1. #1

    Join Date
    Jun 2015
    Location
    Kerala, India
    Posts
    27
    • specs System Specs
      • Manufacturer:
        Lenovo
      • Model Number:
        Y50 FHD
      • CPU:
        Intel i7 i7-4710 @2.50 GHz
      • Memory:
        DDR3 8Gb
      • Graphics:
        Nvidia GTX 860M
      • Sound Card:
        Realtek
      • Hard Drives:
        1 Tb
      • Disk Drives:
        N/A
      • Power Supply:
        N/A
      • Case:
        N/A
      • Cooling:
        Inbuilt fans
      • Display:
        LCD 1920 X 1080
      • Operating System:
        Windows 10

    Exclamation .js file popup really annoying

    Ok whatever it is my best guesses are that the problem is due to a malware but I cant seem to disinfect the problem or the file I tried a malware detection software which worked on my pc and found one particular file and the remedial action was to delete and disinfect .

    AdwCleaner and Junkware Cleaner where the softwares i used to try and fix the problem

    In the beginning the error was while using my pc for sometime a random popup screen would come up asking me to open fiber.js file with an application of my choice.
    Once the Disinfection was done though the popup still kept coming but this time with no particular name for the file just .js file thats all !.

    It really gets annoying when Im playing online or doing some work as it constantly popups on screen and slows me down.

    Posted below are the logs needed. Im also attaching the error screenshot just to make things clear.
    .js file popup really annoying-errorscreenshot-jpg

    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:04-07-2015
    Ran by ArunPc (administrator) on ARUN on 04-07-2015 23:02:33
    Running from C:\Users\ArunPc\Downloads\Programs
    Loaded Profiles: ArunPc (Available Profiles: ArunPc)
    Platform: Windows 8.1 Single Language (X64) OS Language: English (United States)
    Internet Explorer Version 11 (Default browser: FF)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forum

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
    (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
    () C:\Program Files (x86)\Mblaze_Mylink\FI_Eject.exe
    (Microsoft Corporation) C:\Windows\System32\dasHost.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
    (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
    (LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
    (Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
    (IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
    (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
    (Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
    (Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    (PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
    (PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
    () C:\Windows\SysWOW64\PnkBstrA.exe
    () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
    (PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe
    (Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
    () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
    (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
    (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
    () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    (Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
    (Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
    (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
    (Microsoft Corporation) C:\Windows\System32\alg.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    (Intel Corporation) C:\Windows\System32\igfxHK.exe
    (Intel Corporation) C:\Windows\System32\igfxEM.exe
    (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
    (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
    (CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    (Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
    () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
    (Realtek semiconductor) C:\Windows\RTFTrack.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
    (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
    (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
    (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
    (Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe
    (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
    () C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
    (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    () C:\Users\ArunPc\AppData\Roaming\IDM\CODEXi\Steam
    () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    () C:\Program Files (x86)\Lenovo\Lenovo Messenger\NotificationsViewHost.exe
    (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Updates\LU.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_194.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_194.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-05-23] (NVIDIA Corporation)
    HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
    HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2014-06-10] (Realtek semiconductor)
    HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1395056 2015-04-13] (Realtek Semiconductor)
    HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-15] (Lenovo)
    HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2014-09-17] (Lenovo(beijing) Limited)
    HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2014-09-17] (Lenovo(beijing) Limited)
    HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
    HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2015-04-13] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1395056 2015-04-13] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1395056 2015-04-13] (Realtek Semiconductor)
    HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [4159736 2015-04-09] (Connectify)
    HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
    HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink Corp.)
    HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [] => [X]
    HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-04-30] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-04-30] (Adobe Systems Inc.)
    HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
    HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] (Qualcomm®Atheros®)
    HKLM\...\Policies\Explorer: [NoFolderOptions] 0
    HKLM\...\Policies\Explorer: [NoControlPanel] 0
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [AdobeBridge] => [X]
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3825232 2013-12-15] (Tonec Inc.)
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2889408 2015-04-14] (Valve Corporation)
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [uTorrent] => C:\Users\ArunPc\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-13] (BitTorrent Inc.)
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.)
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [Web Freer] => C:\Program Files (x86)\WebFreer\webfreer.exe [973824 2014-04-02] (Appaxy Inc.)
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8322328 2015-05-09] (Piriform Ltd)
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [Messenger (Yahoo!)] => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\MountPoints2: {0e1f6bd7-7c67-11e4-826a-3010b3a1e06c} - "I:\HTC_Sync_Manager_PC.exe"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\MountPoints2: {3d9a918e-79f7-11e4-8267-3010b3a1e06c} - "G:\HTC_Sync_Manager_PC.exe"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\MountPoints2: {3d9a93f1-79f7-11e4-8267-3010b3a1e06c} - "G:\.\3.5G-Connect.exe"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\MountPoints2: {572013b8-b99d-11e4-8279-f0761c0bb016} - "G:\LGAutoRun.exe"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\MountPoints2: {5f44c19f-140d-11e5-82ad-f0761c0bb016} - "G:\HTC_Sync_Manager_PC.exe"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\MountPoints2: {8be4cac9-078e-11e5-82a2-f0761c0bb016} - "G:\HTC_Sync_Manager_PC.exe"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\MountPoints2: {c8906c59-053f-11e5-829d-f0761c0bb016} - "L:\AutoRun.exe"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\MountPoints2: {ea96f7d7-64b6-11e4-825d-f0761c0bb016} - "G:\HTC_Sync_Manager_PC.exe"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Corporation)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutoCAD Startup Accelerator.lnk [2015-04-15]
    ShortcutTarget: AutoCAD Startup Accelerator.lnk -> C:\Program Files (x86)\Common Files\Autodesk Shared\acstart17.exe (Autodesk, Inc)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-11-15]
    ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
    Startup: C:\Users\ArunPc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk [2015-06-29]
    ShortcutTarget: PdaNet Desktop.lnk -> C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe ()
    ShellIconOverlayIdentifiers: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
    ShellIconOverlayIdentifiers: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
    ShellIconOverlayIdentifiers: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
    ShellIconOverlayIdentifiers: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
    ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2012-11-16] (Tonec Inc.)
    ShellIconOverlayIdentifiers-x32: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
    ShellIconOverlayIdentifiers-x32: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
    ShellIconOverlayIdentifiers-x32: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
    ShellIconOverlayIdentifiers-x32: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
    ShellIconOverlayIdentifiers-x32: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\windows\SysWOW64\AcSignIcon.dll [2006-03-05] (Autodesk)
    GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Google
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com - Hotmail, Outlook, Skype, Bing, Latest News, Photos & Videos
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = Buy Computers Laptops & Tablets | For Those Who Do | Lenovo US
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Buy Computers Laptops & Tablets | For Those Who Do | Lenovo US
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2013-11-09] (Internet Download Manager, Tonec Inc.)
    BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-05-01] (IObit)
    BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
    BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-19] (Oracle Corporation)
    BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-04-30] (Adobe Systems Incorporated)
    BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-19] (Oracle Corporation)
    BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-04-30] (Adobe Systems Incorporated)
    Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-04-30] (Adobe Systems Incorporated)
    Toolbar: HKU\S-1-5-21-3533856717-1996590830-672907801-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
    Tcpip\..\Interfaces\{4E309883-EC27-46CF-8AF5-A03A278A9BA3}: [DhcpNameServer] 192.168.1.1 192.168.1.1
    Tcpip\..\Interfaces\{8F5BFBCC-1940-4F78-ABDE-62FF85AB9724}: [DhcpNameServer] 169.254.224.91
    Tcpip\..\Interfaces\{9F9158B8-8CCF-4AE7-8831-E6ED1318D8F0}: [DhcpNameServer] 192.168.1.1 192.168.1.1
    Tcpip\..\Interfaces\{F44D4FBE-5A5C-4339-A959-EE2601D935A0}: [DhcpNameServer] 192.168.1.1 192.168.1.1
    Tcpip\..\Interfaces\{FD8C5C13-EABC-4276-8DD7-5E771F98743A}: [DhcpNameServer] 192.168.1.1 192.168.1.1
    StartMenuInternet: IEXPLORE.EXE - iexplore.exe

    FireFox:
    ========
    FF ProfilePath: C:\Users\ArunPc\AppData\Roaming\Mozilla\Firefox\Profiles\er57oayn.default
    FF Homepage: about:home
    FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_18_0_0_194.dll [2015-07-02] ()
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
    FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_194.dll [2015-07-02] ()
    FF Plugin-x32: @baidu.com/BaidusdDetectNPPlugin -> C:\Program Files (x86)\Baidu\BaiduSd\3.0.0.4605\explugin\npBaiduSDDetectPlug.dll No File
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-17] (Intel Corporation)
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-17] (Intel Corporation)
    FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-19] (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-19] (Oracle Corporation)
    FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2012-05-25] (Yahoo! Inc.)
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
    FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2013-12-13] (Nitro PDF)
    FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-28] (NVIDIA Corporation)
    FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-28] (NVIDIA Corporation)
    FF Plugin-x32: @qq.com/QQPCMgr -> C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\npQMExtensionsMozilla.dll No File
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-21] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-21] (Google Inc.)
    FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
    FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-04-30] (Adobe Systems Inc.)
    FF Extension: Internet Download Accelerator Media Monitor - C:\Users\ArunPc\AppData\Roaming\Mozilla\Firefox\Profiles\er57oayn.default\Extensions\idamm@westbyte.com [2015-06-05]
    FF Extension: Adblock Plus Pop-up Addon - C:\Users\ArunPc\AppData\Roaming\Mozilla\Firefox\Profiles\er57oayn.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-12-30]
    FF Extension: YouTube mp3 - C:\Users\ArunPc\AppData\Roaming\Mozilla\Firefox\Profiles\er57oayn.default\Extensions\info@youtube-mp3.org.xpi [2014-11-23]
    FF Extension: Adblock Plus - C:\Users\ArunPc\AppData\Roaming\Mozilla\Firefox\Profiles\er57oayn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-12-30]
    FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
    FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-11-05]
    FF HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
    FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
    FF HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ArunPc\AppData\Roaming\IDM\idmmzcc5
    FF Extension: IDM CC - C:\Users\ArunPc\AppData\Roaming\IDM\idmmzcc5 [2015-01-31]
    FF HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ArunPc\AppData\Roaming\IDM\idmmzcc5

    Chrome:
    =======
    CHR Profile: C:\Users\ArunPc\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (IDM Integration Module) - C:\Users\ArunPc\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn [2015-01-31]
    CHR Extension: (Chrome Hotword Shared Module) - C:\Users\ArunPc\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-24]
    CHR Extension: (Google Wallet) - C:\Users\ArunPc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-24]
    CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2013-11-09]
    CHR HKLM-x32\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2013-11-09]

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Windows (R) Win 7 DDK provider) [File not signed]
    S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [77944 2015-04-15] (Autodesk)
    S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
    R2 CDROM_Eject_FI; C:\Program Files (x86)\Mblaze_Mylink\FI_Eject.exe [2198016 2014-07-31] () [File not signed]
    R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [217088 2015-04-09] (Connectify) [File not signed]
    R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-23] (NVIDIA Corporation)
    R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [296432 2014-04-16] (Intel Corporation)
    R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
    S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation)
    R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-17] (Intel Corporation)
    S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
    R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-17] (Intel Corporation)
    S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [619776 2014-12-24] (Lenovo)
    R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584632 2015-03-06] (LENOVO INCORPORATED.)
    R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-09-17] (Lenovo(beijing) Limited)
    R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-05-01] (IObit)
    R2 LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [38896 2014-02-18] (Lenovo(beijing) Limited)
    S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
    S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
    R2 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-12-13] (Nitro PDF Software)
    R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-05-23] (NVIDIA Corporation)
    R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23006864 2015-05-23] (NVIDIA Corporation)
    R2 PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [167176 2014-02-26] (PointGrab LTD)
    R2 PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [512776 2014-02-26] (PointGrab LTD)
    R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2015-03-21] ()
    R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [183488 2014-11-01] ()
    R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
    R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
    S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
    R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [68880 2014-09-17] ()
    R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
    R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
    R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-12-24] (Atheros) [File not signed]

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3880448 2013-11-13] (Qualcomm Atheros Communications, Inc.)
    R2 BDMNetMon; C:\Windows\System32\DRIVERS\BDMNetMon.sys [241992 2015-04-03] (Baidu)
    S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-12-24] (Qualcomm Atheros)
    S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
    R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [42152 2015-05-04] (Connectify)
    R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2014-11-05] (DT Soft Ltd)
    R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
    S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
    R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-17] (Intel Corporation)
    S3 mtkmbim; C:\Windows\system32\DRIVERS\mtkmbim7_x64.sys [208896 2012-10-30] (MediaTek Inc.) [File not signed]
    S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
    R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-23] (NVIDIA Corporation)
    R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-04-03] (NVIDIA Corporation)
    R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [444632 2013-10-24] (Realsil Semiconductor Corporation)
    R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9121496 2014-06-10] (Realtek Semiconductor Corp.)
    R2 rzpmgrk; C:\windows\system32\drivers\rzpmgrk.sys [37184 2014-11-01] (Razer, Inc.)
    R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2014-03-07] (Synaptics Incorporated)
    R1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel64.sys [174392 2015-05-01] (Tencent Technology(Shenzhen) Company Limited)
    R1 TFsFlt; C:\Windows\System32\Drivers\TFsFltX64.sys [87864 2015-05-01] (电脑管家)
    S3 wdf_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [81408 2013-10-22] (MediaTek Inc.) [File not signed]
    R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
    S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
    S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)
    S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
    S2 BDDefense; \??\C:\windows\system32\drivers\BDDefense.sys [X]
    S2 QQSysMonX64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQSysMonX64.sys [X]
    S1 TSCPM; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\tscpm64.sys [X]

