 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe InCopy CC 2015 (HKLM-x32\...\{9EF1DB49-6D32-1014-93B7-EB62FA572532}) (Version: 11.0.1.105 - Adobe Systems Incorporated)
Adobe InDesign CC 2015 (HKLM-x32\...\{DBFD0312-6E55-1014-8952-E78D43BC0147}) (Version: 11.3.0.034 - Adobe Systems Incorporated)
Adobe InDesign CS6 (HKLM-x32\...\{CFB770D7-8D43-1014-922B-CC2715FADE3F}) (Version: 8.0.1.407 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.5.1 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.2.0 - Adobe Systems Incorporated)
Adobe Muse CC 2015 (HKLM-x32\...\{9B0619A0-D501-11E5-B16B-FB3EC5F53981}) (Version: 2015.1.2.44 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.2 - Adobe Systems Incorporated)
Adobe Photoshop CS (HKLM-x32\...\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}) (Version: CS - Adobe Systems, Inc.)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.2.0 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.3.0 - Adobe Systems Incorporated)
Aspell English Dictionary-0.50-2 (HKLM-x32\...\Aspell English Dictionary_is1) (Version: - GNU)
AVS Audio Converter version 7 (HKLM-x32\...\AVS Audio Converter_is1) (Version: - Online Media Technologies Ltd.)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6521 - CDBurnerXP)
Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)
Crystal Reports for Visual Studio (HKLM-x32\...\{AC41D924-8C68-4BD5-A7A1-0AE4176C31A6}) (Version: 12.51.0.240 - SAP) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Customer Connect (HKLM-x32\...\{4FA72FF9-DD64-43A8-8704-6380A11F11D5}) (Version: 1.4.15.0 - Dell Inc.)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (HKLM-x32\...\{3E8A1ADF-B72C-47FE-85F6-F7A73C487F6C}) (Version: 1.3.31.0 - Fingertapps)
Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.19 - ArcSoft)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 2.0.6875.402 - Dell)
Dell SupportAssistAgent (HKLM\...\{90881C8E-6C4F-4662-9923-85AFCA058C44}) (Version: 2.0.1.7 - Dell)
Dell Update - SupportAssist Update Plugin (HKLM\...\{EEA45885-F3E3-4E7D-8435-E9C21D36C141}) (Version: 3.0.0.2840 - Dell Inc.)
Dell Update (HKLM-x32\...\{F91263FA-BE4D-439D-9C0A-2E7204E0E9E3}) (Version: 1.9.20.0 - Dell Inc.)
Digital Camera3.0M (HKLM-x32\...\{1A3ADB5A-2491-4F7A-BD6D-5F8C9B4714B0}) (Version: - )
DirectX 9 Runtime (HKLM-x32\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}) (Version: 1.00.0000 - Sonic Solutions) Hidden
Dotfuscator Software Services - Community Edition (HKLM-x32\...\{1AA5BD63-6614-44B2-88A7-605191EDB835}) (Version: 5.0.2500.0 - PreEmptive Solutions)
eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)
Express Burn Disc Burning Software (HKLM-x32\...\ExpressBurn) (Version: 6.02 - NCH Software)
GDR 5538 for SQL Server 2008 (KB3045305) (64-bit) (HKLM\...\KB3045305) (Version: 10.3.5538.0 - Microsoft Corporation)
GetNZB version 1.401 (HKLM-x32\...\GetNZB_is1) (Version: 1.401 - )
GNU Aspell 0.50-3 (HKLM-x32\...\GNU Aspell_is1) (Version: - GNU)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GrabIt 1.7.2 Beta 6 (build 1008) (HKLM-x32\...\GrabIt_is1) (Version: - Ilan Shemes)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Integrated Performance Primitives RTI 4.0 (HKLM-x32\...\{51C91B84-7B46-4FE7-8999-8228CFA75F89}) (Version: 4.0.23 - Intel Corporation)
Internet Explorer (HKLM-x32\...\{AA31EA7B-7917-4000-949B-38E91F848A25}) (Version: 8 - Microsoft Corporation) Hidden
Internet TV for Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
LG VZW United Drivers (HKLM-x32\...\{AB43784D-1EE5-4111-95C8-918B25EFDC4B}) (Version: 2.22.0 - LG Electronics)
Malwarebytes Anti-Exploit version 1.9.1.1403 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.9.1.1403 - Malwarebytes)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 16.0.1 - McAfee, Inc.)
McAfee Virtual Technician (HKLM-x32\...\McAfee Virtual Technician) (Version: 8.1.0.135 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.139 - McAfee, Inc.)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{50816F92-1652-4A7C-B9BC-48F682742C4B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.8229.2086 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Project Professional 2013 (HKLM-x32\...\Office15.PRJPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK (HKLM-x32\...\{05855322-BE43-41FE-B583-D3AE0C326D58}) (Version: 4.0.50826.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{2738C4AA-420E-4E13-ADEF-B5AB250E3EF1}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM-x32\...\{BC537AE0-88AF-47ED-B762-33B0D62B5188}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{7A56D81D-6406-40E7-9184-8AC1769C4D69}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{EAEBF166-B06A-4D7F-BAF7-6615303D5C7C}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{09C52940-A4D1-4409-A7CC-1AAE630CF578}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{F43ADE73-2880-4A95-B995-4FE386ECF667}) (Version: 10.3.5538.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{1E6ED082-E32D-4B2B-8B6A-70B094815135}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (HKLM\...\{8438EC02-B8A9-462D-AC72-1B521349C001}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 (HKLM-x32\...\{0E3DFC64-CC49-4BE2-8C9C-58EF129675DB}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) (HKLM\...\{034106B5-54B7-467F-B477-5B7DBB492624}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (HKLM\...\{1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3}) (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visio Professional 2013 (HKLM-x32\...\Office15.VISPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (HKLM\...\{F5079164-1DB9-3BDA-853B-F78AF67CE071}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (HKLM\...\{88BAE373-00F4-3E33-828F-96E89E5E0CB9}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Ultimate - ENU (HKLM-x32\...\Microsoft Visual Studio 2010 Ultimate - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (HKLM-x32\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation)
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC)
Mozilla Firefox 54.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 en-US)) (Version: 54.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.1.6388 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MusicBrainz Picard (HKLM-x32\...\MusicBrainz Picard) (Version: 1.3.2 - MusicBrainz)
Nero 2016 Content Pack (HKLM-x32\...\{006F5CFF-ED35-41AF-9B2A-F52B0F545BF4}) (Version: 17.0.00200 - Nero AG)
Netflix in Windows Media Center (HKLM-x32\...\{0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6}) (Version: 3.3.101.0 - Microsoft Corporation)
NETGEAR WNA3100 wireless USB 2.0 adapter (HKLM-x32\...\{C2425F91-1F7B-4037-9A05-9F290184798D}) (Version: 2.1.0.4 - NETGEAR)
Notepad++ (HKLM-x32\...\{E452F262-D655-45E3-9BDB-3E6AE19B83C5}) (Version: 5.9.0.0 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 270.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 270.57 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Graphics Driver 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8229.2086 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8229.2086 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8229.2086 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.8201.2075 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
PhotoShowExpress (HKLM-x32\...\{3250260C-7A95-4632-893B-89657EB5545B}) (Version: 2.0.028 - Sonic Solutions) Hidden
Prerequisite installer (HKLM-x32\...\{5F284483-EE8D-447E-BEBE-2BF13B08C4BF}) (Version: 17.0.0002 - Nero AG) Hidden
PrivaZer (HKLM-x32\...\PrivaZer) (Version: 2.31.0.0 - Goversoft LLC)
QuarkXPress 6.1 (HKLM-x32\...\{FF0B0792-F6E7-4627-B820-EA50617E223B}) (Version: 6.10.0000 - Quark, Inc.)
RapidShare Manager 2 (HKLM-x32\...\6103-4188-8184-5707) (Version: 2 - RapidShare AG)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27599 - Razer Inc.)
RBVirtualFolder64Inst (HKLM\...\{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}) (Version: 1.00.0000 - Roxio, Inc.) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.11.1127.2009 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6050 - Realtek Semiconductor Corp.)
Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.41 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.40.0 - Roxio)
Roxio File Backup (HKLM\...\{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}) (Version: 1.3.2 - Roxio) Hidden
Secure Download Manager (HKLM-x32\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-003B-0000-0000-0000000FF1CE}_Office15.PRJPROR_{115B7592-B71D-4C27-AB34-34268FB199CA}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-0051-0000-0000-0000000FF1CE}_Office15.VISPROR_{8D2E04ED-3350-4ECE-9D6E-3BC9A9A93A47}) (Version: - Microsoft)
Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) (HKLM\...\KB2546951) (Version: 10.3.5500.0 - Microsoft Corporation)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Sonic CinePlayer Decoder Pack (HKLM-x32\...\{9A00EC4E-27E1-42C4-98DD-662F32AC8870}) (Version: 4.3.0 - Sonic Solutions) Hidden
Sql Server Customer Experience Improvement Program (HKLM\...\{2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}) (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
The Print Shop 12 (HKLM-x32\...\{3DD1FE66-5536-41E3-B786-70068887B3F4}) (Version: - )
THX TruStudio PC (HKLM-x32\...\{010A785B-F920-4350-821B-6309909C20BB}) (Version: 1.0 - Creative Technology Limited)
TurboTax 2015 (HKLM-x32\...\TurboTax 2015) (Version: 2015.0 - Intuit, Inc)
Update for Skype for Business 2015 (KB3213574) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PRJPROR_{2178D653-A054-4A65-9726-A90664E92D9F}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3213574) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.VISPROR_{2178D653-A054-4A65-9726-A90664E92D9F}) (Version: - Microsoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
Verizon Software Upgrade Assistant (HKLM-x32\...\{F933562A-45B5-4730-8A5E-0D282AA9866B}) (Version: 15.05.0601 - Motorola Mobility) Hidden
Verizon Wireless Software Upgrade Assistant for Motorola (HKLM-x32\...\{9BEDD987-AC68-44D2-8803-EC0650F6C43F}) (Version: 1.4.7 - Motorola Mobility)
Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
WCF RIA Services V1.0 SP1 (HKLM-x32\...\{D9E6001A-5DC3-4620-AF7A-80B6CD48645D}) (Version: 4.1.60114.0 - Microsoft Corporation)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WinSCP 5.1.4 (HKLM-x32\...\winscp3_is1) (Version: 5.1.4 - Martin Prikryl)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-A79589C16F3B}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-A79589C16F3B}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers01: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ContextMenuHandlers01: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers01: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers01: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google)
ContextMenuHandlers01: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2017-05-31] (McAfee, Inc.)
ContextMenuHandlers01: [Notepad++] -> {00F3C2EC-A6EE-11DE-A03A-EF8F55D89593} => -> No File
ContextMenuHandlers01: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2015-05-09] ()
ContextMenuHandlers01: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2011-05-11] (Online Media Technologies Ltd.)
ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File
ContextMenuHandlers02: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2015-05-09] ()
ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers03: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2015-05-09] ()
ContextMenuHandlers03: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers04: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers04: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google)
ContextMenuHandlers04: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers04: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2015-05-09] ()
ContextMenuHandlers04: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2015-04-08] (Piriform Ltd)
ContextMenuHandlers05: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation)
ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ContextMenuHandlers06: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers06: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2017-05-31] (McAfee, Inc.)
ContextMenuHandlers06: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers06: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll [2015-05-09] ()
ContextMenuHandlers06: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2015-04-08] (Piriform Ltd)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05568D31-BBE6-4CB5-A88C-E666DC011F13} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0C855300-441B-42AC-AA66-D0D89089C907} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {0E8BA77D-4266-4580-B72B-3CD42E15D7EB} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {1291F7F5-7806-412A-9484-565DE8358B7C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {161897C7-2EB0-4B16-B3ED-53376C206846} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {18388806-6ECE-4A84-BCF1-B94584116D21} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {27460911-EAF0-481B-B769-AEAF18443920} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {2B33A801-7BC4-4BF9-B206-E08E6054EF51} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2E13C35B-7155-4578-ACF1-0B8A60901239} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {322C1822-EED3-4054-9336-2013968D1F5A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3686520B-B006-4460-9F9B-523C01A3F9D3} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3A5F3AEA-E730-44EB-918F-0B812C32F187} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {3CC1B7EC-72D4-4EF5-82CA-290A1228E561} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {407C29E3-9E6F-4C8C-AA19-FCDC913B5542} - System32\Tasks\Verizon Wireless Upgrade Assistant Update Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\VerizonWirelessUpgradeAssistantUpdate.exe [2015-05-21] ()
Task: {42D088FD-805A-46FA-A7E2-EA8DEDBA846C} - System32\Tasks\{59944E75-8499-4A0B-B7F7-CC267C7182FC} => C:\Windows\system32\pcalua.exe -a C:\LGMobileUpgrade\LGMOBILEAX\BYRLauncher.exe -d C:\LGMobileUpgrade\LGMOBILEAX
Task: {43B077FF-0D14-48F3-9C3F-E14FCE479B66} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4492C462-5B97-4917-92F4-3EDBC26BF655} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2017-02-07] (McAfee, Inc.)
Task: {48101EB0-7729-4C24-9926-4948E6563450} - System32\Tasks\{8FEF03D2-8559-4B76-9BFD-39A076532F4C} => C:\Windows\system32\pcalua.exe -a C:\Users\Steve\Ahead.Nero.Burning.ROM.v6.6.0.16.Ultra.Edition\Nero-6.6.0.16.exe -d C:\Users\Steve\Ahead.Nero.Burning.ROM.v6.6.0.16.Ultra.Edition
Task: {4B4B7332-58ED-4BBC-B13F-629E096B8472} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {573D20B9-A0E1-43E5-988A-ACBCABE409E5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {62A7BFF5-FF12-4892-8531-F0A988FF8652} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {66E2E6D4-1BCB-44D4-AE52-E39EF170E081} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {76E07E4B-F33C-4988-8127-2918C072021F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {7D52DB34-FE7C-4DF3-B6C6-30EAA4CB6872} - System32\Tasks\Dell SupportAssistAgent AnonymousRegistration => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe [2017-06-28] (Dell Inc.)
Task: {7E384E2E-B1B4-4263-8ADD-E1EC60BF0065} - System32\Tasks\AdobeAAMUpdater-1.0-Steve-PC-Steve => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {7E59EF7A-2848-401E-A40E-1B2A6A15242A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {7FD7EAE3-8E6D-4D8F-8B56-F0C822EC86F6} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-07-21] (Microsoft Corporation)
Task: {8069DAD5-CE5C-4912-AEED-BD116B780C2B} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {83B13107-B063-45C0-914D-1F967295648E} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {840CDDB9-86F3-4768-A648-17808A896830} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2017-05-29] (PC-Doctor, Inc.)
Task: {85130557-900E-46A5-8318-6A8E76053B6E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {862B0DBF-A9BB-4487-A4B5-894774C5CFB9} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {8A2BE6FA-018A-4B90-989D-CAF7695214B7} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2017-05-31] (McAfee, Inc.)
Task: {8B441289-D895-461C-A99E-02781859DB36} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {8BEA27D7-9724-40C3-9588-F7E8F3802C23} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [2017-04-12] (McAfee, Inc.)
Task: {8FEBFC84-98F1-4753-9A06-7B30E45F071F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {92A20D1D-41D3-4C12-B60B-0647338C74BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9CED3402-7833-4A1F-9889-8251AF421E37} - System32\Tasks\{E236F5E3-EB2E-4D84-AA3C-FE4AF73342E4} => C:\Windows\system32\pcalua.exe -a C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\BYRAppUninstall.exe -d C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client
Task: {A6272B46-E196-4C4F-9A6B-B851D72A94F5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B06BEB75-7052-4170-A765-6183C197356E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {BD13FFDE-FADF-4256-9189-762392260A7D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {BEE8FD6E-7F43-46BE-800B-7F84901338B9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {BFC331B8-4F9F-4A5B-AFA4-A5E6EA700D93} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C30CA81D-08A8-4389-ACA3-49AD0B458606} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C3717063-C7C4-4AB2-A687-F218BCF8AA64} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {C6C0E608-C124-4696-9F56-3AA1111EF81E} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-07-21] ()
Task: {C6EB2A26-DE9C-4DF9-9A88-41D0E02D120C} - System32\Tasks\{14B64D6C-EB84-4366-840B-A80E28AD259F} => C:\Windows\system32\pcalua.exe -a "C:\Users\Steve\Downloads\DVD Shrink\Any.DVD.Shrink.1.2\any-dvd-shrink.exe" -d "C:\Users\Steve\Downloads\DVD Shrink\Any.DVD.Shrink.1.2"
Task: {C82DC40A-2D69-4DE0-8535-79D36CE46C07} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {C8D38141-EE92-45D3-93DD-133B01787C74} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2017-05-29] (PC-Doctor, Inc.)
Task: {CE576902-A24B-4C45-8029-373A2E9806E9} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE6F7354-700B-4AC3-957C-DAC2ECD3E161} - System32\Tasks\{E7236F78-5AA9-4C51-8950-7AEA15BB8802} => C:\Windows\system32\pcalua.exe -a C:\Users\Steve\Desktop\devcpp-4.9.9.2_setup.exe -d C:\Users\Steve\Desktop
Task: {CF25A834-4B67-414D-BB96-691D2F368BD2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D199AA32-9982-440D-A9A1-3DC2BA7CD9EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {D30A8E27-A2F5-466C-9036-991986398902} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D7EC0494-07AC-496C-8494-D97B1475AC42} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-21] (Adobe Systems Incorporated)
Task: {D9D932A8-4BBB-4DC3-AF48-0BDE59A185FE} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe /NOUACCHECK
Task: {DC84FF58-BB65-48FB-9D9A-CAA06F793553} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {DCC882C4-801C-46CF-9BEA-6B0212D1A0A5} - System32\Tasks\Verizon Wireless Upgrade Assistant Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\VerizonWirelessUpgradeAssistantUpdate.exe [2015-05-21] ()
Task: {EB5DB24F-BE24-48D3-B31E-634482E6F030} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {EB6F0363-701D-4DD0-B654-052CB98C2525} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-07-21] ()
Task: {EBE37E55-CA27-41B0-A41D-59F43277D20D} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2017-02-07] (McAfee, Inc.)
Task: {ECC15AC3-8FDC-4339-A3E8-71B6B6275FB0} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F278C0CE-4A3A-493D-82F9-878DAC961559} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-07-02] (Microsoft Corporation)
Task: {F40020BC-3CC9-408F-8F8E-7B2EB275AEDF} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {F420EC79-F30C-43BC-A2D9-1472E7E8C043} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe [2017-06-28] (Dell Inc.)
Task: {F596A317-101D-4626-A405-D6C1D11AECA4} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FA2060DA-EB54-4219-A79E-B47196A3FDF5} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {FA348AA7-7A39-468E-AD9A-6C0B07BDE37E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-07-02] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Steve\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 07:42 - 2016-07-16 07:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-05-19 09:50 - 2017-04-27 20:49 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-17 04:20 - 2016-11-14 07:15 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-06-23 15:11 - 2015-06-23 15:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-08-29 22:34 - 2012-09-03 16:41 - 00307488 _____ () C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe
2017-07-03 21:35 - 2017-06-11 13:00 - 00583160 _____ () C:\Program Files\McAfee\MfeAV\RealProtectAMScanIf.dll
2017-07-03 21:35 - 2017-06-11 12:59 - 00574352 _____ () C:\Program Files\McAfee\MfeAV\AMEngineScan.dll
2017-07-03 21:35 - 2017-06-11 13:00 - 00571240 _____ () C:\Program Files\McAfee\MfeAV\RepairModule.dll
2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-09-17 15:13 - 2016-09-17 15:13 - 00959168 _____ () C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-02-23 14:16 - 2017-07-21 12:09 - 08932040 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2015-05-09 11:24 - 2015-05-09 11:24 - 03525431 _____ () C:\Program Files (x86)\PrivaZer\PrivaMenu5.dll
2016-09-17 08:10 - 2016-09-17 08:10 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-04-09 12:22 - 2017-03-04 02:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-04-09 12:23 - 2017-03-04 02:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-04-09 12:23 - 2017-03-04 02:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-04-09 12:23 - 2017-03-04 02:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-05-19 09:50 - 2017-04-27 19:36 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-05-19 09:50 - 2017-04-27 19:36 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-05-19 09:50 - 2017-04-27 19:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-08-29 22:34 - 2012-11-01 18:03 - 08266016 _____ () C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe
2017-07-23 05:05 - 2017-07-23 05:06 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-07-23 05:05 - 2017-07-23 05:06 - 00203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-07-23 05:05 - 2017-07-23 05:06 - 43573248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-07-23 05:05 - 2017-07-23 05:06 - 02435584 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\skypert.dll
2015-04-15 09:11 - 2015-04-15 09:11 - 00162816 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
2016-08-29 22:34 - 2012-09-28 10:04 - 00380928 _____ () C:\Program Files (x86)\NETGEAR\WNA3100\WifiLib.dll
2016-12-21 11:24 - 2016-12-21 11:24 - 00134008 _____ () C:\Program Files (x86)\Dell Customer Connect\ServiceTagPlusPlus.dll
2016-08-29 22:34 - 2012-07-19 17:13 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvcLib.dll
2017-05-01 15:27 - 2017-05-01 15:27 - 00133992 _____ () C:\Program Files (x86)\Dell Update\ServiceTagPlusPlus.dll
2010-08-30 05:34 - 2010-08-30 05:34 - 00375280 _____ () c:\program files (x86)\common files\roxio shared\dllshared\SQLite352.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-3518905376-1918425772-3662548586-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\dell.com -> dell.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2016-05-01 18:00 - 00000736 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3518905376-1918425772-3662548586-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3518905376-1918425772-3662548586-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 209.18.47.62 - 209.18.47.61
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk => C:\Windows\pss\Adobe Gamma Loader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Steve^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk => C:\Windows\pss\OneNote 2010 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Desktop Disc Tool => "C:\Program Files (x86)\Roxio\oem\Roxio Burn\RoxioBurnLauncher.exe"
MSCONFIG\startupreg: NBAgent => "C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Steve\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "UpdReg"
HKLM\...\StartupApproved\Run32: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "RoxWatchTray"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "THX Audio Control Panel"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3518905376-1918425772-3662548586-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3518905376-1918425772-3662548586-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F60AF2E4-640A-425B-B2BD-7F4E49A726FC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{21F80F42-4E2C-4784-B3F2-007CC335B197}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{413689AE-A1F8-4714-849D-B713E837857A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{AA04EBF0-B281-4AD3-8913-9E642623C6C9}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe
FirewallRules: [TCP Query User{8EBC0438-6146-4FEA-99C6-DB3FB52367A6}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe
FirewallRules: [{35CBF863-999C-4578-9953-15F6D9A0A6CC}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{2BFDAE13-C2FC-41C3-8CE0-249468793C59}] => (Allow) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
FirewallRules: [{7CD52165-64A6-4A55-9E47-21E0612522A2}] => (Allow) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
FirewallRules: [{E92D7BFC-7EA5-4562-BBDC-DC8CA0E95646}] => (Allow) C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe
FirewallRules: [{E839E8A0-B71D-4F68-8BAD-29CFC7502F82}] => (Allow) C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe
FirewallRules: [{334E5EDF-95AD-40B0-8180-6ED57456BC7E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{52320C4F-6E72-4A1D-AD51-599A2180045C}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{FE592854-43E7-4176-9497-66136BB37806}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{6DF5FBCC-2E04-4135-9D6C-6334683BE0F2}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{5737323D-30AB-4668-B8EE-8FA7DA735DD2}] => (Allow) LPort=1900
FirewallRules: [{3941113B-3E26-455C-B548-BC0F4DEB0340}] => (Allow) LPort=2869
FirewallRules: [{CC4F7729-05AD-4582-A4C5-4F7024A3DF39}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8F38DF1E-1990-4AD6-8DB4-6F55D6F04E55}] => (Allow) c:\Program Files (x86)\Dell\VideoStage\VideoStage.exe
FirewallRules: [{59F9780C-F89F-495D-BA36-DFC9012D84FF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{72E0D46D-10DD-4AA7-89C9-C9235ED9938B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0BB5F32A-9C7A-48D9-9548-047E7724A4DE}] => (Allow) C:\Program Files (x86)\McAfee\Supportability\MVT\MvtApp.exe
FirewallRules: [{D58E2BAB-2238-4ADE-9507-3DBD649DFF21}] => (Allow) C:\Program Files (x86)\McAfee\Supportability\MVT\MvtApp.exe
FirewallRules: [{6971F1F3-9ACA-4EFD-9C9B-F61E8696D4DE}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdater.exe
FirewallRules: [{28E82F3A-6DDF-4447-A0B0-624050C69B51}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{EFDD0739-968F-4A58-9FA7-7DF5D95D3D02}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{01F42F8E-FBDF-4D4D-B14F-607AD86CB4D0}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{75B91013-0768-42AC-9EFD-C282139A6ABD}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{5F1BB780-5CC5-4639-95D6-942C725CBD47}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{816BFE8F-EDEE-4893-869A-0303FD28EA7D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{CFF3E1A4-10FA-49A9-A55F-14E1EAA6F7D4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

09-06-2017 04:53:59 Windows Update
21-07-2017 12:10:11 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/23/2017 10:53:51 AM) (Source: COM) (EventID: 10031) (User: )
Description: An unmarshaling policy check was performed when unmarshaling a custom marshaled object and the class {95CABCC9-BC57-4C12-B8DF-BA193232AA01} was rejected

Error: (07/23/2017 07:58:21 AM) (Source: COM) (EventID: 10031) (User: )
Description: An unmarshaling policy check was performed when unmarshaling a custom marshaled object and the class {95CABCC9-BC57-4C12-B8DF-BA193232AA01} was rejected

Error: (07/23/2017 07:56:44 AM) (Source: COM) (EventID: 10031) (User: )
Description: An unmarshaling policy check was performed when unmarshaling a custom marshaled object and the class {95CABCC9-BC57-4C12-B8DF-BA193232AA01} was rejected

Error: (07/23/2017 05:11:10 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Steve\Downloads\esetsmartinstaller_enu(1).exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.

Error: (07/23/2017 05:11:10 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Steve\Downloads\esetsmartinstaller_enu.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.

Error: (07/23/2017 05:07:11 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Steve\Downloads\esetsmartinstaller_enu(1).exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.

Error: (07/23/2017 05:07:11 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Steve\Downloads\esetsmartinstaller_enu.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.

Error: (07/23/2017 04:45:38 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files (x86)\microsoft visual studio 10.0\common7\ide\remote debugger\ia64\msvsmon.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/23/2017 04:25:39 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.

Error: (07/21/2017 01:07:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DDVDataCollector.exe, version: 5.2.1.55, time stamp: 0x59497602
Faulting module name: DDVDataCollector.exe, version: 5.2.1.55, time stamp: 0x59497602
Exception code: 0xc0000409
Fault offset: 0x00000000001c886b
Faulting process id: 0xff7c
Faulting application start time: 0x01d3024396f71870
Faulting application path: C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
Faulting module path: C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
Report Id: 3cc144ff-9cb8-4f36-8ab0-634d468179c3
Faulting package full name:
Faulting package-relative application ID:


System errors:
=============
Error: (07/23/2017 10:46:38 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/23/2017 10:44:35 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (07/23/2017 03:36:57 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Interactive Services Detection service terminated with the following error:
Incorrect function.

