Chrome:
=======
CHR HomePage: Default -> hxxp://
www.facebook.com/
CHR StartupUrls: Default -> "hxxps://
www.facebook.com/","hxxps://docs.google.com/spreadsheet/ccc?key=0Aku1E7eRIiavdEp4UjBpa0I4X3NMZE9nODRPMEo3V0E&usp=drive_web#gid=2"
CHR Profile: C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-03]
CHR Extension: (Angry Birds) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-12-14]
CHR Extension: (Google Docs) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-03]
CHR Extension: (Dictanote - Speech Recognizer) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomjekmpappghadlogpigifkghlmebjk [2014-07-22]
CHR Extension: (Google Drive) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Language Immersion for Chrome) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bedbecnakfcpmkpddjfnfihogkaggkhl [2015-12-07]
CHR Extension: (Kaspersky Protection) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa [2014-07-22]
CHR Extension: (Adblock Plus) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-05]
CHR Extension: (Adblock for Youtube™) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-10-16]
CHR Extension: (Google Search) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Rather) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkigkllnlkoblfbgfnfngfcnhmndonjm [2015-10-17]
CHR Extension: (Kaspersky Protection) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2015-11-30]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2014-08-06]
CHR Extension: (Google Sheets) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-03]
CHR Extension: (Google Docs Offline) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-08]
CHR Extension: (ScrewAds Plus for YouTube) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkkneiphdbaaeambcmhiiildkffacbip [2014-07-22]
CHR Extension: (Grammarly Spell Checker & Grammar Checker) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2016-01-09]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-12-07]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-26]
CHR Extension: (Gmail) - C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - hxxps://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKU\S-1-5-21-344140053-2034629372-3514804246-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - hxxps://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2015-12-04] (Advanced Micro Devices) [File not signed]
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000 2015-11-30] (Kaspersky Lab ZAO)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [File not signed]
R2 CtHdaSvc; C:\Windows\sysWow64\CtHdaSvc.exe [122888 2015-06-22] (Creative Technology Ltd)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-03] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1008880 2015-12-15] (Overwolf LTD)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-06-28] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-01] ()
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [305392 2015-12-16] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-09-17] (Advanced Micro Devices)
R1 BfLwf; C:\Windows\system32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 cthda; C:\Windows\system32\drivers\cthda.sys [1074472 2015-06-22] (Creative Technology Ltd)
R3 cthdb; C:\Windows\system32\DRIVERS\cthdb.sys [42792 2015-06-22] (Creative Technology Ltd)
S3 EMVSCARD; C:\Windows\System32\Drivers\EMVSCARD.sys [28544 2006-12-13] (USB Smart Card Reader)
R3 Ke2200; C:\Windows\System32\drivers\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2015-11-30] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227512 2015-11-30] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [934272 2015-12-02] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-11-30] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2015-11-30] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-09] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 rtwlane_13; C:\Windows\System32\drivers\rtwlane_13.sys [3749888 2015-07-10] (Realtek Semiconductor Corporation )
S3 SzCCID; C:\Windows\system32\DRIVERS\SzCCID.sys [37888 2010-05-14] (Generic)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [30848 2016-01-10] ()
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-10 13:07 - 2016-01-10 13:07 - 00016148 _____ C:\WINDOWS\system32\NATALIA_Nathan_HistoryPrediction.bin
2016-01-10 12:41 - 2016-01-10 12:50 - 00000000 ____D C:\ProgramData\RogueKiller
2016-01-10 12:41 - 2016-01-10 12:41 - 00030848 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-01-10 12:39 - 2016-01-10 12:41 - 20835400 _____ C:\Users\Nathan\Downloads\RogueKiller.exe
2016-01-09 22:36 - 2016-01-09 22:36 - 00000555 _____ C:\Users\Nathan\Desktop\JRT.txt
2016-01-09 22:26 - 2016-01-09 22:29 - 00000000 ____D C:\AdwCleaner
2016-01-09 22:21 - 2016-01-09 22:21 - 01600184 _____ (Malwarebytes) C:\Users\Nathan\Downloads\JRT.exe
2016-01-09 22:20 - 2016-01-09 22:20 - 00001040 _____ C:\Users\Nathan\Desktop\scan log.txt
2016-01-09 22:18 - 2016-01-09 22:24 - 00002310 _____ C:\Users\Nathan\Desktop\Rkill.txt