    ========================== Drivers MD5 =======================

    C:\Windows\System32\drivers\1394ohci.sys E1832BD9FD7E0FC2DC9FA5935DE3E8C1
    C:\Windows\System32\drivers\3ware.sys AD508A1A46EC21B740AB31C28EFDFDB1
    C:\Windows\System32\drivers\ACPI.sys E796AE43DDD1844281DB4D57294D17C0
    C:\Windows\System32\Drivers\acpiex.sys AC8279D229398BCF05C3154ADCA86813
    C:\Windows\System32\drivers\acpipagr.sys A8970D9BF23CD309E0403978A1B58F3F
    C:\Windows\System32\drivers\acpipmi.sys 111A89C99C5B4F1A7BCE5F643DD86F65
    C:\Windows\System32\drivers\acpitime.sys 5758387D68A20AE7D3245011B07E36E7
    C:\Windows\System32\drivers\AcpiVpc.sys 561E1023BEB555A77DBEAFB83E74BA14
    C:\Windows\System32\drivers\ADP80XX.SYS 7C1FDF1B48298CBA7CE4BDD4978951AD
    C:\Windows\system32\drivers\afd.sys 374E27295F0A9DCAA8FC96370F9BEEA5
    C:\Windows\System32\drivers\agp440.sys 7DFAEBA9AD62D20102B576D5CAC45EC8
    C:\Windows\System32\DRIVERS\ahcache.sys FE14D249D39368CA62D8DA6BC94AC694
    C:\Windows\System32\drivers\amdk8.sys 7589DE749DB6F71A68489DCE04158729
    C:\Windows\System32\drivers\amdppm.sys B46D2D89AFF8A9490FA8C98C7A5616E3
    C:\Windows\System32\drivers\amdsata.sys D2BF2F94A47D332814910FD47C6BBCD2
    C:\Windows\System32\drivers\amdsbs.sys A8E04943C7BBA7219AA50400272C3C6E
    C:\Windows\System32\drivers\amdxata.sys CEA5F4F27CFC08E3A44D576811B35F50
    C:\Windows\system32\drivers\appid.sys 415DD71628795197F7AFC176CBADC74E
    C:\Windows\System32\drivers\arcsas.sys 65045784366F7EC5FB4E71BCF923187B
    C:\Windows\system32\DRIVERS\asyncmac.sys 3DB7721F06BC2FEDB25029EA23AB27DA
    C:\Windows\System32\drivers\atapi.sys 74B14192CF79A72F7536B27CB8814FBD
    C:\Windows\system32\DRIVERS\btath_flt.sys 8302D313DCC5536FE6BFB85165D9BB1E
    C:\Windows\system32\DRIVERS\athwbx.sys 7ABEEA176A840449BFA7A766DFE1085E
    C:\Windows\System32\drivers\bxvbda.sys A4A73F631FE2AA2826FBE4A399B04DEF
    C:\Windows\System32\drivers\BasicDisplay.sys 8CC7F7E4AFCBA605921B137ED7992C68
    C:\Windows\System32\drivers\BasicRender.sys 38A82F4EE8C416A6744B6D30381ED768
    C:\Windows\System32\drivers\bcmfn2.sys C1ABB0F7E3BEA48A0417BDF6FF14AB21
    C:\Windows\System32\DRIVERS\BDMNetMon.sys AF7D07B2E1761FB64E838932992180CD
    C:\Windows\System32\Drivers\Beep.sys EC19013E4CF87609534165DF897274D6
    C:\Windows\System32\DRIVERS\bowser.sys 6B4FFFDDC618FCF64473CAA86E305697
    C:\Windows\system32\drivers\btath_a2dp.sys 15BE0FCECAE5BC00FB3D339D3D1CF4E4
    C:\Windows\system32\drivers\btath_avdt.sys 1FFA5E05F2DE32D9E65CFDA4B33D50FD
    C:\Windows\System32\drivers\btath_bus.sys C6978F7EBA6F37D626482AC6B9390630
    C:\Windows\System32\drivers\btath_hcrp.sys 4AF7C20F94DAC343C01ED671C82DCB99
    C:\Windows\system32\DRIVERS\btath_lwflt.sys 785C38070043BEEE9E9D591DE4067244
    C:\Windows\System32\drivers\btath_rcp.sys 859A116D748FBA603AF94C251DC5CF97
    C:\Windows\system32\DRIVERS\btfilter.sys 58DBB1384F26562111048036E7787F04
    C:\Windows\System32\drivers\BthAvrcpTg.sys A8F23D453A424FF4DE04989C4727ECC7
    C:\Windows\System32\drivers\BthEnum.sys 1104A31260CCF4318C884E0AE6C513BF
    C:\Windows\System32\drivers\bthhfenum.sys 272A62B660A48AEF366F8A1836CED19F
    C:\Windows\System32\drivers\BthHFHid.sys 71FE2A48E4C93DDB9798C024880B6C07
    C:\Windows\system32\DRIVERS\BthLEEnum.sys D30C67473A2E229662D21F27EAA9AAA5
    C:\Windows\System32\drivers\bthmodem.sys EF4B9E7C9AD88C00C18A12B0D22D1894
    C:\Windows\System32\drivers\bthpan.sys 25BB93167DEF270188072603F92A1EF5
    C:\Windows\System32\Drivers\BTHport.sys C37F4930795B771400C63C3C87E7A6C2
    C:\Windows\System32\Drivers\BTHUSB.sys 08EA90955AED2D959EE67DF6EDF0E2B6
    C:\Windows\System32\DRIVERS\cdfs.sys 2FA6510E33F7DEFEC03658B74101A9B9
    C:\Windows\System32\drivers\cdrom.sys C6796EA22B513E3457514D92DCDB1A3D
    C:\Windows\System32\drivers\circlass.sys BE9936EDD3267FAAFF94A7835867F00B
    C:\Windows\System32\drivers\CLFS.sys 8EB7E70C2D348FE2476A2E3F2D585E3D
    C:\Windows\System32\drivers\CmBatt.sys EF6EF85DADC3184A10D8F2F7159973CB
    C:\Windows\System32\Drivers\cng.sys 5E5AB950693F2C6D6ACBEE3A74697ED7
    C:\Windows\system32\DRIVERS\cnnctfy3.sys E78714B423B73BF2A380EC7E7A3EEA02
    C:\Windows\System32\drivers\CompositeBus.sys 03AAED827C36F35D70900558B8274905
    C:\Windows\System32\drivers\condrv.sys A1FF7DFBFBE164CF92603C651D304DD2
    C:\Windows\System32\drivers\dam.sys 315BA4BC19316D72B2E037534E048B93
    C:\Windows\System32\Drivers\dfsc.sys A03F362C5557E238CBFA914689C77248
    C:\Windows\system32\DRIVERS\ssudbus.sys 73BDD44A6088916964945886F9025409
    C:\Windows\System32\drivers\disk.sys 4D40C9B33F738797CF50E77CB7C53E85
    C:\Windows\System32\drivers\dmvsc.sys EB70A894708D1BC176AFD690FF06085F
    C:\Windows\system32\drivers\drmkaud.sys 00C594D5A1DBD22AD8B2902B9F6EFF94
    C:\Windows\System32\drivers\dtsoftbus01.sys 46571ED73AE84469DCA53081D33CF3C8
    C:\Windows\System32\drivers\dxgkrnl.sys E1BB0B6F00F470B451AB45EA13EBA0B3
    C:\Windows\system32\DRIVERS\e1i63x64.sys FA988D76745C917CDFE20031C06DE860
    C:\Windows\System32\drivers\evbda.sys 114BCFDF367FF37C3F1B0A96AF542E4D
    C:\Windows\System32\drivers\EhStorClass.sys 43531A5993380CC5113242C29D265FD9
    C:\Windows\System32\drivers\EhStorTcgDrv.sys 6F8E738A9505A388B1157FDDE7B3101B
    C:\Windows\System32\drivers\errdev.sys DFFFAE1442BA4076E18EED5E406FA0D3
    C:\Windows\System32\Drivers\exfat.sys 7729D294A555C7AEB281ED8E4D0E01E4
    C:\Windows\System32\Drivers\fastfat.sys 7C4E0D5900B2A1D11EDD626D6DDB937B
    C:\Windows\System32\drivers\fdc.sys 5D8402613E778B3BD45E687A8372710B
    C:\Windows\System32\drivers\fileinfo.sys BCFD8B149B3ADF92D0DB1E909CAF0265
    C:\Windows\System32\drivers\filetrace.sys A1A66C4FDAFD6B0289523232AFB7D8AF
    C:\Windows\System32\drivers\flpydisk.sys BE743083CF7063C486A4398E3AEFE59A
    C:\Windows\System32\drivers\fltmgr.sys C1FB505A73FA2E9019D32444AB33B75A
    C:\Windows\System32\drivers\FsDepends.sys A7C31B168F371E8E6796219F23E354DB
    C:\Windows\System32\Drivers\Fs_Rec.sys 09F460AFEDCA03F3BF6E07D1CCC9AC42
    C:\Windows\System32\DRIVERS\fvevol.sys F152D55E497E12256290C43B31C7D0CE
    C:\Windows\System32\drivers\fxppm.sys 9591D0B9351ED489EAFD9D1CE52A8015
    C:\Windows\System32\drivers\gagp30kx.sys FC3EF65EE20D39F8749C2218DBA681CA
    C:\Windows\System32\drivers\vmgencounter.sys 0BF5CAD281E25F1418E5B8875DC5ADD1
    C:\Windows\System32\Drivers\msgpioclx.sys 8DF1254093B5C354CE725EB6B9B0DE19
    C:\Windows\system32\drivers\HdAudio.sys 56F69F7C25FB67C970997D7066DBC593
    C:\Windows\System32\drivers\HDAudBus.sys D4B7ED39C7900384D9E5C1283F1E7926
    C:\Windows\System32\drivers\HidBatt.sys 10A70BC1871CD955D85CD88372724906
    C:\Windows\System32\drivers\hidbth.sys 42F88B57CAE42FC10059C887B3FCFCEA
    C:\Windows\System32\drivers\hidi2c.sys C241A8BAFBBFC90176EA0F5240EACC17
    C:\Windows\System32\drivers\hidir.sys 9BDDEE26255421017E161CCB9D5EDA95
    C:\Windows\System32\drivers\hidusb.sys 8DB8EAB9D0C6A5DF0BDCADEA239220B4
    C:\Windows\System32\drivers\HpSAMD.sys A6AACEA4C785789BDA5912AD1FEDA80D
    C:\Windows\System32\drivers\HTTP.sys E87A6D3B8FECD5B93BC0CFBB48C27970
    C:\Windows\System32\drivers\hwpolicy.sys 90656C0B3864804B090434EFC582404F
    C:\Windows\System32\drivers\hyperkbd.sys 6D6F9E3BF0484967E52F7E846BFF1CA1
    C:\Windows\system32\DRIVERS\HyperVideo.sys 907C870F8C31F8DDD6F090857B46AB25
    C:\Windows\System32\drivers\i8042prt.sys D887446F3F6051C60C26F4FD1FC8D43F
    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 5D90E32E36CE5D4C535D17CE08AEAF05
    C:\Windows\System32\drivers\iaLPSSi_I2C.sys DD05E7E80F52ADE9AEB292819920F32C
    C:\Windows\System32\drivers\iaStorAV.sys 08BFE413B0B4AA8DFA4B5684CE06D3DC
    C:\Windows\System32\drivers\iaStorV.sys A2200C3033FA4EF249FC096A7A7D02A2
    C:\Windows\system32\DRIVERS\idmwfp.sys 03F5F3EE4E8DB1CE944A6FA6DBE148CB
    C:\Windows\system32\DRIVERS\igdkmd64.sys B12F7F8180BCD99B29AE2A6534857EA1
    C:\Windows\system32\drivers\intelaud.sys FC7C456AF9B9811499EDBD10616832EE
    C:\Windows\system32\drivers\RTKVHD64.sys 734E92848983F17822B4F71C5F912C6C
    C:\Windows\system32\DRIVERS\IntcDAud.sys 890144FA6AB42F2B54EE633BF96A019A
    C:\Windows\System32\drivers\intelide.sys 4E448FCFFD00E8D657CD9E48D3E47157
    C:\Windows\System32\drivers\intelpep.sys A770340FC02B999EF0DE6C2A6BC8437C
    C:\Windows\System32\drivers\intelppm.sys 47E74A8E53C7C24DCE38311E1451C1D9
    C:\Windows\System32\DRIVERS\ipfltdrv.sys 9DB76D7F9E4E53EFE5DD8C53DE837514
    C:\Windows\System32\drivers\IPMIDrv.sys 9C096BF5E10CA8BFA56F32522A89FAF1
    C:\Windows\System32\drivers\ipnat.sys B7342B3C58E91107F6E946A93D9D4EFD
    C:\Windows\System32\drivers\irenum.sys AE44C526AB5F8A487D941CEB57B10C97
    C:\Windows\System32\drivers\isapnp.sys 8AFEEA3955AA43616A60F133B1D25F21
    C:\Windows\System32\drivers\msiscsi.sys D90AB68D0FAC9F357F663670FDBB511E
    C:\Windows\System32\drivers\iwdbus.sys A90C843F4FDD7A07129BA73C6BE13976
    C:\Windows\System32\drivers\kbdclass.sys A1D4D34A56DF1D5122CDB265038A2E72
    C:\Windows\System32\drivers\kbdhid.sys 4A34D7084B862A92F3ABC4969166B3D3
    C:\Windows\system32\DRIVERS\kdnic.sys 813871C7D402A05F2E3A7075F9584A05
    C:\Windows\System32\Drivers\ksecdd.sys 4E829B18D5BAEC29893792A3C671A847
    C:\Windows\System32\Drivers\ksecpkg.sys 15C8C65CEA018C02EA0F648448C491C5
    C:\Windows\system32\drivers\ksthunk.sys 11AFB527AA370B1DAFD5C36F35F6D45F
    C:\Windows\system32\DRIVERS\lltdio.sys C09010B3680860131631F53E8FE7BAD8
    C:\Windows\System32\drivers\lsi_sas.sys C755AE4635457AA2A11F79C0DF857ABC
    C:\Windows\System32\drivers\lsi_sas2.sys ADAC09CBE7A2040B7F68B5E5C9A75141
    C:\Windows\System32\drivers\lsi_sas3.sys 04D1274BB9BBCCF12BD12374002AA191
    C:\Windows\System32\drivers\lsi_sss.sys 327469EEF3833D0C584B7E88A76AEC0C
    C:\Windows\system32\drivers\luafv.sys DDEE191AB32DFC22C6465002ECDF5EE4
    C:\windows\system32\drivers\mbam.sys 1E9E32AEC3E1EB1B31B8169F33168B56
    C:\windows\system32\drivers\mwac.sys 28B597A61C9AC9B59BC0573D70A62CBF
    C:\Windows\System32\drivers\megasas.sys EB5C03A070F30D64A6DF80E53B22F53F
    C:\Windows\System32\drivers\megasr.sys F6F13533196DE7A582D422B0241E4363
    C:\Windows\system32\DRIVERS\TeeDriverx64.sys E0EF6C1399A9B1AAA0B28590411BED04
    C:\Windows\System32\drivers\modem.sys 8B38C44F69259987C95135C9627E2378
    C:\Windows\System32\drivers\monitor.sys 601589000CC90F0DF8DA2CC254A3CCC9
    C:\Windows\System32\drivers\mouclass.sys 2A2F8D5284E59815169A88F1FC9CEE28
    C:\Windows\System32\drivers\mouhid.sys 91223A2AE2955B3E0DA3DB79C3A897A6
    C:\Windows\System32\drivers\mountmgr.sys D1D82F007A079A4D623DBD1F36EF30A1
    C:\Windows\System32\drivers\mpsdrv.sys 6FC047578785B0435F4E2660946D1ADC
    C:\Windows\system32\drivers\mrxdav.sys DB32958F0E704EFBF7F15161A569E39F
    C:\Windows\System32\DRIVERS\mrxsmb.sys 31233271EDE50D1BBB220F78AFA60486
    C:\Windows\System32\DRIVERS\mrxsmb10.sys 3E28B99198B514DFEB152EACF913025E
    C:\Windows\System32\DRIVERS\mrxsmb20.sys 6276AC2AA203CF47811F6EFBBD214FBF
    C:\Windows\system32\DRIVERS\bridge.sys F3C060444777A59FC63D920719E43CCD
    C:\Windows\System32\Drivers\Msfs.sys D13329FBF8345B28AB30F44CC247DC08
    C:\Windows\System32\drivers\msgpiowin32.sys C6B474E46F9E543B875981ED3FFE6ADD
    C:\Windows\System32\drivers\mshidkmdf.sys 65C92EB9D08DB5C69F28C7FFD4E84E31
    C:\Windows\System32\drivers\mshidumdf.sys 52299F086AC2DAFD100DD5DC4A8614BA
    C:\Windows\System32\drivers\msisadrv.sys 36D92AF3343C3A3E57FEF11C449AEA4C
    C:\Windows\system32\drivers\MSKSSRV.sys A9BBBD2BAE6142253B9195E949AC2E8D
    C:\Windows\system32\DRIVERS\mslldp.sys 51B3AC0560848CD6D65AC2033E293113
    C:\Windows\system32\drivers\MSPCLOCK.sys 7B2128EB875DCBC006E6A913211006D6
    C:\Windows\system32\drivers\MSPQM.sys 1E88171579B218115C7A772F8DE04BD8
    C:\Windows\System32\Drivers\MsRPC.sys BBE2A455053E63BECBF42C2F9B21FAE0
    C:\Windows\System32\drivers\mssmbios.sys 8D6B7D515C5CBCDB75B928A0B73C3C5E
    C:\Windows\system32\drivers\MSTEE.sys 115019AE01E0EB9C048530D2928AB4A2