Error: (07/23/2017 03:35:50 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Downloaded Maps Manager service terminated unexpectedly. It has done this 1 time(s).

Error: (07/23/2017 03:33:13 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Motorola Device Manager service.

Error: (07/23/2017 03:32:54 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/21/2017 01:11:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Dell Data Vault Collector service terminated unexpectedly. It has done this 1 time(s).

Error: (07/21/2017 01:11:01 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1053" attempting to start the service mcpltsvc with arguments "Unavailable" in order to run the server:
{20966775-18A4-4299-B8E3-772C336B52A7}

Error: (07/21/2017 01:11:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Platform Services service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (07/21/2017 01:11:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Platform Services service to connect.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7 CPU 930 @ 2.80GHz
Percentage of memory in use: 49%
Total physical RAM: 8182.92 MB
Available physical RAM: 4169.2 MB
Total Virtual: 16374.92 MB
Available Virtual: 11838.46 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:919.22 GB) (Free:673.71 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 77E3ED41)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=12.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=919.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2017-07-23 15:55:55
-----------------------------
15:55:55.479 OS Version: Windows x64 6.2.9200
15:55:55.479 Number of processors: 8 586 0x1A05
15:55:55.480 ComputerName: STEVE-PC UserName: Steve
15:56:00.851 Initialize success
15:56:01.160 VM: initialized successfully
15:56:01.161 VM: Intel CPU supported
15:56:12.324 VM: not used
15:56:59.272 AVAST engine defs: 17030301
15:57:03.422 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000002b
15:57:03.424 Disk 0 Vendor: ST31000528AS CC46 Size: 953869MB BusType: 11
15:57:03.605 Disk 0 MBR read successfully
15:57:03.609 Disk 0 MBR scan
15:57:03.616 Disk 0 Windows VISTA default MBR code
15:57:03.621 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
15:57:03.647 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 12542 MB offset 81920
15:57:03.654 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 941286 MB offset 25767936
15:57:03.700 Disk 0 scanning C:\WINDOWS\system32\drivers
15:57:18.943 Service scanning
15:57:44.934 Modules scanning
15:57:44.948 Disk 0 trace - called modules:
15:57:44.986 ntoskrnl.exe CLASSPNP.SYS disk.sys storport.sys hal.dll storahci.sys
15:57:44.990 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffbe81d27c6510]
15:57:44.994 3 CLASSPNP.SYS[fffff8028b185efb] -> nt!IofCallDriver -> \Device\0000002b[0xffffbe81d1486060]
15:57:48.777 AVAST engine scan C:\WINDOWS
15:57:57.073 AVAST engine scan C:\WINDOWS\system32
16:01:35.004 AVAST engine scan C:\WINDOWS\system32\drivers
16:02:00.606 AVAST engine scan C:\Users\Steve
16:08:21.201 Disk 0 MBR has been saved successfully to "C:\Users\Steve\Downloads\Desktop\MBR.dat"
16:08:21.208 The log file has been saved successfully to "C:\Users\Steve\Downloads\Desktop\aswMBR.txt"

RogueKiller V12.11.7.0 (x64) [Jul 17 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.14393) 64 bits version
Started in : Normal mode
User : Steve [Administrator]
Started from : C:\Users\Steve\Downloads\RogueKiller_portable64.exe
Mode : Delete -- Date : 07/23/2017 20:10:28 (Duration : 01:03:15)

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 16 ¤¤¤
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {E92D7BFC-7EA5-4562-BBDC-DC8CA0E95646} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe|Name=DTX broker| [x] -> Not selected
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {E839E8A0-B71D-4F68-8BAD-29CFC7502F82} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe|Name=DTX broker| [x] -> Not selected
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyComputer : 2 -> Not selected
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyDocs : 0 -> Not selected
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Not selected
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyMusic : 0 -> Not selected
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowUser : 0 -> Not selected
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyPics : 0 -> Not selected
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_TrackProgs : 0 -> Not selected
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyComputer : 2 -> Not selected
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyDocs : 0 -> Not selected
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Not selected
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyMusic : 0 -> Not selected
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowUser : 0 -> Not selected
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyPics : 0 -> Not selected
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-3518905376-1918425772-3662548586-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_TrackProgs : 0 -> Not selected

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 1 ¤¤¤
[PUP.Firefox][File] C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default\Invalidprefs.js -> Deleted

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 1 ¤¤¤
[PUM.HomePage][Firefox:Config] jor6jyfq.default : user_pref("browser.startup.homepage", "https://www.facebook.com/"); -> Not selected

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST31000528AS +++++
--- User ---
[MBR] aa718779635368455eab6cd64ba34b8f
[BSP] 2443d7138d44605c205800f5c869ff21 : HP MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 81920 | Size: 12542 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 25767936 | Size: 941286 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Steve (Administrator) on Sun 07/23/2017 at 22:07:19.18
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 562

Failed to delete: C:\ProgramData\483520 (Folder)
Failed to delete: C:\ProgramData\483620 (Folder)
Failed to delete: C:\ProgramData\575007 (Folder)
Successfully deleted: C:\ProgramData\574907 (Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{001304D3-CDEB-4632-A12A-73800EC97DE1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0049A584-EC99-4306-9CF7-130ADFF34DB1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{00696577-9D8D-4D59-8221-B18E7D535D5B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{00A670A3-80CF-421D-B79B-1E4AB07985E4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{00E50C74-47A2-463A-99A0-9B3108E08B62} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0106A660-ED12-4174-B282-922E80CC9BB7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{01367B76-A479-442B-AF43-72F73E9EDDDD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{016150B2-4C28-4288-95C3-5CAA0F528B81} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{01D4DA0C-5D2F-437F-8CCC-5AC534A12409} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{023528E6-063A-4E66-8A2B-8A0EB506C979} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0256C666-B428-4032-A41D-8B23F246E31A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{027E324F-E66C-494C-A394-91103FD26F9D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0299D973-99FC-48FF-9884-EEAA27F6AF4E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{02B4E922-3B9B-435E-8038-6F35370C5FEB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{02B95A2B-8C22-4F78-806B-D8A848DFF03E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{02F6480D-2635-4F6C-961B-AC520594720B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0336C083-BF19-4307-8B56-FBD2F4E60AB6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{03839F9F-FC01-482B-B3FB-77E1D09F65E5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{04186B4D-81FA-4184-AB2C-1CD69195BD72} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{04458529-D44E-4B05-91C7-81D77F760AF7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{04D039AC-3A23-4BBF-A5DD-F5743FBD2668} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{050A5631-6F8B-4EEA-B8B2-A0BBAFA19DE5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0587CF80-1850-49E9-A48A-92E6E11E8B06} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{059B1FD1-24FF-48CA-BC69-8B3FCB669980} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{060A7252-09EF-4B50-B3D1-CB1BE9420633} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{07897909-69CB-4A52-8E01-3B3280ACE116} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{090EAAFA-419B-4412-B44E-92EA75034173} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{09DD5B80-6843-4B56-BD56-E6ED5A4A5A5A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0ACD85AC-9E6F-4D39-8324-97F6B2BF6DF7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0AFBF95F-F583-44AC-BB9B-62D404093301} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0B0F8D56-CFF9-406C-B4E1-9721D510B32F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0B4E642F-9541-4677-A286-CE539CAF1ABE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0C02DB67-7EDD-4247-B0ED-F29609CCF24B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0CFA4325-DA22-4CA6-82F6-52250323C6C8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0DC56CB0-B17E-452D-A11F-0797690455DD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0ECAFC93-2864-4467-834E-F260EA435DE5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0F096CD2-DC05-4B4D-9183-4DBEFFF42B51} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0F3E45D5-F115-44EC-9A8B-BBE0E346CC25} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{0FC03B2F-1665-45AE-853B-D11E16BE06FE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1118F958-31BB-48EA-81C4-C30F16372CE3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{114A5E3F-1A19-4C1E-BC02-5D17588FDED4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{11A57DC0-6E6C-4818-8AC9-8BA0D42A9A9F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1226D23D-0F2E-43A2-8037-96855DDE31CA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1279254E-BCED-4BF6-9ECF-7A85F173BF33} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{12C4B437-4806-43E8-A13C-3AE46581834F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{130D5B5B-6D1D-4CCA-9225-5A762FF53AC5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{13919C95-A064-434F-A817-210679905659} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{13A39F2A-EAA4-4D9C-8597-ACFBA5DFA2DE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{13FC6DA5-5923-428F-AED9-A4C6C5FF46D9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{145DD337-68D1-48E2-B97C-FF4222A5B0AB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{156C8E45-0132-4FA8-801F-B19CF00617BF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{16D2FA76-88E6-4F13-A7D0-850607126A5F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1719E1BE-7595-4D51-AA9F-0D7677B940F1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{18067983-76F6-4555-85F5-15C116C5D7E5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{180A2ED7-905D-4703-AF30-FC3C8C0C0435} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1968E841-BEAA-4811-9EFF-43DECF889B83} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{19F003E5-999E-4349-94DF-3B4A056D5647} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1A0EAFBD-9788-49CF-89F1-56AC04FA5436} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1A2D41CF-4F62-419D-8315-CC1DCE2E12A5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1AAAD545-083F-4350-8997-9B537A6C0FDB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1AC77A26-E1A6-44E1-B7C0-B3958D0E73F7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1AF717C8-D986-4A04-8F57-A3FB08DE2669} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1B30B06B-8E88-48C5-A07B-742BBD155928} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1B5CB745-A7D6-49CF-883A-E947711BFC84} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1D5FD4A4-D9CB-4066-A896-9CD4266116A1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1DD8B485-E621-4C19-B7B4-E09BFBE826F1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1EC8D475-CA60-4CC3-877D-8B08F45100CC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{1F92DCBC-332B-4673-9474-DB40F44C497A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{200C048A-F8BA-4372-AB41-564D5956F4F3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{201F088B-CD4B-492B-874D-0D58B76A529D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{204B1ED4-6F24-40A5-85D4-ABC8BBD517FC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{20C76255-A2D6-4E8B-9C61-66D48DF04817} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{216FFEC6-2611-4AEC-926D-8BC5F230EB40} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{217E7AF6-C06F-43E2-A135-771448FC1294} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{21BC1056-E0CF-458B-8125-EF18261EDBCE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{22316A17-7B24-4042-BD78-9A8B065EF3A6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2286510F-10FA-4D50-85DB-51BF5A298CD8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{23615E38-0E8A-4B3F-B973-732C814E7707} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{23CEFEAA-A190-461B-8585-AC073CB61C89} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{24E8359E-8682-49FB-8943-7EE4300BE7DB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{24EC6372-DC01-4FAC-8DF7-46262F948206} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{252497D3-ED3F-4945-9539-236BA40158D2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{252C4743-1F51-4BDF-9943-3BD244C88604} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{264CD393-8F0A-4D9B-BBB9-9EB36FDB5D99} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{27AD16D9-C211-4BF3-BDE0-4C7C88405E57} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{287D1F8F-9D8B-44CF-99FC-C9F8647BEFFC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2888CAEF-DB86-42FE-8C8E-5CCF4E5C23AE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{28A478D7-4176-4043-99E9-FE5C67EEE0DD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{28A9781B-96D5-40C8-8F02-0EA680F60577} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{28ABCCB4-6A57-426D-BA40-C75F595AF84F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{28B043C3-A642-4525-8EE7-11204650CF3C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{28FB6A43-87E1-4051-A1A8-DD77E1C34584} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{29736425-C849-4410-93DB-EE2985E0FFBE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{29C3F25D-8FEE-4A91-B432-CEBB060CBEEF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2A027170-9AB5-4CB2-ACCA-0CF38F9250E2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2AA9FF9C-4317-43F1-A635-0673C008CB8B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2ADEFA9F-E5E6-454C-B9CC-34F9E9D6B6E8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2AFDB807-7DC3-4CC9-BD3E-348AC8D2DB82} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2C222456-D5CA-4C85-A66D-C2FBC7DE5777} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2C75E891-266B-45C9-A105-44A2BA3F659D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2DE9DB49-4D43-4A3F-AE94-3E1B73A32A5C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2E5D0B52-84A8-434A-937B-19679CA7D458} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2F23C356-1A0B-4AFB-B776-BE8638A8D43F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2FA6D054-914A-4A1C-BE0A-271700A442B0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2FCBFBD8-397F-42BA-BEE2-56621FDA9630} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2FCC30CE-110A-45D4-8B6A-07BF5DAC7ABF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{2FD6264A-AD66-450A-804F-1843E020BA77} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{307CF425-45DE-455C-BE27-EB331FCB21EF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{30F2D136-836B-4D9B-8330-D49722887CA4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{310418F6-1CD9-4EAA-8653-22090EB63F39} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{314C8B18-356C-4D9D-89AF-4AD0ECF31BF4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{317C9AC2-5766-4B8E-8BBE-AA1CEB1099DD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{31A8BDAB-C315-4EA7-A457-52101B02D627} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{32A542F9-E349-4C33-813E-D988FA103D0E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{32F821E8-1928-48D2-9523-256A7C9B1926} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{33610A1E-93F7-469A-ABDD-2A04235056F6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{339BEABC-33F8-4917-9AB6-DBEBCF0C4816} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{33E7B11A-53C8-47C6-838F-A7EC76579335} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{33EF787C-AB68-4D14-B387-4BA8AA9E3FB9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3445C8EE-ACE1-4C68-8650-486058D5E893} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{352308F3-14AC-4820-8F6C-CB042B4776FE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{36D614D7-7124-499B-86C9-5C4055C4EC9F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{36EE98DC-4889-4FFF-BC1B-088D01AB6547} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{37D41D63-D45C-4A02-ACBF-70EB0F76F392} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{396D4CFD-463D-4585-B4F8-D24C8D59D765} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{399D8B74-7C3A-44E0-AF46-24EE4803CA98} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3A683634-8E19-4F89-ABDA-88E266B5AC0E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3AD85CC2-3325-471A-A967-C09F657967F7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3BE9A83F-CA90-417F-A4CE-0155FEAD4525} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3C9DBDB1-5915-4F3B-8DD2-B40D2F3DEA13} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3DF048DD-1034-4073-9FCD-EF63D9A99192} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3DFBE96F-7E44-4558-BD6E-C10756E856CC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3ECF7EAA-DAB2-43C5-A33E-D78A82305AF1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{3F0C7DBE-B7F1-47B8-A87C-C89AD51676B2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4021FB71-6F2D-4DAD-B314-937E56AAAEA4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{40C16F2E-7CB3-4A2F-B9F5-673EEAD64333} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{41A137CA-FC59-4B53-A77F-41DE8B2C2B45} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{41A1B714-02BC-4B3E-B0BC-AB3FF9DBA069} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{43B55A7B-DBD2-44FE-A888-0A0F892672FC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{43BC4A6A-AA6D-415D-9966-7312E61C11AB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{449A1751-46E6-4DB6-9059-FD7E8CE243E8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{452AD592-5808-4F4B-9E73-4C2EA8768752} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{45AD89B2-852A-472E-88D5-E94DFA86D6E4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{465BEDC9-E9C7-478D-BCCC-3351723BD1FB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{47863D3C-B84F-4F62-8AF3-F0D6A0C12B9A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{47B1F26E-2356-48EE-8711-B84A039D6468} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{47D213CF-0A41-4D15-AA3C-33F906DDEE3D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{480DAFD4-9839-4EB0-9705-FE474D93D591} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{48174204-FDDA-4E39-8C0C-C6EFD7DBEAF6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{484B640C-8A8B-4366-AA65-597DC698CC8D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{487006E2-2E7F-4EAE-A1FA-109AAD1FFAA7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{48754D23-3367-4E0C-B1E7-B8F5CF0629A1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4932602C-5810-4F19-90F1-42780AC9CFC8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4B50CDA7-233F-4974-8BF1-D60B2F1834E7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4BE6E0CB-0B1F-499A-A03F-1FA17EEA4C03} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4C078490-1020-4E40-BCA8-70DB3DFB1803} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4C551ACA-F2DA-4518-B559-8041BBA384A2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4CB13409-BFCA-418C-96D8-BAA01D1CDD26} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4CC8DB41-3C75-43C1-84D8-CCFA26D6BD9F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4CE756AC-8241-46DC-9D27-B37578D085C8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4E94C1E2-19E5-4B4F-9753-8CCF1A503F7B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4EBAB141-EB71-43FA-9888-BA30E6E1B7CD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4F2ADAA0-184A-432C-84D0-E74EA2CAFCF5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4F5015D5-956B-4C17-BD7A-369736BA0EFB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4F6530F7-52FC-494E-AF45-1FBB58D58191} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{4F65DE6D-0203-4C55-8405-EE6757837F3D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{50DBEA0A-F12C-49DC-9166-7B4373C65C95} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{511411B1-322C-4181-B95C-688076FD87A0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5131D201-745E-46C6-B80D-445F027EC31C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{51B987B0-5C0F-4DC1-BCE6-6ABA2FDF5596} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{522A1A07-0C14-42F2-81C5-0FCEEDA02B0E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5245F842-5B88-477E-95F6-6F2B0E83DC27} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{52E1FA46-4A59-4076-AC84-3ECE0C3777D7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{52F10956-E08C-413F-A362-97B1F3A48945} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5399543B-0EBB-4DF8-817D-C5991FF074C2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{54E7B86D-EF60-410A-9FB5-8B02D118333A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{551BC2C1-5B64-44E1-9DE9-70F4BCD5E973} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{559AFD85-29C5-4686-B952-178542C47B52} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{56D62B79-3B73-46C5-82B3-D84A4BD811A2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{56E25D3D-CD8A-407E-A111-37A9F50B0895} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5708227C-965A-4B63-A1A6-E5AE58946F62} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{57FD1181-6DD0-45B7-97A1-CC854F540FD6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{58F33673-906F-442A-AB08-F3C6DC24B75D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5926AFF9-430C-4AC2-B378-8C8184CAFBF7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{592CCBB1-AE3D-403F-B5F0-C32EA6B331C3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{595C2D8E-945D-4F29-8DF2-BB1D74A8A52C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{595D330D-B9D8-4D1A-8CF3-DE294EC7BAFA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{597956A4-0292-4889-A74D-DFB5899FB919} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{59D549F6-159C-445F-8130-EAD56589A982} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{59EB1860-C96D-4059-8BCB-3FBF1929A7C7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5A29EDE6-1C4F-4AB9-A2A5-A5FC6FED149F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5A94EB67-5975-4C39-8816-E2661A25BB37} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5B2C7038-66C2-4D35-8D89-5AE81D50BC4C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5BBAF021-CBF4-4F79-A1F8-CEEDF0759F76} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5BD3ADF2-4F76-4656-9EE0-9E14F13C70AE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5C1B795E-2F93-445A-9E23-E714EEB5A2E3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5C4BE186-56B8-4E25-B3DD-24E0935F534B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5DEF5255-F0DA-4D5F-AD57-B9638273188C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5E8E8646-1ADB-4D6F-9EF5-C8DF335C6E63} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5EC904D6-89D1-420E-BEDB-50F904368C82} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{5EDD8B4B-707C-4560-82B0-B7670CDDB372} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{606D3747-3ADD-40CC-AAFA-38D268A0972A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{60A86630-9CDE-483B-9841-3B5E604FC87E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{60DC0AC3-C032-46D7-B495-5DC8B2B10E93} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{60E04531-6B18-4672-B0FB-337DA8C77BCD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{61839964-37FE-403B-B3A4-80A127BE9DA3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{61B5B54A-0565-4264-B310-4E98232C07FB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{61C752B8-9FCE-4FEA-AAA7-35452EF1CD7F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6220AC3C-AC3E-4B99-9317-343F4CEB4E38} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{624A74ED-CD81-47B6-BB70-E7FA6060C6B4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{62761DF6-89F0-4D78-9D9A-6A61EB43EF17} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{62B73629-B282-4566-B60C-A262FA93C804} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{64236E8F-C15A-43EE-BD3A-E8F5374DCF26} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{65D3FB83-C78A-4A2A-964E-A1DF8F84683D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6733EDC2-4F0C-4C92-8DB4-2442198CC0BF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{67678045-D497-488F-BFB4-BDAE1548D23E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{68C7BA77-3F35-425A-B7FA-D3294C359807} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{69D58A58-00C0-4942-98A5-35CCFF25BFAB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{69DD25A0-EF61-4717-AC80-604FD91B48D6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{69FF368E-CE64-4C80-A91A-3A245E515A9D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6ADACAD0-B5CD-4A83-9C3F-AEBFA7AD4AEA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6ADB7464-6911-4E0B-B230-DA96C800AC92} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6B7F8F12-07ED-4D14-8896-51CF915373E3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6BE9C209-6832-4E2C-B193-D2B2EC9DEBE9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6D0874A1-F95E-49C2-9FFA-5CB7DFA66693} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6D4D3A90-F53D-43FC-8A21-0665297D8B74} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6E7FEA72-D9E7-4C98-90D1-A52162372261} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6E851F0F-8F46-4205-B7DA-3D5430758E1B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6EAA3E47-ECC1-47E3-B6F3-F4DC3464D70B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6EB09D47-BA59-472B-AB25-8D68B289A457} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6EBE1CC1-06CC-4078-B905-37B1C67E527E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6F00E609-CCD6-4EAB-B6F5-53F41882C0EB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6F93CBA2-3034-4AAC-9D42-6E0F366D21B3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6FA3A19E-787D-4DAF-BC59-D99F5BF17407} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{6FE833D5-BF68-4124-AC4C-91639B9E9CCB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{70263643-6CCF-45A8-9C2F-E450CC8EBB37} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7041CBE2-C101-4681-ABCF-5B84D56C8B2A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{70C4A57B-D513-418D-B67B-1A77D9D1A20D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{718A6E34-A41C-48F0-82C7-56D5ECCC5674} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{718D1FB3-0C2A-48CE-921D-02E9E1AD494E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{71BBF044-63F4-44E5-8DCC-A5791299BA3E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{71C6DEFD-07AF-405C-BCB9-BD5DA80D7BC0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{72A3F6B0-DBFF-4BB8-8D23-8BA10D858525} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7313B80D-BAE4-4983-8098-D2BAAB4C2C03} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{73F07D4E-59BF-44EE-B70C-CB1FB5111FC3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{74872580-0E76-46B8-9437-D066FD55275C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{757066ED-4900-4E9D-98D1-05270DF99A63} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{75912755-0B7E-443C-BFE1-5F8CC2F73341} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{75AE85C5-DE9E-4AE4-9875-BC64FEA6E4BD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{75DECDEE-957E-4E3C-B079-D9AB90A50FAE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{761AD36B-1B41-4DBE-8C2F-AB162EF3BB2E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{76555904-5AFE-43B3-A759-65E64DE9BC0C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{76996CFE-6BE5-4BFB-9EE3-172D84C6CEB7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{778AC2B6-5591-4F9F-89EC-AD3FF3BC006A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{78CBE0DA-494F-45F0-AD45-37B5576202BC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{78E51528-4B16-4268-9E54-25837D7D8778} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{796E3DF4-66A0-4FBB-8BEF-03972E36B3A0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{798E7BC3-00DA-4B82-B533-02813E15838A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7A85EB2B-6BAA-4392-98DD-5A70DCBFDFCA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7ACE711A-75AF-4289-867E-2CF0F39E490D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7AE6883F-5680-46BB-8D5B-DB6598D3D354} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7AEF42EE-83AA-4698-9D7E-3B3D57FC9AFF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7B56AB6E-E950-4B40-822A-175A873848A6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7B7B77AD-C576-46DD-81BE-BFB33F84C3F7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7BDB51DC-9260-43FF-8799-D2962532A32A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7C322CA5-D7D9-4FA0-8909-91B0F1E40AAF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7C473632-D5FD-4E54-A1D3-86273E23FB88} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7D56E9F4-E013-4D44-B926-A122DAFE92EB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7D65603F-64F3-4D65-8B32-9E5C5D0099BF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7D8DE2A5-5D8B-4D01-BA8C-C6A749AB6A1E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7EC98763-54A5-4574-9076-E3A8C687FBE7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7EFB20CA-89E0-4948-9F0D-4B5920E74943} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{7F68CEBF-4953-4CCE-93DF-AA37BB2AA741} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8036CEF0-C7E0-442E-BD4B-2515406E662A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{80BE34CB-6967-4E75-AE9E-5CD882D1ADBA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{81243A8E-9EE1-4A77-8D06-104BDAA3AD8C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{81340659-8E7A-4C46-8694-1424A7E942E4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{81A4BF37-BD3D-464B-BE5E-EC0B156C4D2B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{829B0F7B-BE8D-4187-A7BB-2EB0E32F56D8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{82AB6997-CE8F-4E98-8F76-EB675F1CB954} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{82D656A8-562C-4E0E-B750-098B3293FBDC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{830503FA-C51F-4969-BECA-C92C4AB919A4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{83315CAD-47F9-40BE-A095-A11134A97255} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{83689C6C-DC4C-4588-BED7-B7B9E137154F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8403775F-A425-4CC4-B990-E12119475B0B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{845DB293-6FF3-4527-8078-8B097C79FE92} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{847DD1CC-857E-4C3E-87CF-3885A55DBEE9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8634D635-4B4D-4BC4-92D5-13956E9F4AEF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{86629518-4C44-4EC7-B6CE-29EAA6FF1833} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{87BF52EC-EDB2-4FD1-A4D7-109B0AB14E19} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{87FAE6E6-B6B2-4DA4-B15E-CFA5D05F9F82} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8828EC5F-E169-48F5-AC3E-185BBF3185D2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{88CFB4D7-E7CF-40B1-A5A5-A7B0DEA80805} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{891EE57F-ED91-45F5-AE0E-3E6113D1422F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8A602FA2-3DFC-4105-A174-DA93DF1A01D4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8B20B17D-E1E4-48B9-BED0-F6D393B785CC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8C17989F-7BD9-43C4-9144-0F83F44C6970} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8C5166C7-855A-46FE-9EB9-83771E7BD9AB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8CD6CC62-95F2-463E-8659-14C88F5FA979} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8DCB1B0F-A6F9-4638-AC62-AE096969E983} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8E21B835-B53E-4633-BE53-161BCFD630A1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8E470091-2187-4F2C-AC8D-C4F6F5EC33CD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8EF9CB67-C15B-404B-8D51-A15914147AB3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8F15D7BE-9835-4083-A004-78401F08B8A4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8F1DB097-1C67-4CF4-9AFA-CF74CEC3F63B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8F2CB147-DA6A-47A1-81C7-CBAC2F5892E0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8F3C626B-19C7-4270-A263-13A7D0528081} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8FAE6B5B-E221-4B0E-AEA5-04CA857967E5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8FBFD50C-E0D5-4365-90BA-99248EF4D68C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{8FC5699A-60CE-46E0-B497-08D4CEF55551} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{901FE2FB-1F48-47C1-845E-60B044D5E925} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{91110091-3513-4E6B-A899-566597D0629C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{917E9865-1110-4F20-889B-79F5894BCCD4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{919AAE26-E5D6-457D-B3F1-8250CBF25EF8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{919FA4F6-A74A-40CA-8A6F-0C368B3D8A27} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{91AF86EF-F141-4D47-BC31-81D52BFAD2BB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9246D55C-2060-47E8-A99A-B66A38B7CD24} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{934BED2A-AA53-43BE-8C12-06F82C757C34} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{93B8B41A-5066-4282-9A46-532BF8FC30E4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{93BF11F4-FDDB-4226-8F82-9ECBFA586F86} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{93BFCC66-82BA-441A-A174-877C11578F4B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{949DCFAA-173B-48EF-A8BD-F78A398FC30E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9589736C-EF63-4930-A50A-8943EB2948D1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{959A2C71-29C4-43BF-8216-5F65E01E96B3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{960C828E-9CEC-4C3E-B573-7D25B2B06CAC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9621961F-A350-4CD9-964E-5C566F9A4BB8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{96A34395-F1E0-4A0A-AD7B-0787EC462CCA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{96D83AFC-5656-426B-8360-14922376B1A1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{972667D6-9F36-4504-A338-BCF19AEDA732} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{97B94F8B-EDC7-40A8-B1DE-7DB093A91969} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9906B224-F02C-4F0B-87E9-C4ADC540A956} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{99C2578C-2992-43DC-B1F4-9AF7DA577542} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9A0714FB-5DBE-4696-B217-31DDE3E02266} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9BB85F20-2450-4CCA-B284-D35B0FE8117A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9BE1FF10-0846-4203-A526-D330AE982D7E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9C3DC9AF-7F2C-4BB5-B593-52BA2D9508FD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9C6E8DE8-0BD2-44BB-8FCC-FCEE4862D5B4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9DB1BABB-2F6F-45D7-8D68-26EFFCEEA171} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9DF5A130-40A8-4077-BFE8-27F87BFBB615} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9E2E7C0A-50A8-47AF-9BBF-136745B7647F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9E857BC4-6788-48A1-B62B-772BF66941D1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9EAB6966-D28F-4194-AC02-55865CE00A1B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9EB7D0DA-0EAD-424D-9DBB-72E680671E69} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9F6B73BF-70D1-44AE-8BD8-ABF01EBB2989} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{9FCE09A4-FC65-43B8-A22A-D9BCE3751299} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A0C197E9-1E92-4A29-BEEF-1A6F306AD67F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A0FFAEA7-2783-4211-B3E0-8D24D4304181} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A1B8609B-24CC-424B-BDB5-DCD875EFDFE9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A242CB2E-9C09-4E3E-B177-7FE78C69CCD4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A2A1B350-CE91-4B57-84E0-6FE4C3BEF383} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A3C7A663-F19B-41C1-BB6F-BEAA02AE6CCB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A4545094-FA3F-4E47-9C38-96B94283B83F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A5197D7D-685F-43A7-8209-C0D1710149DD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A577E49C-D252-46D9-A4EB-88CD4B6A455D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A6922AFE-16A2-41F4-A019-6E6F45193938} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A703C1CD-D67F-43B5-B1BF-07597F312E59} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A75CA3CE-E579-41BD-AA11-59F575D9C113} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A7E7FF4F-6747-4963-9730-67373C92843D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A806FE5D-D627-452A-A298-8C6128023D0F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A89AC3D0-FC8A-4F22-89EF-7B0E4A73BABE} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{A971552C-CF75-46D1-877C-3B64F1A7AD3D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AA0ACCD7-4DC5-4775-A272-9CE3725F305C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AA2C17FA-AAB4-42DB-BDBC-5AC209FCBF32} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AA82AB85-6B0A-4471-ADF1-C54B30DDEEAF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AB9986DA-8E59-4E13-B15F-D6046618D8F4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AC60A52D-5333-449B-B41D-84C7C1405503} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AC97089B-9380-4185-B842-2D00BF78F933} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AD3F03A0-8C6B-4ABA-B913-0EDA622F867C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AD43E13A-7318-47C6-8402-E8CA055EB724} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AD7B2467-C723-4FC8-A3F9-C1C3941A20F8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AE413FC3-CE26-4485-A4C7-D18636878E56} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AE602828-7AF0-4874-8715-BD5DB86A3116} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{AEF80C06-2733-4D67-93C6-DB6BF5333215} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B0421F6E-6B82-4A8F-B1FA-5A324E39D8BD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B13ED503-E42D-4CC4-9BE3-07AA438A7CE5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B2E4EEC8-7DFB-41FE-9A99-020151220383} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B376C491-71D4-421D-9C4A-9C59419A1275} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B38A303E-4622-4AEC-9D55-8D16E9E0977D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B3B31632-F838-4DC4-BF78-ED062D488E38} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B484093C-8FDC-4526-99A7-A9513A074C5A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B5ABAF37-9478-47F6-B3F3-149B14420DA7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B5E641BC-0065-4DD3-A1DC-B3DCBF7ACB90} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B5F8552E-DEA3-4628-97C1-5B5A0F672E57} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B6439073-CBE9-4DC3-853C-A0D9219D1C5D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B68550EE-E9A2-4391-A4D5-75FF71A8FFF1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B6AEDEBA-3453-4037-A8FE-07C0BA5F02C4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B80B5965-104A-43AD-9683-AD45252BEF6E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B81B3FBD-0B1B-479C-97D1-BEC9CBC0BEBF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B882FE8D-99E5-4A72-9FF4-757156468FC8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B917AE0F-4850-445E-A9DE-8B0615FF1642} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{B93D2149-F016-49C0-B861-ADA54D305DC1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BA0628EC-88D6-44F3-AC28-50545D7FB91C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BA288FD4-5EE3-4551-BA9E-A8731EE8BFB8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BA5C8FE4-2438-4FB4-B574-2A2CB7C5A7F5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BA5EB5EE-73E8-43AF-845B-D106C2CA0C6C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BA68B518-98A9-4A41-A662-7DA155352C16} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BA8BFFAE-C6E1-4358-8E20-F083348FC880} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BBCC20D8-3CF8-436D-B7E1-1E90D1E8B9A6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BBEA18E1-63AD-4A51-8A5B-32C2001B29C6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BC12FA5D-9534-4C1D-B2FF-8A6FE43D2023} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BC44FDB4-6AB2-4923-9791-485091BD5F7A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BD458441-0DC3-4746-9BAA-D2C5DBBA932D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BD768E7B-21B8-46FC-AD0A-172E5515B417} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BDF86A00-DC35-444F-A37D-C13D6A71B2F9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BDFCCFA9-EC3A-42BD-9EAD-2C07536DC4D9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BEE240FC-2B50-4739-BF70-C4D8589E7051} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{BF4BED02-94F1-4191-8600-9DBD0D0015FD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C0858ECD-7BFB-4C15-9739-6946107389F4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C13761F7-EF3F-4DB0-9E87-9799D5FD4649} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C1C54461-4EFE-4869-B366-40E437A97AA3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C2B2DA8E-BB56-497C-8DB0-6E93EFA2EEF2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C2C36A13-F328-4405-9DE0-FC7DED5036DF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C2FB90D8-1FD8-4D7A-A556-3413377D4032} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C3890BFD-3DF6-401B-9C25-D6D9B8C90335} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C3C7497D-0E9A-45AA-9330-79FCD3CD3AD2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C510AF52-0484-4F55-B642-089966BB7E40} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C58000DF-5E2B-4C02-ADE1-2CB455CCF8ED} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C5824CC3-C50C-4C5E-9C95-495D92ED93B7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C5C1DEC7-9233-4CD8-BCD8-5139FCBC22A0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C6655923-F235-4C14-84B1-FBC534D4CF7C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C71CB5CA-CD9D-473F-8C85-D5B4BFDC245E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C7537287-9CCC-4C17-96C5-CB87748CF752} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C7A913B4-4A2A-42C7-A63E-17E3C68DD2BA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C801BCCA-9407-4042-BB7B-2615EBFC8458} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C811412F-B07E-440A-B8E6-00BCC4D64CC9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C954A6A8-5F13-4B4F-8C27-1F5ADD66683F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C970E6E0-50B9-49D2-BD35-E9BC011E6C7D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{C9A5F07C-69F7-45D2-B73A-7EF89E297FE9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CA50B979-E783-4493-8B9A-14B9CE3A4157} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CAC0E971-8C9C-48F0-8267-A416820C73AB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CB7F3347-1EB9-4CBD-AF2F-2DB3CB4B8DB1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CBA5CAC8-3FDA-4466-B691-81336FE20F4A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CBCF371B-CE1A-4388-A01D-2B44989B4605} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CC35A1F8-B8A6-44CA-A0B6-5AB33A5F3C7C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CC98829D-7B9B-493F-8378-211AAF215F56} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CCD7B0BA-FE55-4CCF-A47D-19C6530E717A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CDE77B92-F219-41EA-A83A-B89973E45459} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CDF1840C-24DF-42B0-A6C3-6023E302D302} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CE3DB5E4-B3D8-4CD8-B439-57801247E4C0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CEAE1908-8D76-4176-B7B2-3998A1BD9D0D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CF8DB9A2-9866-452C-9B13-8D2694B7E6CB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CFC35E8A-92B4-456F-92B3-DCF98EAFE68A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{CFFB21C4-A257-4CE6-B5D9-4DE3D79EC4E0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D0218A18-1E83-4E5C-83A9-42BC44C005DA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D0353C5D-44B8-4FF1-AD62-1CF6B40FD0DF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D08E488E-EB2E-4C8D-8F6B-445363005EAA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D09070DE-5FB6-49AD-89F1-549FEBE75082} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D1A29C93-AF8C-489D-808D-4DABDB9E5E20} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D239D7DB-EC8A-417E-8021-5CD318D50F49} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D23FB597-6413-4305-BC38-E15A564E75F4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D25EEEF4-4518-472F-B78C-619984A48A6B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D2850A8B-0677-49E8-855F-EC14ACBD03E1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D2C489E9-796C-4F06-A3BF-5DDFC3D36075} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D2E4C68A-55B1-4EDE-A238-25BDF66EB24B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D36D1CCF-415C-4866-9912-919FAFAE4BE2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D45389E9-10C2-4108-9186-1A53753272BA} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D4CA1F9E-5210-404D-A46B-AC9850F967CB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D5EF9365-76F6-4C56-879C-8E1D607F535A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D620D364-B84F-4988-A38C-9A5AED61339C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D6685C4B-7536-42E0-BE8A-7F61120DC8F2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D6919CB8-7E16-4C09-AE30-89F51A9B8258} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D6E0E3E5-AE1A-449B-8DD7-2D02C5A60959} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D6E6D6D4-45E8-4198-90C1-E9BB3C0F6CF4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D7996BC3-8563-4ACB-A134-C84EC54A5C6C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D7B2DEE7-068F-4CA9-9302-9AFCEB1EEA96} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D7C02F5D-F4C1-41B8-898B-B1DC60574097} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D7E73561-0216-42D1-885A-57E1027B3247} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D80F52D9-FD0E-48FD-AE19-2404766DE22A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D8AC66F0-060E-42FA-863A-20811315CF26} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{D966CF24-6393-4CCC-A6FF-23A5DA3040E4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DB029BD8-6196-4DA4-9559-7467373AD5AD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DB0C3464-372A-441C-84BB-2782B7757122} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DB2022CB-47A5-4185-B203-9BD6AF965805} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DC13B452-EE65-487E-8E42-7145A0451AFD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DC45AAAB-1C84-4E74-AFC2-D9C05EBF3995} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DCDCADF9-65B0-4474-8EDB-FD5441240CDF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DD4B7175-519A-44AE-8DE8-BC8C017E085C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DD7405D0-2A69-4B12-A241-78F7CB69DADD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DD9B0C39-78DD-47D6-ADEC-95D051A85D41} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DDA4EED5-D786-4EAD-AD1E-412EB1BEDD7D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DDCF3D2F-DA61-4846-B68C-F77B32629019} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DDF3E08E-885E-45E9-B1A2-D97CB218A49C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DF233E18-74A7-4ED7-99A4-A0FEE32A6A28} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DF3C32AA-EA70-4614-8372-0C4E780558CD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DF7CD360-2ADA-4957-BC05-3B241B67FF64} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{DFAC4A09-7227-4590-832E-CC1A145E32CC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E076D27E-83DA-4CB0-ADB7-38BD42491CB1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E079EA83-466D-4F36-937E-7D132D4193C6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E0C356E9-F848-4E7F-890A-ACFAEF8D13DD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E187CD87-4497-4814-ACD4-B1A4EA044CF3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E27863A3-79ED-4CCE-B147-F774A997E041} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E3283C8C-A36E-4E2B-A69C-FF0D48C591A3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E341AA51-AE86-4D7F-BA48-7EA65A6D04C7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E35C1FFB-4AA3-473E-B87D-4839F886F7B7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E39CEECB-AF55-4225-9DAB-3BC5BBA96B57} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E4C9ABF3-D28E-4D20-B967-CCCA2A074E85} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E4D37C4F-5898-4500-8ECC-921A63962AE0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E5299D0E-289B-45ED-8AC9-29F593B32A10} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E53EC84A-B8C1-4F63-92C7-BF1C43C41AD3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E5D4232A-066A-4493-BF9F-ABD83D51B29C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E7E36D32-2E07-4409-AF76-25E2D9BC8AE9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E81D82C8-EFB9-49B3-8E58-6D50FF4BEC4C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E85A4CA3-FCA1-4A01-AC6C-881C1A5118CD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E8776ABF-DD0F-4766-80AF-B588AD160E6B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E8A2A454-3B5A-440C-92FA-EDB1FA96BEDD} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E8B08641-9D68-4E4E-8E16-D1380E4F6E81} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{E91E28DF-4E61-4AA6-9C26-FDE28D88E446} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{EA5DDD4B-79F8-4FD6-A845-87B49CB947B1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{EBB2CEA0-4B19-4C39-94F6-14ED21BCA46E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{EDBA0530-313A-4742-B2F7-A79B53699AF1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{EE98A1FE-9B3D-46C3-B2E5-DFF3E054CBE5} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{EEA26267-1FB2-403C-B28D-EB362B32E251} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{EF00860B-9ABB-4EA3-93DA-F7AB3CB918D1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{EFA12EA6-E424-4117-AD09-0EACCE1A9A6F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F026371F-4672-409E-B3C4-226D8A21789F} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F0710BC4-5943-4DA1-8B17-5258C13E18FF} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F08195AB-1B1F-4998-AF6F-293CCBA77983} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F0F15D93-7D68-45BF-A168-83054E5BC68A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F126C0A6-F959-486B-8CDE-271206475A39} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F14270B3-FE02-497B-AB65-EDBD116753C2} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F160C442-5082-4BC0-BB6D-58306D75101D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F2A9BD7E-2A38-43DE-9B5B-81153BA2C566} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F38D4510-AC7E-4C27-9393-75A58F9075D9} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F394BBC0-4A4D-4FB5-B4AF-1BB8AF735E8D} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F39916EF-FFFA-439C-BB02-59B06C3023A4} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F419108A-C47C-4F06-AE81-58C9CBDDAA95} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F4D1DBDF-9967-456D-B2B2-A7260291026A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F503A94D-84A1-40D8-8700-7BC70517FDBC} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F53E1FCB-BF2F-463B-B88A-F27C5A75F7E0} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F53EA399-6CFC-4C11-BEFE-1F273661BA5A} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F5A82808-8EDD-4F4B-9521-1A755FA081D8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F6298B08-41D0-46B3-80A9-8C03BDD9DF8C} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F68B2879-405A-4E91-B900-40B8876E1D4E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F6CD8DBB-D1D4-4968-B836-6860AC9FC685} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F71C2E57-B373-4962-81C2-FCC16C456EC3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F78D6118-ACE8-4A5C-9BC8-6092728C657B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F78EF9AD-A984-484A-B091-9EBDAFAA8E92} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F7E06C9C-7E8A-4F54-8A16-FA8D96183381} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F823D0CC-8092-40B2-A18E-A94D86DDBCA7} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F85F98B7-AD08-4AAA-8526-DE89B2F74FE8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F91DAB4D-5543-44C4-B7F0-E10048B45A6E} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{F91DAB6E-3057-4375-AC39-5B379D6FDEC1} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FA2A5B3A-7AEF-4164-84AC-519EB1CC34EB} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FA2BC113-BE76-4D18-A3BE-A50A6D813F27} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FA32EAE2-CEE5-4EF0-B062-84D3436529D6} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FAB5BFF0-5C0E-4FD9-8122-18C8B4DDEBD3} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FAFCB7B8-7924-42B7-8219-E26656E09925} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FB679537-9C17-4F85-B636-2D0418580561} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FB930AB1-B44D-4A72-AA02-39442F818D44} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FB9D1636-E24A-4A45-904C-E2BE394C9083} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FDE10350-BF12-460C-A784-AA5CCBBEC6A8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FE47A4B8-9CC3-490F-AFF3-FEEC37DDE819} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FEBAB321-4162-4E5C-8683-EE2A6A3404D8} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FF19FF8C-E0B0-4286-B980-418824295A3B} (Empty Folder)
Successfully deleted: C:\Users\Steve\AppData\Local\{FFDB649D-3498-4454-96DE-E532FEBB361E} (Empty Folder)
Successfully deleted: C:\WINDOWS\system32\Tasks\PCDEventLauncherTask (Task)
Successfully deleted: C:\WINDOWS\system32\Tasks\PCDoctorBackgroundMonitorTask (Task)
Successfully deleted: C:\WINDOWS\system32\REN6C29.tmp (File)

