Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:31-10-2015
Ran by AmyLee (administrator) on SORSCHA (01-11-2015 12:31:19)
Running from C:\Users\AmyLee\Desktop
Loaded Profiles: AmyLee (Available Profiles: AmyLee & Administrator)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(ThreatTrack Security Inc.) C:\Program Files (x86)\VIPRE\SBPIMSvc.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(ThreatTrack Security Inc.) C:\Program Files (x86)\VIPRE\SBAMTray.exe
(ThreatTrack Security Inc.) C:\Program Files (x86)\VIPRE\SBAMSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ThreatTrack Security Inc.) C:\Program Files (x86)\VIPRE\WebProxy.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\perfmon.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1510.13020.0_x64__8wekyb3d8bbwe\Calculator.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-17] (Synaptics Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-02-25] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SBAMTray] => C:\Program Files (x86)\VIPRE\SBAMTray.exe [2999776 2015-07-30] (ThreatTrack Security Inc.)
HKU\S-1-5-21-2846697123-1680852690-3445690203-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [57987712 2015-09-27] (Skype Technologies S.A.)
HKU\S-1-5-21-2846697123-1680852690-3445690203-1001\...\Run: [GoogleChromeAutoLaunch_F5B4CF23174E2B32F3E7C9982D8ED7FC] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-10-20] (Google Inc.)
HKU\S-1-5-21-2846697123-1680852690-3445690203-1001\...\MountPoints2: {4a5c3345-a1e9-11e4-bea7-a0d3c1c9c57b} - "F:\VerizonSWUpgradeAssistantLauncher.exe" 
HKU\S-1-5-21-2846697123-1680852690-3445690203-1001\...\MountPoints2: {e99e0d2f-39a0-11e4-be93-a0d3c1c9c57b} - "G:\VZW_Software_upgrade_assistant.exe" 
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\AmyLee\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-10-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\AmyLee\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-10-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\AmyLee\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-10-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\AmyLee\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-10-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\AmyLee\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-10-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\AmyLee\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-10-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-27] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.5.26.168
Tcpip\..\Interfaces\{3328859a-d2b9-435d-aab6-6eccac44629c}: [DhcpNameServer] 10.5.26.168

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT13/1
HKU\S-1-5-21-2846697123-1680852690-3445690203-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://notsomodernmommy.com/
HKU\S-1-5-21-2846697123-1680852690-3445690203-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT13/1
HKU\S-1-5-21-2846697123-1680852690-3445690203-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/HPNOT13/1
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM -> {EC523836-9C3A-42A5-AE23-06F1BA9B9EFA} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {EC523836-9C3A-42A5-AE23-06F1BA9B9EFA} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-2846697123-1680852690-3445690203-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-2846697123-1680852690-3445690203-1001 -> {EC523836-9C3A-42A5-AE23-06F1BA9B9EFA} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation)
BHO: VIPRE Search Guard Helper -> {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} -> C:\Program Files (x86)\VIPRE\x64\VSGx64.dll [2015-07-30] ()
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-27] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-09-28] (Microsoft Corporation)
BHO-x32: VIPRE Search Guard Helper -> {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} -> C:\Program Files (x86)\VIPRE\VSG.dll [2015-07-30] ()
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-27] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - VIPRE Search Guard Toolbar - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\x64\VSGx64.dll [2015-07-30] ()
Toolbar: HKLM-x32 - VIPRE Search Guard Toolbar - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\VSG.dll [2015-07-30] ()
Toolbar: HKU\S-1-5-21-2846697123-1680852690-3445690203-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-05-20] (Microsoft Corporation)
Handler: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} - C:\Program Files (x86)\VIPRE\x64\VSGx64.dll [2015-07-30] ()
Handler-x32: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} - C:\Program Files (x86)\VIPRE\VSG.dll [2015-07-30] ()

