New
#11
C:\WINDOWS\system32\WorkfoldersControl.dll
2017-03-15 20:08 - 2017-03-04 11:41 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-03-15 20:08 - 2017-03-04 11:40 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-03-15 20:08 - 2017-03-04 11:40 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-03-15 20:08 - 2017-03-04 11:40 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-03-15 20:08 - 2017-03-04 11:40 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2017-03-15 20:08 - 2017-03-04 11:39 - 08125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-03-15 20:08 - 2017-03-04 11:39 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-03-15 20:08 - 2017-03-04 11:39 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-15 20:08 - 2017-03-04 11:38 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-03-15 20:08 - 2017-03-04 11:38 - 01780224 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-03-15 20:08 - 2017-03-04 11:38 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-03-15 20:08 - 2017-03-04 11:38 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-03-15 20:08 - 2017-03-04 11:38 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 12178944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 02914816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 02895872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-03-15 20:08 - 2017-03-04 11:37 - 01512448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-03-15 20:08 - 2017-03-04 11:37 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 04060672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 03614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-03-15 20:08 - 2017-03-04 11:36 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 02475008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-03-15 20:08 - 2017-03-04 11:36 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-03-15 20:08 - 2017-03-04 11:35 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-15 20:08 - 2017-03-04 11:35 - 01328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-03-15 20:08 - 2017-03-04 11:35 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-03-15 20:08 - 2017-03-04 11:35 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-15 20:08 - 2017-03-04 11:35 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-03-15 20:08 - 2017-03-04 11:34 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2017-03-15 20:08 - 2017-03-04 11:34 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-03-15 20:08 - 2017-03-04 11:33 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-15 20:08 - 2017-03-04 11:33 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-15 20:08 - 2017-03-04 11:33 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-03-15 20:08 - 2017-03-04 11:32 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-03-15 20:08 - 2017-03-04 11:31 - 03478528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-03-15 20:08 - 2017-03-04 11:30 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-03-15 20:08 - 2016-07-16 07:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CspCellularSettings.dll
2017-03-15 20:08 - 2016-07-16 07:58 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-03-15 20:08 - 2016-07-16 07:56 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-03-15 20:07 - 2016-05-30 00:08 - 08886976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSetup.exe
2017-03-15 19:37 - 2017-04-09 20:23 - 00258139 _____ C:\WINDOWS\ZAM.krnl.trace
2017-03-15 19:37 - 2017-04-09 20:23 - 00204148 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-03-10 01:49 - 2017-03-10 01:49 - 00000000 ____D C:\Users\Rebecca Valentine\AppData\Roaming\Mozilla
2017-03-10 00:50 - 2017-03-10 00:50 - 00000000 ____D C:\Users\Rebecca Valentine\AppData\Local\ShareX
2017-03-10 00:38 - 2017-04-09 20:12 - 00000000 ____D C:\Users\Rebecca Valentine\Documents\ShareX
2017-03-10 00:38 - 2017-03-10 00:38 - 00000827 _____ C:\Users\Rebecca Valentine\Desktop\ShareX.lnk
2017-03-10 00:38 - 2017-03-10 00:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2017-03-10 00:38 - 2017-03-10 00:38 - 00000000 ____D C:\Program Files\ShareX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-09 20:12 - 2017-01-20 00:54 - 00250816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-09 20:12 - 2017-01-19 23:03 - 00000000 ____D C:\Users\Rebecca Valentine\AppData\Roaming\DMCache
2017-04-09 19:50 - 2017-01-19 16:32 - 00004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E03940D7-79D2-4449-B37A-06B431BA1570}
2017-04-09 19:00 - 2017-01-18 16:35 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-09 18:36 - 2017-01-18 20:08 - 00000000 ____D C:\AdwCleaner