Deleted the following from C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default\prefs.js
user_pref(browser.search.hiddenOneOffs, Secure Search);



Registry: 7

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\0172311500824534mcinstcleanup (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{903BEF58-2264-4FDD-A4A2-72024AC9D292} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AB62CE37-C53F-4D77-9489-308327D58331} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B291AB8A-3ACA-450E-AD13-3D62D679BAF2} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 07/23/2017 at 22:17:49.96
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

# AdwCleaner 7.0.0.0 - Logfile created on Mon Jul 24 02:37:57 2017
# Updated on 2017/17/07 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

Deleted: C:/ProgramData\499939a2-9992-4c71-acdb-3de219b570d0


***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{E92D7BFC-7EA5-4562-BBDC-DC8CA0E95646}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{E839E8A0-B71D-4F68-8BAD-29CFC7502F82}


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

SearchProvider deleted: AOL - aol.com
SearchProvider deleted: Ask - ask.com


*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C1].txt - [15868 B] - [2016/2/15 13:50:21]
C:/AdwCleaner/AdwCleaner[S1].txt - [1636 B] - [2016/2/15 13:47:16]


########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########

~ ZHPDiag v2017.7.20.125 By Nicolas Coolman (2017/07/20)
~ Run by Steve (Administrator) (2017/07/23 22:45:45)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Steve\Desktop\ZHPDiag.txt
~ Report: C:\Users\Steve\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Home, 64-bit (Build 14393) =>.Microsoft Corporation

---\\ Internet Browsers (4) - 0s
~ GCIE: Google Chrome v59.0.3071.115
~ MFIE: Mozilla Firefox 54.0.1 (x86 en-US)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.1198.14393.0

---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ System protection software (3) - 10s
Malwarebytes Anti-Malware version 2.2.1.1043 (Protection)
McAfee AntiVirus Plus v16.0.1 (Protection)
Windows Defender (Deactivate)

---\\ Surveillance software (2) - 13s
~ Adobe Flash Player 26 NPAPI (Surveillance)
~ Adobe Acrobat Reader DC (Surveillance)

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 26 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8379.312 MB (55% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 691 GB (73%) free of 941 GB : OK =>.Disk Space

---\\ Connection to the system mode (3) - 0s
~ Computer Name: STEVE-PC
~ User Name: Steve
~ Logged in as Administrator

---\\ Enumeration of the disk units (1) - 0s
~ Drive C: has 691 GB free of 941 GB (System)

---\\ State of the Windows Security Center (8) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Search Generic System Files (24) - 1s
[MD5.679D17F8CDB938C7100D7A647953677E] - 27/04/2017 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [4674360] =>.Microsoft Windows®
[MD5.C7645D43451C6D94D87F4D07BDE59C89] - 16/07/2016 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [69632] =>.Microsoft Corporation
[MD5.99A19C9A74E2F9820E501DCE77F84F70] - 16/07/2016 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [304240] =>.Microsoft Windows Publisher®
[MD5.B9727FA7889DD6FCE4F7C27F8879A7F4] - 27/04/2017 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [2895872] =>.Microsoft Corporation
[MD5.B2151FE002A8D3F41E2DF935F260E3A8] - 27/04/2017 - (.Microsoft Corporation - Windows Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [673792] =>.Microsoft Corporation
[MD5.9600B7F2F89DE60A80D13DE42F672834] - 16/07/2016 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [402432] =>.Microsoft Corporation
[MD5.2813C62F5BE7FAF0A1C5CC37E5C2F25D] - 04/03/2017 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [646688] =>.Microsoft Windows®
[MD5.AA86DC342B4ED1C1F839C3BC8AEA64B1] - 04/03/2017 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [497416] =>.Microsoft Windows®
[MD5.323AA1953ED9C01E23F740FA891FE064] - 15/10/2016 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [584032] =>.Microsoft Windows®
[MD5.A10F989A812B57B9695F6C305907C9C6] - 16/07/2016 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.F8FB51B9EF6372610E9B31A1D86B62FC] - 16/07/2016 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.613D0137C269187FA298A157E3D14A18] - 16/07/2016 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [173056] =>.Microsoft Corporation
[MD5.4BC21E937E9F9F408672D2C2CBE4A153] - 04/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [145408] =>.Microsoft Corporation
[MD5.10E3515FE5DBA6656FA62C29342EC4A1] - 16/07/2016 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [83456] =>.Microsoft Corporation
[MD5.B54B30992620C97230013A74461C8517] - 16/07/2016 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114176] =>.Microsoft Corporation
[MD5.F1DAECC3B3D6399875D4F10529D6A77C] - 16/07/2016 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [212480] =>.Microsoft Corporation
[MD5.D559FF28B1AD9B1E15A4186E785E61F6] - 04/03/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [450400] =>.Microsoft Windows®
[MD5.6FEBB0A847FFD5F057B9AC8889F1B9A7] - 16/07/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [279040] =>.Microsoft Corporation
[MD5.8DB6A6B731CEC9046CD8CA0267EC5679] - 27/04/2017 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2255712] =>.Microsoft Windows®
[MD5.6B81BF7853D161DB8AC62CD8B9C2DE6B] - 16/07/2016 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation
[MD5.17E565710172ED71B8531D8822E1C5D1] - 16/07/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation
[MD5.7135785C21CA79D270D11037C43D3F19] - 16/07/2016 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [177152] =>.Microsoft Corporation
[MD5.0B237F8A96952BF95A14865030E131F2] - 04/03/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [118624] =>.Microsoft Windows®
[MD5.BF2546583BB75F01DDA60A7921DFB230] - 16/07/2016 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [391520] =>.Microsoft Windows®

---\\ Non Microsoft non disabled Windows Services (35) - 4s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: (AdobeUpdateService) . (.Adobe Systems Incorporated - Adobe Update Service.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) . (.Apple Computer, Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Computer, Inc.
O23 - Service: Dell Data Vault Service API (DDVCollectorSvcApi) . (.Dell Inc. - Dell Data Vault Data Collector Service API.) - C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe {182CA8B7953573070000000055662D9C} =>.Dell Inc.
O23 - Service: Dell Data Vault Collector (DDVDataCollector) . (.Dell Inc. - Dell Data Vault Data Collector Service.) - C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe {182CA8B7953573070000000055662D9C} =>.Dell Inc.
O23 - Service: Dell Data Vault Processor (DDVRulesProcessor) . (.Dell Inc. - Dell Data Vault Rules Processor.) - C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe {182CA8B7953573070000000055662D9C} =>.Dell Inc.
O23 - Service: Dell Customer Connect (Dell Customer Connect) . (.Dell Inc. - DCCService.) - C:\Program Files (x86)\Dell Customer Connect\DCCService.exe =>.Dell Inc®
O23 - Service: Dell Update Service (DellUpdate) . (.Dell Inc. - Dell Update Windows Service.) - C:\Program Files (x86)\Dell Update\DellUpService.exe {182CA8B7953573070000000055662D9C} =>.Dell Inc.
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: McAfee Home Network (HomeNetSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: Intuit Update Service v4 (IntuitUpdateServiceV4) . (.Intuit Inc. - Intuit Update Service.) - C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe {46889ED69C56066C50FC83F58D64BBA6} =>.Intuit Inc.
O23 - Service: Malwarebytes Anti-Exploit Service (MbaeSvc) . (.Malwarebytes Corporation - Malwarebytes Anti-Exploit Service.) - C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe =>.Malwarebytes Corporation®
O23 - Service: MBAMScheduler (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
O23 - Service: MBAMService (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc. - McAfee WebAdvisor.) - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe =>.McAfee, Inc.®
O23 - Service: McAfee AP Service (McAPExe) . (.McAfee, Inc. - McAfee Access Protection.) - C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe =>.McAfee, Inc.®
O23 - Service: McAfee Boot Delay Start Service (McBootDelayStartSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: McAfee CSP Service (mccspsvc) . (.McAfee, Inc. - McAfee CSP Service Host.) - C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe =>.McAfee, Inc.®
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: McAfee Platform Services (mcpltsvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: McAfee Service Controller (mfemms) . (.McAfee, Inc. - McAfee Management Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe =>.McAfee, Inc.®
O23 - Service: McAfee Module Core Service (ModuleCoreService) . (.McAfee, Inc. - McAfee Module Core Service.) - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe =>.McAfee, Inc.®
O23 - Service: Motorola Device Manager Service (Motorola Device Manager) . (.Motorola Mobility LLC - MotoHelper Service.) - C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe =>.Motorola Mobility LLC
O23 - Service: Nero Update (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 342.0.) - C:\WINDOWS\system32\nvvsvc.exe =>.NVIDIA Corporation
O23 - Service: Intel Security PEF Service (PEFService) . (.Intel Security, Inc. - Intel Security PEF Service.) - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe =>.McAfee, Inc.®
O23 - Service: PST Service (PST Service) . (.Motorola - ForwardDemon.) - C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe =>.Motorola
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) . (.Copyright © 2013-2015 - GameScannerService.) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe =>.Razer Inc.®
O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) . (.Sonic Solutions - RoxWatch12 Module.) - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe =>.Sonic Solutions®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) . (.Dell Inc. - Service.) - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe =>.Dell Inc.®
O23 - Service: WSWNA3100 (WSWNA3100) . (.Copyright (C) 2008-2009 - Wifi Service.) - C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe =>.NETGEAR®