2016-01-09 22:07 - 2016-01-10 13:10 - 00024466 _____ C:\Users\Nathan\Downloads\FRST.txt
2016-01-09 22:07 - 2016-01-09 22:08 - 00052002 _____ C:\Users\Nathan\Downloads\Addition.txt
2016-01-09 22:06 - 2016-01-10 13:10 - 00000000 ____D C:\FRST
2016-01-09 22:06 - 2016-01-09 22:26 - 01749504 _____ C:\Users\Nathan\Downloads\AdwCleaner.exe
2016-01-09 22:06 - 2016-01-09 22:07 - 05646860 _____ (Swearware) C:\Users\Nathan\Downloads\ComboFix.exe
2016-01-09 22:05 - 2016-01-09 22:18 - 02032072 _____ (Bleeping Computer, LLC) C:\Users\Nathan\Downloads\rkill.exe
2016-01-09 22:05 - 2016-01-09 22:06 - 02370560 _____ (Farbar) C:\Users\Nathan\Downloads\FRST64.exe
2016-01-09 21:51 - 2016-01-09 21:51 - 00002856 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-01-09 21:51 - 2016-01-09 21:51 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-01-09 21:51 - 2016-01-09 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-01-09 21:51 - 2016-01-09 21:51 - 00000000 ____D C:\Program Files\CCleaner
2016-01-09 21:25 - 2016-01-09 22:32 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-01-09 21:25 - 2016-01-09 21:25 - 00001171 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-01-09 21:25 - 2016-01-09 21:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-01-09 21:25 - 2016-01-09 21:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-09 21:25 - 2016-01-09 21:25 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-01-09 21:25 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-01-09 21:25 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-01-09 21:25 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-01-09 19:56 - 2016-01-09 21:03 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-01-09 19:55 - 2016-01-09 19:55 - 00000000 ____D C:\WINDOWS\pss
2016-01-09 19:50 - 2016-01-09 19:50 - 00000000 ____D C:\$SysReset
2016-01-09 10:25 - 2016-01-09 10:25 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-12-21 15:43 - 2016-01-09 18:39 - 00000000 ____D C:\Users\Nathan\AppData\Roaming\dvdcss
2015-12-18 19:07 - 2015-12-18 19:07 - 00000000 ____D C:\ProgramData\ATI
2015-12-16 14:45 - 2015-12-16 14:45 - 10919104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2015-12-16 14:45 - 2015-12-16 14:45 - 09158496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2015-12-16 14:45 - 2015-12-16 14:45 - 09105552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2015-12-16 14:45 - 2015-12-16 14:45 - 08168856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2015-12-16 14:45 - 2015-12-16 14:45 - 00143080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-12-16 14:45 - 2015-12-16 14:45 - 00112392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 11011560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 08426376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 01249664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 00471344 _____ C:\WINDOWS\system32\amdmiracast.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 00130616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 00088032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 00088032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 00081200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2015-12-16 14:44 - 2015-12-16 14:44 - 00081200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2015-12-16 14:43 - 2015-12-16 14:43 - 00151968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2015-12-16 14:43 - 2015-12-16 14:43 - 00138416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2015-12-16 14:43 - 2015-12-16 14:43 - 00128568 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2015-12-16 14:43 - 2015-12-16 14:43 - 00120200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2015-12-16 14:41 - 2015-12-16 14:41 - 00243728 _____ C:\WINDOWS\system32\clinfo.exe
2015-12-16 14:41 - 2015-12-16 14:41 - 00232464 _____ C:\WINDOWS\system32\dgtrayicon.exe
2015-12-16 14:41 - 2015-12-16 14:41 - 00203792 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2015-12-16 14:41 - 2015-12-16 14:41 - 00183312 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-12-16 14:41 - 2015-12-16 14:41 - 00136208 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2015-12-16 14:41 - 2015-12-16 14:41 - 00122384 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2015-12-16 14:41 - 2015-12-16 14:41 - 00104976 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2015-12-16 14:41 - 2015-12-16 14:41 - 00097808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2015-12-16 14:41 - 2015-12-16 14:41 - 00012816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2015-12-16 14:41 - 2015-12-16 14:41 - 00012816 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2015-12-16 14:37 - 2015-12-16 14:37 - 25848848 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2015-12-16 14:37 - 2015-12-16 14:37 - 00199696 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2015-12-16 14:37 - 2015-12-16 14:37 - 00097808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2015-12-16 14:37 - 2015-12-16 14:37 - 