2017-04-09 18:35 - 2017-01-20 01:14 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-04-09 18:34 - 2017-01-18 19:58 - 00000000 ____D C:\Users\Rebecca Valentine\Desktop\mbar
2017-04-09 18:23 - 2017-01-20 00:23 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-04-09 18:02 - 2017-01-20 21:46 - 00000000 ____D C:\EEK
2017-04-09 17:39 - 2017-01-18 10:01 - 00000000 __SHD C:\Users\Rebecca Valentine\IntelGraphicsProfiles
2017-04-09 17:38 - 2017-01-18 16:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-09 17:38 - 2016-07-16 11:34 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2017-04-09 17:19 - 2017-02-14 12:03 - 00000000 ____D C:\Users\Rebecca Valentine\AppData\Local\ElevatedDiagnostics
2017-04-09 17:09 - 2017-01-18 20:14 - 00001370 _____ C:\Users\Rebecca Valentine\Desktop\JRT.lnk
2017-04-09 17:02 - 2017-02-24 12:40 - 00000000 ____D C:\Users\Rebecca Valentine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2017-04-09 17:02 - 2017-01-18 21:33 - 00000000 ____D C:\Users\Rebecca Valentine\AppData\Roaming\Dashlane
2017-04-09 17:00 - 2017-01-23 13:00 - 00000000 ____D C:\Users\Rebecca Valentine\Downloads\Other Pics
2017-04-09 17:00 - 2017-01-18 18:04 - 00048568 _____ C:\Users\Rebecca Valentine\Downloads\text.txt
2017-04-09 14:29 - 2017-01-18 20:04 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2017-04-09 12:31 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-08 20:54 - 2016-07-16 17:15 - 00000000 ____D C:\WINDOWS\INF
2017-04-08 18:05 - 2017-01-18 19:18 - 00000000 ____D C:\Users\Rebecca Valentine\Downloads\Programs & Setup Files
2017-04-08 11:04 - 2016-03-31 09:01 - 02455578 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-08 09:59 - 2016-12-28 23:59 - 00000000 ____D C:\Users\Rebecca Valentine\Downloads\My Project
2017-04-08 09:30 - 2017-03-06 12:53 - 00000000 ____D C:\Users\Rebecca Valentine\AppData\Local\Arduino15
2017-04-08 07:12 - 2016-07-16 17:17 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-06 00:58 - 2017-03-01 18:05 - 00000000 ____D C:\ProgramData\HP
2017-04-05 23:56 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-04-04 23:57 - 2016-08-05 18:42 - 00000000 ____D C:\Users\Rebecca Valentine\Downloads\IT
2017-04-04 23:57 - 2016-04-24 05:32 - 00000000 ____D C:\Users\Rebecca Valentine\Downloads\My Stuff
2017-04-02 20:11 - 2017-01-19 20:32 - 00000000 ____D C:\Users\Rebecca Valentine\AppData\Local\JDownloader 2.0
2017-04-01 21:55 - 2016-07-16 17:06 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-22 16:32 - 2017-01-18 16:37 - 00000000 ____D C:\Users\Rebecca Valentine
2017-03-20 19:21 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\rescache
2017-03-19 15:10 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-03-19 13:39 - 2017-02-20 15:07 - 00000000 ____D C:\WINDOWS\Minidump
2017-03-19 13:39 - 2016-10-26 10:04 - 01472450 ____N C:\WINDOWS\Minidump\031917-6953-01.dmp
2017-03-19 13:28 - 2017-01-20 02:44 - 00001147 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2017-03-19 13:28 - 2017-01-20 02:44 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-03-19 01:21 - 2016-07-16 17:17 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-03-19 01:21 - 2016-07-16 11:34 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-19 01:20 - 2015-10-30 11:58 - 00000000 ____D C:\Users\Default.migrated
2017-03-19 01:15 - 2016-10-26 10:07 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-19 01:14 - 2017-01-18 16:35 - 00443448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ___RD C:\Program Files\Windows Defender
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\system32\setup
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\bcastdvr
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-19 01:12 - 2016-07-16 17:17 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-17 22:37 - 2016-03-31 09:19 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-15 20:54 - 2017-01-18 14:50 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-15 20:53 - 2017-01-18 14:50 - 138634176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-12 11:30 - 2016-07-16 17:17 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-03-10 10:47 - 2016-07-16 17:19 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-03-10 10:47 - 2016-07-16 17:19 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-10 02:22 - 2017-02-09 21:47 - 00002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-03-10 02:09 - 2017-01-19 23:48 - 00000000 ____D C:\Program Files (x86)\WMPKeys
==================== Files in the root of some directories =======