---\\ Services not Microsoft (SR=Run, SS=Stop) (46) - 39s
SS - Demand [01/09/1999] [ 68096] Adobe LM Service (Adobe LM Service) . (.Copyright (c) 1998-2003 Macrovision Corp..) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe =>.Copyright (c) 1998-2003 Macrovision Corp.
SR - Auto [25/04/2017] [ 83056] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [21/07/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [24/08/2016] [ 744640] (AdobeUpdateService) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [18/05/2017] [ 2246256] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
SR - Auto [28/02/2006] [ 229376] ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) . (.Apple Computer, Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Computer, Inc.
SR - Demand [29/03/2017] [ 1752992] ClientAnalyticsService (ClientAnalyticsService) . (.Intel Security.) - C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe =>.McAfee, Inc.®
SR - Auto [20/06/2017] [ 206712] Dell Data Vault Service API (DDVCollectorSvcApi) . (.Dell Inc..) - C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe {182CA8B7953573070000000055662D9C} =>.Dell Inc.
SR - Auto [20/06/2017] [ 3296632] Dell Data Vault Collector (DDVDataCollector) . (.Dell Inc..) - C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe {182CA8B7953573070000000055662D9C} =>.Dell Inc.
SR - Auto [20/06/2017] [ 217464] Dell Data Vault Processor (DDVRulesProcessor) . (.Dell Inc..) - C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe {182CA8B7953573070000000055662D9C} =>.Dell Inc.
SR - Auto [21/12/2016] [ 130936] Dell Customer Connect (Dell Customer Connect) . (.Dell Inc..) - C:\Program Files (x86)\Dell Customer Connect\DCCService.exe =>.Dell Inc®
SR - Auto [01/05/2017] [ 230248] Dell Update Service (DellUpdate) . (.Dell Inc..) - C:\Program Files (x86)\Dell Update\DellUpService.exe {182CA8B7953573070000000055662D9C} =>.Dell Inc.
SS - Demand [17/02/2011] [ 1045256] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe =>.Acresso Software Inc.®
SS - Auto [29/08/2015] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [29/08/2015] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [22/02/2017] [ 641520] McAfee Home Network (HomeNetSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Auto [27/04/2015] [ 14624] Intuit Update Service v4 (IntuitUpdateServiceV4) . (.Intuit Inc..) - C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe {46889ED69C56066C50FC83F58D64BBA6} =>.Intuit Inc.
SR - Auto [05/05/2017] [ 155080] Malwarebytes Anti-Exploit Service (MbaeSvc) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe =>.Malwarebytes Corporation®
SR - Auto [10/03/2016] [ 1514464] MBAMScheduler (MBAMScheduler) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
SR - Auto [10/03/2016] [ 1136608] MBAMService (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [19/06/2017] [ 179216] McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe =>.McAfee, Inc.®
SR - Auto [03/06/2017] [ 984480] McAfee AP Service (McAPExe) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe =>.McAfee, Inc.®
SR - Auto [22/02/2017] [ 641520] McAfee Boot Delay Start Service (McBootDelayStartSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Auto [30/05/2017] [ 2139832] McAfee CSP Service (mccspsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe =>.McAfee, Inc.®
SR - Auto [22/02/2017] [ 641520] McAfee Personal Firewall Service (McMPFSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Auto [22/02/2017] [ 641520] McAfee Platform Services (mcpltsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Auto [22/02/2017] [ 641520] McAfee Proxy Service (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Demand [30/04/2017] [ 241656] McAfee Firewall Core Service (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe =>.McAfee, Inc.®
SR - Auto [30/04/2017] [ 390656] McAfee Service Controller (mfemms) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe =>.McAfee, Inc.®
SR - Demand [30/04/2017] [ 343544] McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc..) - C:\WINDOWS\system32\mfevtps.exe =>.McAfee, Inc.®
SR - Auto [31/05/2017] [ 1543248] McAfee Module Core Service (ModuleCoreService) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe =>.McAfee, Inc.®
SR - Auto [15/04/2015] [ 128512] Motorola Device Manager Service (Motorola Device Manager) . (.Motorola Mobility LLC.) - C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe =>.Motorola Mobility LLC
SS - Demand [23/07/2017] [ 175560] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [15/07/2014] [ 786256] Nero Update (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG®
SR - Auto [14/11/2016] [ 932728] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe =>.NVIDIA Corporation®
SR - Auto [22/05/2017] [ 1042288] Intel Security PEF Service (PEFService) . (.Intel Security, Inc..) - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe =>.McAfee, Inc.®
SR - Auto [02/09/2011] [ 65657] PST Service (PST Service) . (.Motorola.) - C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe =>.Motorola
SS - Auto [23/06/2015] [ 187048] Razer Game Scanner (Razer Game Scanner Service) . (.Copyright © 2013-2015.) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe =>.Razer Inc.®
SR - Demand [04/09/2010] [ 1116656] RoxMediaDB12OEM (RoxMediaDB12OEM) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe =>.Sonic Solutions®
SR - Auto [04/09/2010] [ 219632] Roxio Hard Drive Watcher 12 (RoxWatch12) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe =>.Sonic Solutions®
SS - Auto [20/09/2016] [ 324224] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [20/09/2016] [ 324224] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
SS - Demand [20/09/2016] [ 324224] stllssvr (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe =>.MicroVision Development Inc.®
SR - Auto [20/09/2016] [ 324224] Dell SupportAssist Agent (SupportAssistAgent) . (.Dell Inc..) - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe =>.Dell Inc.®
SS - Demand [20/09/2016] [ 324224] Adobe SwitchBoard (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated
SR - Auto [20/09/2016] [ 324224] WSWNA3100 (WSWNA3100) . (.Copyright (C) 2008-2009.) - C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe =>.NETGEAR®

---\\ Task Planned Automatically (38) - 12s
[MD5.AFC094098B6D856151002051E31867D8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1162360] (.Activate.) =>.Adobe Systems, Incorporated®
[MD5.0DC99843E91A0313F0C6591656D650A5] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.00000000000000000000000000000000] [APT] [AdobeAAMUpdater-1.0-Steve-PC-Steve] (...) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.A3753D0D8EFFABB1F9DC7D29FDCBCAF6] [APT] [Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse] (.McAfee, Inc..) -- C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [1779568] (.Activate.) =>.McAfee, Inc.®
[MD5.A3753D0D8EFFABB1F9DC7D29FDCBCAF6] [APT] [Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse] (.McAfee, Inc..) -- C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [1779568] (.Activate.) =>.McAfee, Inc.®
[MD5.3143520C7ADC3422ECF57F264F97F60F] [APT] [McAfee Remediation (Prepare)] (.McAfee, Inc..) -- C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4147912] (.Activate.) =>.McAfee, Inc.®
[MD5.1359EEBBFD666CC147F35C1A85122683] [APT] [McAfeeLogon] (.McAfee, Inc..) -- C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [745296] (.Activate.) =>.McAfee, Inc.®
[MD5.8DF35905CD14859004C7AE7B9689CC47] [APT] [Verizon Wireless Upgrade Assistant Update] (.Copyright 2012.) -- C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\VerizonWirelessUpgradeAssistantUpdate.exe [880944] (.Activate.) =>.Motorola Mobility Inc.®
[MD5.8DF35905CD14859004C7AE7B9689CC47] [APT] [Verizon Wireless Upgrade Assistant Update Initial Update] (.Copyright 2012.) -- C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\VerizonWirelessUpgradeAssistantUpdate.exe [880944] (.Activate.) =>.Motorola Mobility Inc.®
[MD5.00000000000000000000000000000000] [APT] [{14B64D6C-EB84-4366-840B-A80E28AD259F}] (...) -- C:\Users\Steve\Downloads\DVD Shrink\Any.DVD.Shrink.1.2\any-dvd-shrink.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.1C380734B48C02474807DBFFE2698181] [APT] [{59944E75-8499-4A0B-B7F7-CC267C7182FC}] (.LG Electronics.) -- C:\LGMobileUpgrade\LGMOBILEAX\BYRLauncher.exe [110064] (.Activate.) =>.LG Electronics Inc.®
[MD5.00000000000000000000000000000000] [APT] [{8FEF03D2-8559-4B76-9BFD-39A076532F4C}] (...) -- C:\Users\Steve\Ahead.Nero.Burning.ROM.v6.6.0.16.Ultra.Edition\Nero-6.6.0.16.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.164C8B1D402AF31821D9316EB1A55DC5] [APT] [{E236F5E3-EB2E-4D84-AA3C-FE4AF73342E4}] (.LG Electronics.) -- C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\BYRAppUninstall.exe [236672] (.Activate.) =>.LG Electronics®
[MD5.00000000000000000000000000000000] [APT] [{E7236F78-5AA9-4C51-8950-7AEA15BB8802}] (...) -- C:\Users\Steve\Desktop\devcpp-4.9.9.2_setup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [Microsoft\Office\Office 15 Subscription Heartbeat] (...) -- C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [4562] =>.Adobe Systems, Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [4374] =>.Adobe Systems Incorporated®
O39 - APT: AdobeAAMUpdater-1.0-Steve-PC-Steve - (...) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-Steve-PC-Steve [2766] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Unknown - (.Legitimate.) -- C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask [2590]
O39 - APT: Dell SupportAssistAgent AnonymousRegistration - (...) -- C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AnonymousRegistration [3930] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Dell SupportAssistAgent AutoUpdate - (...) -- C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate [3896] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3292] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3416] =>.Google Inc®
O39 - APT: Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse - (.McAfee, Inc..) -- C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse [4034] =>.McAfee, Inc.®
O39 - APT: Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse - (.McAfee, Inc..) -- C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse [4222] =>.McAfee, Inc.®
O39 - APT: McAfee Remediation (Prepare) - (.McAfee, Inc..) -- C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare) [3446] =>.McAfee, Inc.®
O39 - APT: McAfeeLogon - (.McAfee, Inc..) -- C:\WINDOWS\System32\Tasks\McAfeeLogon [3126] =>.McAfee, Inc.®
O39 - APT: PCDDataUploadTask - (...) -- C:\WINDOWS\System32\Tasks\PCDDataUploadTask [3100] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: SystemToolsDailyTest - (...) -- C:\WINDOWS\System32\Tasks\SystemToolsDailyTest [2984] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Verizon Wireless Upgrade Assistant Update - (.Copyright 2012.) -- C:\WINDOWS\System32\Tasks\Verizon Wireless Upgrade Assistant Update [2602] =>.Motorola Mobility Inc.®
O39 - APT: Verizon Wireless Upgrade Assistant Update Initial Update - (.Copyright 2012.) -- C:\WINDOWS\System32\Tasks\Verizon Wireless Upgrade Assistant Update Initial Update [2410] =>.Motorola Mobility Inc.®
O39 - APT: {14B64D6C-EB84-4366-840B-A80E28AD259F} - (...) -- C:\WINDOWS\System32\Tasks\{14B64D6C-EB84-4366-840B-A80E28AD259F} [2414] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {59944E75-8499-4A0B-B7F7-CC267C7182FC} - (.LG Electronics.) -- C:\WINDOWS\System32\Tasks\{59944E75-8499-4A0B-B7F7-CC267C7182FC} [2300] =>.LG Electronics Inc.®
O39 - APT: {8FEF03D2-8559-4B76-9BFD-39A076532F4C} - (...) -- C:\WINDOWS\System32\Tasks\{8FEF03D2-8559-4B76-9BFD-39A076532F4C} [2432] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {E236F5E3-EB2E-4D84-AA3C-FE4AF73342E4} - (.LG Electronics.) -- C:\WINDOWS\System32\Tasks\{E236F5E3-EB2E-4D84-AA3C-FE4AF73342E4} [2352] =>.LG Electronics®
O39 - APT: {E7236F78-5AA9-4C51-8950-7AEA15BB8802} - (...) -- C:\WINDOWS\System32\Tasks\{E7236F78-5AA9-4C51-8950-7AEA15BB8802} [2290] (.Orphan.) =>.Superfluous.Orphan

---\\ Auto loading programs from Registry and folders (19) - 1s
O4 - HKLM\..\Run: [RunDLLEntry_THXCfg] . (.Creative Technology Ltd. - .) -- C:\Windows\system32\THXCfg64.dll =>.Creative Technology Ltd.
O4 - HKLM\..\Run: [RunDLLEntry_EptMon] . (.Creative Technology Ltd. - .) -- C:\Windows\system32\EptMon64.dll =>.Creative Technology Ltd.
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (.not file.)
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe =>.NVIDIA Corporation®
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Steve\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Adobe Acrobat Synchronizer] . (.Adobe Systems Incorporated - Adobe Collaboration Synchronizer 17.9.) -- C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [THX Audio Control Panel] . (.Creative Technology Ltd - THXAudio.) -- C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe =>.Creative Technology Ltd
O4 - HKLM\..\Wow6432Node\Run: [UpdReg] . (.Creative Technology Ltd. - Creative UpdReg.) -- C:\Windows\Updreg.EXE =>.Creative Technology Ltd.
O4 - HKLM\..\Wow6432Node\Run: [RoxWatchTray] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe =>.Sonic Solutions®
O4 - HKLM\..\Wow6432Node\Run: [mcui_exe] . (.McAfee, Inc. - McAfee Security Center.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe =>.McAfee, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [Adobe Creative Cloud] . (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3518905376-1918425772-3662548586-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Steve\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3518905376-1918425772-3662548586-1001\..\Run: [Adobe Acrobat Synchronizer] . (.Adobe Systems Incorporated - Adobe Collaboration Synchronizer 17.9.) -- C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe =>.Adobe Systems, Incorporated®

---\\ Process running (52) - 3s
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 342.0.) -- C:\WINDOWS\system32\nvvsvc.exe [0] [PID.1284] =>.NVIDIA Corporation
[MD5.843F16D234D03756B9EB6054B5C62FAA] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [426040] [PID.1300] =>.NVIDIA Corporation®
[MD5.C66BCE13DB7C119824839C63FEA226FA] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1208256] [PID.1428] =>.NVIDIA Corporation®
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 342.0.) -- C:\WINDOWS\system32\nvvsvc.exe [0] [PID.1436] =>.NVIDIA Corporation
[MD5.8D6BA8E7676038A27FD4ECF12CC744B0] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83056] [PID.2432] =>.Adobe Systems, Incorporated®
[MD5.00000000000000000000000000000000] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\WINDOWS\system32\mfevtps.exe [0] [PID.2464] =>.McAfee, Inc.
[MD5.73933F0BBD77436D14959A0BA5DAE3C4] - (.Adobe Systems Incorporated - Adobe Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640] [PID.2520] =>.Adobe Systems Incorporated®
[MD5.73686FE0B2E0469F89FD2075BE724704] - (.Apple Computer, Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376] [PID.2528] =>.Apple Computer, Inc.
[MD5.9611577752E293259C7DCE19E9026362] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464] [PID.2560] =>.Malwarebytes Corporation®
[MD5.8906928F982462555F458377060674CC] - (.McAfee, Inc. - McAfee WebAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [179216] [PID.2728] =>.McAfee, Inc.®
[MD5.3DB8E7BF041ADD3ACDE04D3EA84B4CAA] - (.McAfee, Inc. - McAfee Management Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [390656] [PID.2748] =>.McAfee, Inc.®
[MD5.C6218FCA6A7B9F3ED5B22476DD5F6544] - (.McAfee, Inc. - McAfee Module Core Service.) -- C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1543248] [PID.2756] =>.McAfee, Inc.®
[MD5.078B785A7533B7059A236017B3B060A4] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256] [PID.2764] =>.Adobe Systems Incorporated®
[MD5.F1A89A34388B5626F1548D393B23ECB1] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608] [PID.2868] =>.Malwarebytes Corporation®
[MD5.EA735BF6DF13A857A83C99BF27A422AD] - (.Motorola - ForwardDemon.) -- C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657] [PID.2884] =>.Motorola
[MD5.9BCD7A648AD359393671AFE7CDA4F803] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit Service.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [155080] [PID.2924] =>.Malwarebytes Corporation®
[MD5.1268E995C059C254624323E91870F75F] - (.Copyright (C) 2008-2009 - Wifi Service.) -- C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe [307488] [PID.2964] =>.NETGEAR®
[MD5.D377570EEF6D4209E33F0DA40F16406C] - (.Intel Security, Inc. - Intel Security PEF Service.) -- C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1042288] [PID.2060] =>.McAfee, Inc.®
[MD5.988CDC4DAE2186F3A5ED6EE7D3E6B5CA] - (.Nero AG - NeroUpdate.) -- C:\Program Files (x86)\Nero\Update\NASvc.exe [786256] [PID.3196] =>.Nero AG®
[MD5.701E4F0B368ECCD3C4DFFF00F2ECD04D] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit 64bit tasks.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe [413136] [PID.3836] =>.Malwarebytes Corporation®
[MD5.00000000000000000000000000000000] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\WINDOWS\system32\mfevtps.exe [0] [PID.4692] =>.McAfee, Inc.
[MD5.DB7BAC05767D16ABCC59234E8A298E4F] - (.McAfee, Inc. - McAfee Cloud AV.) -- C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe [3706880] [PID.5512] =>.McAfee, Inc.®
[MD5.4D44DAA45FD4A79E474BD824165567DC] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [241656] [PID.5568] =>.McAfee, Inc.®
[MD5.4D44DAA45FD4A79E474BD824165567DC] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [241656] [PID.5872] =>.McAfee, Inc.®
[MD5.85F31D4986E81CF3E78A5E2442C8F7AF] - (.Intel Security - AnalyticsSDK.) -- C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1752992] [PID.5880] =>.McAfee, Inc.®
[MD5.A52ACBECFE7BE36E377A203B969705AE] - (.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520] [PID.5888] =>.McAfee, Inc.®
[MD5.8D9A3FE17826A78F8B7A2BFF3A2283F8] - (.McAfee, Inc. - McAfee Access Protection.) -- C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe [984480] [PID.5924] =>.McAfee, Inc.®
[MD5.8E98E3EC16D2641005B4748CD330FB45] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9926112] [PID.5996] =>.Malwarebytes Corporation®
[MD5.F5CD611D8D033EA3E006891C904143E7] - (.Motorola Mobility LLC - MotoHelperAgent.) -- C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe [1209344] [PID.6356] =>.Motorola Mobility LLC
[MD5.C6218FCA6A7B9F3ED5B22476DD5F6544] - (.McAfee, Inc. - McAfee Module Core Service.) -- C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1543248] [PID.6684] =>.McAfee, Inc.®
[MD5.FF1288DD2DFF87855212ED50CC6C379D] - (.Motorola Mobility LLC - MotoHelper Service.) -- C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [128512] [PID.7800] =>.Motorola Mobility LLC
[MD5.859EE4B50C89ACD15F32F9F435CB78F3] - (.McAfee, Inc. - McAfee CSP Service Host.) -- C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe [2139832] [PID.7536] =>.McAfee, Inc.®
[MD5.1359EEBBFD666CC147F35C1A85122683] - (.McAfee, Inc. - McAfee.) -- C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [745296] [PID.4952] =>.McAfee, Inc.®
[MD5.73E7DAFAA77FC23F8139F87BA96D7FC5] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10081312] [PID.8936] =>.Realtek Semiconductor Corp®
[MD5.FC106406544575191A956C1D34BF25F0] - (.Copyright (C) 2009 - Netgear.) -- C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe [8266016] [PID.8492] =>.NETGEAR®
[MD5.E876187946325E0A947C7BD0B645A265] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2650576] [PID.9040] =>.Malwarebytes Corporation®
[MD5.378E91BF267BBF0256FE85FFCA59B1D3] - (.McAfee, Inc. - McAfee Scanner service.) -- C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1068688] [PID.9032] =>.McAfee, Inc.®
[MD5.594F91C5985AC402ECD2D7F1376AFFFD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [521160] [PID.9488] =>.Mozilla Corporation®
[MD5.B3B3F06E1B32F37BC11274B110681F32] - (.Dell Inc. - Dell Data Vault Rules Processor.) -- C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217464] [PID.9428] {182CA8B7953573070000000055662D9C} =>.Dell Inc.
[MD5.04D91223860DB9B4169909A01CD66819] - (.Dell Inc. - DCCService.) -- C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936] [PID.7820] =>.Dell Inc®
[MD5.DBE440017ADEF623761D55B58FBEDE35] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe [74752] [PID.10592] =>.Skype Technologies
[MD5.CAE8AEB8CABCC87D87763B7B97C24532] - (.Dell Inc. - Dell Update Windows Service.) -- C:\Program Files (x86)\Dell Update\DellUpService.exe [230248] [PID.10692] {182CA8B7953573070000000055662D9C} =>.Dell Inc.
[MD5.85AD4AD96EA47BBB9FFE61E58D4FE852] - (.Dell Inc. - Dell Update.) -- C:\Program Files (x86)\Dell Update\DellUpTray.exe [695144] [PID.10936] {182CA8B7953573070000000055662D9C} =>.Dell Inc.
[MD5.D46E04D83A3E174A98DC90FE23AB08DE] - (.Intuit Inc. - Intuit Update Service.) -- C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [14624] [PID.10624] {46889ED69C56066C50FC83F58D64BBA6} =>.Intuit Inc.
[MD5.CE203243ADF512540249DF9C264F12DD] - (.Sonic Solutions - RoxWatch12 Module.) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [219632] [PID.10532] =>.Sonic Solutions®
[MD5.8854151B13B0D57700482979932B9953] - (.Dell Inc. - Service.) -- C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [52696] [PID.9720] =>.Dell Inc.®
[MD5.BDDC447AB46625A54619808575D5CB46] - (.Sonic Solutions - RoxMediaDB12 Module.) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [1116656] [PID.10304] =>.Sonic Solutions®
[MD5.46D8B6F60307E6D6A6367CA14EA7033C] - (.Dell Inc. - Dell Data Vault Data Collector Service.) -- C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3296632] [PID.11096] {182CA8B7953573070000000055662D9C} =>.Dell Inc.
[MD5.85A515EEF5625E8DEFCF798548F043D9] - (.Dell Inc. - Dell Data Vault Data Collector Service API.) -- C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [206712] [PID.9872] {182CA8B7953573070000000055662D9C} =>.Dell Inc.
[MD5.CB4D843A3D92D951557AAA87A5251C12] - (.Dell Inc. - DDV Nvidia Graphics Worker.) -- C:\Program Files\Dell\DellDataVault\nvapiw.exe [418656] [PID.10876] {182CA8B7953573070000000055662D9C} =>.Dell Inc.
[MD5.FF1288DD2DFF87855212ED50CC6C379D] - (.Motorola Mobility LLC - MotoHelper Service.) -- C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [128512] [PID.12096] =>.Motorola Mobility LLC
[MD5.5FA1EABCB469BAF8E938A63D02313373] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Steve\Downloads\ZHPDiag3.exe [2789760] [PID.8432] =>.Nicolas Coolman

---\\ Google Chrome, Start,Search,Extensions (14) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.fepblue.org
G0 - GCSP: Preferences [User Data\Default][HomePage] http://connect.facebook.net =>.Facebook
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fast.fonts.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://googleads.g.doubleclick.net =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://media.fepblue.org
G0 - GCSP: Preferences [User Data\Default][HomePage] http://static.fepblue.org
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.googleadservices.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.googletagmanager.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.youtube.com =>.Youtube
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] McAfee® WebAdvisor =>.McAfee Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (15) - 5s
M0 - MFSP: prefs.js [Steve - jor6jyfq.default] http://www.facebook.com/ =>.Facebook
P2 - EXT FILE: (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll =>.Adobe Systems, Incorporated®
P2 - EXT FILE: (.HTML5 Notifications - Bring HTML5 Notifications to Firefox !.) -- C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default\extensions\html5notifications@paxal.net.xpi
P2 - EXT FILE: (.Secure Search - .) -- C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default\searchplugins\McSiteAdvisor.xml
P2 - EXT FILE: (.Legitimate.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\McSiteAdvisor.xml
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT: (...) -- C:\Users\Steve\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>PUP.Optional.Wajam
P2 - EXT: (.Zigboom - LavaFox V2-Blue.) -- C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\jor6jyfq.default\extensions\djziggy@gmail.com =>.Zigboom
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (.McAfee Total Protection MIME Plugin.) -- c:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll =>.McAfee Total Protection MIME Plugin
P2 - FPN: [HKLM] [@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6] - (.Yahoo.) -- C:\Program Files (x86)\Yahoo!\Shared\npYState.dll

---\\ Internet Explorer Extensions, Start, Search (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
R3 - URLSearchHook: (no name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} Orphan =>.Superfluous.Orphan

---\\ Internet Explorer, Proxy Management (7) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;192.168.*.*
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Hosts file redirection (1) - 1s
~ Le fichier hôte est sain (The hosts file is clean) (20)

---\\ Browser Helper Object (BHO) (5) - 0s
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (.Orphan.)
O2 - BHO: Adobe Acrobat Create PDF Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll =>.Adobe Systems, Incorporated®
O2 - BHO: McAfee WebAdvisor BHO [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, Inc. - WebAdvisor.) -- c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll =>.McAfee, Inc.®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (.Orphan.)
O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll =>.Adobe Systems, Incorporated®