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-05-20] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-05-20] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin HKU\S-1-5-21-2846697123-1680852690-3445690203-1001: @citrixonline.com/appdetectorplugin -> C:\Users\AmyLee\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-07-28] (Citrix Online)
FF Plugin ProgramFiles/Appdata: C:\Users\AmyLee\AppData\Roaming\mozilla\plugins\npatgpc.dll [2015-10-27] (Cisco WebEx LLC)

Chrome: 
=======
CHR Profile: C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-19]
CHR Extension: (Google Docs) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-19]
CHR Extension: (Google Drive) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (YouTube) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30]
CHR Extension: (Google Search) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Sheets) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-19]
CHR Extension: (Google Docs Offline) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-10]
CHR Extension: (Cisco WebEx Extension) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2015-10-27]
CHR Extension: (F.B Purity-Clean Up Facebook) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdlagniojmheiklojdcpdaeepochckl [2015-11-01]
CHR Extension: (Chrome Web Store Payments) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-27]
CHR Extension: (Gmail) - C:\Users\AmyLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-19]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2780856 2015-10-07] (Microsoft Corporation)
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-02-01] (Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-30] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-06-24] (Realtek Semiconductor)
R2 SBAMSvc; C:\Program Files (x86)\VIPRE\SBAMSvc.exe [4298032 2015-07-30] (ThreatTrack Security Inc.)
R2 SBPIMSvc; C:\Program Files (x86)\VIPRE\SBPIMSvc.exe [212448 2015-07-30] (ThreatTrack Security Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-17] (Synaptics Incorporated)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R3 WebProxy; C:\Program Files (x86)\VIPRE\WebProxy.exe [6339552 2015-07-30] (ThreatTrack Security Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4318760 2015-09-05] (Qualcomm Atheros Communications, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [40584 2015-08-27] (ThreatTrack Security)
S3 gfiutil; C:\Windows\System32\drivers\gfiutil.sys [31264 2013-09-04] (ThreatTrack Security)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
R2 sbapifs; C:\Windows\System32\DRIVERS\sbapifs.sys [90464 2015-07-30] (ThreatTrack Security Inc.)
R3 sbwtis; C:\Windows\system32\DRIVERS\sbwtis.sys [95608 2015-07-30] (ThreatTrack Security)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-05-07] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-17] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R2 WebExaminer; C:\WINDOWS\system32\Drivers\WebExaminer64.sys [44680 2015-07-30] (ThreatTrack Security Inc.)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-01 12:31 - 2015-11-01 12:32 - 00019703 _____ C:\Users\AmyLee\Desktop\FRST.txt
2015-11-01 12:31 - 2015-11-01 12:31 - 00016148 _____ C:\WINDOWS\system32\SORSCHA_AmyLee_HistoryPrediction.bin
2015-11-01 12:11 - 2015-11-01 12:31 - 00000000 ____D C:\FRST
2015-11-01 12:11 - 2015-11-01 11:39 - 01801288 _____ (Malwarebytes) C:\Users\AmyLee\Desktop\JRT.exe
2015-11-01 12:11 - 2015-11-01 11:39 - 00781312 _____ C:\Users\AmyLee\Desktop\delfix_1.011.exe
2015-11-01 12:11 - 2015-11-01 11:38 - 02198016 _____ (Farbar) C:\Users\AmyLee\Desktop\FRST64.exe
2015-11-01 12:11 - 2015-11-01 11:38 - 01708032 _____ C:\Users\AmyLee\Desktop\AdwCleaner.exe
2015-10-31 15:33 - 2015-11-01 07:33 - 00000352 _____ C:\WINDOWS\Tasks\HPCeeScheduleForAmyLee.job
2015-10-31 15:33 - 2015-10-31 15:33 - 00003248 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForAmyLee
2015-10-30 13:07 - 2015-10-27 14:38 - 21871616 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-30 13:07 - 2015-10-27 14:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-30 13:07 - 2015-10-21 03:45 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 13:07 - 2015-10-21 03:43 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 13:07 - 2015-10-21 03:39 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-10-30 13:07 - 2015-10-21 03:00 - 24595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-30 13:07 - 2015-10-21 03:00 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 13:07 - 2015-10-21 02:57 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 13:07 - 2015-10-21 02:52 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-30 13:07 - 2015-10-21 02:50 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 13:07 - 2015-10-21 02:48 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-30 13:07 - 2015-10-21 02:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 13:07 - 2015-10-21 02:46 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-10-30 13:07 - 2015-10-21 02:44 