    C:\Windows\System32\drivers\MTConfig.sys 96D604A35070360F0DD4A7A8AF410B5E
    C:\Windows\system32\DRIVERS\mtkmbim7_x64.sys 81AB6B6A13CD0FF378FC8EAE61B21E4D
    C:\Windows\System32\Drivers\mup.sys 619CA29326B82372621DB2C0964D8365
    C:\Windows\System32\drivers\mvumis.sys B8C35C94DCB2DFEAF03BB42131F2F77F
    C:\Windows\system32\DRIVERS\nwifi.sys 008F7CED69FD5B30CBDE1E03C6F36A27
    C:\Windows\System32\drivers\ndis.sys 6D3A2565E01B3E4B0F1BEDB0D4B00B3F
    C:\Windows\system32\DRIVERS\ndiscap.sys 8CECC8DA55F3274181FD1EA28AD76664
    C:\Windows\system32\DRIVERS\NdisImPlatform.sys 269882812E9A68FFF1AFE1283D428322
    C:\Windows\system32\DRIVERS\ndistapi.sys 82821F4EEC776B4CF11695A38F3ABA46
    C:\Windows\system32\DRIVERS\ndisuio.sys B832B35055BA2B7B4181861FF94D8E59
    C:\Windows\System32\drivers\NdisVirtualBus.sys 1F58E48EF75F34C35D8E93A0DC535CFE
    C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A
    C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A
    C:\Windows\System32\Drivers\NDProxy.sys DDD7F92A83F74D1476B71FBA9530A8DC
    C:\Windows\System32\drivers\Ndu.sys 3083926D1CC5B56EA0786527B557DD1B
    C:\Windows\System32\DRIVERS\netbios.sys 42FF4975D032CAE558AE4BB8448F6E5A
    C:\Windows\System32\DRIVERS\netbt.sys 0217532E19A748F0E5D569307363D5FD
    C:\Windows\System32\drivers\netvsc63.sys D4DCE03870314D3354F3501F9DDD4123
    C:\Windows\system32\DRIVERS\NETwew02.sys B636B4A8E59A73033B766EA7FD7C3B81
    C:\Windows\System32\Drivers\Npfs.sys 8F44A2F57C9F1A19AC9C6288C10FB351
    C:\Windows\System32\drivers\npsvctrig.sys CBDB4F0871C88DF930FC0E8588CA67FC
    C:\Windows\System32\drivers\nsiproxy.sys 0E046FF5823B95326D10CF1B4AF23541
    C:\Windows\System32\Drivers\Ntfs.sys 7F68063A5A0461E02BC860CE0E6BFDDC
    C:\Windows\System32\Drivers\Null.sys EF1B290FC9F0E47CC0B537292BEE5904
    C:\Windows\system32\DRIVERS\nvlddmkm.sys 017E0B4AEFCB291E7CF1CD4BF120A7A8
    C:\Windows\System32\drivers\nvraid.sys BC6B5942AFF25EBAF62DE43C3807EDF8
    C:\Windows\System32\drivers\nvstor.sys 1F43ABFFAC3D6CA356851D517392966E
    C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys 7308AA5672CC6D14F43C91965DC67200
    C:\Windows\system32\drivers\nvvad64v.sys D0EB00C3BDD50E9CABA534CF829593E8
    C:\Windows\System32\drivers\nv_agp.sys 6934A936A7369DFE37B7DBA93F5E5E49
    C:\Windows\System32\drivers\parport.sys 764B1121867B2D9B31C491668AC72B2B
    C:\Windows\System32\drivers\partmgr.sys BAFF6122CFC9F95CA175AD8C348179A4
    C:\Windows\System32\drivers\pci.sys 91ED124E261EA8FAA1C0FFDF2A71B0C4
    C:\Windows\System32\drivers\pciide.sys 346E38FCC6859A727DD28AFAD1F0AFF4
    C:\Windows\System32\drivers\pcmcia.sys 4D3BDCC1C7B40C9D7B6AD990E6DEC397
    C:\Windows\System32\drivers\pcw.sys BF28771D1436C88BE1D297D3098B0F7D
    C:\Windows\System32\drivers\pdc.sys 24A8DFC07E4BAF29AEA26E383D4CC886
    C:\Windows\System32\drivers\peauth.sys 0ECEE590F2E2EF969FB74A6FC583A1E6
    C:\Windows\system32\DRIVERS\pneteth.sys A010F13D27C1033A8BE09D5FA9BF348B
    C:\Windows\system32\DRIVERS\raspptp.sys E075CC071022BD4E9BE7C024717C0E0A
    C:\Windows\System32\drivers\processr.sys ECD373F9571C745894367CC2635EA44F
    C:\Windows\system32\DRIVERS\pacer.sys FC0141B4A5AD6D637D883C1A89FC45C5
    C:\Windows\system32\drivers\qwavedrv.sys 83868EB2924E6BC21A54337C65D614D1
    C:\Windows\System32\DRIVERS\rasacd.sys B337B1F1E82A83E20A1743E008E25C0F
    C:\Windows\system32\DRIVERS\AgileVpn.sys E8FFD8BE3C50E7A71C5FBB87BDD1128E
    C:\Windows\system32\DRIVERS\rasl2tp.sys BBB6272B7F46C4640A8CDB8A70C3450F
    C:\Windows\system32\DRIVERS\raspppoe.sys 5247F308C4103CDC4FE12AE1D235800A
    C:\Windows\system32\DRIVERS\rassstp.sys 41F631007A158FEBB67F0E2AD1601BBA
    C:\Windows\System32\DRIVERS\rdbss.sys A1A5E79C0D1352AFDC08328A623DA051
    C:\Windows\System32\drivers\rdpbus.sys 6B21EBF892CD8CACB71669B35AB5DE32
    C:\Windows\System32\drivers\rdpdr.sys 680C1DAE268B6FB67FA21B389A8B79EF
    C:\Windows\System32\drivers\rdpvideominiport.sys BC8A79C625568DDB7DCA49D0C2741A64
    C:\Windows\System32\drivers\rdyboost.sys A26AEC49F318FEE141DDDB2C5F99B3E6
    C:\Windows\System32\Drivers\ReFS.sys 615DFD97DEA56CE1C3A52185A3038FF8
    C:\Windows\System32\drivers\rfcomm.sys DC66AE45816614D2999DCD3834DCCC4E
    C:\Windows\system32\DRIVERS\rspndr.sys 2D05A5508F4685412F2B89E8C2189ABC
    C:\Windows\system32\DRIVERS\Rt630x64.sys CFE738C524F35B6E523A4D0F54840C30
    C:\Windows\system32\DRIVERS\RtsPer.sys 8461757DDDCA99CCB6B97AE3EC3405EC
    C:\Windows\system32\DRIVERS\rtsuvc.sys 479B5AF9629BD616608CBFC20DFA4A85
    C:\windows\system32\drivers\rzpmgrk.sys F17F84511E7DFDEEAB646F0699A006D7
    C:\Windows\System32\drivers\vms3cap.sys 1A063730F221B2746FF00457AE17E4F0
    C:\Windows\System32\drivers\sbp2port.sys C624A1B32211C3166EDB3F4AB02A30B7
    C:\Windows\System32\DRIVERS\scfilter.sys 13BEA6C882D4D877A5A85CA149C86BC1
    C:\Windows\System32\drivers\sdbus.sys C54B6B2170BF628FD42F799A66956D75
    C:\Windows\System32\drivers\sdstor.sys 0B1E929D11A8E358106955603FAC65E8
    C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
    C:\Windows\System32\drivers\SerCx.sys DB2FF24CE0BDD15FE75870AFE312BA89
    C:\Windows\System32\drivers\SerCx2.sys 0044B31F93946D5D41982314381FE431
    C:\Windows\System32\drivers\serenum.sys 3CD600C089C1251BEEB4CD4CD5164F9E
    C:\Windows\System32\drivers\serial.sys D864381BC9C725FAB01D94C060660166
    C:\Windows\System32\drivers\sermouse.sys 96B01F117057FB4DAE0FF919ACB55770
    C:\Windows\System32\drivers\sfloppy.sys 472B7A5AC181C050888DB454663DD764
    C:\Windows\System32\drivers\SiSRaid2.sys 2F518D13DD6F3053837FE606F1A2EA1F
    C:\Windows\System32\drivers\sisraid4.sys 1AC9A200A9C49C4508F04AAFFCA34A3F
    C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys FA3B5FC18878129375CF1B8F3361A4AB
    C:\Windows\System32\drivers\spaceport.sys D24B1945ED1F9C96DA786DBBF1E983CE
    C:\Windows\System32\drivers\SpbCx.sys F337BE11071818FC3F5DC2940B6BDE34
    C:\Windows\System32\DRIVERS\srv.sys 6416E79A58A8FCC33A447A4DDDD3BF04
    C:\Windows\System32\DRIVERS\srv2.sys 00D8AC8E3053290BDE6EA2FB6810D2FC
    C:\Windows\System32\DRIVERS\srvnet.sys D047CD668E6277FD80F0C613946F034C
    C:\Windows\system32\DRIVERS\ssudmdm.sys 5252D7BC56E5E0ED715AEA8FE173A455
    C:\Windows\System32\drivers\stexstor.sys 366DEA74BBA65B362BCCFC6FC2ADFD8B
    C:\Windows\System32\drivers\storahci.sys 0ED2E318ABB68C1A35A8B8038BDB4C90
    C:\Windows\System32\drivers\vmstorfl.sys 8B9486B64E5FC17FB9CC04CA10B77A34
    C:\Windows\System32\drivers\stornvme.sys 6B06E2D11E604BE2B1A406C4CB3B90DE
    C:\Windows\System32\drivers\storvsc.sys 548759755BC73DAD663250239D7E0B9F
    C:\Windows\System32\drivers\swenum.sys 65454187E0F8B6C0DCECB0287D06EC43
    C:\Windows\system32\DRIVERS\SynTP.sys B4BEECAED0C7D0EC395EF775BE785638
    C:\Windows\System32\Drivers\TAOKernel64.sys A09E8A0D420147DAAA760763F6A6F8DC
    C:\Windows\System32\drivers\tcpip.sys 468273F7089A3A33D149955F0F203FA4
    C:\Windows\system32\DRIVERS\tcpip.sys 468273F7089A3A33D149955F0F203FA4
    C:\Windows\System32\drivers\tcpipreg.sys 41CF802064F72E55F50CA0A221FD36D4
    C:\Windows\system32\DRIVERS\tdx.sys FFF28F9F6823EB1756C60F1649560BBF
    C:\Windows\System32\drivers\terminpt.sys 232D185D2337F141311D0CF1983E1431
    C:\Windows\System32\Drivers\TFsFltX64.sys 6F591025E6EDDC322E7C1B1A0E56F57A
    C:\Windows\system32\drivers\tpm.sys 82F909359600D3603FE852DB7F135626
    C:\Windows\System32\drivers\tsusbflt.sys BF8F54CA37E9C9D6582C31C5761F8C93
    C:\Windows\System32\drivers\TsUsbGD.sys 20185BEB7512EDE4EFECDFA148AC9F99
    C:\Windows\system32\DRIVERS\tunnel.sys C8E0E78B5D284C2FF59BDFFDAF997242
    C:\Windows\System32\drivers\uagp35.sys F6EEAD052943B5A3104C1405BB856C54
    C:\Windows\System32\drivers\uaspstor.sys FE6067B1FD4E63650C667B33D080565B
    C:\Windows\System32\drivers\ucx01000.sys 807F8CF3E973305FC435C61CBBEE2A49
    C:\Windows\System32\DRIVERS\udfs.sys C61EAF8E1E4B2F62BA4FDF457440B2C6
    C:\Windows\System32\drivers\UEFI.sys 9578691F297E1B1F519970FE6D47CB21
    C:\Windows\System32\drivers\uliagpkx.sys 5EAB5117DDB24FC4D39E6FFFCF1837B9
    C:\Windows\System32\drivers\umbus.sys DA34C39A18E60E7C3FA0630566408034
    C:\Windows\System32\drivers\umpass.sys AE8294875E5446E359B1E8035D40C05E
    C:\Windows\System32\drivers\usbccgp.sys FF78D053A05E5A394F4E3C1816CC65A8
    C:\Windows\System32\drivers\usbcir.sys 0139248F6B95CF0D837B5B46A2722D40
    C:\Windows\System32\drivers\usbehci.sys 48BA326A3DBA5B5BEB5F2777F4618696
    C:\Windows\System32\drivers\usbhub.sys FEF0BC107812B36849741C3211BA6B60
    C:\Windows\System32\drivers\UsbHub3.sys 95B0179BDA907252025DEEA183699FB3
    C:\Windows\System32\drivers\usbohci.sys 3019097FB6C985EF24C058090FF3BDBD
    C:\Windows\System32\drivers\usbprint.sys 4D655E3B684BE9B0F7FFD8A2935C348C
    C:\Windows\System32\drivers\USBSTOR.SYS 66732C13628BDB1AB0D6FD46027327C2
    C:\Windows\System32\drivers\usbuhci.sys 064260B3A5868AC894A4943543BC7AB7
    C:\Windows\System32\Drivers\usbvideo.sys 5C8F604F6DC74177CDD8372D7B1ADFF0
    C:\Windows\System32\drivers\USBXHCI.SYS 44603DA5A87FB491EF59C889EBBB4DDB
    C:\Windows\system32\DRIVERS\usb8023x.sys 3CAAB947B1F247A570DE15983BEDEBCF
    C:\Windows\System32\drivers\vdrvroot.sys FEB26E3B8345A7E8D62F945C4AE86562
    C:\Windows\System32\drivers\VerifierExt.sys A026EDEAA5EECAE0B08E2748B616D4BD
    C:\Windows\System32\drivers\vhdmp.sys C06E8481E068F170A258441639AC5792
    C:\Windows\System32\drivers\viaide.sys 06D38968028E9AB19DE9B618C7B6D199
    C:\Windows\System32\drivers\vmbus.sys 511AD3FF957A0127E6BD336FF6F89C38
    C:\Windows\System32\drivers\VMBusHID.sys DA40BEA0A863CE768C940CA9723BF81F
    C:\Windows\System32\drivers\volmgr.sys 55D7D963DE85162F1C49721E502F9744
    C:\Windows\System32\drivers\volmgrx.sys CCB9E901F7254BF96D28EB1B0E5329B7
    C:\Windows\System32\drivers\volsnap.sys 64CA2B4A49A8EAF495E435623ECCE7DB
    C:\Windows\System32\drivers\vpci.sys EF31713EE4C7CCFE4049F7E7F15645A2
    C:\Windows\System32\drivers\vsmraid.sys 4539F45F9F4C9757A86A56C949421E07
    C:\Windows\System32\drivers\vstxraid.sys 0849B7260F26FE05EA56DED0672E2F4B
    C:\Windows\System32\drivers\vwifibus.sys BE970C369E43B509C1EDA2B8FA7CECB0
    C:\Windows\system32\DRIVERS\vwififlt.sys 35BF5C5F5E3C9902C98978C7640574DA
    C:\Windows\system32\DRIVERS\vwifimp.sys 65ED7B9CFEA893DF7748D5FF692690DE
    C:\Windows\System32\drivers\wacompen.sys 0910AB9ED404C1434E2D0376C2AD5D8B
    C:\Windows\system32\DRIVERS\wanarp.sys 6505C9E72910F91D4C317EECF22D1DE6
    C:\Windows\system32\DRIVERS\wanarp.sys 6505C9E72910F91D4C317EECF22D1DE6
    C:\Windows\System32\drivers\WdBoot.sys 1751F6B031ADAC34724511057D2E455D
    C:\Windows\System32\drivers\Wdf01000.sys CB6C63FF8342B467E2EF76E98D5B934D
    C:\Windows\System32\drivers\WdFilter.sys D296D0F0DB2CD1504F90405603664493
    C:\Windows\system32\DRIVERS\usb2ser.sys CABA2C0BBBDA1410EB18D4C7C574F355
    C:\Windows\System32\Drivers\WdNisDrv.sys 9F4DF0043965808973023A9B51A11136
    C:\Windows\System32\DRIVERS\wfplwfs.sys BAB713B409258DB7B5D9F9693F802B0E
    C:\Windows\System32\drivers\wimmount.sys 5F66B7BB330AA80067FC66149A692620
    C:\Windows\System32\drivers\WinUsb.sys AC263C2F66405589528995AA41040599
    C:\Windows\System32\drivers\wmiacpi.sys 2834D9D3B4F554A39C72F00EA3F0E128
    C:\Windows\System32\Drivers\Wof.sys 7FC5667DF73D4B04AA457CC3A4180E09
    C:\Windows\System32\DRIVERS\wpcfltr.sys A2468CC3509394A33C4C32F99563D845
    C:\Windows\System32\drivers\WpdUpFltr.sys 9F2904B55F6CECCD1A8D986B5CE2609A
    C:\Windows\system32\drivers\ws2ifsl.sys AE072B0339D0A18E455DC21666CAD572
    C:\Windows\system32\DRIVERS\wsvd.sys 72B4E9DF6456C43C42A1419B09486045
    C:\Windows\System32\drivers\WudfPf.sys 481286719402E4BAEFEA0604AB1B5113
    C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F
    C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F
    C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F
    C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F
    C:\Windows\System32\drivers\xusb22.sys A0F661902AFCAAD77CC2ED3894927A10