---\\ Global shortcuts Startup (197) - 19s
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Steve\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Adobe Digital Editions 4.5.lnk . (.Adobe Systems Incorporated - Adobe Digital Editions 4.5.) C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe =>.Adobe Systems Incorporated®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: GrabIt.lnk . (.(c) 1999-2011 Ilan Shemes - GrabIt - Binary Usenet downloading Made Eas.) C:\Program Files (x86)\GrabIt\GrabIt.exe
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrator]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Administrator]: PrivaZer.lnk . (.Goversoft LLC - PrivaZer.) C:\Program Files (x86)\PrivaZer\PrivaZer.exe =>.Goversoft®
O4 - GS\Quicklaunch [Administrator]: RapidShare Manager.lnk . (.RapidShare AG - RapidShare Manager 2.) C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe
O4 - GS\sendTo [Administrator]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Administrator]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Administrator]: Web_Publishing_Wizard.lnk . (.Microsoft Corporation - Web Publishing Wizard executable.) C:\Program Files (x86)\Web Publish\WPWIZ.EXE =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl®
O4 - GS\TaskBar [Administrator]: Adobe Acrobat DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-1033-FFFF-7760-0C0F074E4100}\_SC_Acrobat.ico =>.Flexera Software LLC
O4 - GS\TaskBar [Administrator]: AVS Audio Converter.lnk . (.Online Media Technologies Ltd. - AVS Audio Converter.) C:\Users\Steve\Desktop\Desk top items\AVSAudioConverter.exe =>.Online Media Technologies Ltd.
O4 - GS\TaskBar [Administrator]: Computer Management.lnk . (...) C:\WINDOWS\system32\compmgmt.msc /s
O4 - GS\TaskBar [Administrator]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrator]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrator]: UseNeXT.lnk . (...) C:\Program Files (x86)\UseNeXT\UseNeXT.exe
O4 - GS\TaskBar [Administrator]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: WinRAR.lnk . (.Alexander Roshal - .) C:\Program Files (x86)\WinRAR\WinRAR.exe =>.Alexander Roshal
O4 - GS\TaskBar [Administrator]: WinSCP.lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe =>.Martin Prikryl®
O4 - GS\TaskBar [Administrator]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Intel Security.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Administrator]: LogMeIn Rescue.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Administrator]: Microsoft Support.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Administrator]: NCH Suite.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files (x86)\NCH Software\ExpressBurn\expressburn.exe -extsuite =>.NCH Software®
O4 - GS\Programs [Administrator]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Steve\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Update and Privacy Settings.lnk . (.Microsoft Corporation - UNP UXLauncher.) C:\Windows\System32\UNP\UNPUXLauncher.exe /campaignID {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype toast =>.Microsoft Corporation
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Steve\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Adobe Digital Editions 4.5.lnk . (.Adobe Systems Incorporated - Adobe Digital Editions 4.5.) C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe =>.Adobe Systems Incorporated®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: GrabIt.lnk . (.(c) 1999-2011 Ilan Shemes - GrabIt - Binary Usenet downloading Made Eas.) C:\Program Files (x86)\GrabIt\GrabIt.exe
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Guest]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Guest]: PrivaZer.lnk . (.Goversoft LLC - PrivaZer.) C:\Program Files (x86)\PrivaZer\PrivaZer.exe =>.Goversoft®
O4 - GS\Quicklaunch [Guest]: RapidShare Manager.lnk . (.RapidShare AG - RapidShare Manager 2.) C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe
O4 - GS\sendTo [Guest]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Guest]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Guest]: Web_Publishing_Wizard.lnk . (.Microsoft Corporation - Web Publishing Wizard executable.) C:\Program Files (x86)\Web Publish\WPWIZ.EXE =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl®
O4 - GS\TaskBar [Guest]: Adobe Acrobat DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-1033-FFFF-7760-0C0F074E4100}\_SC_Acrobat.ico =>.Flexera Software LLC
O4 - GS\TaskBar [Guest]: AVS Audio Converter.lnk . (.Online Media Technologies Ltd. - AVS Audio Converter.) C:\Users\Steve\Desktop\Desk top items\AVSAudioConverter.exe =>.Online Media Technologies Ltd.
O4 - GS\TaskBar [Guest]: Computer Management.lnk . (...) C:\WINDOWS\system32\compmgmt.msc /s
O4 - GS\TaskBar [Guest]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Guest]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation®
O4 - GS\TaskBar [Guest]: UseNeXT.lnk . (...) C:\Program Files (x86)\UseNeXT\UseNeXT.exe
O4 - GS\TaskBar [Guest]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: WinRAR.lnk . (.Alexander Roshal - .) C:\Program Files (x86)\WinRAR\WinRAR.exe =>.Alexander Roshal
O4 - GS\TaskBar [Guest]: WinSCP.lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe =>.Martin Prikryl®
O4 - GS\TaskBar [Guest]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Intel Security.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Guest]: LogMeIn Rescue.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Guest]: Microsoft Support.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Guest]: NCH Suite.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files (x86)\NCH Software\ExpressBurn\expressburn.exe -extsuite =>.NCH Software®
O4 - GS\Programs [Guest]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Steve\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Update and Privacy Settings.lnk . (.Microsoft Corporation - UNP UXLauncher.) C:\Windows\System32\UNP\UNPUXLauncher.exe /campaignID {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype toast =>.Microsoft Corporation
O4 - GS\Desktop [Steve]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Steve\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Steve]: Adobe Digital Editions 4.5.lnk . (.Adobe Systems Incorporated - Adobe Digital Editions 4.5.) C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe =>.Adobe Systems Incorporated®
O4 - GS\Quicklaunch [Steve]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Steve]: GrabIt.lnk . (.(c) 1999-2011 Ilan Shemes - GrabIt - Binary Usenet downloading Made Eas.) C:\Program Files (x86)\GrabIt\GrabIt.exe
O4 - GS\Quicklaunch [Steve]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Steve]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Steve]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Steve]: PrivaZer.lnk . (.Goversoft LLC - PrivaZer.) C:\Program Files (x86)\PrivaZer\PrivaZer.exe =>.Goversoft®
O4 - GS\Quicklaunch [Steve]: RapidShare Manager.lnk . (.RapidShare AG - RapidShare Manager 2.) C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe
O4 - GS\sendTo [Steve]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Steve]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Steve]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Steve]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Steve]: Web_Publishing_Wizard.lnk . (.Microsoft Corporation - Web Publishing Wizard executable.) C:\Program Files (x86)\Web Publish\WPWIZ.EXE =>.Microsoft Corporation
O4 - GS\sendTo [Steve]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl®
O4 - GS\TaskBar [Steve]: Adobe Acrobat DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-1033-FFFF-7760-0C0F074E4100}\_SC_Acrobat.ico =>.Flexera Software LLC
O4 - GS\TaskBar [Steve]: AVS Audio Converter.lnk . (.Online Media Technologies Ltd. - AVS Audio Converter.) C:\Users\Steve\Desktop\Desk top items\AVSAudioConverter.exe =>.Online Media Technologies Ltd.
O4 - GS\TaskBar [Steve]: Computer Management.lnk . (...) C:\WINDOWS\system32\compmgmt.msc /s
O4 - GS\TaskBar [Steve]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\TaskBar [Steve]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Steve]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Steve]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation®
O4 - GS\TaskBar [Steve]: UseNeXT.lnk . (...) C:\Program Files (x86)\UseNeXT\UseNeXT.exe
O4 - GS\TaskBar [Steve]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\TaskBar [Steve]: WinRAR.lnk . (.Alexander Roshal - .) C:\Program Files (x86)\WinRAR\WinRAR.exe =>.Alexander Roshal
O4 - GS\TaskBar [Steve]: WinSCP.lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe =>.Martin Prikryl®
O4 - GS\TaskBar [Steve]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®
O4 - GS\Programs [Steve]: Intel Security.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Steve]: LogMeIn Rescue.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Steve]: Microsoft Support.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Steve]: NCH Suite.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files (x86)\NCH Software\ExpressBurn\expressburn.exe -extsuite =>.NCH Software®
O4 - GS\Programs [Steve]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Steve\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Steve]: Update and Privacy Settings.lnk . (.Microsoft Corporation - UNP UXLauncher.) C:\Windows\System32\UNP\UNPUXLauncher.exe /campaignID {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype toast =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: 3D Vision Photo Viewer.lnk . (.NVIDIA Corporation - NVIDIA 3D Vision Photo Viewer.) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe =>.NVIDIA Corporation®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Adobe Acrobat DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat DC.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: Adobe Digital Editions 4.5.lnk . (.Adobe Systems Incorporated - Adobe Digital Editions 4.5.) C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited®
O4 - GS\CommonDesktop [Public]: Express Burn Disc Burning Software.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files (x86)\NCH Software\ExpressBurn\expressburn.exe =>.NCH Software®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: McAfee AntiVirus Plus.lnk . (.McAfee, Inc. - .) C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe /desktopicon /platui =>.McAfee, Inc.
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: NCH Suite.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files (x86)\NCH Software\ExpressBurn\expressburn.exe -suite =>.NCH Software®
O4 - GS\CommonDesktop [Public]: NETGEAR WNA3100 Genie.lnk . (.Copyright (C) 2009 - Netgear.) C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe =>.NETGEAR®
O4 - GS\CommonDesktop [Public]: SupportAssist.lnk . (.PC-Doctor, Inc. - PC-Doctor Module.) C:\Program Files\Dell\SupportAssist\pcdlauncher.exe -lloc dsc =>.Dell Inc.®
O4 - GS\CommonDesktop [Public]: TurboTax 2015.lnk . (.Intuit - TurboTax.) C:\WINDOWS\Installer\{B0119415-6743-4707-AB4D-1928F5E81FDD}\TurboTax.exe {4F199D1DD52B5CEA70DBE45E878BC8CD} =>.Intuit
O4 - GS\Programs [Public]: Intel Security.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Public]: LogMeIn Rescue.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Public]: Microsoft Support.lnk . (.LogMeIn, Inc. - LogMeIn Rescue.) C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe =>.LogMeIn, Inc.®
O4 - GS\Programs [Public]: NCH Suite.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files (x86)\NCH Software\ExpressBurn\expressburn.exe -extsuite =>.NCH Software®
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Steve\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Update and Privacy Settings.lnk . (.Microsoft Corporation - UNP UXLauncher.) C:\Windows\System32\UNP\UNPUXLauncher.exe /campaignID {91be532c-f9f1-406a-9858-43697c6f437a} /launchtype toast =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Private Character Editor.) C:\WINDOWS\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Startup [Public]: NETGEAR WNA3100 Genie.lnk . (.Copyright (C) 2009 - Netgear.) C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe =>.NETGEAR®
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Windows Mobility Center.) C:\WINDOWS\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Steps Recorder.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad Application.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - XPS Viewer.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Character Map.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (.Microsoft Corporation - Microsoft Access.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Adobe Acrobat DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-1033-FFFF-7760-0C0F074E4100}\_SC_Acrobat.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Adobe Acrobat Distiller DC.lnk . (.Adobe Systems Incorporated. - Acrobat Distiller.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrodist.exe =>.Adobe Systems, Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Audition CC 2015.lnk . (.Adobe Systems Incorporated - Adobe Audition CC 2015.1.) C:\Program Files\Adobe\Adobe Audition CC 2015\Adobe Audition CC.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Bridge CS3.lnk . (.Adobe Systems, Inc. - Adobe Bridge.) C:\Program Files (x86)\Adobe\Adobe Bridge CS3\Bridge.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Bridge CS6 (64bit).lnk . (.Adobe Systems, Inc. - Adobe Bridge CS6.) C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Bridge CS6.lnk . (.Adobe Systems, Inc. - Adobe Bridge CS6.) C:\Program Files (x86)\Adobe\Adobe Bridge CS6\Bridge.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Content Viewer.lnk . (...) C:\Program Files (x86)\Adobe\Adobe Content Viewer\Adobe Content Viewer.exe
O4 - GS\ProgramsCommon [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Device Central CS3.lnk . (.Adobe Systems - Adobe Device Central CS3.) C:\Program Files (x86)\Adobe\Adobe Device Central CS3\DeviceCentral.exe =>.Adobe Systems
O4 - GS\ProgramsCommon [Public]: Adobe Digital Editions 4.5.lnk . (.Adobe Systems Incorporated - Adobe Digital Editions 4.5.) C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Download Assistant.lnk . (...) C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe
O4 - GS\ProgramsCommon [Public]: Adobe Dreamweaver CC 2015.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC 2015.) C:\Program Files\Adobe\Adobe Dreamweaver CC 2015\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Dreamweaver CS3.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CS3.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS3\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Dreamweaver CS6.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CS6.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated - ExtendScript Toolkit 2 and Debugger.) C:\Program Files (x86)\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe ExtendScript Toolkit CS6.lnk . (.Adobe Systems Incorporated - ExtendScript Toolkit CS6 and Debugger (32 b.) C:\Program Files (x86)\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Extension Manager CS3.lnk . (.Adobe Systems Incorporated - Extension Manager.) C:\Program Files (x86)\Adobe\Adobe Extension Manager\Extension Manager.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Extension Manager CS6.lnk . (.Adobe Systems Incorporated - Adobe Extension Manager CS6.) C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Adobe Extension Manager CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Fireworks CS6.lnk . (.Adobe Systems Incorporated - Adobe Fireworks CS6.) C:\Program Files (x86)\Adobe\Adobe Fireworks CS6\Fireworks.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Help.lnk . (...) C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe
O4 - GS\ProgramsCommon [Public]: Adobe Illustrator CC 2015.lnk . (.Adobe Systems Inc. - Adobe Illustrator CC 2015.) C:\Program Files\Adobe\Adobe Illustrator CC 2015\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Illustrator CS6 (64 Bit).lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) C:\Program Files\Adobe\Adobe Illustrator CS6 (64 Bit)\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) C:\Program Files (x86)\Adobe\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe ImageReady CS.lnk . (.Adobe Systems Incorporated - ImageReady.) C:\Program Files (x86)\Adobe\Photoshop CS\ImageReady.exe =>.Adobe Systems Incorporated
O4 - GS\ProgramsCommon [Public]: Adobe InCopy CC 2015.lnk . (.Adobe Systems Incorporated - Adobe InCopy CC 2015.) C:\Program Files\Adobe\Adobe InCopy CC 2015\InCopy.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe InDesign CC 2015.lnk . (.Adobe Systems Incorporated - Adobe InDesign CC 2015.) C:\Program Files\Adobe\Adobe InDesign CC 2015\InDesign.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe InDesign CS6.lnk . (.Adobe Systems Incorporated - Adobe InDesign CS6.) C:\Program Files (x86)\Adobe\Adobe InDesign CS6\InDesign.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Lightroom.lnk . (.Adobe Systems - Adobe Photoshop Lightroom.) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Media Encoder CC 2015.lnk . (.Adobe Systems Incorporated - Adobe Media Encoder CC 2015.2.) C:\Program Files\Adobe\Adobe Media Encoder CC 2015\Adobe Media Encoder.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Media Encoder CS6.lnk . (.Adobe Systems, Incorporated - .) C:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Muse CC 2015.lnk . (.Adobe Systems, Incorporated - Adobe Muse CC.) C:\Program Files\Adobe\Adobe Muse CC 2015\Muse.exe -re =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CC 2015.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC 2015.) C:\Program Files\Adobe\Adobe Photoshop CC 2015\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CS.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS.) C:\Program Files (x86)\Adobe\Photoshop CS\Photoshop.exe =>.Adobe Systems, Incorporated
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CS6.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) C:\Program Files (x86)\Adobe\Adobe Photoshop CS6\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Premiere Pro CC 2015.lnk . (.Adobe Systems Incorporated - Adobe Premiere Pro CC 2015.2.) C:\Program Files\Adobe\Adobe Premiere Pro CC 2015\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Widget Browser.lnk . (...) C:\Program Files (x86)\Adobe\Adobe Widget Browser\Adobe Widget Browser.exe
O4 - GS\ProgramsCommon [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited®
O4 - GS\ProgramsCommon [Public]: Dell Help Documentation.lnk . (.Dell Inc. - .) C:\Program Files (x86)\Dell Inc\Dell Edoc Viewer\EDocs.exe =>.Dell Inc.
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Express Burn Disc Burning Software.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files (x86)\NCH Software\ExpressBurn\expressburn.exe =>.NCH Software®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Microsoft PowerPoint Viewer .lnk . (...) C:\Windows\Installer\{95140000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\WINDOWS\MiracastView\MiracastView.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: MusicBrainz Picard.lnk . (...) C:\Program Files (x86)\MusicBrainz Picard\picard.exe
O4 - GS\ProgramsCommon [Public]: NCH Suite.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files (x86)\NCH Software\ExpressBurn\expressburn.exe -extsuite =>.NCH Software®
O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (.Microsoft Corporation - Microsoft OneNote.) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (.Microsoft Corporation - Microsoft PowerPoint.) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\WINDOWS\PrintDialog\PrintDialog.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: PrivaZer.lnk . (.Goversoft LLC - PrivaZer.) C:\Program Files (x86)\PrivaZer\PrivaZer.exe =>.Goversoft®
O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (.Microsoft Corporation - Microsoft Publisher.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Live Messenger.lnk . (.Microsoft Corporation - Windows Live Messenger.) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Live Movie Maker.lnk . (.Microsoft Corporation - Windows Live Movie Maker.) C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Live Photo Gallery.lnk . (.Microsoft Corporation - Windows Live Photo Gallery.) C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®

---\\ Lop.com/Domain Hijackers (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.62 209.18.47.61 =>.USA Rochester Time Warner Cable Internet LlC
O17 - HKLM\System\CCS\Services\Tcpip\..\{3a1b2148-2a78-4084-ac04-ccbabaddbe37}: DhcpNameServer = 209.18.47.62 209.18.47.61 =>.USA Rochester Time Warner Cable Internet LlC

---\\ Extra protocols (35) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dssrequest [64Bits] - {5513F07E-936B-4E52-9B00-067394E91CC5} . (.McAfee, Inc. - WebAdvisor.) -- c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll =>.McAfee, Inc.®
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll =>.Microsoft Corporation®
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll (.not file.)
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll =>.Microsoft Corporation®
O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: sacore [64Bits] - {5513F07E-936B-4E52-9B00-067394E91CC5} . (.McAfee, Inc. - WebAdvisor.) -- c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll =>.McAfee, Inc.®
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation®
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-mfe-ipt [64Bits] - {3EF5086B-5478-4598-A054-786C45D75692} . (.McAfee, Inc. - McAfee MSC IE plugin DLL.) -- c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll =>.McAfee, Inc.®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ CLSID Tasks (Register) (1) - 2s
O40 - TASK: {DC84FF58-BB65-48FB-9D9A-CAA06F793553} - (...) -- C:\WINDOWS\system32\osppc.dll (.not file.) [0] (.Orphan.) =>.Superfluous.Orphan

---\\ Software installed (230) - 21s
O42 - Logiciel: Adobe Acrobat DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-1033-FFFF-7760-0C0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Acrobat Reader DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe After Effects CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4817D846-700B-474E-A31B-80892B3E92E3} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0A5B39D2-7ED6-4779-BCC9-37F381139DB3} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Anchor Service CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {90176341-0A8B-4CCC-A78D-F862228A6B95} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Asset Services CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Audition CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {839A3566-AED6-4787-A849-5CBE2B1DC6AE} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Bridge CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {9C9824D9-9000-4373-A6A5-D0E5D4831394} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Bridge Start Meeting - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {08B32819-6EEF-4057-AEDA-5AB681A36A23} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Camera Raw 4.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe CMaps - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A2B242BD-FF8D-4840-9DAA-9170EABEC59C} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Default Language CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B9B35331-B7E4-4E5C-BF4C-7BC87856124D} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Device Central CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8D2BA474-F406-4710-9AE4-D4F22D21F0DD} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Digital Editions 4.5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Digital Editions 4.5 =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {5E21B617-F52E-BB10-92F9-C8AB2C799A8A} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.downloadassistant.AdobeDownloadAssistant =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Dreamweaver CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {EE2A0AA8-0386-11E5-8603-BC82F5DB1A71} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Dreamweaver CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7C10F5C7-F00F-4BD3-A110-C7D240D2DD25} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Dreamweaver CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe_7328fdfcb73660ec8b11d5a3d5c6232 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Dreamweaver CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {C2D69781-F392-4118-A5A7-C7E9C38DBFC2} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Extension Manager CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BE5F3842-8309-4754-92D5-83E02E6077A3} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Fireworks CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {CA7C485C-7A89-11E1-B2C8-CD54B377BC52} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 26 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Professional CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BD5669B5-49FF-4490-B956-E9D7CB9B0ADC} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Help Viewer CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {04AF207D-9A77-465A-8B76-991F6AB66245} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Illustrator CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- ILST_19_2_1 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Illustrator CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4869414E-7AEA-4C8E-BE1C-8D40977FD517} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe InCopy CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {9EF1DB49-6D32-1014-93B7-EB62FA572532} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe InDesign CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {DBFD0312-6E55-1014-8952-E78D43BC0147} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe InDesign CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {CFB770D7-8D43-1014-922B-CC2715FADE3F} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Lightroom - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Media Encoder CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0FAC7130-BEC5-47A5-8813-1D339B8326ED} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Muse CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {9B0619A0-D501-11E5-B16B-FB3EC5F53981} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe PDF Library Files - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {D2559B88-CC9D-4B48-81BB-F492BAA9C48C} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Photoshop CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {793C2BF7-A4FE-4608-91C9-9282C5801C21} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC} =>.Adobe Systems, Inc.
O42 - Logiciel: Adobe Photoshop CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Premiere Pro CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {38C72D42-0672-43B1-9E05-E7631684F9A1} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824225037} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0650BB10-BCF4-400A-85EE-04097E3046C6} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Type Support - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8E6808E2-613D-4FCD-81A2-6C8FA8E03312} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Update Manager CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E69AE897-9E0B-485C-8552-7841F48D42D8} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Version Cue CS3 Client - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {D0DFF92A-492E-4C40-B862-A74A173C25C5} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} =>.Adobe Systems Incorporated.
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser =>.Adobe Systems Incorporated.
O42 - Logiciel: Adobe® Content Viewer - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {92094051-CDDB-D9BA-426C-975526525429} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe® Content Viewer - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.dmp.contentviewer =>.Adobe Systems Incorporated
O42 - Logiciel: Aspell English Dictionary-0.50-2 - (.GNU.) [HKLM][64Bits] -- Aspell English Dictionary_is1 =>.GNU
O42 - Logiciel: AVS Audio Converter version 7 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Audio Converter_is1 =>.Online Media Technologies Ltd.
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0} =>.Your Company Name
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 =>.CDBurnerXP
O42 - Logiciel: Consumer In-Home Service Agreement - (.Dell Inc..) [HKLM][64Bits] -- {F47C37A4-7189-430A-B81D-739FF8A7A554} =>.Dell Inc.
O42 - Logiciel: Crystal Reports for Visual Studio - (.SAP.) [HKLM][64Bits] -- {AC41D924-8C68-4BD5-A7A1-0AE4176C31A6} =>.SAP
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft
O42 - Logiciel: Dell Customer Connect - (.Dell Inc..) [HKLM][64Bits] -- {4FA72FF9-DD64-43A8-8704-6380A11F11D5} =>.Dell Inc.
O42 - Logiciel: Dell Getting Started Guide - (.Dell Inc..) [HKLM][64Bits] -- {7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045} =>.Dell Inc.
O42 - Logiciel: Dell MusicStage - (.Fingertapps.) [HKLM][64Bits] -- {3E8A1ADF-B72C-47FE-85F6-F7A73C487F6C} =>.Fingertapps
O42 - Logiciel: Dell PhotoStage - (.ArcSoft.) [HKLM][64Bits] -- {E4335E82-17B3-460F-9E70-39D9BC269DB3} =>.ArcSoft
O42 - Logiciel: Dell SupportAssist - (.Dell.) [HKLM][64Bits] -- PC-Doctor for Windows =>.Dell Inc.®
O42 - Logiciel: Dell SupportAssistAgent - (.Dell.) [HKLM][64Bits] -- {90881C8E-6C4F-4662-9923-85AFCA058C44} =>.Dell
O42 - Logiciel: Dell Update - (.Dell Inc..) [HKLM][64Bits] -- {F91263FA-BE4D-439D-9C0A-2E7204E0E9E3} =>.Dell Inc.
O42 - Logiciel: Dell Update - SupportAssist Update Plugin - (.Dell Inc..) [HKLM][64Bits] -- {EEA45885-F3E3-4E7D-8435-E9C21D36C141} =>.Dell Inc.
O42 - Logiciel: Digital Camera3.0M - (..) [HKLM][64Bits] -- {1A3ADB5A-2491-4F7A-BD6D-5F8C9B4714B0}
O42 - Logiciel: DirectX 9 Runtime - (.Sonic Solutions.) [HKLM][64Bits] -- {AF9E97C1-7431-426D-A8D5-ABE40995C0B1} =>.Sonic Solutions
O42 - Logiciel: Dotfuscator Software Services - Community Edition - (.PreEmptive Solutions.) [HKLM][64Bits] -- {1AA5BD63-6614-44B2-88A7-605191EDB835} =>.PreEmptive Solutions
O42 - Logiciel: eBay - (.eBay Inc..) [HKLM][64Bits] -- {A8B88634-7F90-402F-B66A-86429755F6A5} =>.eBay Inc.
O42 - Logiciel: Express Burn Disc Burning Software - (.NCH Software.) [HKLM][64Bits] -- ExpressBurn =>.NCH Software®
O42 - Logiciel: GDR 5538 for SQL Server 2008 (KB3045305) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB3045305 =>.Microsoft Corporation®
O42 - Logiciel: GetNZB version 1.401 - (..) [HKLM][64Bits] -- GetNZB_is1
O42 - Logiciel: GNU Aspell 0.50-3 - (.GNU.) [HKLM][64Bits] -- GNU Aspell_is1 =>.GNU
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {A1238426-ECDF-4639-BE2F-8D12A97AE23C} =>.Google, Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: GrabIt 1.7.2 Beta 6 (build 1008) - (.Ilan Shemes.) [HKLM][64Bits] -- GrabIt_is1 =>.Ilan Shemes
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2280741) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2280741 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2280741) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2280741 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2284668) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2284668 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2284668) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2284668 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2295689) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2295689 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2295689) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2295689 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2420513) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2420513 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2420513) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2420513 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2452649) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2452649 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2452649) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2452649 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2455033) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2455033 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2455033) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2455033 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2485545) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2485545 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2485545) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2485545 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982517) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB982517 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982517) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB982517 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982721) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB982721 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982721) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB982721 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB983233) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB983233 =>.Microsoft Corporation
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB983233) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB983233 =>.Microsoft Corporation
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Integrated Performance Primitives RTI 4.0 - (.Intel Corporation.) [HKLM][64Bits] -- {51C91B84-7B46-4FE7-8999-8228CFA75F89} =>.Intel Corporation
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AA31EA7B-7917-4000-949B-38E91F848A25} =>.Microsoft Corporation
O42 - Logiciel: Internet TV for Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D318C86-AF4C-409F-A6AC-7183FF4CF424} =>.Microsoft Corporation
O42 - Logiciel: Java 8 Update 111 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180111F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: LG VZW United Drivers - (.LG Electronics.) [HKLM][64Bits] -- {AB43784D-1EE5-4111-95C8-918B25EFDC4B} =>.LG Electronics
O42 - Logiciel: Malwarebytes Anti-Exploit version 1.9.1.1403 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Exploit_is1 =>.Malwarebytes
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: McAfee AntiVirus Plus - (.McAfee, Inc..) [HKLM][64Bits] -- MSC =>.McAfee, Inc.®
O42 - Logiciel: McAfee Virtual Technician - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Virtual Technician =>.McAfee, Inc.®
O42 - Logiciel: McAfee WebAdvisor - (.McAfee, Inc..) [HKLM][64Bits] -- {35ED3F83-4BDC-4c44-8EC6-6A8301C7413A} =>.McAfee, Inc.®
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} =>.Microsoft Corporation
O42 - Logiciel: Messenger Companion - (.Microsoft Corporation.) [HKLM][64Bits] -- {50816F92-1652-4A7C-B9BC-48F682742C4B} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291. - (.Microsoft Corporation.) [HKLM][64Bits] -- {25E80DAA-FD87-DCE5-202C-CC02F6673002} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint Viewer - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-00AF-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Project MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00B4-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Project Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91150000-003B-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Project Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office15.PRJPROR =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight 3 SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {2012098D-EEE9-4769-8DD3-B038050854D4} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight 4 SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {05855322-BE43-41FE-B583-D3AE0C326D58} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Sync Framework Runtime v1.0 SP1 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8438EC02-B8A9-462D-AC72-1B521349C001} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Sync Framework SDK v1.0 SP1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {0E3DFC64-CC49-4BE2-8C9C-58EF129675DB} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Sync Framework Services v1.0 SP1 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {034106B5-54B7-467F-B477-5B7DBB492624} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Team Foundation Server 2010 Object Model - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {1AB7EDC5-D891-34C5-9FF1-BE6A85ACC44B} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Team Foundation Server 2010 Object Model - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Team Foundation Server 2010 Object Model - ENU =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visio MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0054-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visio Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91150000-0051-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visio Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office15.VISPROR =>.Microsoft Corporation®
O42 - Logiciel: Motorola Mobile Drivers Installation 6.4.0 - (.Motorola Mobility LLC.) [HKLM][64Bits] -- {27986EDD-C9EC-4B52-B92F-06D073F0AA52} =>.Motorola Mobility LLC
O42 - Logiciel: Mozilla Firefox 54.0.1 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 54.0.1 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} =>.Microsoft Corporation
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} =>.Microsoft Corporation
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} =>.Microsoft Corporation
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} =>.Microsoft Corporation
O42 - Logiciel: MusicBrainz Picard - (.MusicBrainz.) [HKLM][64Bits] -- MusicBrainz Picard =>.MusicBrainz
O42 - Logiciel: Nero 2016 Content Pack - (.Nero AG.) [HKLM][64Bits] -- {006F5CFF-ED35-41AF-9B2A-F52B0F545BF4} =>.Nero AG
O42 - Logiciel: Nero Abstract Themes - (.Nero AG.) [HKLM][64Bits] -- {150D88F1-40AF-4678-A39D-BCE2332F34E5} =>.Nero AG
O42 - Logiciel: Nero Cliparts - (.Nero AG.) [HKLM][64Bits] -- {29E2C1C6-D76A-41D3-980F-6E346AA9A6A8} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 1 - (.Nero AG.) [HKLM][64Bits] -- {EEBF1676-AF87-4266-93D8-0C14A34C4217} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 2 - (.Nero AG.) [HKLM][64Bits] -- {FE81E6B5-652B-40E7-B3B2-7171C6F297DA} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 3 - (.Nero AG.) [HKLM][64Bits] -- {CE675FBD-75C3-45F1-B6AF-8D250861D536} =>.Nero AG
O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM][64Bits] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74} =>.Nero AG
O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {29F67D84-3A70-456E-806A-52301B02070B} =>.Nero AG
O42 - Logiciel: Nero Family and Events Themes - (.Nero AG.) [HKLM][64Bits] -- {955BF340-C379-4375-AA2F-F3BCB2A498AB} =>.Nero AG
O42 - Logiciel: Nero Football (Soccer) Themes - (.Nero AG.) [HKLM][64Bits] -- {7BD7A4BF-EA64-4BFE-A9D3-3FDC9B6EFC23} =>.Nero AG
O42 - Logiciel: Nero Holiday and Sports Themes - (.Nero AG.) [HKLM][64Bits] -- {504D84ED-AE75-4F85-A68B-BB3D4CB3E169} =>.Nero AG
O42 - Logiciel: Nero Image Samples - (.Nero AG.) [HKLM][64Bits] -- {C4C6DF25-0E59-46EE-B24B-DF8749D8FF3A} =>.Nero AG
O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM][64Bits] -- {1B6F5E51-575E-4693-BCA2-7543570D076D} =>.Nero AG
O42 - Logiciel: Nero PiP Effects 1 - (.Nero AG.) [HKLM][64Bits] -- {4D25D881-7183-462F-95C8-990CA1944E0B} =>.Nero AG
O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {ACE49D50-19CD-44A6-B192-46F985283B26} =>.Nero AG
O42 - Logiciel: Nero Platinum Effects 12 - (.Nero AG.) [HKLM][64Bits] -- {8B5AD338-7ABC-4ECB-9C2C-687F84AEDDB1} =>.Nero AG
O42 - Logiciel: Nero Retro Film Themes - (.Nero AG.) [HKLM][64Bits] -- {83A4E573-E2C2-46FB-9DA6-6A2BBBF5A588} =>.Nero AG
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A} =>.Nero AG
O42 - Logiciel: Nero Video Samples - (.Nero AG.) [HKLM][64Bits] -- {05C6B128-1B40-4495-9CB9-090B368BFA0A} =>.Nero AG
O42 - Logiciel: Nero Video Transitions 1 - (.Nero AG.) [HKLM][64Bits] -- {22856BC3-F893-4CBF-95F2-E1F63CD2B1AB} =>.Nero AG
O42 - Logiciel: Netflix in Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6} =>.Microsoft Corporation
O42 - Logiciel: NETGEAR WNA3100 wireless USB 2.0 adapter - (.NETGEAR.) [HKLM][64Bits] -- {C2425F91-1F7B-4037-9A05-9F290184798D} =>.Netgear
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- {E452F262-D655-45E3-9BDB-3E6AE19B83C5} =>.Notepad++ Team
O42 - Logiciel: NVIDIA 3D Vision Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA StereoUSB Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA 3D Vision Controller Driver 270.57 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA 3D Vision Driver 342.01 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Control Panel 342.01 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Graphics Driver 342.01 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA HD Audio Driver 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF} =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX System Software 9.10.0514 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo =>.NVIDIA Corporation®
O42 - Logiciel: NVIDIA Update 10.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core =>.NVIDIA Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component 64-bit Registration - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00DD-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} =>.Adobe Systems Incorporated
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A} =>.Your Company Name
O42 - Logiciel: PhotoShowExpress - (.Sonic Solutions.) [HKLM][64Bits] -- {3250260C-7A95-4632-893B-89657EB5545B} =>.Sonic Solutions
O42 - Logiciel: Prerequisite installer - (.Nero AG.) [HKLM][64Bits] -- {5F284483-EE8D-447E-BEBE-2BF13B08C4BF} =>.Nero AG
O42 - Logiciel: PrivaZer - (.Goversoft LLC.) [HKLM][64Bits] -- PrivaZer =>.Goversoft®
O42 - Logiciel: QuarkXPress 6.1 - (.Quark, Inc..) [HKLM][64Bits] -- {FF0B0792-F6E7-4627-B820-EA50617E223B} =>.Quark, Inc.
O42 - Logiciel: RapidShare Manager 2 - (.RapidShare AG.) [HKLM][64Bits] -- 6103-4188-8184-5707
O42 - Logiciel: Razer Synapse - (.Razer Inc..) [HKLM][64Bits] -- {0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6} =>.Razer Inc.
O42 - Logiciel: RBVirtualFolder64Inst - (.Roxio, Inc..) [HKLM][64Bits] -- {9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D} =>.Roxio, Inc.
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek USB Audio - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {0A46A65D-89AC-464C-8026-3CD44960BD04} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva =>.Piriform Ltd®
O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM][64Bits] -- {A121EEDE-C68F-461D-91AA-D48BA226AF1C} =>.Roxio
O42 - Logiciel: Roxio BackOnTrack - (.Roxio.) [HKLM][64Bits] -- {5A06423A-210C-49FB-950E-CB0EB8C5CEC7} =>.Roxio
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM][64Bits] -- {6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC} =>.Sonic Solutions®
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM][64Bits] -- {EF56258E-0326-48C5-A86C-3BAC26FC15DF} =>.Roxio
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM][64Bits] -- {F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878} =>.Roxio
O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM][64Bits] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} =>.Roxio
O42 - Logiciel: Roxio File Backup - (.Roxio.) [HKLM][64Bits] -- {60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB} =>.Roxio
O42 - Logiciel: Secure Download Manager - (.Kivuto Solutions Inc..) [HKLM][64Bits] -- {E040B65B-8683-4228-8C33-D44A141E40EA} =>.Kivuto Solutions Inc.
O42 - Logiciel: Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2546951 =>.Microsoft Corporation®
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054} =>.McAfee
O42 - Logiciel: Shockwave - (..) [HKLM][64Bits] -- Shockwave
O42 - Logiciel: Skype™ 7.30 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM][64Bits] -- {9A00EC4E-27E1-42C4-98DD-662F32AC8870} =>.Sonic Solutions
O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF} =>.Microsoft Corporation
O42 - Logiciel: The Print Shop 12 - (..) [HKLM][64Bits] -- {3DD1FE66-5536-41E3-B786-70068887B3F4}
O42 - Logiciel: THX TruStudio PC - (.Creative Technology Limited.) [HKLM][64Bits] -- {010A785B-F920-4350-821B-6309909C20BB} =>.Creative Technology Limited
O42 - Logiciel: TurboTax 2015 - (.Intuit, Inc.) [HKLM][64Bits] -- TurboTax 2015 {4F199D1DD52B5CEA70DBE45E878BC8CD}
O42 - Logiciel: TurboTax 2015 WinPerFedFormset - (.Intuit Inc..) [HKLM][64Bits] -- {08D0C864-211B-4095-8C3E-2D2CAB64CDA9} =>.Intuit Inc.
O42 - Logiciel: TurboTax 2015 WinPerFuegoContent - (.Intuit Inc..) [HKLM][64Bits] -- {B48A745E-B79A-417F-8775-421EF44C92D1} =>.Intuit Inc.
O42 - Logiciel: TurboTax 2015 WinPerReleaseEngine - (.Intuit Inc..) [HKLM][64Bits] -- {B0119415-6743-4707-AB4D-1928F5E81FDD} =>.Intuit Inc.
O42 - Logiciel: TurboTax 2015 WinPerTaxSupport - (.Intuit Inc..) [HKLM][64Bits] -- {BDC1955D-38D6-4747-8B0A-B2B7CFEA1E7D} =>.Intuit Inc.
O42 - Logiciel: TurboTax 2015 wnyiper - (.Intuit Inc..) [HKLM][64Bits] -- {D7BC4B40-9339-48CE-8F01-4D6A734FAE10} =>.Intuit Inc.
O42 - Logiciel: TurboTax 2015 wrapper - (.Intuit Inc..) [HKLM][64Bits] -- {6FF818ED-865F-4C55-A073-DD6C9CE7B6A8} =>.Intuit Inc.
O42 - Logiciel: Update for Skype for Business 2015 (KB3213574) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-002A-0000-1000-0000000FF1CE}_Office15.PRJPROR_{2178D653-A054-4A65-9726-A90664E92D9F} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB3213574) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-002A-0000-1000-0000000FF1CE}_Office15.VISPROR_{2178D653-A054-4A65-9726-A90664E92D9F} =>.Microsoft Corporation®
O42 - Logiciel: UseNeXT by Tangysoft - (.Tangysoft Ltd..) [HKLM][64Bits] -- UseNeXT by Tangysoft_is1 =>.TangySoft Ltd.®
O42 - Logiciel: Verizon Software Upgrade Assistant - (.Motorola Mobility.) [HKLM][64Bits] -- {F933562A-45B5-4730-8A5E-0D282AA9866B} =>.Motorola Mobility
O42 - Logiciel: Verizon Wireless Software Upgrade Assistant for Motorola - (.Motorola Mobility.) [HKLM][64Bits] -- {9BEDD987-AC68-44D2-8803-EC0650F6C43F} =>.Motorola Mobility
O42 - Logiciel: Visual Studio 2010 Prerequisites - English - (.Microsoft Corporation.) [HKLM][64Bits] -- {662014D2-0450-37ED-ABAE-157C88127BEB} =>.Microsoft Corporation
O42 - Logiciel: Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {112C23F2-C036-4D40-BED4-0CB47BF5555C} =>.Microsoft Corporation
O42 - Logiciel: WCF RIA Services V1.0 SP1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9E6001A-5DC3-4620-AF7A-80B6CD48645D} =>.Microsoft Corporation
O42 - Logiciel: Web Deployment Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {0F37D969-1260-419E-B308-EF7D29ABDE20} =>.Microsoft Corporation
O42 - Logiciel: Windows 10 Update and Privacy Settings - (.Microsoft Corporation.) [HKLM][64Bits] -- {4DFCD818-036A-4229-A67D-CF17DC461D92} =>.Microsoft Corporation
O42 - Logiciel: Windows 7 USB/DVD Download Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {CCF298AF-9CE1-4B26-B251-486E98A34789} =>.Microsoft Corporation
O42 - Logiciel: WinRAR 5.40 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: WinSCP 5.1.4 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1 =>.Martin Prikryl®