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-10-30 13:07 - 2015-10-21 02:44 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-30 13:07 - 2015-10-21 02:43 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 13:07 - 2015-10-21 02:42 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 13:07 - 2015-10-21 02:41 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 13:07 - 2015-10-20 20:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-30 13:07 - 2015-10-20 20:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-10-30 13:07 - 2015-10-20 20:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-30 13:07 - 2015-10-20 20:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-30 13:07 - 2015-10-20 20:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-30 13:07 - 2015-10-20 20:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-30 13:07 - 2015-10-20 20:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-10-30 13:07 - 2015-10-20 19:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-10-30 13:07 - 2015-10-20 19:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-30 13:06 - 2015-10-21 03:44 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-10-30 13:06 - 2015-10-21 02:59 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-10-30 13:06 - 2015-10-21 02:47 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 13:06 - 2015-10-21 02:40 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-10-30 13:06 - 2015-10-21 02:38 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-10-30 13:06 - 2015-10-20 20:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-10-30 13:06 - 2015-10-20 19:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 04025864 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 02506960 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-10-30 12:59 - 2015-10-30 12:59 - 02037232 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 01768432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 01470472 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 01156000 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 01151840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00866824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00661000 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00618992 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00617992 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00444832 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-10-30 12:59 - 2015-10-30 12:59 - 00394224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00387056 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00357912 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00296944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00291744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-10-30 12:59 - 2015-10-30 12:59 - 00265712 _____ C:\WINDOWS\system32\igfxCPL.cpl
2015-10-30 12:59 - 2015-10-30 12:59 - 00230384 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00229664 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00225288 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00216552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4276.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00205728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-10-30 12:59 - 2015-10-30 12:59 - 00199088 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00194368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00193536 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00192520 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00188884 _____ C:\WINDOWS\system32\resTHA.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00181524 _____ C:\WINDOWS\system32\resELL.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00177300 _____ C:\WINDOWS\system32\resRUS.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00169368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00163044 _____ C:\WINDOWS\system32\resARA.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00162500 _____ C:\WINDOWS\system32\resHEB.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00162484 _____ C:\WINDOWS\system32\resJPN.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00157860 _____ C:\WINDOWS\system32\resHUN.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00157844 _____ C:\WINDOWS\system32\resFRA.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00156100 _____ C:\WINDOWS\system32\resKOR.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00156020 _____ C:\WINDOWS\system32\resDEU.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00155988 _____ C:\WINDOWS\system32\resITA.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00155828 _____ C:\WINDOWS\system32\resROM.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00155716 _____ C:\WINDOWS\system32\resESN.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00155268 _____ C:\WINDOWS\system32\resPLK.