    ==================== NetSvcs (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


    ==================== One Month Created files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2015-07-04 23:02 - 2015-07-04 23:02 - 00000000 ____D C:\FRST
    2015-07-03 14:28 - 2015-07-03 14:36 - 43463787 _____ C:\Users\ArunPc\Downloads\BootAnimation_Marvel_Flashable.zip
    2015-07-02 23:32 - 2015-07-02 23:32 - 00000000 ____D C:\ProgramData\SystemRequirementsLab
    2015-07-02 23:32 - 2015-07-02 23:32 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
    2015-07-02 14:14 - 2015-07-02 14:20 - 43465012 _____ C:\Users\ArunPc\Downloads\Marvel - Boot Animation.zip
    2015-07-01 20:22 - 2015-07-01 20:22 - 813343539 _____ C:\windows\MEMORY.DMP
    2015-07-01 20:22 - 2015-07-01 20:22 - 00701144 _____ C:\windows\Minidump\070115-17984-01.dmp
    2015-07-01 20:21 - 2015-07-01 20:21 - 00000522 _____ C:\windows\PFRO.log
    2015-07-01 10:04 - 2015-07-01 10:04 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\Yahoo!
    2015-07-01 10:03 - 2015-07-01 10:03 - 00000000 ____D C:\ProgramData\Yahoo!
    2015-07-01 10:03 - 2015-07-01 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
    2015-07-01 10:00 - 2015-07-01 10:03 - 00000000 ____D C:\Program Files (x86)\Yahoo!
    2015-07-01 09:59 - 2015-07-01 09:59 - 00691168 _____ (Yahoo! Inc.) C:\Users\ArunPc\Downloads\msgr11in.exe
    2015-06-29 21:26 - 2015-06-29 21:27 - 05677056 _____ C:\Users\ArunPc\Downloads\PhilZTouch_recovery_CWM_6.0.4.8_A116.img
    2015-06-29 20:46 - 2015-06-29 20:46 - 05695692 _____ C:\Users\ArunPc\Downloads\Archive-bd78.zip
    2015-06-29 18:12 - 2015-06-29 18:12 - 00002392 _____ C:\windows\System32\Tasks\Uninstaller_SkipUac_ArunPc
    2015-06-29 18:08 - 2015-06-29 18:11 - 00000000 ____D C:\ProgramData\Shuame
    2015-06-29 17:53 - 2015-06-29 17:53 - 06375512 _____ C:\Users\ArunPc\Downloads\RootGenius_en_2.2.6.exe
    2015-06-29 17:48 - 2015-06-29 17:48 - 00000000 ____D C:\Users\Public\Documents\RootGenius
    2015-06-29 17:44 - 2015-06-29 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PdaNet for Android
    2015-06-29 17:44 - 2015-06-29 17:44 - 00000000 ____D C:\Program Files (x86)\PdaNet for Android
    2015-06-29 17:44 - 2011-11-25 01:25 - 00015360 _____ (June Fabrics Technology Inc.) C:\windows\system32\Drivers\pneteth.sys
    2015-06-29 17:38 - 2015-06-29 17:38 - 00004458 _____ C:\windows\DPINST.LOG
    2015-06-29 17:38 - 2015-06-29 17:38 - 00000000 ____D C:\adb
    2015-06-29 17:31 - 2015-06-29 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micromax A116 Drivers(x64)
    2015-06-29 17:31 - 2015-06-29 17:31 - 00000000 ____D C:\Program Files (x86)\Micromax
    2015-06-29 17:26 - 2015-06-29 17:26 - 00000000 ____D C:\ProgramData\Tencent
    2015-06-29 17:25 - 2015-06-29 18:08 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\Tencent
    2015-06-29 17:22 - 2015-06-29 17:22 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\Shuame
    2015-06-29 17:22 - 2015-06-29 17:22 - 00000000 ____D C:\Users\ArunPc\.android
    2015-06-29 16:41 - 2015-06-29 16:41 - 02240083 _____ C:\Users\ArunPc\Downloads\Framaroot-1.4.1.apk
    2015-06-27 17:58 - 2015-06-27 17:58 - 00041185 _____ C:\Users\ArunPc\Downloads\29506293b6ec619e780b.zip
    2015-06-26 17:35 - 2015-06-26 17:36 - 21433226 _____ C:\Users\ArunPc\Downloads\[Studiofow] May 2015 Raffle.mp4
    2015-06-26 15:16 - 2015-06-26 15:16 - 00000000 ____D C:\Users\ArunPc\Desktop\New folder
    2015-06-23 19:47 - 2015-06-23 19:47 - 00060476 _____ C:\Users\ArunPc\Downloads\16420b-OpenAllInteriors.rar
    2015-06-23 19:40 - 2015-06-23 19:40 - 00003897 _____ C:\Users\ArunPc\Downloads\0b0a98-Ejection Seat v0.1.zip
    2015-06-23 19:39 - 2015-06-23 19:39 - 00581314 _____ C:\Users\ArunPc\Downloads\ScriptHookVDotNet.zip
    2015-06-23 10:12 - 2015-07-04 22:27 - 00001279 _____ C:\Users\ArunPc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wi-FiHotspotChgToast.lnk
    2015-06-23 09:56 - 2015-06-28 14:13 - 00046231 _____ C:\Users\ArunPc\Desktop\cbs.rar
    2015-06-20 17:35 - 2015-06-20 17:35 - 00130877 _____ C:\Users\ArunPc\Downloads\7d5fc4-Bodyguard Menu 1.7.zip
    2015-06-20 16:49 - 2015-06-20 16:50 - 00009635 _____ C:\Users\ArunPc\Downloads\4d5009-HeistModUpdate171.zip
    2015-06-20 16:44 - 2015-06-20 16:44 - 01852317 _____ C:\Users\ArunPc\Downloads\LuaPlugin-GTAV-master.zip
    2015-06-19 13:44 - 2015-06-19 13:44 - 00001126 _____ C:\Users\ArunPc\Desktop\SFCFix.txt
    2015-06-19 13:44 - 2015-06-19 13:44 - 00000000 ____D C:\SFCFix
    2015-06-19 10:08 - 2015-06-19 10:12 - 00000000 ____D C:\windows\System32\Tasks\TweakBit
    2015-06-19 10:08 - 2015-06-19 10:10 - 00000000 ____D C:\ProgramData\TweakBit
    2015-06-19 01:06 - 2015-06-19 01:06 - 00000000 ____D C:\ProgramData\Sun
    2015-06-19 01:06 - 2015-06-19 01:05 - 00097888 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
    2015-06-19 01:05 - 2015-06-19 01:06 - 00000000 ____D C:\ProgramData\Oracle
    2015-06-19 01:05 - 2015-06-19 01:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
    2015-06-19 01:05 - 2015-06-19 01:05 - 00000000 ____D C:\Program Files (x86)\Java
    2015-06-19 00:53 - 2015-06-19 00:53 - 06393478 _____ C:\Users\ArunPc\Desktop\DONKILLER msinfo32 19.06.15.txt
    2015-06-19 00:52 - 2015-06-19 00:52 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\Nitro PDF
    2015-06-19 00:47 - 2015-06-19 00:48 - 00083796 _____ C:\Users\ArunPc\Desktop\DONKILLER dxdiag 19.06.2015.txt
    2015-06-17 23:30 - 2015-06-17 23:30 - 00001039 _____ C:\Users\Public\Desktop\Grand Theft Auto V.lnk
    2015-06-17 23:30 - 2015-06-17 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
    2015-06-17 22:47 - 2015-06-17 22:47 - 18705834 _____ C:\Users\ArunPc\Desktop\1434559553166~2.psd
    2015-06-17 21:54 - 2015-07-04 22:24 - 00019817 _____ C:\windows\setupact.log
    2015-06-17 21:54 - 2015-06-17 21:54 - 00000000 _____ C:\windows\setuperr.log
    2015-06-17 16:30 - 2015-06-17 16:30 - 00210323 _____ C:\Users\ArunPc\Downloads\02f761-PC Trainer V 1.1.zip
    2015-06-17 15:17 - 2015-06-17 23:33 - 00035064 _____ C:\windows\DirectX.log
    2015-06-17 00:05 - 2015-06-17 00:32 - 287296528 ____R ( ) C:\Users\ArunPc\Downloads\patch_witcher3_1.04_2.0.0.30.exe
    2015-06-16 19:09 - 2015-06-16 19:24 - 00000000 ____D C:\Users\ArunPc\Downloads\The.Witcher.3.Wild.Hunt.Update.v1.06-BAT
    2015-06-16 18:49 - 2015-06-29 18:12 - 00000290 _____ C:\windows\Tasks\Uninstaller_SkipUac_ArunPc.job
    2015-06-16 17:09 - 2015-06-16 17:09 - 00001179 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixPad Multitrack Recording Software.lnk
    2015-06-16 17:09 - 2015-06-16 17:09 - 00001167 _____ C:\Users\Public\Desktop\MixPad Multitrack Recording Software.lnk
    2015-06-16 17:09 - 2015-06-16 17:09 - 00000000 ____D C:\Users\ArunPc\Documents\Mixpad Projects
    2015-06-16 16:25 - 2015-07-04 22:58 - 02011815 _____ C:\windows\WindowsUpdate.log
    2015-06-16 15:56 - 2015-06-16 15:56 - 00450332 _____ C:\Users\ArunPc\Documents\cc_20150616_155603.reg
    2015-06-16 15:50 - 2015-06-16 15:50 - 00002784 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
    2015-06-16 15:50 - 2015-06-16 15:50 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
    2015-06-16 15:50 - 2015-06-16 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
    2015-06-16 15:49 - 2015-06-16 15:50 - 00000000 ____D C:\Program Files\CCleaner
    2015-06-14 12:48 - 2015-07-02 14:44 - 00000000 ____D C:\Users\ArunPc\Desktop\hangout
    2015-06-11 14:00 - 2015-05-22 18:38 - 00700416 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
    2015-06-11 14:00 - 2015-05-21 18:38 - 01119232 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
    2015-06-11 14:00 - 2015-05-21 18:38 - 01020928 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
    2015-06-11 14:00 - 2015-05-21 18:38 - 00756736 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
    2015-06-11 14:00 - 2015-05-21 18:38 - 00422912 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
    2015-06-11 14:00 - 2015-05-21 18:38 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
    2015-06-11 14:00 - 2015-05-21 18:38 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
    2015-06-11 14:00 - 2015-04-17 03:37 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
    2015-06-11 13:54 - 2015-05-25 18:53 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
    2015-06-11 13:54 - 2015-05-25 18:37 - 01430528 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
    2015-06-11 13:53 - 2015-03-20 09:19 - 00309760 _____ (Microsoft Corporation) C:\windows\system32\compstui.dll
    2015-06-11 13:53 - 2015-03-20 08:38 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
    2015-06-11 13:53 - 2015-03-20 08:07 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\puiobj.dll
    2015-06-11 13:53 - 2015-03-20 07:37 - 01091072 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
    2015-06-11 13:52 - 2015-05-27 20:05 - 24917504 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
    2015-06-11 13:52 - 2015-05-27 19:38 - 19607040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
    2015-06-11 13:52 - 2015-05-23 08:45 - 00503808 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
    2015-06-11 13:52 - 2015-05-23 08:44 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
    2015-06-11 13:52 - 2015-05-23 08:40 - 02278912 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
    2015-06-11 13:52 - 2015-05-23 08:35 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
    2015-06-11 13:52 - 2015-05-23 08:34 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
    2015-06-11 13:52 - 2015-05-23 08:18 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
    2015-06-11 13:52 - 2015-05-23 08:17 - 04305920 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
    2015-06-11 13:52 - 2015-05-23 08:17 - 00285696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
    2015-06-11 13:52 - 2015-05-23 08:17 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
    2015-06-11 13:52 - 2015-05-23 08:13 - 00880128 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
    2015-06-11 13:52 - 2015-05-23 08:08 - 00689152 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
    2015-06-11 13:52 - 2015-05-23 08:08 - 00327168 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
    2015-06-11 13:52 - 2015-05-23 08:07 - 02052608 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
    2015-06-11 13:52 - 2015-05-23 07:58 - 12829696 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
    2015-06-11 13:52 - 2015-05-23 07:58 - 01042944 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
    2015-06-11 13:52 - 2015-05-23 07:50 - 01950720 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