---\\ HKCU & HKLM Software Keys (148) - 21s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\Adobe Systems =>.Adobe Systems
HKLM\SOFTWARE\Wow6432Node\Adware Removal Tool by TSA =>.TSA Softwares
HKLM\SOFTWARE\Wow6432Node\AdwCleaner =>.Malwarebytes
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies =>.AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Aimersoft =>.Aimersoft Software
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. =>.Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Aspell
HKLM\SOFTWARE\Wow6432Node\Aspell-en
HKLM\SOFTWARE\Wow6432Node\AVS4YOU =>.AVS4YOU
HKLM\SOFTWARE\Wow6432Node\Broderbund Software
HKLM\SOFTWARE\Wow6432Node\Canneverbe Limited =>.Canneverbe Limited
HKLM\SOFTWARE\Wow6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\Wow6432Node\Companion Software
HKLM\SOFTWARE\Wow6432Node\Creative Tech =>.Creative Tech
HKLM\SOFTWARE\Wow6432Node\Cyberlink =>.CyberLink Corporation
HKLM\SOFTWARE\Wow6432Node\Debug =>.Legitimate
HKLM\SOFTWARE\Wow6432Node\Dell =>.Dell
HKLM\SOFTWARE\Wow6432Node\DellShared =>.Dell Inc.
HKLM\SOFTWARE\Wow6432Node\Digital Camera =>.Digital Camera
HKLM\SOFTWARE\Wow6432Node\ej-technologies =>.ej-technologies
HKLM\SOFTWARE\Wow6432Node\ESET =>.ESET
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\illiminable =>.illiminable
HKLM\SOFTWARE\Wow6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Intel Corporation =>.Intel Corporation
HKLM\SOFTWARE\Wow6432Node\Intuit =>.Intuit
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\LG Electronics =>.LG Electronics
HKLM\SOFTWARE\Wow6432Node\LogMeIn Rescue =>.LogMeIn Entreprise
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision =>.Macrovision
HKLM\SOFTWARE\Wow6432Node\Malwarebytes Anti-Exploit =>.Malwarebytes
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Martin Prikryl =>.Martin Prikryl
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON =>.Maxsoft-Ocron, Inc
HKLM\SOFTWARE\Wow6432Node\McAfee =>.McAfee Inc.
HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee Inc.
HKLM\SOFTWARE\Wow6432Node\MicroVision =>.MicroVision Developement
HKLM\SOFTWARE\Wow6432Node\MicroWorld =>.MicroWorld Technologies Inc.
HKLM\SOFTWARE\Wow6432Node\MimarSinan =>.Mimar Sinan
HKLM\SOFTWARE\Wow6432Node\Motorola =>.Motorola
HKLM\SOFTWARE\Wow6432Node\Motorola Mobility =>.Motorola Mobility
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MusicBrainz =>.MusicBrainz
HKLM\SOFTWARE\Wow6432Node\NCH Software =>.NCH Software
HKLM\SOFTWARE\Wow6432Node\Nero =>.Ahead Corporation
HKLM\SOFTWARE\Wow6432Node\NETGEAR =>.Netgear Inc
HKLM\SOFTWARE\Wow6432Node\Network Associates =>.Network Associates
HKLM\SOFTWARE\Wow6432Node\NewSoft =>.NewSoft
HKLM\SOFTWARE\Wow6432Node\Notepad++ =>.Don Ho
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation =>.nVidia Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\OldTimer Tools =>.OldTimer Tools
HKLM\SOFTWARE\Wow6432Node\Parsons Technology
HKLM\SOFTWARE\Wow6432Node\PC-Doctor =>.PC-Doctor Inc.
HKLM\SOFTWARE\Wow6432Node\Quark =>.Quark
HKLM\SOFTWARE\Wow6432Node\Razer =>.Razer
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Roxio =>.Roxio
HKLM\SOFTWARE\Wow6432Node\SERCOMM =>.Sercomm
HKLM\SOFTWARE\Wow6432Node\SiteAdvisor =>.McAfee Inc.
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\Software =>.Unknown
HKLM\SOFTWARE\Wow6432Node\Sonic =>.Sonic
HKLM\SOFTWARE\Wow6432Node\Symantec =>.Symantec
HKLM\SOFTWARE\Wow6432Node\TLC
HKLM\SOFTWARE\Wow6432Node\Verizon Wireless =>.Verizon Wireless
HKLM\SOFTWARE\Wow6432Node\Windows =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\WSWNA3100
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo! Inc.
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\AVS4YOU =>.AVS4YOU
HKCU\SOFTWARE\Broderbund Software
HKCU\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited
HKCU\SOFTWARE\Caphyon =>.Caphyon
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Companion Software
HKCU\SOFTWARE\Creative Tech =>.Creative Tech
HKCU\SOFTWARE\Dell =>.Dell
HKCU\SOFTWARE\DivXNetworks =>.DivXNetworks
HKCU\SOFTWARE\e-academy Inc. =>.e-academy Inc.
HKCU\SOFTWARE\EffectMgr =>.Legitimate
HKCU\SOFTWARE\ej-technologies =>.ej-technologies
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Eyeball
HKCU\SOFTWARE\Freeware =>.VirtualDub.org
HKCU\SOFTWARE\Geek Uninstaller =>.Geek Uninstaller
HKCU\SOFTWARE\GetNZB
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\InstallShield =>.InstallShield
HKCU\SOFTWARE\Intuit =>.Intuit
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Kivuto Solutions Inc. =>.Kivuto Solutions Inc.
HKCU\SOFTWARE\LG Electronics Inc =>.LG Electronics Inc
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD
HKCU\SOFTWARE\LowRegistry =>.Unknown
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Macrovision =>.Macrovision
HKCU\SOFTWARE\Martin Prikryl =>.Martin Prikryl
HKCU\SOFTWARE\McAfee =>.McAfee Inc.
HKCU\SOFTWARE\MicroWorld =>.MicroWorld Technologies Inc.
HKCU\SOFTWARE\Mindscape =>.Mindscape
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MusicBrainz =>.MusicBrainz
HKCU\SOFTWARE\NCH Software =>.NCH Software
HKCU\SOFTWARE\NCH Swift Sound =>.NCH Swift Sound
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Newsoft Folder Selector
HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\Parsons Technology
HKCU\SOFTWARE\PC-Doctor =>.PC-Doctor Inc.
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\PrivaZer =>.Goversoft LLC
HKCU\SOFTWARE\Quark =>.Quark
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Roxio =>.Roxio
HKCU\SOFTWARE\Shemes
HKCU\SOFTWARE\SimonTatham =>.Simon Tatham
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\Sonic =>.Sonic
HKCU\SOFTWARE\The Learning Company
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Windows Live Writer =>.Microsoft Corporation
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Yahoo =>.Yahoo! Inc.