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00155172 _____ C:\WINDOWS\system32\resSKY.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00154980 _____ C:\WINDOWS\system32\resNLD.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00154372 _____ C:\WINDOWS\system32\resPTB.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00154260 _____ C:\WINDOWS\system32\resTRK.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00154212 _____ C:\WINDOWS\system32\resCSY.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00154084 _____ C:\WINDOWS\system32\resPTG.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00153620 _____ C:\WINDOWS\system32\resFIN.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00153236 _____ C:\WINDOWS\system32\resHRV.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00152772 _____ C:\WINDOWS\system32\resSVE.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00152644 _____ C:\WINDOWS\system32\resSLV.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00151668 _____ C:\WINDOWS\system32\resNOR.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00151156 _____ C:\WINDOWS\system32\resDAN.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00149812 _____ C:\WINDOWS\system32\resENU.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00148052 _____ C:\WINDOWS\system32\resCHT.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00147188 _____ C:\WINDOWS\system32\resCHS.cui
2015-10-30 12:59 - 2015-10-30 12:59 - 00143368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00109064 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00096752 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00078336 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00069616 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00042232 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00039424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00020976 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00015344 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00013824 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-10-30 12:59 - 2015-10-30 12:59 - 00002560 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-10-30 12:58 - 2015-10-30 12:58 - 22915568 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 17846272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 11053048 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 08528896 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 06513648 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 04371888 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-10-30 12:58 - 2015-10-30 12:58 - 04369816 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-10-30 12:58 - 2015-10-30 12:58 - 01995760 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 01793024 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00970656 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-10-30 12:58 - 2015-10-30 12:58 - 00556960 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-10-30 12:58 - 2015-10-30 12:58 - 00554928 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-10-30 12:58 - 2015-10-30 12:58 - 00469216 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00410528 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-10-30 12:58 - 2015-10-30 12:58 - 00409520 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2015-10-30 12:58 - 2015-10-30 12:58 - 00378824 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00374272 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00329216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00316245 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2015-10-30 12:58 - 2015-10-30 12:58 - 00232960 _____ C:\WINDOWS\system32\igdde64.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00194560 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00172528 _____ C:\WINDOWS\system32\igdail64.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00165808 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-10-30 12:58 - 2015-10-30 12:58 - 00163840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00154096 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2015-10-30 12:58 - 2015-10-30 12:58 - 00102912 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-10-29 20:14 - 2015-10-29 20:15 - 00000000 ____D C:\Users\AmyLee\AppData\Roaming\com.rosettastone.languagetraining
2015-10-29 19:45 - 2015-10-29 19:45 - 00001229 _____ C:\Users\Public\Desktop\Rosetta Stone.lnk
2015-10-29 19:45 - 2015-10-29 19:45 - 00000000 ____D C:\ProgramData\RosettaStoneLtdServices
2015-10-29 19:45 - 2015-10-29 19:45 - 00000000 ____D C:\ProgramData\Rosetta Stone Backups
2015-10-29 19:45 - 2015-10-29 19:45 - 00000000 ____D C:\ProgramData\Rosetta Stone
2015-10-29 19:45 - 2015-10-29 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone
2015-10-29 19:45 - 2015-10-29 19:45 - 00000000 ____D C:\Program Files (x86)\RosettaStoneLtdServices