2017-02-19 20:40 - 2017-02-20 01:05 - 0000117 _____ () C:\Users\Rebecca Valentine\AppData\Roaming\Camdata.ini
2017-02-19 20:40 - 2017-02-20 01:05 - 0000408 _____ () C:\Users\Rebecca Valentine\AppData\Roaming\CamLayout.ini
2017-02-19 20:40 - 2017-02-20 01:05 - 0000408 _____ () C:\Users\Rebecca Valentine\AppData\Roaming\CamShapes.ini
2017-02-19 20:40 - 2017-02-20 01:05 - 0004537 _____ () C:\Users\Rebecca Valentine\AppData\Roaming\CamStudio.cfg
2017-02-19 20:33 - 2017-02-20 01:02 - 0000096 _____ () C:\Users\Rebecca Valentine\AppData\Roaming\version2.xml
2017-01-23 14:11 - 2017-01-23 14:11 - 0000017 _____ () C:\Users\Rebecca Valentine\AppData\Local\resmon.resmoncfg
2017-04-06 00:58 - 2017-04-06 00:58 - 0000057 _____ () C:\ProgramData\Ament.ini
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-04-03 17:53
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Rebecca Valentine (09-04-2017 20:23:46)
Running from C:\Users\Rebecca Valentine\Downloads
Windows 10 Home Single Language Version 1607 (X64) (2017-01-18 11:13:28)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2453292216-1992557863-264388339-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2453292216-1992557863-264388339-503 - Limited - Disabled)
Guest (S-1-5-21-2453292216-1992557863-264388339-501 - Limited - Disabled)
Rebecca Valentine (S-1-5-21-2453292216-1992557863-264388339-1001 - Administrator - Enabled) => C:\Users\Rebecca Valentine
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Apple Application Support (32-bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0040 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.85 - ICEpower a/s)
AutoHotkey 1.1.24.04 (HKLM\...\AutoHotkey) (Version: 1.1.24.04 - Lexikos)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.6.1.20906 - Avira Operations GmbH & Co. KG)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.30.60 - Conexant)
Dashlane (HKU\S-1-5-21-2453292216-1992557863-264388339-1001\...\Dashlane) (Version: 4.6.8.26847 - Dashlane, Inc.)
Dashlane (HKU\S-1-5-21-2453292216-1992557863-264388339-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Dashlane) (Version: 4.6.8.26847 - Dashlane, Inc.)
Dashlane (HKU\S-1-5-21-2453292216-1992557863-264388339-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092017201337375\...\Dashlane) (Version: 4.6.8.26847 - Dashlane, Inc.)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.3 - ASUSTek Computer Inc.)
FormatFactory 4.0.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.0.0.0 - Free Time)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HP Deskjet 2510 series Basic Device Software (HKLM\...\{293CC68A-32BA-4BA4-84BD-0DCF6583566F}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 2510 series Help (HKLM-x32\...\{234DADAD-3C3C-4FB1-90A4-0AF015D56E18}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 2510 series Setup Guide (HKLM-x32\...\{216C7F38-4BBC-4E9A-8392-C9FA21B54386}) (Version: 27.0.0 - Hewlett Packard)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10600.150 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1159 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{AA1CAAC2-2A6A-4771-B813-8B73C74AE477}) (Version: 18.1.1539.2349 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{bc883058-299e-461f-8e52-4f1dbb355f86}) (Version: 19.0.1 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
LibreOffice 5.2.4.2 (HKLM-x32\...\{70E9A143-18EB-4FAB-B020-E3854B12202C}) (Version: 5.2.4.2 - The Document Foundation)
Macrium Reflect Home Edition (HKLM\...\MacriumReflect) (Version: 6.3 - Paramount Software (UK) Ltd.)
Macrium Reflect Home Edition (Version: 6.3.1665 - Paramount Software (UK) Ltd.) Hidden
Malwarebytes Anti-Exploit version 1.9.1.1334 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.9.1.1334 - Malwarebytes)
Malwarebytes version 3.0.5.1299 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.5.1299 - Malwarebytes)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.54 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: - Kakao Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.)
Sandboxie 5.16 (64-bit) (HKLM\...\Sandboxie) (Version: 5.16 - Sandboxie Holdings, LLC)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 11.6.0 - ShareX Team)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1232 - SUPERAntiSpyware.com)
TeraCopy 2.3 (HKLM\...\TeraCopy_is1) (Version: - Code Sector)
Unchecky v1.0.2 (HKLM-x32\...\Unchecky) (Version: 1.0.2 - RaMMicHaeL)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinX HD Video Converter Deluxe 5.9.8 (HKLM-x32\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)