---\\ Contents of the Common Files folders (415) - 122s
O43 - CFD: 06/05/2016 - [] AD -- C:\Program Files\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] AD -- C:\Program Files\Dell =>.Dell
O43 - CFD: 17/02/2011 - [] D -- C:\Program Files\Dell Inc =>.Dell Inc.
O43 - CFD: 17/02/2011 - [] D -- C:\Program Files\dell stage =>.Dell Inc.
O43 - CFD: 03/07/2017 - [] D -- C:\Program Files\Dell Support Center =>.Dell Inc.
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files\IIS =>.Microsoft Corporation
O43 - CFD: 13/04/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] AD -- C:\Program Files\McAfee =>.McAfee
O43 - CFD: 01/05/2016 - [] D -- C:\Program Files\McAfee.com =>.McAfee Inc.
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 29/01/2014 - [] D -- C:\Program Files\Microsoft Help Viewer =>.Microsoft Corporation
O43 - CFD: 01/02/2016 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 24/01/2016 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] AD -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 03/10/2015 - [] AD -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 29/01/2014 - [] AD -- C:\Program Files\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 18/02/2014 - [] D -- C:\Program Files\Microsoft Sync Framework =>.Microsoft Corporation
O43 - CFD: 29/01/2014 - [] D -- C:\Program Files\Microsoft Synchronization Services =>.Microsoft Corporation
O43 - CFD: 18/02/2014 - [] D -- C:\Program Files\Microsoft Visual Studio 10.0 =>.Pinnacle Systems, Inc.
O43 - CFD: 29/01/2014 - [] D -- C:\Program Files\Microsoft Visual Studio 9.0 =>.Pinnacle Systems, Inc.
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files\Motorola Mobility LLC =>.Motorola Mobility LLC
O43 - CFD: 17/09/2016 - [] AD -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 17/12/2016 - [] D -- C:\Program Files\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 12/09/2015 - [] AD -- C:\Program Files\Recuva =>.Piriform
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 21/02/2016 - [] AD -- C:\Program Files\Roxio =>.Roxio
O43 - CFD: 30/07/2015 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [] AD -- C:\Program Files\UNP =>.Microsoft Corporation
O43 - CFD: 19/05/2017 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 13/10/2012 - [] D -- C:\Program Files\Windows Live =>.Microsoft Corporation
O43 - CFD: 13/04/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 30/10/2016 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 19/05/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 23/12/2016 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 22/09/2016 - [] AD -- C:\Program Files (x86)\Adobe =>.Adobe
O43 - CFD: 14/02/2013 - [] AD -- C:\Program Files (x86)\Adobe Download Assistant =>.Adobe Inc.
O43 - CFD: 21/02/2016 - [] D -- C:\Program Files (x86)\Adware Removal Tool by TSA =>.TSA Softwares
O43 - CFD: 17/03/2012 - [] D -- C:\Program Files (x86)\Aimersoft =>.Aimersoft Software
O43 - CFD: 09/02/2013 - [] D -- C:\Program Files (x86)\Aspell =>.Aspell Dictionaries
O43 - CFD: 15/02/2016 - [] D -- C:\Program Files (x86)\AVS4YOU =>.AVS4YOU
O43 - CFD: 09/02/2013 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 25/02/2011 - [] D -- C:\Program Files (x86)\Broderbund =>.Broderbund
O43 - CFD: 03/03/2017 - [] AD -- C:\Program Files (x86)\CDBurnerXP =>.Canneverbe Limited®
O43 - CFD: 10/03/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 17/02/2011 - [] D -- C:\Program Files (x86)\Creative =>.Creative
O43 - CFD: 14/04/2015 - [] D -- C:\Program Files (x86)\Dell =>.Dell
O43 - CFD: 16/02/2017 - [] AD -- C:\Program Files (x86)\Dell Customer Connect =>.Dell Inc.
O43 - CFD: 06/05/2013 - [] D -- C:\Program Files (x86)\Dell Stage =>.Dell Inc.
O43 - CFD: 02/03/2011 - [] D -- C:\Program Files (x86)\Dell Touch Software Suite =>.Dell Inc.
O43 - CFD: 21/07/2017 - [] AD -- C:\Program Files (x86)\Dell Update =>.Dell Inc.
O43 - CFD: 15/02/2016 - [] D -- C:\Program Files (x86)\Driver Support =>PUP.Optional.DriverSupport
O43 - CFD: 09/02/2013 - [] AD -- C:\Program Files (x86)\eBay =>.eBay
O43 - CFD: 15/05/2016 - [] AD -- C:\Program Files (x86)\GetNZB
O43 - CFD: 27/08/2014 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 09/02/2013 - [] AD -- C:\Program Files (x86)\GrabIt
O43 - CFD: 18/02/2014 - [] AD -- C:\Program Files (x86)\HTML Help Workshop =>.Microsoft Corporation®
O43 - CFD: 18/02/2014 - [] D -- C:\Program Files (x86)\IIS =>.Microsoft Corporation
O43 - CFD: 24/12/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 21/02/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 13/04/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 14/01/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 02/06/2015 - [] D -- C:\Program Files (x86)\LG Electronics =>.LG Electronics
O43 - CFD: 01/05/2016 - [] D -- C:\Program Files (x86)\LogMeIn Rescue RC - 29fe62a4-8e94-4e6b-8edc-3dac8b4aaf7d =>.LogMeIn Entreprise
O43 - CFD: 17/05/2017 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Exploit =>.Malwarebytes
O43 - CFD: 27/03/2016 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes
O43 - CFD: 23/07/2017 - [] D -- C:\Program Files (x86)\McAfee =>.McAfee
O43 - CFD: 13/10/2012 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 18/02/2014 - [] D -- C:\Program Files (x86)\Microsoft ASP.NET =>.Microsoft Corporation
O43 - CFD: 18/02/2014 - [] AD -- C:\Program Files (x86)\Microsoft F# =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 22/06/2014 - [] D -- C:\Program Files (x86)\Microsoft SDKs =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] AD -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 03/10/2015 - [] AD -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 29/01/2014 - [] AD -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 29/01/2014 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services =>.Microsoft Corporation
O43 - CFD: 22/06/2014 - [] AD -- C:\Program Files (x86)\Microsoft Visual Studio 10.0 =>.Pinnacle Systems, Inc.
O43 - CFD: 18/02/2014 - [] AD -- C:\Program Files (x86)\Microsoft Visual Studio 9.0 =>.Pinnacle Systems, Inc.
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Motorola =>.Motorola
O43 - CFD: 16/01/2016 - [] AD -- C:\Program Files (x86)\Motorola Mobility =>.Motorola Mobility
O43 - CFD: 23/07/2017 - [] AD -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 23/07/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 17/09/2016 - [] AD -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 29/08/2012 - [] D -- C:\Program Files (x86)\MSECache =>.Microsoft Corporation
O43 - CFD: 15/08/2015 - [] AD -- C:\Program Files (x86)\MSXML 4.0 =>.Microsoft Corporation
O43 - CFD: 12/09/2015 - [] D -- C:\Program Files (x86)\MusicBrainz Picard =>.MusicBrainz Team
O43 - CFD: 06/05/2016 - [] D -- C:\Program Files (x86)\My Company Name =>.My Company Name
O43 - CFD: 03/03/2017 - [] D -- C:\Program Files (x86)\NCH Software =>.NCH Software
O43 - CFD: 19/03/2016 - [] AD -- C:\Program Files (x86)\Nero =>.Ahead Corporation
O43 - CFD: 29/08/2016 - [] D -- C:\Program Files (x86)\NETGEAR =>.Netgear Inc
O43 - CFD: 09/02/2013 - [] AD -- C:\Program Files (x86)\Notepad++ =>.Don Ho
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 09/05/2015 - [] AD -- C:\Program Files (x86)\PrivaZer =>.Goversoft LLC
O43 - CFD: 17/06/2011 - [] D -- C:\Program Files (x86)\Quark =>.Quark
O43 - CFD: 09/02/2013 - [] AD -- C:\Program Files (x86)\RapidShareManager
O43 - CFD: 03/10/2015 - [] AD -- C:\Program Files (x86)\Razer =>.Razer Inc.®
O43 - CFD: 26/04/2016 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 21/02/2016 - [] AD -- C:\Program Files (x86)\Roxio =>.Roxio
O43 - CFD: 23/12/2016 - [] RD -- C:\Program Files (x86)\Skype =>.Skype
O43 - CFD: 09/02/2013 - [] D -- C:\Program Files (x86)\stinger
O43 - CFD: 24/12/2016 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 10/03/2017 - [] D -- C:\Program Files (x86)\TurboTax {4F199D1DD52B5CEA70DBE45E878BC8CD}
O43 - CFD: 17/09/2016 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 21/02/2016 - [] AD -- C:\Program Files (x86)\UseNeXT =>.TangySoft Ltd.®
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Veloxum =>PUP.Optional.DriverSupport
O43 - CFD: 09/02/2013 - [] D -- C:\Program Files (x86)\Web Publish =>.Unknown
O43 - CFD: 19/05/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 13/10/2012 - [] AD -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation
O43 - CFD: 13/04/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 30/10/2016 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 19/05/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 14/05/2013 - [] AD -- C:\Program Files (x86)\WinSCP =>.Martin Prikryl®
O43 - CFD: 13/04/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 19/05/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 12/11/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe =>.Adobe
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aspell =>.Aspell Dictionaries
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU =>.AVS4YOU
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative =>.Creative
O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell =>.Dell
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Stage =>.Dell Inc.
O43 - CFD: 03/10/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Decrypter =>.Lightning UK
O43 - CFD: 09/02/2013 - [0] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetNZB
O43 - CFD: 07/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive =>.Google Inc.
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GrabIt
O43 - CFD: 17/09/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 14/01/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 16/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 17/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit =>.Malwarebytes
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware =>.Malwarebytes
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee =>.McAfee
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 3 SDK =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 4 SDK =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Sync Framework =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 =>.Pinnacle Systems, Inc.
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA3100 Genie =>.Netgear Inc
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ =>.Don Ho
O43 - CFD: 23/12/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RapidShare Manager
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer =>.Razer
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Creator Starter =>.Roxio
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility =>.Sony Corporation
O43 - CFD: 17/09/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Print Shop
O43 - CFD: 10/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TurboTax 2015
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UseNeXT
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Verizon Wireless Software Upgrade Assistant - Motorola
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WCF RIA Services V1.0 SP1
O43 - CFD: 17/09/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live =>.Microsoft Corporation
O43 - CFD: 23/12/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP
O43 - CFD: 13/09/2015 - [0] RSHD -- C:\ProgramData\483520
O43 - CFD: 23/07/2017 - [] SHD -- C:\ProgramData\483620
O43 - CFD: 23/07/2017 - [] SHD -- C:\ProgramData\575007
O43 - CFD: 06/05/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 11/05/2013 - [0] D -- C:\ProgramData\ALM =>.ALM
O43 - CFD: 17/09/2016 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 05/09/2015 - [] D -- C:\ProgramData\AVS4YOU =>.AVS4YOU
O43 - CFD: 06/05/2016 - [] D -- C:\ProgramData\boost_interprocess =>.boost.org
O43 - CFD: 07/09/2015 - [] D -- C:\ProgramData\Canneverbe Limited =>.Canneverbe Limited
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 17/02/2011 - [] D -- C:\ProgramData\Creative =>.Creative
O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\Dell =>.Dell
O43 - CFD: 17/09/2016 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 09/05/2015 - [0] D -- C:\ProgramData\DVD Shrink =>.DVD Shrink
O43 - CFD: 17/09/2016 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 10/02/2013 - [] D -- C:\ProgramData\FLEXnet =>.Flexera Software
O43 - CFD: 01/05/2016 - [] D -- C:\ProgramData\Intel Security =>.Intel Corporation
O43 - CFD: 10/03/2017 - [] D -- C:\ProgramData\Intuit =>.Intuit
O43 - CFD: 08/05/2013 - [] D -- C:\ProgramData\LGMOBILEAX
O43 - CFD: 10/04/2012 - [] D -- C:\ProgramData\Macromedia =>.Macromedia
O43 - CFD: 01/09/1999 - [] D -- C:\ProgramData\Macrovision =>.Macrovision
O43 - CFD: 15/04/2015 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Malwarebytes Anti-Exploit =>.Malwarebytes
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 17/09/2016 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 25/03/2014 - [] D -- C:\ProgramData\Microsoft Visual Studio =>.Microsoft Corporation
O43 - CFD: 09/05/2015 - [] D -- C:\ProgramData\MicroWorld =>.MicroWorld Technologies Inc.
O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Motorola =>.Motorola
O43 - CFD: 02/05/2012 - [] D -- C:\ProgramData\Mozilla =>.Mozilla Corporation
O43 - CFD: 03/03/2017 - [] D -- C:\ProgramData\NCH Software =>.NCH Software
O43 - CFD: 11/03/2011 - [] D -- C:\ProgramData\NCH Swift Sound =>.NCH Swift Sound
O43 - CFD: 19/03/2016 - [] D -- C:\ProgramData\Nero =>.Ahead Corporation
O43 - CFD: 17/03/2011 - [] D -- C:\ProgramData\Newsoft =>.NewSoft
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\NVIDIA =>.nVidia Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 14/01/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 22/09/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\PC-Doctor for Windows =>.PC-Doctor Inc.
O43 - CFD: 24/12/2016 - [] D -- C:\ProgramData\PC-Doctor, Inc =>.PC-Doctor, Inc
O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\PCDr =>.PC-Doctor Inc.
O43 - CFD: 22/06/2014 - [] D -- C:\ProgramData\PreEmptive Solutions =>.PreEmptive Solutions
O43 - CFD: 09/05/2015 - [] D -- C:\ProgramData\privazer =>.Goversoft LLC
O43 - CFD: 17/06/2011 - [] D -- C:\ProgramData\Quark =>.Quark
O43 - CFD: 02/10/2015 - [] D -- C:\ProgramData\Razer =>.Razer
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 23/07/2017 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software
O43 - CFD: 15/02/2016 - [] D -- C:\ProgramData\Roxio =>.Roxio
O43 - CFD: 23/12/2016 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 19/03/2016 - [] D -- C:\ProgramData\Sonic =>.Sonic
O43 - CFD: 17/09/2016 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\SupportAssist
O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\SupportAssistAgent =>.Games Software
O43 - CFD: 17/02/2011 - [] D -- C:\ProgramData\Temp =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 21/03/2016 - [] D -- C:\ProgramData\Uninstall =>.Unknown
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 27/03/2011 - [] D -- C:\ProgramData\VirtualizedApplications =>.Microsoft Corporation
O43 - CFD: 22/06/2014 - [] D -- C:\ProgramData\VS
O43 - CFD: 06/03/2011 - [] D -- C:\ProgramData\Yahoo! =>.Yahoo!
O43 - CFD: 26/05/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 05/10/2013 - [] AD -- C:\Program Files (x86)\Common Files\Adobe AIR =>.Adobe Inc.
O43 - CFD: 01/09/1999 - [] D -- C:\Program Files (x86)\Common Files\Adobe Systems Shared =>.Adobe Inc.
O43 - CFD: 05/09/2015 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia =>.AVSMedia
O43 - CFD: 25/02/2011 - [] D -- C:\Program Files (x86)\Common Files\Broderbund =>.Broderbund
O43 - CFD: 23/07/2017 - [] AD -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 09/02/2013 - [] D -- C:\Program Files (x86)\Common Files\DSC303
O43 - CFD: 25/04/2011 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 10/03/2017 - [] AD -- C:\Program Files (x86)\Common Files\Intuit =>.Intuit
O43 - CFD: 14/01/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 17/02/2011 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared =>.Rovi Corporation
O43 - CFD: 14/01/2017 - [] D -- C:\Program Files (x86)\Common Files\mcafee =>.McAfee
O43 - CFD: 22/06/2014 - [] AD -- C:\Program Files (x86)\Common Files\Merge Modules =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 09/05/2015 - [0] D -- C:\Program Files (x86)\Common Files\MicroWorld =>.MicroWorld Technologies Inc.
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\Common Files\MSSoap =>.Microsoft Corporation
O43 - CFD: 06/05/2016 - [] AD -- C:\Program Files (x86)\Common Files\PX Storage Engine =>.Sonic Solutions
O43 - CFD: 21/02/2016 - [] AD -- C:\Program Files (x86)\Common Files\Roxio Shared =>.Roxio
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 23/12/2016 - [] AD -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 21/02/2016 - [] AD -- C:\Program Files (x86)\Common Files\Sonic Shared =>.Sonic
O43 - CFD: 17/09/2016 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 21/02/2016 - [] AD -- C:\Program Files (x86)\Common Files\SureThing Shared =>.MicroVision Developement
O43 - CFD: 17/03/2011 - [0] D -- C:\Program Files (x86)\Common Files\SWF Studio =>.SWF Studio
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 17/02/2011 - [] D -- C:\Program Files (x86)\Common Files\Windows Live =>.Microsoft Corporation
O43 - CFD: 04/02/2017 - [] D -- C:\Users\Steve\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 04/05/2014 - [] D -- C:\Users\Steve\AppData\Roaming\AdobeMuse
O43 - CFD: 09/02/2013 - [0] D -- C:\Users\Steve\AppData\Roaming\Ahymx
O43 - CFD: 05/09/2015 - [] D -- C:\Users\Steve\AppData\Roaming\AVS4YOU =>.AVS4YOU
O43 - CFD: 07/09/2015 - [] D -- C:\Users\Steve\AppData\Roaming\Canneverbe Limited =>.Canneverbe Limited
O43 - CFD: 26/10/2013 - [] D -- C:\Users\Steve\AppData\Roaming\chc =>.CHC
O43 - CFD: 12/05/2013 - [] D -- C:\Users\Steve\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 06/05/2016 - [0] D -- C:\Users\Steve\AppData\Roaming\com.adobe.AdobeMuseCC.2015.1 =>.Adobe Inc.
O43 - CFD: 25/09/2013 - [] D -- C:\Users\Steve\AppData\Roaming\com.adobe.dmp.contentviewer =>.Adobe Inc.
O43 - CFD: 14/02/2013 - [] D -- C:\Users\Steve\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant =>.Adobe Inc.
O43 - CFD: 04/05/2013 - [] D -- C:\Users\Steve\AppData\Roaming\com.adobe.formscentral.FormsCentralForAcrobat =>.Adobe Inc.
O43 - CFD: 23/02/2011 - [] D -- C:\Users\Steve\AppData\Roaming\Dell =>.Dell
O43 - CFD: 23/02/2011 - [] D -- C:\Users\Steve\AppData\Roaming\Dell Touch Zone =>.Dell Inc.
O43 - CFD: 15/05/2015 - [0] D -- C:\Users\Steve\AppData\Roaming\Dev-Cpp =>.Dev-Cpp
O43 - CFD: 04/12/2012 - [] D -- C:\Users\Steve\AppData\Roaming\e-academy Inc =>.e-academy Inc
O43 - CFD: 17/03/2011 - [] D -- C:\Users\Steve\AppData\Roaming\EyeballChatAvatars
O43 - CFD: 16/10/2012 - [] D -- C:\Users\Steve\AppData\Roaming\FileZilla =>.FileZilla
O43 - CFD: 23/07/2017 - [] D -- C:\Users\Steve\AppData\Roaming\Geek Uninstaller =>.Geek Uninstaller
O43 - CFD: 21/07/2017 - [] D -- C:\Users\Steve\AppData\Roaming\Google =>.Google
O43 - CFD: 12/01/2013 - [] D -- C:\Users\Steve\AppData\Roaming\GrabIt
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Steve\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 23/04/2011 - [] D -- C:\Users\Steve\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 23/02/2011 - [] D -- C:\Users\Steve\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 10/03/2017 - [] D -- C:\Users\Steve\AppData\Roaming\Intuit =>.Intuit
O43 - CFD: 10/04/2012 - [] D -- C:\Users\Steve\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 23/02/2011 - [] D -- C:\Users\Steve\AppData\Roaming\Macrovision =>.Macrovision
O43 - CFD: 25/08/2012 - [] D -- C:\Users\Steve\AppData\Roaming\McAfee =>.McAfee
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Steve\AppData\Roaming\Media Center Programs =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] SD -- C:\Users\Steve\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/02/2014 - [] D -- C:\Users\Steve\AppData\Roaming\Microsoft Corporation =>.Microsoft Corporation
O43 - CFD: 15/08/2015 - [] D -- C:\Users\Steve\AppData\Roaming\Motorola =>.Motorola
O43 - CFD: 15/08/2015 - [] D -- C:\Users\Steve\AppData\Roaming\Motorola Mobility =>.Motorola Mobility
O43 - CFD: 23/02/2011 - [] D -- C:\Users\Steve\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 12/09/2015 - [] D -- C:\Users\Steve\AppData\Roaming\MusicBrainz =>.MusicBrainz
O43 - CFD: 03/03/2017 - [] D -- C:\Users\Steve\AppData\Roaming\NCH Software =>.NCH Software
O43 - CFD: 11/03/2011 - [] D -- C:\Users\Steve\AppData\Roaming\NCH Swift Sound =>.NCH Swift Sound
O43 - CFD: 17/03/2012 - [] D -- C:\Users\Steve\AppData\Roaming\Nero =>.Ahead Corporation
O43 - CFD: 11/10/2012 - [] AD -- C:\Users\Steve\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 15/05/2016 - [] D -- C:\Users\Steve\AppData\Roaming\NVIDIA =>.nVidia Corporation
O43 - CFD: 28/04/2017 - [] D -- C:\Users\Steve\AppData\Roaming\PCDr =>.PC-Doctor Inc.
O43 - CFD: 14/02/2013 - [] D -- C:\Users\Steve\AppData\Roaming\PDAppFlex
O43 - CFD: 24/04/2012 - [] D -- C:\Users\Steve\AppData\Roaming\Quark =>.Quark
O43 - CFD: 11/03/2011 - [0] D -- C:\Users\Steve\AppData\Roaming\Recordpad
O43 - CFD: 19/03/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Roxio =>.Roxio
O43 - CFD: 15/02/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Roxio Log Files =>.Roxio
O43 - CFD: 23/12/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Skype =>.Skype
O43 - CFD: 01/02/2016 - [] D -- C:\Users\Steve\AppData\Roaming\SoftGrid Client =>.Microsoft Corporation
O43 - CFD: 15/09/2013 - [] D -- C:\Users\Steve\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 15/12/2015 - [] D -- C:\Users\Steve\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 25/08/2012 - [] D -- C:\Users\Steve\AppData\Roaming\TechCheck
O43 - CFD: 09/02/2013 - [] D -- C:\Users\Steve\AppData\Roaming\tor =>.Tor
O43 - CFD: 27/03/2011 - [0] D -- C:\Users\Steve\AppData\Roaming\TP =>.TP
O43 - CFD: 23/05/2017 - [] D -- C:\Users\Steve\AppData\Roaming\UseNeXT
O43 - CFD: 27/02/2011 - [] D -- C:\Users\Steve\AppData\Roaming\Windows Live Writer =>.Microsoft Corporation
O43 - CFD: 25/02/2011 - [] D -- C:\Users\Steve\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 07/03/2011 - [] D -- C:\Users\Steve\AppData\Roaming\Yahoo! =>.Yahoo!
O43 - CFD: 23/07/2017 - [] D -- C:\Users\Steve\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 21/02/2016 - [0] D -- C:\Users\Steve\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [] D -- C:\Users\Steve\AppData\Local\Adobe =>.Adobe
O43 - CFD: 24/01/2016 - [] D -- C:\Users\Steve\AppData\Local\Adobe_Systems_Incorporate =>.Adobe Inc.
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Steve\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Steve\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 02/06/2016 - [] D -- C:\Users\Steve\AppData\Local\CEF =>.CEF
O43 - CFD: 14/10/2013 - [] D -- C:\Users\Steve\AppData\Local\Citrix =>.Citrix
O43 - CFD: 09/10/2015 - [] D -- C:\Users\Steve\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 19/09/2016 - [] D -- C:\Users\Steve\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 06/05/2013 - [] D -- C:\Users\Steve\AppData\Local\Dell =>.Dell
O43 - CFD: 09/02/2013 - [] D -- C:\Users\Steve\AppData\Local\Dell Edoc Viewer =>.Dell Inc.
O43 - CFD: 23/07/2017 - [] D -- C:\Users\Steve\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 29/01/2014 - [] D -- C:\Users\Steve\AppData\Local\e-academy Inc =>.e-academy Inc
O43 - CFD: 06/03/2016 - [0] D -- C:\Users\Steve\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 14/03/2015 - [] SHD -- C:\Users\Steve\AppData\Local\EmieBrowserModeList =>.Enterprise mode Site List Mgr
O43 - CFD: 13/11/2015 - [0] SHD -- C:\Users\Steve\AppData\Local\EmieSiteList =>.Enterprise mode Site List Mgr
O43 - CFD: 13/11/2015 - [0] SHD -- C:\Users\Steve\AppData\Local\EmieUserList =>.Enterprise mode Site List Mgr
O43 - CFD: 23/07/2017 - [] D -- C:\Users\Steve\AppData\Local\ESET =>.ESET
O43 - CFD: 17/03/2011 - [0] D -- C:\Users\Steve\AppData\Local\exe
O43 - CFD: 15/05/2016 - [] D -- C:\Users\Steve\AppData\Local\GetNZB
O43 - CFD: 04/02/2017 - [] D -- C:\Users\Steve\AppData\Local\Google =>.Google
O43 - CFD: 02/06/2015 - [] D -- C:\Users\Steve\AppData\Local\GWX =>.GWX
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Steve\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 10/03/2017 - [] D -- C:\Users\Steve\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 01/05/2016 - [] D -- C:\Users\Steve\AppData\Local\LogMeIn Rescue Applet =>.LogMeIn
O43 - CFD: 14/06/2012 - [] D -- C:\Users\Steve\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 19/05/2017 - [] D -- C:\Users\Steve\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 25/09/2011 - [] D -- C:\Users\Steve\AppData\Local\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 30/01/2012 - [0] D -- C:\Users\Steve\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 23/05/2017 - [] D -- C:\Users\Steve\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 30/09/2013 - [] D -- C:\Users\Steve\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 12/09/2015 - [] D -- C:\Users\Steve\AppData\Local\MusicBrainz =>.MusicBrainz
O43 - CFD: 24/03/2012 - [] D -- C:\Users\Steve\AppData\Local\Nero =>.Ahead Corporation
O43 - CFD: 15/11/2013 - [] D -- C:\Users\Steve\AppData\Local\Nero_AG =>.Ahead
O43 - CFD: 03/09/2016 - [0] D -- C:\Users\Steve\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 17/03/2011 - [] D -- C:\Users\Steve\AppData\Local\NewSoft =>.NewSoft
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Steve\AppData\Local\NVIDIA =>.nVidia Corporation
O43 - CFD: 17/05/2017 - [] D -- C:\Users\Steve\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 20/09/2016 - [] D -- C:\Users\Steve\AppData\Local\PrivaZer =>.Goversoft LLC
O43 - CFD: 09/09/2013 - [] D -- C:\Users\Steve\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Steve\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Steve\AppData\Local\Razer =>.Razer
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Steve\AppData\Local\Razer_Inc =>.Razer Inc
O43 - CFD: 06/05/2016 - [0] D -- C:\Users\Steve\AppData\Local\Skype =>.Skype
O43 - CFD: 27/03/2011 - [] D -- C:\Users\Steve\AppData\Local\SoftGrid Client =>.Microsoft Corporation
O43 - CFD: 12/04/2012 - [] D -- C:\Users\Steve\AppData\Local\SoftThinks =>.SoftThinks
O43 - CFD: 23/07/2017 - [] D -- C:\Users\Steve\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Steve\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Steve\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 23/07/2017 - [] D -- C:\Users\Steve\AppData\Local\UNP =>.Microsoft Corporation
O43 - CFD: 24/03/2012 - [] D -- C:\Users\Steve\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 16/01/2016 - [] D -- C:\Users\Steve\AppData\Local\Windows Live =>.Microsoft Corporation
O43 - CFD: 12/11/2012 - [] D -- C:\Users\Steve\AppData\Local\Windows Live Writer =>.Microsoft Corporation
O43 - CFD: 06/05/2013 - [0] D -- C:\Users\Steve\AppData\Local\Yahoo
O43 - CFD: 23/07/2017 - [] D -- C:\Users\Steve\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 09/09/2013 - [0] D -- C:\Users\Steve\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] RD -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] RD -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 19/05/2017 - [] RD -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU =>.AVS4YOU
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer =>.Goversoft LLC
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuarkXPress Passport
O43 - CFD: 01/12/2016 - [] RD -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] RD -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [] RD -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 23/12/2016 - [] D -- C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Default\AppData\Local\Google =>.Google
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Default\AppData\Local\SoftThinks =>.SoftThinks
O43 - CFD: 16/07/2016 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Default User\AppData\Local\Google =>.Google
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [] D -- C:\Users\Default User\AppData\Local\SoftThinks =>.SoftThinks
O43 - CFD: 16/07/2016 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 17/09/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 22/09/2016 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Adobe =>.Adobe
O43 - CFD: 23/07/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Dell_Inc
O43 - CFD: 10/03/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 19/09/2016 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 29/10/2016 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 01/12/2016 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Razer =>.Razer
O43 - CFD: 11/10/2016 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation

---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®

---\\ Image File Execution Options (17) - 2s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Driver Installation Module.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - IE Per-User Initialization Utility.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Microsoft Windows Malicious Software Remova.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Microsoft (R) HTML Application host.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Windows host process (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Spooler SubSystem App.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Spooler SubSystem App.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Host Process for Windows Services.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®

---\\ ShareTools MSconfig StartupReg (6) - 0s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0 [Key] . (...) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\AdobeCS6ServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\Desktop Disc Tool [Key] . (...) -- C:\Program Files (x86)\Roxio\oem\Roxio Burn\RoxioBurnLauncher.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\NBAgent [Key] . (...) -- C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Spotify Web Helper [Key] . (...) -- C:\Users\Steve\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (.not file.)

---\\ System Drivers List (84) - 16s
O58 - SDL:2016/07/16 07:41:53 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/09/19 01:58:30 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\7F521D09.sys [113880] =>.Malwarebytes Corporation® (.Superfluous.Orphan)
O58 - SDL:2016/07/16 07:41:53 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2016/07/16 07:41:53 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2012/11/01 18:05:50 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\WINDOWS\System32\drivers\bcmwlhigh664.sys [1258272] =>.NETGEAR®
O58 - SDL:2016/07/16 07:41:52 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533856] =>.Microsoft Windows®
O58 - SDL:2012/04/24 03:01:00 A . (.Corel Corporation - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [10864] =>.Corel Corporation®
O58 - SDL:2012/04/24 03:01:00 A . (.Corel Corporation - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [11376] =>.Corel Corporation®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\WINDOWS\System32\drivers\cfwids.sys [76824] =>.McAfee, Inc.®
O58 - SDL:2016/07/16 07:41:53 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [102752] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [346976] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [2104160] =>.Microsoft Windows®
O58 - SDL:2017/04/11 10:01:43 A . (.Dell Inc. - DDDriver.sys.) -- C:\WINDOWS\System32\drivers\DDDriver64Dcsa.sys [32960] =>.Techporch Incorporated®
O58 - SDL:2017/04/11 10:01:43 A . (.Dell Computer Corporation - DellProf.sys.) -- C:\WINDOWS\System32\drivers\DellProf.sys [32568] =>.Techporch Incorporated®
O58 - SDL:2015/10/03 12:12:36 N . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\WINDOWS\System32\drivers\Dot4.sys [146856] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2015/10/03 12:12:36 N . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2016/07/16 07:41:52 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3418976] =>.Microsoft Windows®
O58 - SDL:2017/05/31 13:06:40 A . (.McAfee, Inc. - McAfee HIP IPS Driver.) -- C:\WINDOWS\System32\drivers\HipShieldK.sys [209608] =>.McAfee, Inc.®
O58 - SDL:2016/07/16 07:41:53 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:54 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation
O58 - SDL:2016/07/16 07:41:54 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2016/07/16 07:41:54 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [64512] =>.Intel Corporation
O58 - SDL:2016/07/16 07:41:54 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [176384] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O58 - SDL:2016/07/16 07:41:52 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2016/07/16 07:41:50 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2016/07/16 07:41:53 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526176] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [105824] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [101216] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82776] =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:08:54 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [27008] =>.Malwarebytes Corporation®
O58 - SDL:2016/03/10 14:08:58 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [140672] =>.Malwarebytes Corporation®
O58 - SDL:2017/07/23 22:40:31 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2016/07/16 07:41:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2016/10/05 06:09:07 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [64352] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Arbitrary Access Control Driver.) -- C:\WINDOWS\System32\drivers\mfeaack.sys [476176] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\WINDOWS\System32\drivers\mfeavfk.sys [353808] =>.McAfee, Inc.®
O58 - SDL:2017/04/07 02:42:02 A . (.McAfee, Inc. - McAfee Driver Cleaning Driver.) -- C:\WINDOWS\System32\drivers\mfeclnrk.sys [30224] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee ELAM Driver.) -- C:\WINDOWS\System32\drivers\mfeelamk.sys [84536] {3300000169DC0219440E99D669000000000169} =>.McAfee, Inc.
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\WINDOWS\System32\drivers\mfefirek.sys [504336] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Link Driver.) -- C:\WINDOWS\System32\drivers\mfehidk.sys [918544] =>.McAfee, Inc.®
O58 - SDL:2017/04/07 02:42:02 A . (.McAfee, Inc. - Event Driver.) -- C:\WINDOWS\System32\drivers\mfencbdc.sys [495632] =>.McAfee, Inc.®
O58 - SDL:2017/04/07 02:42:02 A . (.McAfee, Inc. - Detection driver.) -- C:\WINDOWS\System32\drivers\mfencrk.sys [107544] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - AAC Protected Launch Plugin Driver.) -- C:\WINDOWS\System32\drivers\mfeplk.sys [109072] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\WINDOWS\System32\drivers\mfewfpk.sys [252432] =>.McAfee, Inc.®
O58 - SDL:2016/07/16 07:41:53 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842584] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:09:10 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [65408] =>.Malwarebytes Corporation®
O58 - SDL:2016/07/16 07:41:53 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108896] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:42:03 A . (.Authors - .) -- C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624] =>.Microsoft Corporation
O58 - SDL:2010/02/03 11:21:56 A . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [47632] =>.CACE Technologies, Inc.®
O58 - SDL:2016/12/09 12:39:04 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\WINDOWS\System32\drivers\nvhda64v.sys [206776] =>.NVIDIA Corporation®
O58 - SDL:2016/12/09 12:45:46 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [12914360] =>.NVIDIA Corporation®
O58 - SDL:2016/07/16 07:41:53 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61792] =>.Microsoft Windows®
O58 - SDL:2012/06/22 03:01:00 A . (.Corel Corporation - Px Engine Device Driver for 64-bit (x86-64).) -- C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336] =>.Corel Corporation®
O58 - SDL:2016/07/16 07:41:53 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [589824] =>.Realtek
O58 - SDL:2010/02/22 21:26:12 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [2271648] =>.Realtek Semiconductor Corp®
O58 - SDL:2010/03/12 15:23:16 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\WINDOWS\System32\drivers\RtsUStor.sys [242720] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/08/13 11:19:08 A . (.Razer Inc - Razer RzEndPt.) -- C:\WINDOWS\System32\drivers\rzdaendpt.sys [43720] =>.Razer Inc.®
O58 - SDL:2015/06/12 11:51:56 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\WINDOWS\System32\drivers\rzpmgrk.sys [37184] =>.Razer Inc.®
O58 - SDL:2015/06/26 19:27:19 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\WINDOWS\System32\drivers\rzpnk.sys [129472] =>.Razer Inc.®
O58 - SDL:2015/10/03 12:14:26 A . (.Razer Inc - Razer Rzudd Engine.) -- C:\WINDOWS\System32\drivers\rzudd.sys [202952] =>.Razer Inc.®
O58 - SDL:2015/08/13 11:19:08 A . (.Razer Inc - Razer Keyboard Device.) -- C:\WINDOWS\System32\drivers\rzvkeyboard.sys [44232] =>.Razer Inc.®
O58 - SDL:2012/09/05 10:37:02 A . (.SerComm Corporation - Customize NDIS User mode I/O Driver.) -- C:\WINDOWS\System32\drivers\SCMNdisP.sys [29472] =>.NETGEAR®
O58 - SDL:2016/07/16 07:41:53 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2017/07/23 20:10:29 A . (.Authors - .) -- C:\WINDOWS\System32\drivers\TrueSight.sys [28272] =>.Adlice®
O58 - SDL:2015/05/09 15:21:31 A . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\WINDOWS\System32\drivers\trufos.sys [350160] =>.Bitdefender SRL®
O58 - SDL:2016/07/16 07:41:53 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32096] =>.Microsoft Windows®
O58 - SDL:2016/07/16 07:41:53 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64864] =>.Microsoft Windows®

---\\ Last modified or created user files (2) - 38s
O61 - LFC: 2017/07/23 13:06:38 A . (.Copyright © 2015.) -- C:\Users\Steve\Downloads\Adware Removal Tool by TSA(1).exe [752296] {317DD1C55F51AC2756D9C93C060C6FA5}
O61 - LFC: 2017/07/23 13:06:16 A . (.Copyright © 2015.) -- C:\Users\Steve\Downloads\Adware Removal Tool by TSA.exe [752296] {317DD1C55F51AC2756D9C93C060C6FA5}

---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®

---\\ Start Menu Internet (12) - 1s
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Search Browser Infection (4) - 5s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] {0C755E98-7D34-4B11-A63A-5F01EB9ABAE7} - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] {AB62CE37-C53F-4D77-9489-308327D58331} - (Bing) - http://www.bing.com/ =>.Bing.com

---\\ Search Svchost Services (45) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [193536] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [193536] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [305152] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\WINDOWS\System32\gpsvc.dll [1227264] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\WINDOWS\System32\ikeext.dll [932352] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\System32\iphlpsvc.dll [945664] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\WINDOWS\System32\appinfo.dll [125952] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\WINDOWS\system32\iscsiexe.dll [151552] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\WINDOWS\System32\eapsvc.dll [112128] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\WINDOWS\system32\schedsvc.dll [948224] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [222720] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [134656] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [387072] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\WINDOWS\System32\wercplsupport.dll [94208] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [161792] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\WINDOWS\system32\themeservice.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\WINDOWS\System32\lfsvc.dll [37376] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [407552] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Infrared Monitor.) -- C:\WINDOWS\System32\irmon.dll [25088] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [105472] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [657920] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [496128] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\sens.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\System32\ipnathlp.dll [541696] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [309248] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2316288] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\System32\qmgr.dll [1054208] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [617472] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [57344] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Windows Push Notification System Service.) -- C:\WINDOWS\system32\WpnService.dll [234496] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1025536] =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [183808] =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [650752] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\WINDOWS\System32\bdesvc.dll [361472] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [197632] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\WINDOWS\System32\ncasvc.dll [167936] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [1016320] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [548864] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [358400] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [1021440] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1159680] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Flight Settings.) -- C:\WINDOWS\system32\flightsettings.dll [635904] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\WINDOWS\system32\wlidsvc.dll [2104320] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\WINDOWS\System32\NetSetupSvc.dll [265728] =>.Microsoft Corporation

---\\ Firewall Active Exception List (9) - 2s
O87 - FAEL: "UDP Query User{AA04EBF0-B281-4AD3-8913-9E642623C6C9}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe (.not file.)
O87 - FAEL: "TCP Query User{8EBC0438-6146-4FEA-99C6-DB3FB52367A6}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe (.not file.)
O87 - FAEL: "{179427A9-971C-4603-80F4-8CFC13977162}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.EXE (.not file.)
O87 - FAEL: "{8EA22D34-F4D2-4AED-A3F3-4D0367E1FBC8}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.EXE (.not file.)
O87 - FAEL: "{2BFDAE13-C2FC-41C3-8CE0-249468793C59}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (.not file.)
O87 - FAEL: "{7CD52165-64A6-4A55-9E47-21E0612522A2}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (.not file.)
O87 - FAEL: "{334E5EDF-95AD-40B0-8180-6ED57456BC7E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (.not file.)
O87 - FAEL: "{52320C4F-6E72-4A1D-AD51-599A2180045C}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (.not file.)
O87 - FAEL: "{8F38DF1E-1990-4AD6-8DB4-6F55D6F04E55}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Dell\VideoStage\VideoStage.exe (.not file.)