00089616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2015-12-16 14:35 - 2015-12-16 14:35 - 00341520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2015-12-16 14:34 - 2015-12-16 14:34 - 31385616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2015-12-16 14:34 - 2015-12-16 14:34 - 00059920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2015-12-16 14:32 - 2015-12-16 14:32 - 00040464 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2015-12-16 14:29 - 2015-12-16 14:29 - 00561168 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2015-12-16 14:29 - 2015-12-16 14:29 - 00254992 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2015-12-16 14:29 - 2015-12-16 14:29 - 00166416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2015-12-16 14:29 - 2015-12-16 14:29 - 00151056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2015-12-16 14:29 - 2015-12-16 14:29 - 00084504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2015-12-16 14:29 - 2015-12-16 14:29 - 00078864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2015-12-16 14:29 - 2015-12-16 14:29 - 00078864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2015-12-16 14:28 - 2015-12-16 14:28 - 00451088 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2015-12-16 14:28 - 2015-12-16 14:28 - 00171032 _____ C:\WINDOWS\system32\atieah64.exe
2015-12-16 14:28 - 2015-12-16 14:28 - 00154128 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2015-12-16 14:28 - 2015-12-16 14:28 - 00071184 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2015-12-16 14:28 - 2015-12-16 14:28 - 00060944 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2015-12-16 14:27 - 2015-12-16 14:27 - 15720464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2015-12-16 14:27 - 2015-12-16 14:27 - 14310928 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2015-12-16 14:26 - 2015-12-16 14:26 - 00375824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2015-12-16 14:26 - 2015-12-16 14:26 - 00064528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2015-12-16 14:26 - 2015-12-16 14:26 - 00057872 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2015-12-16 14:25 - 2015-12-16 14:25 - 49992720 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2015-12-16 14:25 - 2015-12-16 14:25 - 01281552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2015-12-16 14:25 - 2015-12-16 14:25 - 00950288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2015-12-16 14:25 - 2015-12-16 14:25 - 00950288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2015-12-16 14:25 - 2015-12-16 14:25 - 00052240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2015-12-16 14:22 - 2015-12-16 14:22 - 27605008 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-12-16 14:21 - 2015-12-16 14:21 - 22357008 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-12-16 14:20 - 2015-12-16 14:20 - 41519120 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2015-12-16 14:19 - 2015-12-16 14:19 - 00059408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2015-12-16 14:19 - 2015-12-16 14:19 - 00048144 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2015-12-16 14:17 - 2015-12-16 14:17 - 06651920 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2015-12-16 14:16 - 2015-12-16 14:16 - 05232656 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2015-12-16 14:15 - 2015-12-16 14:15 - 00686608 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2015-12-16 14:15 - 2015-12-16 14:15 - 00571408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2015-12-16 14:13 - 2015-12-16 14:13 - 00305392 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2015-12-16 14:13 - 2015-12-16 14:13 - 00213520 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2015-12-16 14:13 - 2015-12-16 14:13 - 00198672 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-12-16 14:13 - 2015-12-16 14:13 - 00143376 _____ C:\WINDOWS\system32\amdhdl64.dll
2015-12-16 14:13 - 2015-12-16 14:13 - 00132112 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2015-12-16 14:13 - 2015-12-16 14:13 - 00073744 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-12-16 14:13 - 2015-12-16 14:13 - 00068112 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-12-16 13:07 - 2015-12-16 13:07 - 10339016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-12-16 04:11 - 2015-12-16 04:11 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2015-12-16 04:11 - 2015-12-16 04:11 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2015-12-16 04:09 - 2015-12-16 04:09 - 00683968 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2015-12-16 04:09 - 2015-12-16 04:09 - 00683968 _____ C:\WINDOWS\system32\atiapfxx.blb
2015-12-15 09:59 - 2015-12-15 10:00 - 00000000 ____D C:\Users\Nathan\AppData\Local\paint.net
2015-12-15 09:59 - 2015-12-15 09:59 - 00001104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2015-12-15 09:59 - 2015-12-15 09:59 - 00001092 _____ C:\Users\Public\Desktop\paint.net.lnk
2015-12-15 09:59 - 2015-12-15 09:59 - 00000000 ____D C:\Program Files\paint.net