    2015-06-11 13:52 - 2015-05-23 07:46 - 01309696 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
    2015-06-11 13:52 - 2015-05-23 07:44 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
    2015-06-11 13:52 - 2015-05-23 00:30 - 02885632 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
    2015-06-11 13:52 - 2015-05-23 00:30 - 00584192 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
    2015-06-11 13:52 - 2015-05-23 00:30 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
    2015-06-11 13:52 - 2015-05-23 00:22 - 06026240 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
    2015-06-11 13:52 - 2015-05-23 00:18 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
    2015-06-11 13:52 - 2015-05-23 00:17 - 00816640 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
    2015-06-11 13:52 - 2015-05-23 00:17 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
    2015-06-11 13:52 - 2015-05-22 23:54 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
    2015-06-11 13:52 - 2015-05-22 23:53 - 00145408 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
    2015-06-11 13:52 - 2015-05-22 23:51 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
    2015-06-11 13:52 - 2015-05-22 23:45 - 01032704 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
    2015-06-11 13:52 - 2015-05-22 23:39 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
    2015-06-11 13:52 - 2015-05-22 23:38 - 00374272 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
    2015-06-11 13:52 - 2015-05-22 23:36 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
    2015-06-11 13:52 - 2015-05-22 23:35 - 02125824 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
    2015-06-11 13:52 - 2015-05-22 23:27 - 14404096 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
    2015-06-11 13:52 - 2015-05-22 23:20 - 02426880 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
    2015-06-11 13:52 - 2015-05-22 23:19 - 02865152 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
    2015-06-11 13:52 - 2015-05-22 23:08 - 01545728 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
    2015-06-11 13:52 - 2015-05-22 22:56 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
    2015-06-11 13:03 - 2015-04-02 04:12 - 03097600 _____ (Microsoft Corporation) C:\windows\system32\msftedit.dll
    2015-06-11 13:03 - 2015-04-02 04:00 - 02483712 _____ (Microsoft Corporation) C:\windows\SysWOW64\msftedit.dll
    2015-06-11 13:03 - 2015-03-02 07:13 - 00222208 _____ (Microsoft Corporation) C:\windows\system32\rastapi.dll
    2015-06-11 13:03 - 2015-03-02 06:51 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastapi.dll
    2015-06-11 13:01 - 2015-04-09 04:11 - 00158720 _____ (Microsoft Corporation) C:\windows\SysWOW64\rgb9rast.dll
    2015-06-11 13:01 - 2015-04-09 03:37 - 00410336 _____ C:\windows\system32\ApnDatabase.xml
    2015-06-11 11:59 - 2015-05-21 22:17 - 04177920 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
    2015-06-11 11:57 - 2015-06-11 11:57 - 00000000 ____D C:\Users\ArunPc\AppData\Local\Win7UI
    2015-06-10 15:04 - 2015-04-14 04:07 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\authz.dll
    2015-06-10 15:04 - 2015-04-14 04:04 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\authz.dll
    2015-06-10 15:04 - 2015-04-10 06:10 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\UIAutomationCore.dll
    2015-06-10 15:04 - 2015-04-10 05:47 - 01018880 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAutomationCore.dll
    2015-06-10 14:54 - 2015-04-25 08:04 - 00653824 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
    2015-06-10 14:54 - 2015-04-25 08:03 - 00549888 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
    2015-06-10 14:54 - 2015-04-16 11:47 - 00325464 ____C (Microsoft Corporation) C:\windows\system32\Drivers\USBXHCI.SYS
    2015-06-10 14:52 - 2015-04-01 09:51 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
    2015-06-10 14:52 - 2015-04-01 09:48 - 00468480 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
    2015-06-10 14:52 - 2015-04-01 09:47 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\mssphtb.dll
    2015-06-10 14:52 - 2015-04-01 09:38 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\mssvp.dll
    2015-06-10 14:52 - 2015-04-01 09:16 - 03633664 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
    2015-06-10 14:52 - 2015-04-01 08:47 - 02551808 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
    2015-06-10 14:52 - 2015-04-01 08:47 - 00903168 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
    2015-06-10 14:52 - 2015-04-01 08:23 - 00391680 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssph.dll
    2015-06-10 14:52 - 2015-04-01 08:23 - 00272896 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchProtocolHost.exe
    2015-06-10 14:52 - 2015-04-01 08:15 - 02749952 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
    2015-06-10 14:52 - 2015-04-01 08:15 - 00699392 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssvp.dll
    2015-06-10 14:52 - 2015-04-01 07:44 - 01920000 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssrch.dll
    2015-06-10 14:52 - 2015-04-01 07:42 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchIndexer.exe
    2015-06-09 21:38 - 2015-06-20 19:05 - 00000000 ____D C:\Users\ArunPc\Desktop\Anand dance
    2015-06-09 21:36 - 2015-06-16 18:50 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\NCH Software
    2015-06-09 21:36 - 2015-06-16 18:50 - 00000000 ____D C:\Program Files (x86)\NCH Software
    2015-06-09 21:36 - 2015-06-16 17:09 - 00000000 ____D C:\windows\System32\Tasks\NCH Software
    2015-06-09 21:36 - 2015-06-16 17:09 - 00000000 ____D C:\ProgramData\NCH Software
    2015-06-09 21:36 - 2015-06-09 21:36 - 00001295 _____ C:\Users\Public\Desktop\NCH Suite.lnk
    2015-06-09 21:36 - 2015-06-09 21:36 - 00001157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WavePad Sound Editor.lnk
    2015-06-09 21:36 - 2015-06-09 21:36 - 00001145 _____ C:\Users\Public\Desktop\WavePad Sound Editor.lnk
    2015-06-09 14:52 - 2015-06-09 14:52 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\Notepad++
    2015-06-09 14:52 - 2015-06-09 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
    2015-06-09 14:52 - 2015-06-09 14:52 - 00000000 ____D C:\Program Files (x86)\Notepad++
    2015-06-09 14:12 - 2015-06-09 14:50 - 06944290 _____ C:\Users\ArunPc\Downloads\npp.6.7.8.2.Installer.exe
    2015-06-09 13:59 - 2015-06-09 13:59 - 00001437 _____ C:\Users\ArunPc\Downloads\witcher3.reg
    2015-06-09 13:58 - 2015-06-09 13:59 - 00001442 _____ C:\Users\ArunPc\Downloads\The-Witcher-3-Wild-Hunt-GOG-com-version--www.regfiles.net.reg.txt
    2015-06-09 13:55 - 2015-06-09 13:56 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Witcher 3 - Wild Hunt[GOG.com]
    2015-06-09 13:47 - 2015-06-09 13:47 - 00000000 ____D C:\Users\ArunPc\Desktop\gamesaves
    2015-06-09 12:10 - 2015-06-09 12:13 - 00000000 ____D C:\Users\ArunPc\Downloads\The.Witcher.3.Wild.Hunt.Update.4.(v1.05).&.6DLC-GOG
    2015-06-08 17:22 - 2015-06-08 17:22 - 00003886 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
    2015-06-08 02:21 - 2015-06-08 02:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
    2015-06-07 17:56 - 2015-06-07 17:58 - 96209192 _____ C:\Users\ArunPc\Downloads\[StudioFOW] Feb2015 Raffle - Liara Cinematic.avi
    2015-06-06 15:56 - 2015-04-21 21:43 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
    2015-06-06 15:56 - 2015-04-21 21:19 - 00720384 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
    2015-06-06 15:56 - 2015-04-21 20:58 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
    2015-06-06 14:28 - 2015-06-06 14:28 - 00002160 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
    2015-06-06 14:28 - 2015-05-28 09:22 - 00571024 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvStreaming.exe
    2015-06-06 14:26 - 2015-06-29 01:41 - 00000000 ____D C:\ProgramData\ProductData
    2015-06-06 14:25 - 2015-05-28 12:34 - 42719888 _____ C:\windows\system32\nvcompiler.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 37741712 _____ C:\windows\SysWOW64\nvcompiler.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 30480528 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 22946960 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 17486856 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 16185352 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 15864064 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 14987528 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 14495448 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 12852152 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 11830512 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 10995528 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
    2015-06-06 14:25 - 2015-05-28 12:34 - 02932368 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 02599056 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 01898312 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6435306.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 01557832 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6435306.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 01059984 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 01050440 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 00982856 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 00974480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 00503408 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 00408208 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 00407112 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 00364176 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 00175880 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
    2015-06-06 14:25 - 2015-05-28 12:34 - 00154256 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
    2015-06-06 14:22 - 2015-05-01 04:35 - 00429568 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
    2015-06-06 14:22 - 2015-05-01 04:18 - 00358912 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
    2015-06-06 13:01 - 2015-06-06 13:01 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\ProductData
    2015-06-05 19:26 - 2015-06-05 19:26 - 00000000 ____D C:\ProgramData\X360CE
    2015-06-05 11:50 - 2015-03-30 11:17 - 00561928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
    2015-06-05 11:50 - 2015-03-27 08:57 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
    2015-06-05 11:50 - 2015-03-27 08:20 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
    2015-06-05 11:50 - 2015-03-27 08:18 - 01441792 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll

    ==================== One Month Modified files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2015-07-04 22:58 - 2014-11-29 13:21 - 00000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
    2015-07-04 22:53 - 2014-11-15 13:37 - 00000916 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-07-04 22:53 - 2014-11-15 13:37 - 00000912 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-07-04 22:44 - 2014-03-18 15:23 - 00005388 _____ C:\windows\system32\PerfStringBackup.INI
    2015-07-04 22:35 - 2015-03-22 11:33 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\vlc
    2015-07-04 22:32 - 2015-04-24 15:13 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3533856717-1996590830-672907801-1001
    2015-07-04 22:30 - 2014-09-17 08:31 - 00000000 ____D C:\windows\System32\Tasks\Lenovo
    2015-07-04 22:30 - 2013-08-22 21:06 - 00000000 ____D C:\windows\system32\sru
    2015-07-04 22:27 - 2014-11-05 10:30 - 00003914 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{076AB7FA-818B-4F9C-983D-E8EC67CFC650}
    2015-07-04 22:27 - 2014-11-05 10:25 - 00000000 ____D C:\ProgramData\LU
    2015-07-04 22:24 - 2014-11-12 22:44 - 00000656 _____ C:\windows\system32\Drivers\etc\hosts.ics
    2015-07-04 20:15 - 2014-11-05 11:20 - 00000000 ___DO C:\Users\ArunPc\OneDrive
    2015-07-04 19:59 - 2014-12-05 01:41 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\DMCache
    2015-07-04 15:46 - 2014-09-17 07:42 - 00000000 ____D C:\ProgramData\NVIDIA
    2015-07-04 15:46 - 2013-08-22 20:15 - 00000006 ____H C:\windows\Tasks\SA.DAT
    2015-07-04 15:45 - 2014-09-17 08:32 - 00008704 _____ C:\windows\system32\VfService.trf
    2015-07-04 15:45 - 2013-08-22 18:55 - 00262144 ___SH C:\windows\system32\config\BBI
    2015-07-03 22:46 - 2013-08-22 21:06 - 00000000 ____D C:\windows\AppReadiness
    2015-07-03 02:08 - 2014-12-05 01:41 - 00000000 ____D C:\Users\ArunPc\Downloads\Compressed
    2015-07-02 19:14 - 2015-04-19 00:17 - 00000080 _____ C:\Users\ArunPc\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
    2015-07-02 02:31 - 2015-02-28 13:20 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\uTorrent
    2015-07-02 01:57 - 2014-11-05 06:38 - 00000000 ____D C:\Users\ArunPc\AppData\Local\Adobe
    2015-07-02 01:56 - 2014-11-29 13:21 - 00003718 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
    2015-07-01 20:25 - 2014-11-05 06:03 - 00000000 ____D C:\Users\ArunPc
    2015-07-01 20:22 - 2015-05-29 16:41 - 00000000 ____D C:\windows\Minidump
    2015-06-29 19:33 - 2014-11-09 13:49 - 00000000 ____D C:\ProgramData\RELOADED
    2015-06-29 17:38 - 2014-09-17 08:35 - 00000000 ____D C:\Program Files\DIFX
    2015-06-29 17:31 - 2014-09-17 07:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
    2015-06-28 14:00 - 2013-08-22 20:50 - 00000000 ____D C:\windows\CbsTemp
    2015-06-27 22:28 - 2014-11-05 23:32 - 00000000 ____D C:\Users\ArunPc\AppData\Local\CrashDumps
    2015-06-27 12:23 - 2013-08-22 21:06 - 00000000 ____D C:\windows\system32\NDF
    2015-06-22 23:55 - 2014-11-15 13:46 - 00002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
    2015-06-20 08:32 - 2013-08-22 21:08 - 00792568 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
    2015-06-20 08:32 - 2013-08-22 21:08 - 00178168 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
    2015-06-18 23:18 - 2015-01-31 13:17 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\IDM
    2015-06-17 23:40 - 2015-04-18 23:57 - 00000000 ____D C:\Users\ArunPc\AppData\Local\Rockstar Games
    2015-06-17 20:35 - 2015-04-18 23:57 - 00000000 ____D C:\Users\ArunPc\Documents\Rockstar Games
    2015-06-17 00:36 - 2015-05-29 17:20 - 00000000 ____D C:\Users\ArunPc\Documents\The Witcher 3
    2015-06-16 17:38 - 2015-02-01 00:11 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\Audacity
    2015-06-16 15:55 - 2015-05-04 16:52 - 00000000 ____D C:\Program Files (x86)\Connectify
    2015-06-16 15:55 - 2015-02-01 18:16 - 00000000 ____D C:\Program Files (x86)\Steam
    2015-06-16 15:55 - 2014-11-05 22:52 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\DAEMON Tools Lite
    2015-06-16 15:55 - 2014-04-04 00:45 - 00000000 ____D C:\windows\Panther
    2015-06-14 13:06 - 2013-08-22 21:06 - 00000000 ____D C:\windows\rescache
    2015-06-13 17:49 - 2015-04-18 23:56 - 00000000 ____D C:\Program Files\Rockstar Games
    2015-06-13 17:49 - 2015-04-18 23:56 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
    2015-06-13 10:12 - 2015-05-27 12:03 - 00000000 ____D C:\Users\ArunPc\Desktop\ckick
    2015-06-13 09:59 - 2015-04-24 20:31 - 00000000 ____D C:\windows\system32\appraiser
    2015-06-13 09:59 - 2015-04-24 20:30 - 00000000 ___SD C:\windows\system32\CompatTel
    2015-06-13 09:59 - 2013-08-22 21:06 - 00000000 ___RD C:\windows\ToastData
    2015-06-11 23:21 - 2013-08-22 20:14 - 05186944 _____ C:\windows\system32\FNTCACHE.DAT
    2015-06-11 22:40 - 2013-08-22 21:06 - 00000000 ____D C:\windows\PolicyDefinitions
    2015-06-11 22:39 - 2014-11-06 14:08 - 00000000 ____D C:\windows\system32\MRT
    2015-06-11 22:39 - 2014-11-05 06:29 - 00000000 ____D C:\ProgramData\Microsoft Help
    2015-06-11 22:35 - 2014-11-06 14:08 - 140135120 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
    2015-06-08 21:43 - 2014-11-05 12:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
    2015-06-08 17:29 - 2014-11-05 06:04 - 00000000 ____D C:\Users\ArunPc\AppData\Local\Packages
    2015-06-08 17:23 - 2014-11-05 06:50 - 00002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
    2015-06-08 17:23 - 2014-11-05 06:50 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
    2015-06-08 17:23 - 2014-11-05 06:50 - 00002057 _____ C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
    2015-06-08 17:23 - 2014-11-05 06:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
    2015-06-08 02:44 - 2015-05-31 12:22 - 00000000 ____D C:\Users\ArunPc\Downloads\je
    2015-06-07 10:13 - 2014-11-21 23:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight
    2015-06-07 10:13 - 2014-11-21 23:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
    2015-06-07 00:22 - 2014-11-21 23:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
    2015-06-06 14:28 - 2014-09-17 07:42 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
    2015-06-06 14:25 - 2015-05-31 12:31 - 00000000 ____D C:\ProgramData\boost_interprocess
    2015-06-05 14:31 - 2014-03-18 15:08 - 00000000 ____D C:\Program Files\Windows Journal

    ==================== Files in the root of some directories =======

    2014-11-05 12:42 - 2014-11-14 00:30 - 1249792 _____ (http://www.ruby-lang.org/) C:\Users\ArunPc\AppData\Roaming\msvcr90-ruby191.dll
    2014-11-14 14:18 - 2015-05-04 10:26 - 0000600 _____ () C:\Users\ArunPc\AppData\Local\PUTTY.RND
    2014-09-17 07:52 - 2014-09-17 07:52 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

    Some files in TEMP:
    ====================
    C:\Users\ArunPc\AppData\Local\Temp\pc-cleaner-setup.exe
    C:\Users\ArunPc\AppData\Local\Temp\Shuame_Uninst.exe
    C:\Users\ArunPc\AppData\Local\Temp\SRLDetectionLibrary4064798455835295171.dll
    C:\Users\ArunPc\AppData\Local\Temp\SRLDetectionLibrary6107551559269796435.dll


    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2015-07-01 23:42

    ==================== End of log ============================


    and also the additional.txt

    Additional scan result of Farbar Recovery Scan Tool (x64) Version:04-07-2015
    Ran by ArunPc at 2015-07-04 23:03:27
    Running from C:\Users\ArunPc\Downloads\Programs
    Boot Mode: Normal
    ==========================================================


    ==================== Accounts: =============================

    Administrator (S-1-5-21-3533856717-1996590830-672907801-500 - Administrator - Disabled)
    ArunPc (S-1-5-21-3533856717-1996590830-672907801-1001 - Administrator - Enabled) => C:\Users\ArunPc
    Guest (S-1-5-21-3533856717-1996590830-672907801-501 - Limited - Disabled)

    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    µTorrent (HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
    7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
    Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.14 - Adobe Systems)
    Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
    Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
    Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)
    Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
    Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
    Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
    AutoCAD 2007 - English (HKLM-x32\...\{5783F2D7-5001-0409-0002-0060B0CE6BBA}) (Version: 17.0.54.110 - Autodesk)
    Autodesk DWF Viewer (HKLM-x32\...\Autodesk DWF Viewer) (Version: 6.5 - Autodesk, Inc.)
    CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
    Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version: - Dark Byte)
    Connectify 2015 (HKLM\...\Connectify) (Version: 2015.0.5.34877 - Connectify)
    CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
    CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
    CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
    DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
    Dependency Package Update (Version: 1.6.25.00 - Lenovo Inc.) Hidden
    Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden
    Dependency Package Update (Version: 1.6.36.00 - Lenovo Inc.) Hidden
    Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
    Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
    EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.4.0.0 - Electronic Arts)
    Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo)
    Energy Manager (x32 Version: 1.5.0.20 - Lenovo) Hidden
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
    Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
    Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
    Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
    Hightail for Lenovo (HKLM\...\{2F10E937-F6D7-4174-8AB9-B299E8FC5CEC}) (Version: 2.4.97.2857 - Hightail, Inc.)
    Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
    Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3540 - Intel Corporation)
    Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
    Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
    IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.3.0.118 - IObit)
    Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
    LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
    Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.36.00 - Lenovo Group Limited)
    Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10279 - Realtek Semiconductor Corp.)
    Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
    Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo)
    Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden
    Lenovo Motion Control (HKLM-x32\...\InstallShield_{A60E1DE0-2AD1-4BD3-BBCC-4FBB22FB6F85}) (Version: 2.5.1.0225 - PointGrab)
    Lenovo Motion Control (x32 Version: 2.5.1.0225 - PointGrab) Hidden
    Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.)
    Lenovo OneKey Recovery (Version: 8.1.0.2619 - CyberLink Corp.) Hidden
    Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
    Lenovo PowerDVD10 (x32 Version: 10.0.5630.52 - CyberLink Corp.) Hidden
    Lenovo Settings (HKLM-x32\...\InstallShield_{42F8AFC3-7944-46CC-9689-94FF9869D0A7}) (Version: 1.0.0.46 - Lenovo)
    Lenovo Settings (x32 Version: 1.0.0.46 - Lenovo) Hidden
    Lenovo Updates (HKLM-x32\...\InstallShield_{A2E1E9F0-0B68-4166-8C7F-85B563B84DF4}) (Version: 1.1.0.61 - Lenovo)
    Lenovo Updates (x32 Version: 1.1.0.61 - Lenovo) Hidden
    Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.1.14.3211 - Lenovo)
    Lenovo Web Start (HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Pokki_04bb6df446330549a2cb8d67fbd1a745025b7bd1) (Version: 1.0.2.53457 - Pokki)
    Macromedia Flash Player 8 (HKLM-x32\...\ShockwaveFlash) (Version: 8 - Macromedia)
    Magic Transfer (HKLM\...\{AD2B2BD1-A1D7-4798-8FDD-B2A58FD94E68}) (Version: 1.1.1.11 - )
    Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
    Mblaze_Mylink (HKLM-x32\...\Mblaze_Mylink_is1) (Version: - )
    McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
    Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
    Micromax A116 Drivers(x64) (HKLM-x32\...\{C3F57607-592D-458F-81AE-349FD05DFA74}) (Version: 1.00 - Micromax)
    Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
    Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{51adbf11-493f-431c-a862-967a0fae2944}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
    Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
    MixPad Multitrack Recording Software (HKLM-x32\...\MixPad) (Version: 3.78 - NCH Software)
    Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
    Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.1.1 - Mozilla)
    MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
    MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
    NASCAR '14 (HKLM-x32\...\TkFTQ0FSMTQ=_is1) (Version: 1 - )
    Nitro Pro 9 (HKLM\...\{70B831B7-A8EE-4C5F-8F34-F383D24B3A04}) (Version: 9.0.5.9 - Nitro)
    Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.8.2 - Notepad++ Team)
    NVIDIA 3D Vision Driver 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation)
    NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation)
    NVIDIA Graphics Driver 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
    NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
    Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.1.2 - Lenovo)
    PdaNet+ for Android 4.12 (HKLM-x32\...\PdaNet_is1) (Version: - June Fabrics Technology Inc)
    PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
    Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.10525 - CyberLink Corp.)
    PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
    Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
    Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
    RAD Video Tools (HKLM-x32\...\RADVideo) (Version: - )
    Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.1.38.0 - Razer Inc.)
    Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
    Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.21243 - Realtek Semiconductor Corp.)
    Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
    Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.0 - Rockstar Games)
    Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
    SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.14.0 - Lenovo Group Limited)
    SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
    SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden
    Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
    Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
    Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.14.81 - Synaptics Incorporated)
    System Requirements Lab (HKLM-x32\...\{FEE1F166-EAE4-4C4B-8988-D82521F9F63F}) (Version: 6.1.5.0 - Husdawg, LLC)
    User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
    User Manuals (x32 Version: 3.0.0.3 - Lenovo) Hidden
    VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.0 - VideoLAN)
    WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.18 - NCH Software)
    Web Freer (HKLM-x32\...\WebFreer) (Version: - )
    Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
    Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
    Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
    WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
    Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)

    ==================== Custom CLSID (Whitelisted): ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    CustomCLSID: HKU\S-1-5-21-3533856717-1996590830-672907801-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

    ==================== Restore Points =========================

    19-06-2015 08:31:12 Windows Defender Checkpoint
    25-06-2015 21:34:52 Windows Update
    29-06-2015 17:30:48 Installed Micromax A116 Drivers(x64)