2015-10-29 19:45 - 2015-10-29 19:45 - 00000000 ____D C:\Program Files (x86)\Rosetta Stone
2015-10-29 19:44 - 2015-10-29 20:55 - 00000000 ____D C:\ProgramData\FLEXnet
2015-10-29 08:59 - 2015-10-29 19:41 - 1400754208 _____ (Rosetta Stone) C:\Users\AmyLee\Downloads\Setup (6).exe
2015-10-27 10:57 - 2015-10-27 10:57 - 00000000 ____D C:\Users\AmyLee\Documents\20151027-Tuesday 1_00PM Training Call(1754211610)
2015-10-27 10:51 - 2015-10-27 11:12 - 00000000 __SHD C:\Users\AmyLee\Documents\cache
2015-10-27 10:51 - 2015-10-27 11:12 - 00000000 ____D C:\Users\AmyLee\AppData\LocalLow\WebEx
2015-10-27 10:51 - 2015-10-27 10:51 - 00708280 _____ (Cisco WebEx LLC) C:\Users\AmyLee\Downloads\Cisco_WebEx_Add-On.exe
2015-10-27 10:51 - 2015-10-27 10:51 - 00000000 ____D C:\Users\AmyLee\AppData\Roaming\webex
2015-10-27 10:51 - 2015-10-27 10:51 - 00000000 ____D C:\Users\AmyLee\AppData\Roaming\Mozilla
2015-10-27 10:51 - 2015-10-27 10:51 - 00000000 ____D C:\Users\AmyLee\AppData\Local\WebEx
2015-10-27 10:51 - 2015-10-27 10:51 - 00000000 ____D C:\ProgramData\WebEx
2015-10-27 10:50 - 2015-10-27 10:50 - 01557658 _____ C:\Users\AmyLee\Downloads\AmyLee Presentation (1).pptx
2015-10-27 10:49 - 2015-10-27 10:49 - 00094988 _____ C:\Users\AmyLee\Downloads\MavenProLight-300 (1).otf
2015-10-27 10:49 - 2015-10-27 10:49 - 00083392 _____ C:\Users\AmyLee\Downloads\steelfish rg (1).ttf
2015-10-27 10:44 - 2015-10-27 10:44 - 01557658 _____ C:\Users\AmyLee\Downloads\AmyLee Presentation.pptx
2015-10-23 09:33 - 2015-10-25 11:17 - 00000000 ____D C:\Users\AmyLee\Desktop\23 Oct Inventory
2015-10-20 14:12 - 2015-11-01 10:30 - 00000000 ____D C:\Users\AmyLee\Desktop\S 12 - Copy
2015-10-20 14:12 - 2015-10-20 14:12 - 00000000 ____D C:\Users\AmyLee\Desktop\Size 6 - Copy
2015-10-20 14:12 - 2015-10-20 14:12 - 00000000 ____D C:\Users\AmyLee\Desktop\Size 2 - Copy
2015-10-20 10:40 - 2015-10-20 14:42 - 00000000 ____D C:\Users\AmyLee\Desktop\October
2015-10-14 11:20 - 2015-10-14 11:20 - 00000000 ____D C:\Users\AmyLee\Desktop\New Leggings
2015-10-13 17:53 - 2015-10-05 18:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 17:53 - 2015-09-24 18:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-13 17:53 - 2015-09-24 18:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-13 17:53 - 2015-09-24 18:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-13 17:53 - 2015-09-24 17:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-13 17:52 - 2015-10-09 22:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-13 17:52 - 2015-10-05 17:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-13 17:52 - 2015-09-30 19:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-13 17:52 - 2015-09-30 19:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-13 17:52 - 2015-09-30 19:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-13 17:52 - 2015-09-30 19:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-13 17:52 - 2015-09-30 19:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 17:52 - 2015-09-30 18:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-13 17:52 - 2015-09-24 19:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-13 17:52 - 2015-09-24 19:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-13 17:52 - 2015-09-24 18:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-13 17:52 - 2015-09-24 18:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-13 17:52 - 2015-09-24 18:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 17:52 - 2015-09-24 18:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-13 17:52 - 2015-09-24 18:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 17:52 - 2015-09-24 18:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-13 17:52 - 2015-09-24 18:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 17:52 - 2015-09-24 18:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 17:52 - 2015-09-24 18:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-13 17:52 - 2015-09-24 18:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-13 17:52 - 2015-09-24 18:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-13 17:52 - 2015-09-24 18:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 17:52 - 2015-09-24 18:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-13 17:52 - 2015-09-24 18:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-13 17:52 - 2015-09-24 18:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-13 17:52 - 2015-09-24 18:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-13 17:52 - 2015-09-24 18:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-13 17:52 - 2015-09-24 18:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-13 17:52 - 2015-09-24 17:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-13 17:52 - 2015-09-24 17:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-13 17:52 - 2015-09-24 17:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-13 