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-10 13:07 - 2015-08-06 15:55 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-01-10 13:07 - 2015-07-10 07:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-10 13:07 - 2015-07-10 04:05 - 08126464 ___SH C:\WINDOWS\system32\config\BBI
2016-01-10 13:07 - 2014-05-09 16:23 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-10 13:07 - 2014-05-09 16:23 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-10 13:07 - 2014-05-09 08:49 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-01-10 12:44 - 2015-08-06 15:56 - 01005598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-10 12:44 - 2015-07-10 06:02 - 00000000 ____D C:\WINDOWS\INF
2016-01-10 12:41 - 2015-09-26 06:34 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{367B0B6C-DE50-4FC3-A5D5-D66328088F5F}
2016-01-10 12:40 - 2015-07-10 04:05 - 00000000 ____D C:\Windows
2016-01-09 23:30 - 2014-05-11 17:46 - 00000000 ____D C:\Program Files (x86)\Steam
2016-01-09 22:47 - 2015-11-30 11:02 - 00000000 ____D C:\Users\Nathan\Documents\AirDroid
2016-01-09 22:34 - 2014-05-09 16:40 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-09 22:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-09 21:51 - 2015-10-03 13:00 - 00000000 ____D C:\Users\Nathan\AppData\Roaming\TS3Client
2016-01-09 21:51 - 2015-08-22 10:38 - 00000000 ____D C:\WINDOWS\Minidump
2016-01-09 21:51 - 2015-08-06 19:53 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-09 21:31 - 2015-08-06 16:18 - 00000000 ___RD C:\Users\Nathan\OneDrive
2016-01-09 21:31 - 2014-12-08 18:14 - 00000000 ____D C:\Users\Nathan\AppData\Local\Spotify
2016-01-09 21:31 - 2014-12-08 18:13 - 00000000 ____D C:\Users\Nathan\AppData\Roaming\Spotify
2016-01-09 21:12 - 2015-12-07 15:45 - 00000000 ___RD C:\Users\Nathan\Google Drive
2016-01-09 21:12 - 2014-05-17 12:40 - 00000000 ____D C:\Users\Nathan\AppData\Roaming\Raptr
2016-01-09 19:49 - 2015-08-06 15:56 - 00000000 ____D C:\Users\Nathan
2016-01-09 19:39 - 2015-10-10 01:56 - 00000000 ____D C:\Users\Nathan\AppData\Roaming\vlc
2016-01-09 18:17 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-01-09 17:38 - 2014-05-10 12:11 - 00000000 ____D C:\ProgramData\Origin
2016-01-09 13:08 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-09 10:25 - 2015-12-02 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2016-01-09 10:25 - 2015-12-02 12:22 - 00000078 ___RH C:\WINDOWS\ctfile.rfc
2016-01-08 21:57 - 2015-07-10 06:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-07 14:05 - 2015-12-07 15:04 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-07 14:05 - 2015-12-07 15:04 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-01-07 13:37 - 2015-07-10 05:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-04 12:18 - 2015-11-30 11:01 - 00000000 ____D C:\Program Files (x86)\AirDroid
2016-01-04 01:00 - 2015-10-03 13:00 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-01-03 15:20 - 2015-10-06 12:25 - 00000000 ____D C:\Users\Nathan\Documents\DolbyAxon
2016-01-02 20:40 - 2015-10-03 09:38 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-02 20:40 - 2015-10-03 09:38 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-18 19:08 - 2015-12-05 22:36 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-12-18 19:08 - 2015-08-06 15:55 - 00000000 ____D C:\Program Files\AMD
2015-12-18 19:08 - 2014-05-09 08:37 - 00000000 ____D C:\Program Files (x86)\AMD
2015-12-18 19:05 - 2014-05-09 08:53 - 00000000 ____D C:\AMD
2015-12-16 19:01 - 2015-10-30 04:42 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-16 17:07 - 2015-12-05 22:27 - 00021288 _____ (RW-Everything) C:\WINDOWS\SysWOW64\Drivers\AxtuDrv.sys
2015-12-16 17:06 - 2015-10-15 13:39 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-12-16 14:45 - 2015-07-16 01:12 - 00162784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2015-12-16 14:44 - 2015-07-16 01:11 - 13313544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2015-12-16 14:44 - 2015-07-16 01:11 - 01519232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2015-12-16 14:41 - 2015-11-24 02:33 - 00874000 _____ (AMD) C:\WINDOWS\system32\coinst_15.30.dll
2015-12-16 14:31 - 2015-07-16 01:06 - 23969808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2015-12-16 14:31 - 2015-07-16 00:13 - 00679952 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2015-12-14 15:01 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\rescache
2015-12-14 14:54 - 2014-05-09 09:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-14 14:51 - 2014-05-09 09:52 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-14 09:49 - 2015-08-06 16:18 - 00002366 _____ C:\Users\Nathan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-13 12:39 - 2015-07-10 07:20 - 00228680 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-12 18:37 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-12 18:36 - 2014-05-10 13:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-12 18:36 - 2014-05-10 13:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-11 03:44 - 2015-02-19 12:16 - 00000000 ____D C:\Users\Nathan\AppData\Local\Steam