    ==================== Hosts content: ===============================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2013-08-22 18:55 - 2013-08-22 18:55 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

    ==================== Scheduled Tasks (Whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    Task: {00921352-20BB-4923-BD31-3412F6C76DF6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2015-06-11] (Microsoft Corporation)
    Task: {040F07ED-8EE2-4F9B-848B-9C6C82C4574D} - System32\Tasks\Uninstaller_SkipUac_ArunPc => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-05-01] (IObit)
    Task: {099D3BE2-F49B-4A96-A1D5-61EC61203E15} - System32\Tasks\NCH Software\SwitchSevenDays => C:\Program Files (x86)\NCH Software\Switch\Switch.exe
    Task: {0EAA7CB6-5D74-4908-9792-B779D7A558BB} - System32\Tasks\Cassiopesa sadi => C:\ProgramData\{759A9D59-2518-4CDF-949E-3C5D441CEFD3}\1.17.2.1\f <==== ATTENTION
    Task: {36FBF9F7-0174-4757-BF5C-29DD8E248DF9} - \Optimize Start Menu Cache Files-S-1-5-21-3533856717-1996590830-672907801-500 No Task File <==== ATTENTION
    Task: {3A7BF910-5449-4CA3-BA12-737EC48ECD9B} - System32\Tasks\Steam_x64-S-2-106-91 => C:\Users\ArunPc\AppData\Roaming\IDM\CODEXi\Steam [2015-03-31] () <==== ATTENTION
    Task: {3D1D72CD-D5E0-486F-961D-993EAFFDBD55} - System32\Tasks\{3A84642B-22B0-437C-9E7E-6B44371A100A} => pcalua.exe -a "F:\Split Second\SplitSecond.exe" -d "F:\Split Second"
    Task: {559BC28E-33CC-4BAD-A3F1-40CCB2C6268C} - System32\Tasks\{DEF87447-7277-4ACE-9465-0B712AA51823} => pcalua.exe -a "F:\Ubisoft Far Cry 2\bin\FarCry2.exe" -d "F:\Ubisoft Far Cry 2\bin"
    Task: {55C48ADD-CB50-4941-8501-E880C33C0AA6} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-02] (Adobe Systems Incorporated)
    Task: {55CED0BE-C75F-43D0-A320-D9CB1DC9F571} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-09] (Piriform Ltd)
    Task: {7A66E628-C757-4450-B14D-E4BAD682CB0A} - System32\Tasks\{62ADEE53-037C-4D1E-9427-D9DF5CDD1F71} => pcalua.exe -a "F:\Alan Wake\Launcher.exe" -d "F:\Alan Wake"
    Task: {A9A54073-965D-4E3E-B6ED-73467244A645} - System32\Tasks\{660D050B-2024-4581-907B-87C46C75CC3B} => pcalua.exe -a "F:\Call of Duty Advanced Warfare\s1_sp64_ship.exe" -d "F:\Call of Duty Advanced Warfare"
    Task: {AC958691-5B46-499D-87DA-8FF1F4706F97} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
    Task: {B0E5FFEC-F2EB-4667-9167-4626C7D10565} - System32\Tasks\{69741DB7-17EA-4D6F-9CCC-C12A5EB97760} => pcalua.exe -a "F:\Assassin's Creed Rogue\ACC.exe" -d "F:\Assassin's Creed Rogue"
    Task: {BF7FEC25-F92C-4B41-B974-A5F770A890AA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
    Task: {C8913561-E020-4D2F-BEE3-B9A8DE35FB52} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-03-06] ()
    Task: {C8BE42A3-A726-4D2F-A2D7-00EF1EECBBA5} - System32\Tasks\TweakBit\PCCleaner\Start PCCleaner оn logon => C:\Program Files (x86)\TweakBit\PCCleaner\PCCleaner.exe
    Task: {CC4F45E9-7B84-4283-B990-AD78DC614FDD} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
    Task: {CF0912EA-9AD7-4B1F-8AFE-5378E116DDEA} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-03-07] (Synaptics Incorporated)
    Task: {CF3C41FD-184F-45D0-8D11-C785681459BD} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
    Task: {CFF58BFE-86E2-4B84-AA5C-1BA4205EF0E9} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-09] (CyberLink Corp.)
    Task: {D5CBCE90-75E8-46F7-9805-FB5053F1FD8A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
    Task: {D8E64591-B135-40DC-ACAF-D407176EAFB6} - System32\Tasks\TweakBit\FixMyPC\Start FixMyPC automatic scanning => C:\Program Files (x86)\TweakBit\FixMyPC\FixMyPC.exe
    Task: {E600B1AF-E7DC-493A-947C-926CE388702B} - System32\Tasks\NCH Software\MixPadSevenDays => C:\Program Files (x86)\NCH Software\MixPad\MixPad.exe [2015-03-10] (NCH Software)
    Task: {EDA372DD-CD28-48E2-87AD-4CA73F160A46} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-15] (Google Inc.)
    Task: {F3DDEAD6-11C9-45CC-9AB7-5348B2290FD2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-15] (Google Inc.)
    Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\windows\Tasks\Uninstaller_SkipUac_ArunPc.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

    ==================== Loaded Modules (Whitelisted) ==============

    2015-05-28 20:21 - 2014-07-31 15:27 - 02198016 _____ () C:\Program Files (x86)\Mblaze_Mylink\FI_Eject.exe
    2014-12-14 17:48 - 2015-03-21 10:45 - 00076888 _____ () C:\windows\SysWOW64\PnkBstrA.exe
    2014-09-17 08:37 - 2012-04-24 16:13 - 00390632 ____N () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
    2014-09-17 08:32 - 2014-09-17 08:32 - 00068880 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
    2014-09-17 08:32 - 2014-09-17 08:32 - 00672016 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfDataStorageInterface.dll
    2014-11-01 03:57 - 2014-11-01 03:57 - 00183488 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    2014-09-17 07:42 - 2015-05-28 09:45 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
    2013-12-24 14:52 - 2013-12-24 14:52 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
    2013-12-24 14:50 - 2013-12-24 14:50 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
    2013-12-24 14:56 - 2013-12-24 14:56 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
    2014-06-17 11:17 - 2014-04-16 13:58 - 00080312 _____ () C:\windows\system32\igfxexps.dll
    2014-03-27 01:20 - 2014-09-17 08:44 - 00058864 _____ () C:\Program Files (x86)\Lenovo\Energy Manager\kbdhook.dll
    2015-06-29 17:44 - 2013-04-22 10:46 - 01054320 _____ () C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
    2015-03-31 21:25 - 2015-03-31 21:25 - 01437836 _____ () C:\Users\ArunPc\AppData\Roaming\IDM\CODEXi\Steam
    2015-05-01 12:52 - 2015-02-09 11:18 - 00124440 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
    2014-11-21 12:59 - 2014-11-21 12:59 - 00462592 _____ () C:\Program Files (x86)\Lenovo\Lenovo Messenger\NotificationsViewHost.exe
    2015-05-01 12:41 - 2015-05-01 12:41 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
    2014-02-26 05:12 - 2014-02-26 05:12 - 00013576 _____ () C:\Program Files (x86)\Lenovo\Motion Control\PointGrabDeviceAPI.dll
    2015-05-04 16:52 - 2015-04-09 21:00 - 00715000 _____ () C:\Program Files (x86)\Connectify\log4cplus.dll
    2015-04-12 21:55 - 2015-05-23 07:18 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
    2015-07-01 10:03 - 2012-05-25 04:25 - 00921600 _____ () C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
    2015-03-31 21:25 - 2015-03-31 21:25 - 00279955 _____ () C:\Users\ArunPc\AppData\Roaming\IDM\CODEXi\libidn-11.dll
    2015-03-31 21:25 - 2015-03-31 21:25 - 00113166 _____ () C:\Users\ArunPc\AppData\Roaming\IDM\CODEXi\zlib1.dll

    ==================== Alternate Data Streams (Whitelisted) =========

    (If an entry is included in the fixlist, only the ADS will be removed.)

    AlternateDataStreams: C:\Windows:nlsPreferences
    AlternateDataStreams: C:\Users\ArunPc\OneDrive:ms-properties

    ==================== Safe Mode (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP => ""="service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP => ""="service"

    ==================== EXE Association (Whitelisted) ===============

    (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


    ==================== Internet Explorer trusted/restricted ===============

    (If an entry is included in the fixlist, it will be removed from the registry.)


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ArunPc\Desktop\hangout\DSC01080.JPG
    DNS Servers: 192.168.1.1

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)

    HKLM\...\StartupApproved\StartupFolder: => "AutoCAD Startup Accelerator.lnk"
    HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
    HKLM\...\StartupApproved\Run: => "OnekeyStudio"
    HKLM\...\StartupApproved\Run: => "PhoneCompanion"
    HKLM\...\StartupApproved\Run: => "Connectify Hotspot"
    HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
    HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
    HKLM\...\StartupApproved\Run32: => "BaiduAnTray"
    HKLM\...\StartupApproved\Run32: => "baidusdTray"
    HKLM\...\StartupApproved\Run32: => " QQPCTray"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_AC7A5EA1298D3AF4E65BC27172554B03"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "uTorrent"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "SandboxieControl"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "Skype"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "Steam"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "Internet Download Accelerator"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "Web Freer"
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\StartupApproved\Run: => "apphide"

    ==================== FirewallRules (Whitelisted) ===============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    FirewallRules: [{042FBA14-8025-433A-955D-4E90764F5A3D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{6E12136F-8408-43A9-82B3-43CD0BEB65D9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [TCP Query User{2B871534-C06B-4A05-8741-D5D2C9E0203C}C:\program files (x86)\lenovo\shareit\shareit.exe] => (Allow) C:\program files (x86)\lenovo\shareit\shareit.exe
    FirewallRules: [UDP Query User{8C109E6B-627B-49D7-B457-45A67F748D34}C:\program files (x86)\lenovo\shareit\shareit.exe] => (Allow) C:\program files (x86)\lenovo\shareit\shareit.exe
    FirewallRules: [{4B02A06F-7087-478C-B3F3-DAC060B59A0A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    FirewallRules: [{FC67A2FB-837E-466E-8BC9-48C4A2CA98E7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    FirewallRules: [{6699039A-32F7-4CD2-9DD0-7B19390C5935}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    FirewallRules: [{A4E9B729-957A-4AE3-B323-7E140B303164}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    FirewallRules: [{A0BEE227-364E-458F-AAA5-2B34F67B71E6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{32B0D3ED-5918-4571-B083-0EC6201B7C1D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{49B8411B-0BFF-44ED-A224-CA5943023310}] => (Allow) C:\Users\ArunPc\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{FC09699A-D54E-45E5-BD65-CEBCC426D669}] => (Allow) C:\Users\ArunPc\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [TCP Query User{299EB18A-7ECD-4C6E-8420-683B3EED3E34}F:\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) F:\call of duty 4 - modern warfare\iw3mp.exe
    FirewallRules: [UDP Query User{FD3D2F15-919F-4088-8F15-F85C1BEBC69E}F:\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) F:\call of duty 4 - modern warfare\iw3mp.exe
    FirewallRules: [{D2883CAB-AC12-4FA2-96EF-A94E02836388}] => (Block) F:\call of duty 4 - modern warfare\iw3mp.exe
    FirewallRules: [{6BB933CC-D5E8-41CA-BC06-FD445DA30470}] => (Block) F:\call of duty 4 - modern warfare\iw3mp.exe
    FirewallRules: [TCP Query User{06EA8E45-47FE-45B4-A66A-3D4ED66F597A}F:\split second\splitsecond.exe] => (Allow) F:\split second\splitsecond.exe
    FirewallRules: [UDP Query User{6342E333-3E74-48DD-87DE-18CA89FF1E6A}F:\split second\splitsecond.exe] => (Allow) F:\split second\splitsecond.exe
    FirewallRules: [{C94F49E7-A2DD-48E1-84B0-C76537287E69}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    FirewallRules: [{FBAC964D-F22A-4C49-A5CD-6CC62119ED73}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    FirewallRules: [TCP Query User{FBFE15C5-E6CD-42F7-93ED-0EA984CFEA76}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
    FirewallRules: [UDP Query User{FA683097-A058-4CD7-9010-FEC87904E33D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
    FirewallRules: [{FBFCF565-9BFA-4D28-AE32-4F66CB826570}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
    FirewallRules: [TCP Query User{64E1799D-0751-4CB6-864C-7803EB04B77F}E:\g_setup\fifa 15\fifa15.exe] => (Allow) E:\g_setup\fifa 15\fifa15.exe
    FirewallRules: [UDP Query User{CD6627F3-5597-41EF-B19E-A8747B97489E}E:\g_setup\fifa 15\fifa15.exe] => (Allow) E:\g_setup\fifa 15\fifa15.exe
    FirewallRules: [TCP Query User{7D7AC30B-8103-4DF7-97B0-4F54315B2606}C:\program files (x86)\lenovo\shareit\shareit.exe] => (Allow) C:\program files (x86)\lenovo\shareit\shareit.exe
    FirewallRules: [UDP Query User{AF731795-B57B-4ECF-B2F2-69FB863FA0AE}C:\program files (x86)\lenovo\shareit\shareit.exe] => (Allow) C:\program files (x86)\lenovo\shareit\shareit.exe
    FirewallRules: [{450228C5-1D8F-4929-932A-118667347697}] => (Allow) C:\Program Files (x86)\WebFreer\webfreer.exe
    FirewallRules: [{D04F47E0-3AD9-49B2-A304-75523FE1142A}] => (Allow) C:\Program Files (x86)\WebFreer\webfreer.exe
    FirewallRules: [TCP Query User{E3139A8C-4190-48AB-B4B5-5A380FEB08A1}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe
    FirewallRules: [UDP Query User{46184A1D-A3A8-424D-BA11-358F32AE358F}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe
    FirewallRules: [{9606D9A8-0D6E-49E0-B173-A6FB08212734}] => (Allow) C:\Program Files (x86)\Connectify\Connectify.exe
    FirewallRules: [{7935DA58-4ABC-4901-A3BA-F26A7312A5C1}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
    FirewallRules: [{B7843031-7AAD-4174-B3C3-9992BA5F5C86}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
    FirewallRules: [{81350171-634F-4A3D-9BE2-FA42DE313763}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
    FirewallRules: [{D70C2FDB-862D-41BE-8AA6-A2BE4B8F0449}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
    FirewallRules: [{F99FD05E-3F7D-4D2D-B126-6D58ACF0E818}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
    FirewallRules: [{8623DBDF-52C0-4BB3-9099-DEEA9F6D5B34}] => (Allow) E:\G_setup\FIFA 15\fifasetup\fifaconfig.exe
    FirewallRules: [{5DBCC774-96B8-405D-9859-03187E43F143}] => (Allow) E:\G_setup\FIFA 15\fifasetup\fifaconfig.exe
    FirewallRules: [TCP Query User{83816D12-7235-4685-A192-2D004CDD50A3}F:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) F:\program files\rockstar games\grand theft auto v\gta5.exe
    FirewallRules: [UDP Query User{92E0CA47-926E-41B6-8213-1B68710E0AAB}F:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) F:\program files\rockstar games\grand theft auto v\gta5.exe
    FirewallRules: [{D6E48577-7B3C-4C52-9F78-EDA77EC52BA2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    FirewallRules: [{9081A504-6D04-4C35-9DC5-397A41A84F13}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\132\bugreport_xf.exe
    FirewallRules: [{E8378FB7-CD21-474E-9C02-DE8C4C31AE5A}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\132\tencentdl.exe
    FirewallRules: [{DC7691E9-32C8-4363-876A-B32C2D8282EA}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\132\tencentdl.exe
    FirewallRules: [{9CFFF1C3-E868-4289-9949-03590B30FA94}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\132\bugreport_xf.exe
    FirewallRules: [TCP Query User{C74E44B4-FCA4-4D09-B60C-2D4E4FA3504E}F:\dis\dishonored\binaries\win32\dishonored.exe] => (Allow) F:\dis\dishonored\binaries\win32\dishonored.exe
    FirewallRules: [UDP Query User{D04D7012-BA48-48C9-A630-88ED392FAB4D}F:\dis\dishonored\binaries\win32\dishonored.exe] => (Allow) F:\dis\dishonored\binaries\win32\dishonored.exe
    FirewallRules: [{F093BD70-B1FA-43F8-A059-C94E4F53CAEC}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
    FirewallRules: [{2958F2E8-124E-4827-AADE-0F4E6B0EBDED}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe

    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (07/04/2015 10:44:38 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

    Error: (07/04/2015 10:44:38 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
    Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

    Error: (07/04/2015 10:39:50 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

    Error: (07/04/2015 10:39:50 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
    Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

    Error: (07/04/2015 10:27:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

    Error: (07/04/2015 10:27:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
    Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

    Error: (07/03/2015 02:55:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ARUN)
    Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

    Error: (07/03/2015 02:18:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

    Error: (07/03/2015 02:18:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
    Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

    Error: (07/03/2015 02:13:57 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.


    System errors:
    =============
    Error: (07/04/2015 10:24:09 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
    Description: Miniport Remote NDIS based Internet Sharing Device, {4E309883-EC27-46CF-8AF5-A03A278A9BA3}, had event 74

    Error: (07/04/2015 08:15:43 PM) (Source: ipnathlp) (EventID: 1233) (User: )
    Description:

    Error: (07/04/2015 08:15:43 PM) (Source: ipnathlp) (EventID: 1233) (User: )
    Description:

    Error: (07/04/2015 08:12:47 PM) (Source: ipnathlp) (EventID: 1233) (User: )
    Description:

    Error: (07/04/2015 08:12:47 PM) (Source: ipnathlp) (EventID: 1233) (User: )
    Description:

    Error: (07/04/2015 07:59:42 PM) (Source: ipnathlp) (EventID: 1233) (User: )
    Description:

    Error: (07/04/2015 07:59:42 PM) (Source: ipnathlp) (EventID: 1233) (User: )
    Description:

    Error: (07/04/2015 03:46:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
    %%2147952449

    Error: (07/04/2015 03:46:25 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
    Description: The Function Discovery Resource Publication service terminated with the following error:
    %%2147952449

    Error: (07/04/2015 03:46:25 PM) (Source: ipnathlp) (EventID: 1233) (User: )
    Description:


    Microsoft Office:
    =========================
    Error: (07/04/2015 10:44:38 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: WmiApRplWmiApRpl8F2030000E5050000

    Error: (07/04/2015 10:44:38 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
    Description: Performance163707000000000000000000008F020000

    Error: (07/04/2015 10:39:50 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: WmiApRplWmiApRpl8F2030000E5050000

    Error: (07/04/2015 10:39:50 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
    Description: Performance163707000000000000000000008F020000

    Error: (07/04/2015 10:27:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: WmiApRplWmiApRpl8F2030000E5050000

    Error: (07/04/2015 10:27:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
    Description: Performance163707000000000000000000008F020000

    Error: (07/03/2015 02:55:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ARUN)
    Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141

    Error: (07/03/2015 02:18:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: WmiApRplWmiApRpl8F2030000E5050000

    Error: (07/03/2015 02:18:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
    Description: Performance163707000000000000000000008F020000

    Error: (07/03/2015 02:13:57 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
    Description: WmiApRplWmiApRpl8F2030000E5050000


    CodeIntegrity Errors:
    ===================================
    Date: 2015-07-04 05:47:44.684
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:44.497
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:44.309
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:44.106
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:43.919
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:43.715
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:42.044
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:41.840
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:41.528
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2015-07-04 05:47:41.340
    Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


    ==================== Memory info ===========================

    Processor: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz
    Percentage of memory in use: 30%
    Total physical RAM: 8104.27 MB
    Available physical RAM: 5658.05 MB
    Total Virtual: 16296.27 MB
    Available Virtual: 13563.45 MB

    ==================== Drives ================================

    Drive c: (Windows8_OS) (Fixed) (Total:400.29 GB) (Free:297.61 GB) NTFS ==>[System with boot components (obtained from reading drive)]
    Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.16 GB) NTFS
    Drive e: () (Fixed) (Total:244.14 GB) (Free:32.3 GB) NTFS
    Drive f: () (Fixed) (Total:244.14 GB) (Free:155.36 GB) NTFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (Size: 931.5 GB) (Disk ID: 9CBB20DD)

    Partition: GPT Partition Type.

    ==================== End of log ============================



    Results of screen317's Security Check version 1.004
    x64 (UAC is enabled)
    Internet Explorer 11
    ``````````````Antivirus/Firewall Check:``````````````
    Windows Firewall Enabled!
    Windows Defender
    WMI entry may not exist for antivirus; attempting automatic update.
    `````````Anti-malware/Other Utilities Check:`````````
    Java 8 Update 45
    Adobe Flash Player 18.0.0.194
    Mozilla Firefox (38.0.5)
    Google Chrome (43.0.2357.124)
    Google Chrome (43.0.2357.130)
    ````````Process Check: objlist.exe by Laurent````````
    Windows Defender MSMpEng.exe
    `````````````````System Health check`````````````````
    Total Fragmentation on Drive C: %
    ````````````````````End of Log``````````````````````


    • Ad Bot

      advertising
      Beep.

        
       

  2. #2
    Tekno Venus's Avatar
    Join Date
    Jul 2012
    Location
    UK
    Age
    20
    Posts
    5,803
    • specs System Specs
      • Manufacturer:
        Custom Built
      • Motherboard:
        ASUS Z170I ITX
      • CPU:
        Intel Core i7 6700K
      • Memory:
        16GB DDR4
      • Hard Drives:
        500GB Samsung 850 EVO, 2TB Seagate HDD
      • Power Supply:
        450W Corsair SFX
      • Case:
        Silverstone SG13 ITX
      • Cooling:
        Corsair H60i
      • Display:
        Dell U2715H - 2160x1440 27 inch
      • Operating System:
        Windows 10 Pro x64

    Re: .js file popup really annoying

    Hi,

    I'm not a security analyst but I don't believe this to be an infection.

    Try the guide mentioned here: Fix "There is no script engine for file extension - Microsoft Community

    Stephen


    EDIT - See Corrine's post below
    Last edited by Tekno Venus; 07-05-2015 at 09:02 AM.


  3. #3
    Corrine's Avatar
    Join Date
    Feb 2012
    Location
    Upstate, NY
    Posts
    8,475

    Re: .js file popup really annoying

    @Tekno Venus: fiber.js is adware, often bundled with software downloaded from C|Net, Softonic and other third-party vendors.

    Hi, DONKILLER.

    I am not seeing the usual ProgramData files that accompany fiber.js, although there are a couple of unidentified entries in your log. Hopefully, that is what we're looking for. If not, it may be necessary to reset your browsers. In addition to uninstalling a couple of programs, we'll take care of the cleanup of leftovers from an uninstalled A/V.

    1. Uninstall IObit: In addition to the fact that registry cleaners do more harm that good, based on IOBit's past practices, I wouldn't run it on my computer. See the following for additional information:
    -- IOBit Steals Malwarebytes' Intellectual Property
    -- IOBit’s Denial of Theft Unconvincing
    -- IOBit Theft Conclusion

    2. Uninstall McAfee Security Scan Plus: This is an unneeded pre-checked option included with Adobe software updates when downloading the updates from their website.

    3. Please reconsider the use of uTorrent. P2P programs form a direct conduit on to your computer. They have always been a target of malware writers. P2P security measures are easily circumvented and if your P2P program is not configured correctly, you may be sharing more files than you realize. There have been cases where people's passwords, address books and other personal, private, and financial details have been exposed to the file sharing network by a badly configured program. Use of P2P programs can result in Identity Theft.

    4. Please do the following to run FRST:

    Note: If the tool warns you about the version you're using being an outdated version please download and run the updated version.

    NOTICE: This script was written specifically for this user. Running it on another machine may cause damage to your operating system
    • Open Notepad (Start =>All Programs => Accessories => Notepad).
    • Copy/Paste the entire contents of the code box below into Notepad.
    Code:
    start
    CreateRestorePoint:
    CloseProcesses:
    HKLM-x32\...\Run: [] => [X]
    HKLM-x32\...\Run: [] => [X]
    HKU\S-1-5-21-3533856717-1996590830-672907801-1001\...\Run: [AdobeBridge] => [X]
    GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    Toolbar: HKU\S-1-5-21-3533856717-1996590830-672907801-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
    FF Plugin-x32: @baidu.com/BaidusdDetectNPPlugin -> C:\Program Files (x86)\Baidu\BaiduSd\3.0.0.4605\explugin\npBaiduSDDetectPlug.dll No File
    Folder: C:\Program Files (x86)\Baidu
    R2 BDMNetMon; C:\Windows\System32\DRIVERS\BDMNetMon.sys [241992 2015-04-03] (Baidu)
    S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
    S2 BDDefense; \??\C:\windows\system32\drivers\BDDefense.sys [X]
    S2 QQSysMonX64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQSysMonX64.sys [X]
    S1 TSCPM; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\tscpm64.sys [X]
    Folder: C:\Program Files (x86)\Tencent
    2015-06-29 17:26 - 2015-06-29 17:26 - 00000000 ____D C:\ProgramData\Tencent
    2015-06-29 17:25 - 2015-06-29 18:08 - 00000000 ____D C:\Users\ArunPc\AppData\Roaming\Tencent
    R1 TFsFlt; C:\Windows\System32\Drivers\TFsFltX64.sys [87864 2015-05-01] (电脑管家)
    2014-09-17 07:52 - 2014-09-17 07:52 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
    EmptyTemp:
    end
    • Click Format and ensure Wordwrap is unchecked.
    • Important: Save the code to the same folder/directory that FRST.exe is located in, naming it as fixlist.txt
    • Start FRST in a similar manner to when you ran a scan earlier, but this time when it opens ....
      • Press the Fix button once and wait.
      • FRST will process fixlist.txt
      • When finished, it will produce a log fixlog.txt in the same folder/directory as FRST64.exe
      • Please post the log in your next reply.


    5. If you aren't prompted to restart your computer, please do so now. Then, please launch Malwarebytes and check for updates. You should be prompted to install the latest version, v 2.1.8.1057.
    • Once the update has been installed, select Scan now. Or select the Threat Scan from the Scan menu.[/*]
    • When the scan is complete , make sure that everything is set to "Quarantine", and click Apply Actions.[/*]
    • Reboot your computer if prompted.[/*]

    Extra Note: If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediatly.

    The log is available throughout History ->Application logs. Please post it contents in your next reply.

    6. In order to double check for any additional "leftovers" after removing McAfee and IObit, please provide a fresh FRST scan.
    • Right click to run as administrator. When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • This time it will produce one log in the same directory the tool is run from -- FRST.txt.
    • Please copy/paste that log in your reply.


    7. NOTE: Due to the number of logs requested, it may take more than one reply to post them.
    Evyatar says thanks for this.


    Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

    Remember - A day without laughter is a day wasted.
    May the wind sing to you and the sun rise in your heart.

  4. #4

    Join Date
    Jun 2015
    Location
    Kerala, India
    Posts
    27
    • specs System Specs
      • Manufacturer:
        Lenovo
      • Model Number:
        Y50 FHD
      • CPU:
        Intel i7 i7-4710 @2.50 GHz
      • Memory:
        DDR3 8Gb
      • Graphics:
        Nvidia GTX 860M
      • Sound Card:
        Realtek
      • Hard Drives:
        1 Tb
      • Disk Drives:
        N/A
      • Power Supply:
        N/A
      • Case:
        N/A
      • Cooling:
        Inbuilt fans
      • Display:
        LCD 1920 X 1080
      • Operating System:
        Windows 10

    Re: .js file popup really annoying

    The issue regarding the file has been solved Following the steps helped.
    Thanks
    Donkiller

Similar Threads

  1. Replies: 0
    Last Post: 12-12-2013, 09:09 PM
  2. tumri.net AOL popup malware
    By LilBambi in forum Security Arena
    Replies: 19
    Last Post: 09-06-2013, 09:07 AM
  3. Replies: 0
    Last Post: 06-20-2012, 12:31 AM
  4. Replies: 0
    Last Post: 05-18-2012, 06:17 PM

Log in

Log in