---\\ Additional Scan (O88) (9) - 1s
C:\Users\Steve\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>PUP.Optional.Wajam
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}] =>.Superfluous.Orphan
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}] =>.Superfluous.Orphan
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}] =>.Superfluous.Orphan
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}] =>.Superfluous.Orphan
C:\Program Files (x86)\Driver Support =>PUP.Optional.DriverSupport
C:\Program Files (x86)\Veloxum =>PUP.Optional.DriverSupport
C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet

---\\ Summary of the elements found (4) - 0s
https://nicolascoolman.eu/2017/02/24/pup-optional-wajam/ =>PUP.Optional.Wajam
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.DriverSupport
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Orphan
https://nicolascoolman.eu/2017/02/02/superfluous-cloudfrontnet/ =>.Superfluous.CloudfrontNet

~ Unselected Options: O82,
~ End of the scan, 189065 items in 05mn33s (1638)(0)

~ ZHPCleaner v2017.7.24.126 by Nicolas Coolman (2017/07/24)
~ Run by Steve (Administrator) (24/07/2017 17:27:06)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Repair
~ Report : C:\Users\Steve\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Steve\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 14393)


---\\ Services (0)
~ No malicious or unnecessary items found.


---\\ Browser internet (0)
~ No malicious or unnecessary items found.


---\\ Hosts file (1)
~ The hosts file is legitimate (19)


---\\ Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\ Explorer ( File, Folder) (5)
MOVED file: C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet
MOVED file^: C:\Users\Steve\AppData\Roaming\PDAppFlex =>Trojan.Elpman
MOVED folder*: C:\Program Files (x86)\Driver Support =>PUP.Optional.DriverSupport
MOVED folder*: C:\Program Files (x86)\Veloxum =>PUP.Optional.DriverSupport


---\\ Registry ( Key, Value, Data) (0)
~ No malicious or unnecessary items found.


---\\ Summary of the elements found (3)
https://nicolascoolman.eu/2017/02/02/superfluous-cloudfrontnet/ =>.Superfluous.CloudfrontNet
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.Elpman
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.DriverSupport


---\\ Other deletions. (27)
~ Registry Keys Tracing deleted (27)
~ Remove the old reports ZHPCleaner. (0)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Opera Software)
~ The system has been restarted.


---\\ Statistics
~ Items scanned : 1471
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 5


~ End of clean in 00h00mn18s
~====================
ZHPCleaner-[R]-24072017-17_27_24.txt
ZHPCleaner--24072017-17_24_51.txt

~ ZHPCleaner v2017.7.24.126 by Nicolas Coolman (2017/07/24)
~ Run by Steve (Administrator) (24/07/2017 17:27:06)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Repair
~ Report : C:\Users\Steve\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Steve\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 14393)


---\\ Services (0)
~ No malicious or unnecessary items found.


---\\ Browser internet (0)
~ No malicious or unnecessary items found.


---\\ Hosts file (1)
~ The hosts file is legitimate (19)


---\\ Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\ Explorer ( File, Folder) (5)
MOVED file: C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet
MOVED file^: C:\Users\Steve\AppData\Roaming\PDAppFlex =>Trojan.Elpman
MOVED folder*: C:\Program Files (x86)\Driver Support =>PUP.Optional.DriverSupport
MOVED folder*: C:\Program Files (x86)\Veloxum =>PUP.Optional.DriverSupport


---\\ Registry ( Key, Value, Data) (0)
~ No malicious or unnecessary items found.


---\\ Summary of the elements found (3)
https://nicolascoolman.eu/2017/02/02/superfluous-cloudfrontnet/ =>.Superfluous.CloudfrontNet
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.Elpman
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.DriverSupport


---\\ Other deletions. (27)
~ Registry Keys Tracing deleted (27)
~ Remove the old reports ZHPCleaner. (0)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Opera Software)
~ The system has been restarted.


---\\ Statistics
~ Items scanned : 1471
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 5


~ End of clean in 00h00mn18s
~====================
ZHPCleaner-[R]-24072017-17_27_24.txt
ZHPCleaner--24072017-17_24_51.txt

When the machine starts up now note pad is on the desk top saying access denied. I can click OK and it closed note pad but why is it doing this now? Seems like there is more work to be done. Please let me know what is next.
Thank you.

The fan or something, hard drive? is surging still which made me think there is something wrong. it's still doing that, any ideas what it is?

Logfile of HiJackThis Fork (Alpha) by Alex Dragokas v.2.6.4.17

Platform: x64 Windows 10 (Home), 10.0.15063 (ReleaseId: 1703), Service Pack: 0
Time: 26.07.2017 - 06:55
Language: OS: English (0x409). Display: English (0x409). Non-Unicode: English (0x409)
Elevated: Yes
Ran by: Steve (group: Administrator) on STEVE-PC

Chrome: 59.0.3071.115
Firefox: 54.0.1.6388
Edge: 11.0.15063.447
Internet Explorer: 11.0.15063.0

Boot mode: Normal

Running processes:
Number | Path
1 C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe
1 C:\Program Files (x86)\Bonjour\mDNSResponder.exe
1 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
1 C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
1 C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
1 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
1 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
1 C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
1 C:\Program Files (x86)\Dell Update\DellUpService.exe
1 C:\Program Files (x86)\Dell Update\DellUpTray.exe
1 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
1 C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
1 C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
1 C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
1 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
1 C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe
1 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
1 C:\Program Files (x86)\Nero\Update\NASvc.exe
2 C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
1 C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
1 C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
1 C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe
1 C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe
2 C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
1 C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
2 C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
1 C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
1 C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe
1 C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
1 C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
1 C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
1 C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
1 C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
1 C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
1 C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
1 C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
1 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
1 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
1 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
1 C:\Program Files\WinRAR\WinRAR.exe
1 C:\Program Files\Windows Defender\MSASCuiL.exe
1 C:\Program Files\Windows Defender\NisSrv.exe
1 C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
1 C:\Users\Steve\AppData\Local\Microsoft\OneDrive\OneDrive.exe
1 C:\Users\Steve\Desktop\HiJackThis.exe
1 C:\Users\Steve\Desktop\MemCompression
1 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
1 C:\Windows\System32\ApplicationFrameHost.exe
1 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\VSSVC.exe
1 C:\Windows\System32\audiodg.exe
2 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\dasHost.exe
2 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
2 C:\Windows\System32\mfevtps.exe
1 C:\Windows\System32\mqsvc.exe
1 C:\Windows\System32\msdtc.exe
2 C:\Windows\System32\nvvsvc.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
73 C:\Windows\System32\svchost.exe
2 C:\Windows\System32\taskhostw.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\wlanext.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yahoo.com/?fr=avantsearch6
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1me10IE11ENUS/MCM_WCP
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;192.168.*.*
R3 - HKCU\..\URLSearchHooks: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURL = http://api.bing.com/qsml.aspx?query={searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie:rowHeight}&sectionHeight={ie:sectionHeight}&FORM=IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURLFallback = http://api.bing.com/qsml.aspx?query={searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie:rowHeight}&sectionHeight={ie:sectionHeight}&FORM=IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0C755E98-7D34-4B11-A63A-5F01EB9ABAE7} - Bing - http://www.bing.com/search?FORM=U220DF&PC=U220&q={searchTerms}&src=IE-SearchBox
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes: DefaultScope = {B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B} - (no name) - (no URL)
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{903BEF58-2264-4FDD-A4A2-72024AC9D292} - Bing - http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} - Search Results - (no URL)
O2 - BHO: (no name) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_141\bin\jp2ssv.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_141\bin\ssv.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: McAfee WebAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll
O2-32 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O2-32 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2-32 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_141\bin\jp2ssv.dll
O2-32 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_141\bin\ssv.dll
O2-32 - BHO: McAfee WebAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
O2-32 - BHO: Microsoft Web Test Recorder 10.0 Helper - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - c:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2-32 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2-32 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll
O3-32 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O4 - HKCU\..\RunOnce: [Uninstall 17.3.6390.0509\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
O4 - HKCU\..\RunOnce: [Uninstall 17.3.6390.0509] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6390.0509"
O4 - HKCU\..\RunOnce: [Uninstall 17.3.6816.0313\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\amd64"
O4 - HKCU\..\RunOnce: [Uninstall 17.3.6816.0313] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Steve\AppData\Local\Microsoft\OneDrive\17.3.6816.0313"
O4 - HKCU\..\StartupApproved\Run: [Adobe Acrobat Synchronizer] (2017/07/24)C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
O4 - HKCU\..\StartupApproved\Run: [CCleaner] (2017/07/24)C:\Program Files\CCleaner\CCleaner64.exe /AUTO
O4 - HKCU\..\StartupApproved\Run: [OneDrive] (2015/10/03)C:\Users\Steve\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background
O4 - HKCU\..\StartupApproved\StartupFolder: OneNote 2010 Screen Clipper and Launcher.lnk -> (2017/07/24)
O4 - HKLM\..\Run: [Malwarebytes TrayApp] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
O4 - HKLM\..\Run: [ZAM] C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe /minimized
O4 - HKLM\..\StartupApproved\Run32: [Acrobat Assistant 8.0] (2015/10/03)C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe
O4 - HKLM\..\StartupApproved\Run32: [Adobe Creative Cloud] (2015/10/03)C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true
O4 - HKLM\..\StartupApproved\Run32: [AdobeCS6ServiceManager] (2015/10/03)C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin
O4 - HKLM\..\StartupApproved\Run32: [Razer Synapse] (2015/10/03)C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
O4 - HKLM\..\StartupApproved\Run32: [RoxWatchTray] (2015/10/03)C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] (2016/02/14)C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\StartupApproved\Run32: [SwitchBoard] (2015/10/03)C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\StartupApproved\Run32: [THX Audio Control Panel] (2015/10/03)C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe /r
O4 - HKLM\..\StartupApproved\Run32: [UpdReg] (2015/11/13)C:\Windows\UpdReg.EXE
O4 - HKLM\..\StartupApproved\Run: [AdobeAAMUpdater-1.0] (2015/10/03)C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\StartupApproved\Run: [NvBackend] (2015/10/03)C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\StartupApproved\Run: [RtHDVCpl] (2017/07/24)C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\StartupApproved\Run: [RunDLLEntry_EptMon] (2017/07/24)C:\Windows\system32\RunDLL32.exe C:\Windows\system32\EptMon64.dll,RunDLLEntry EptMon64
O4 - HKLM\..\StartupApproved\Run: [RunDLLEntry_THXCfg] (2017/07/24)C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] C:\Program Files\Windows Defender\MSASCuiL.exe
O4 - HKLM\..\StartupApproved\StartupFolder: NETGEAR WNA3100 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe (2017/07/24)
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4-32 - HKLM\..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll (HKLM)
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (HKLM)
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIELinkedNotes.dll (HKLM)
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIE.dll (HKLM)
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll (HKLM)
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (HKLM)
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIELinkedNotes.dll (HKLM)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIE.dll (HKLM)
O9-32 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (HKLM)
O9-32 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (HKLM)
O9-32 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll (HKLM)
O9-32 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll (HKLM)
O9-32 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (HKLM)
O9-32 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (HKLM)
O9-32 - Extra button: Messenger Companion (Ctrl+Shift+C) - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (HKLM)
O9-32 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll (HKLM)
O9-32 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll (HKLM)
O15 - Trusted Zone: *.dell.com
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.8.0) - http://java.sun.com/update/1.8.0/jinstall-1_8_0_40-windows-i586.cab
O16 - DPF: {CAFEEFAC-0018-0000-0040-ABCDEFFEDCBA} (Java Runtime Environment 1.8.0) - http://java.sun.com/update/1.8.0/jinstall-1_8_0_40-windows-i586.cab
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.8.0) - http://java.sun.com/update/1.8.0/jinstall-1_8_0_40-windows-i586.cab
O17 - DHCP DNS - 1: 209.18.47.62
O17 - DHCP DNS - 2: 209.18.47.61
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O22 - Task (Disabled): \Microsoft\Windows\Media Center\PeriodicScanRetry - C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (file missing)
O22 - Task (Disabled): \Microsoft\Windows\Media Center\RecordingRestart - C:\WINDOWS\ehome\ehrec /RestartRecording (file missing)
O22 - Task (Disabled): \Microsoft\Windows\Shell\WindowsParentalControls - {DFA14C43-F385-4170-99CC-1B7765FA0E4A} - (no file)
O22 - Task (Disabled): \Microsoft\Windows\Shell\WindowsParentalControlsMigration - {343D770D-7788-47C2-B62A-B7C4CED925CB} - (no file)
O22 - Task (Disabled): \Microsoft\Windows\Subscription\LicenseAcquisition - C:\WINDOWS\system32\ClipRenew.exe
O22 - Task (Disabled): \Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install - C:\WINDOWS\system32\usoclient.exe ScanInstallWait
O22 - Task (Disabled): \Microsoft\Windows\WindowsBackup\AutomaticBackup - C:\WINDOWS\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
O22 - Task (Disabled): \Microsoft\Windows\WindowsBackup\Windows Backup Monitor - C:\WINDOWS\system32\sdclt.exe /CHECKSKIPPED
O22 - Task (Disabled): \OfficeSoftwareProtectionPlatform\SvcRestartTask - C:\WINDOWS\system32\sc.exe start osppsvc
O22 - Task (Ready): Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O22 - Task (Ready): Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O22 - Task (Ready): AdobeAAMUpdater-1.0-Steve-PC-Steve - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
O22 - Task (Ready): CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task (Ready): Dell SupportAssistAgent AnonymousRegistration - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe AnonymousRegistration
O22 - Task (Ready): Dell SupportAssistAgent AutoUpdate - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe AutoUpdate
O22 - Task (Ready): GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task (Ready): Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse - C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe /timeout=60000 /script=mcnrdhck.lua /hcmode=postdatupdate /datver=3053.0 /datupdatestatus=0
O22 - Task (Ready): Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse - C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe /script=mcnrdhck.lua /periodicRunCount=7
O22 - Task (Ready): McAfee Remediation (Prepare) - C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe /prepare
O22 - Task (Ready): Opera scheduled Autoupdate 1501022171 - C:\Users\Steve\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0)
O22 - Task (Ready): PCDDataUploadTask - C:\Program Files\Dell\SupportAssist\uaclauncher.exe -lloc dataupload --ignoresecondarysplash --runsilently --skipidlewait
O22 - Task (Ready): PCDEventLauncherTask - C:\Program Files\Dell\SupportAssist\sessionchecker.exe
O22 - Task (Ready): SystemToolsDailyTest - C:\Program Files\Dell\SupportAssist\uaclauncher.exe -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently
O22 - Task (Ready): Verizon Wireless Upgrade Assistant Update - C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\VerizonWirelessUpgradeAssistantUpdate.exe -d -silent
O22 - Task (Ready): Verizon Wireless Upgrade Assistant Update Initial Update - C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\VerizonWirelessUpgradeAssistantUpdate.exe -d -silent
O22 - Task (Ready): \McAfee\McAfee Auto Maintenance Task Agent - {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} - (no file)
O22 - Task (Ready): \McAfee\McAfee Idle Detection Task - {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} - (no file)
O22 - Task (Ready): \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (file missing)
O22 - Task (Ready): \Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
O22 - Task (Ready): \Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
O22 - Task (Ready): \Microsoft\Office\Office Subscription Maintenance - C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe
O22 - Task (Ready): \Microsoft\Office\OfficeBackgroundTaskHandlerLogon - C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
O22 - Task (Ready): \Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
O22 - Task (Ready): \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload mininterval:2880
O22 - Task (Ready): \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload
O22 - Task (Ready): \Microsoft\Windows Defender\MP Scheduled Scan - c:\program files\windows defender\MpCmdRun.exe Scan -ScheduleJob -WinTask -RestrictPrivilegesScan
O22 - Task (Ready): \Microsoft\Windows Defender\MpIdleTask - c:\program files\windows defender\MpCmdRun.exe -IdleTask -TaskName MpIdleTask
O22 - Task (Ready): \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task - {3519154C-227E-47F3-9CC9-12C3F05817F1} - (no file)
O22 - Task (Ready): \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\compattelrunner.exe
O22 - Task (Ready): \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\WINDOWS\system32\compattelrunner.exe -maintenance
O22 - Task (Ready): \Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},BitLockerPolicy - C:\WINDOWS\System32\edptask.dll
O22 - Task (Ready): \Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask - {E984D939-0E00-4DD9-AC3A-7ACA04745521} - (no file)
O22 - Task (Ready): \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -ProtectionStateChanged -FreeNetworkOnly -NoLocation - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task (Ready): \Microsoft\Windows\EDP\EDP App Launch Task - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},AppLaunch - C:\WINDOWS\System32\edptask.dll
O22 - Task (Ready): \Microsoft\Windows\EDP\EDP Auth Task - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},ReAuth - C:\WINDOWS\System32\edptask.dll
O22 - Task (Ready): \Microsoft\Windows\EDP\EDP Inaccessible Credentials Task - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},MissingCredentials - C:\WINDOWS\System32\edptask.dll
O22 - Task (Ready): \Microsoft\Windows\EDP\StorageCardEncryption Task - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},SDCardEncryptionPolicy - C:\WINDOWS\System32\edptask.dll
O22 - Task (Ready): \Microsoft\Windows\Management\Provisioning\Cellular - C:\WINDOWS\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
O22 - Task (Ready): \Microsoft\Windows\Management\Provisioning\Logon - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source LogonIdleTask
O22 - Task (Ready): \Microsoft\Windows\Maps\MapsToastTask - {9885AEF2-BD9F-41E0-B15E-B3141395E803},$(Arg0);$(Arg1);$(Arg2);$(Arg3);$(Arg4);$(Arg5);$(Arg6);$(Arg7) - C:\WINDOWS\System32\mapstoasttask.dll
O22 - Task (Ready): \Microsoft\Windows\Media Center\ActivateWindowsSearch - C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\ConfigureInternetTimeService - C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\DispatchRecoveryTasks - C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\InstallPlayReady - C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\MediaCenterRecoveryTask - C:\WINDOWS\ehome\mcupdate.exe - (no file) -MediaCenterRecoveryTask (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\OCURActivate - C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\OCURDiscovery - C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - C:\WINDOWS\ehome\mcupdate.exe - (no file) -ObjectStoreRecoveryTask (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\PBDADiscovery - C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\PBDADiscoveryW1 - C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\PBDADiscoveryW2 - C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\PvrRecoveryTask - C:\WINDOWS\ehome\mcupdate.exe - (no file) -PvrRecoveryTask (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\PvrScheduleTask - C:\WINDOWS\ehome\mcupdate.exe - (no file) -PvrSchedule (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\RegisterSearch - C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\ReindexSearchRoot - C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\SqlLiteRecoveryTask - C:\WINDOWS\ehome\mcupdate.exe - (no file) -SqlLiteRecoveryTask (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\StartRecording - C:\WINDOWS\ehome\ehrec /StartRecording (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\UpdateRecordPath - C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\ehDRMInit - C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\mcupdate - C:\WINDOWS\ehome\mcupdate $(Arg0) (file missing)
O22 - Task (Ready): \Microsoft\Windows\Media Center\mcupdate_scheduled - C:\WINDOWS\ehome\mcupdate -crl -hms -pscn 15 (file missing)
O22 - Task (Ready): \Microsoft\Windows\Subscription\EnableLicenseAcquisition - C:\WINDOWS\system32\ClipRenew.exe -e
O22 - Task (Ready): \Microsoft\Windows\Tcpip\IpAddressConflict1 - C:\WINDOWS\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
O22 - Task (Ready): \Microsoft\Windows\Tcpip\IpAddressConflict2 - C:\WINDOWS\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
O22 - Task (Ready): \Microsoft\Windows\UNP\RunCampaignManager - C:\WINDOWS\System32\UNP\UNPCampaignManager.exe
O22 - Task (Ready): \Microsoft\Windows\WwanSvc\NotificationTask - C:\WINDOWS\System32\WiFiTask.exe wwan
O22 - Task (Ready): {14B64D6C-EB84-4366-840B-A80E28AD259F} - C:\Windows\system32\pcalua.exe -a "C:\Users\Steve\Downloads\DVD Shrink\Any.DVD.Shrink.1.2\any-dvd-shrink.exe" -d "C:\Users\Steve\Downloads\DVD Shrink\Any.DVD.Shrink.1.2"
O22 - Task (Ready): {59944E75-8499-4A0B-B7F7-CC267C7182FC} - C:\Windows\system32\pcalua.exe -a C:\LGMobileUpgrade\LGMOBILEAX\BYRLauncher.exe -d C:\LGMobileUpgrade\LGMOBILEAX
O22 - Task (Ready): {8FEF03D2-8559-4B76-9BFD-39A076532F4C} - C:\Windows\system32\pcalua.exe -a C:\Users\Steve\Ahead.Nero.Burning.ROM.v6.6.0.16.Ultra.Edition\Nero-6.6.0.16.exe -d C:\Users\Steve\Ahead.Nero.Burning.ROM.v6.6.0.16.Ultra.Edition
O22 - Task (Ready): {E236F5E3-EB2E-4D84-AA3C-FE4AF73342E4} - C:\Windows\system32\pcalua.exe -a C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\BYRAppUninstall.exe -d C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client
O22 - Task (Ready): {E7236F78-5AA9-4C51-8950-7AEA15BB8802} - C:\Windows\system32\pcalua.exe -a C:\Users\Steve\Desktop\devcpp-4.9.9.2_setup.exe -d C:\Users\Steve\Desktop
O22 - Task (Running): GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task (Running): McAfeeLogon - C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
O23 - Service R2: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## - (Bonjour Service) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: AdobeUpdateService - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service R2: Dell Customer Connect - C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
O23 - Service R2: Dell Data Vault Collector - (DDVDataCollector) - C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
O23 - Service R2: Dell Data Vault Processor - (DDVRulesProcessor) - C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
O23 - Service R2: Dell Data Vault Service API - (DDVCollectorSvcApi) - C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
O23 - Service R2: Dell SupportAssist Agent - (SupportAssistAgent) - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service R2: Dell Update Service - (DellUpdate) - C:\Program Files (x86)\Dell Update\DellUpService.exe
O23 - Service R2: Intel Security PEF Service - (PEFService) - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service R2: Intuit Update Service v4 - (IntuitUpdateServiceV4) - C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service R2: McAfee AP Service - (McAPExe) - C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe
O23 - Service R2: McAfee Boot Delay Start Service - (McBootDelayStartSvc) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service R2: McAfee CSP Service - (mccspsvc) - C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\\McCSPServiceHost.exe
O23 - Service R2: McAfee Home Network - (HomeNetSvc) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service R2: McAfee Module Core Service - (ModuleCoreService) - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service R2: McAfee Personal Firewall Service - (McMPFSvc) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service R2: McAfee Platform Services - (mcpltsvc) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service R2: McAfee Proxy Service - (McProxy) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service R2: McAfee Service Controller - (mfemms) - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service R2: McAfee SiteAdvisor Service - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service R2: Motorola Device Manager Service - (Motorola Device Manager) - C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
O23 - Service R2: NVIDIA Display Driver Service - (nvsvc) - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service R2: NVIDIA Stereoscopic 3D Driver Service - (Stereo Service) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service R2: Nero Update - (NAUpdate) - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service R2: Roxio Hard Drive Watcher 12 - (RoxWatch12) - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
O23 - Service R2: WSWNA3100 - C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe
O23 - Service R2: ZAM Controller Service - (ZAMSvc) - C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
O23 - Service R3: ClientAnalyticsService - C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe
O23 - Service R3: McAfee Firewall Core Service - (mfefire) - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service R3: McAfee Validation Trust Protection Service - (mfevtp) - C:\WINDOWS\system32\mfevtps.exe
O23 - Service R3: Windows Defender Antivirus Network Inspection Service - (WdNisSvc) - C:\Program Files\Windows Defender\NisSrv.exe
O23 - Service S2: Google Update Service (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service S2: PST Service - C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
O23 - Service S2: Razer Game Scanner - (Razer Game Scanner Service) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: Adobe LM Service - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service S3: Adobe SwitchBoard - (SwitchBoard) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service S3: FLEXnet Licensing Service - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service S3: Google Update Service (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: RoxMediaDB12OEM - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service S3: Windows Defender Antivirus Service - (WinDefend) - C:\Program Files\Windows Defender\MsMpEng.exe
O23 - Service S3: stllssvr - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe


Debug information:

- 26.07.2017 06:55:28 - modFile.OpenW - #0 LastDllError = 5 (Access is denied.) Cannot open file: C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
- 26.07.2017 06:55:28 - Parser.isFileFilledByNUL - #75 (Path/File access error) LastDllError = 0 File: C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
- 26.07.2017 06:55:28 - Parser.GetTargetShellLinkW - #70 (Permission denied) (The remote server has been paused or is in the process of being started.) LastDllError = 0 File: C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk

--
End of file - Time spent: 23 sec. - 75966 bytes, CRC32: FFFFFFFF. Sign: ﮳ए