17:52 - 2015-09-24 17:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 17:52 - 2015-09-24 17:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 17:52 - 2015-09-24 17:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 17:52 - 2015-09-24 17:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-13 17:52 - 2015-09-24 17:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-13 17:52 - 2015-09-24 17:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-13 17:52 - 2015-09-24 17:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-13 17:52 - 2015-09-24 17:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-13 17:52 - 2015-09-24 17:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-13 17:52 - 2015-09-24 17:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-13 17:52 - 2015-09-24 17:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-13 17:52 - 2015-09-24 17:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-13 17:52 - 2015-09-24 17:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 17:52 - 2015-09-24 17:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-13 17:52 - 2015-09-24 17:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-13 17:52 - 2015-09-24 17:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-13 17:52 - 2015-09-24 17:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-13 17:52 - 2015-09-24 17:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-13 17:52 - 2015-09-24 17:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-13 17:52 - 2015-09-24 17:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-13 17:52 - 2015-09-24 17:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-13 17:52 - 2015-09-24 17:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-10 21:52 - 2015-10-10 21:52 - 09157329 _____ C:\Users\AmyLee\Downloads\fwdsigns (2).zip
2015-10-10 21:51 - 2015-10-10 21:52 - 09157329 _____ C:\Users\AmyLee\Downloads\fwdsigns (1).zip
2015-10-10 20:11 - 2015-10-10 20:12 - 09157329 _____ C:\Users\AmyLee\Downloads\fwdsigns.zip
2015-10-08 16:23 - 2015-10-08 16:23 - 00047321 _____ C:\Users\AmyLee\Downloads\a4787.xfdl
2015-10-03 19:43 - 2015-10-20 17:36 - 00000000 ____D C:\Users\AmyLee\Desktop\Twinkie Tush
2015-10-03 19:30 - 2015-10-12 10:22 - 00023033 _____ C:\Users\AmyLee\Desktop\downlines.xlsx
2015-10-03 19:30 - 2015-10-03 19:30 - 00000165 ____H C:\Users\AmyLee\Desktop\~$downlines.xlsx
2015-10-03 17:41 - 2015-10-03 17:41 - 00208393 _____ C:\Users\AmyLee\Desktop\hannah.jpe
2015-10-03 17:34 - 2015-10-03 17:34 - 00171826 _____ C:\Users\AmyLee\Desktop\alannahcompare.jpe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-01 12:28 - 2015-07-31 19:00 - 00000000 ____D C:\Users\AmyLee\AppData\Roaming\Skype
2015-11-01 12:22 - 2015-07-10 03:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-01 12:15 - 2015-05-19 22:20 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3B09EB9A-4CA5-42AF-9371-4518CC088767}
2015-11-01 12:12 - 2015-07-29 09:08 - 00969890 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-01 12:11 - 2015-07-28 08:47 - 00000584 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2846697123-1680852690-3445690203-1001.job
2015-11-01 12:10 - 2015-07-10 03:20 - 00113443 _____ C:\WINDOWS\setupact.log
2015-11-01 11:50 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-01 11:48 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-01 10:35 - 2015-08-13 15:12 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-11-01 10:33 - 2015-05-19 23:31 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-01 10:29 - 2015-05-19 23:31 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-01 10:28 - 2015-09-02 20:24 - 00003232 _____ C:\WINDOWS\SysWOW64\WebProxyOff.ini
2015-11-01 10:28 - 2015-09-02 20:24 - 00003232 _____ C:\WINDOWS\system32\WebProxyOff.ini
2015-11-01 10:25 - 2015-07-10 03:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-01 10:25 - 2015-07-10 00:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-11-01 10:01 - 2015-07-29 09:38 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-11-01 07:42 - 2015-07-28 08:47 - 00000680 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2846697123-1680852690-3445690203-1001.job
2015-11-01 07:33 - 2015-07-29 09:03 - 00015388 _____ C:\WINDOWS\PFRO.log
2015-11-01 07:33 - 2015-07-10 03:20 - 00359784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-01 07:32 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-01 07:30 - 2015-07-29 09:09 - 00000000 ____D C:\Users\AmyLee
2015-11-01 00:45 - 2015-07-23 21:05 - 00000000 ____D C:\Users\AmyLee\Desktop\Pending
2015-10-31 15:33 - 2015-05-20 10:45 - 00000000 ____D C:\Users\AmyLee\AppData\Local\Hewlett-Packard
2015-10-31 13:30 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-31 13:00 - 2015-07-10 01:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-30 12:59 - 2015-07-29 09:05 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-10-30 12:59 - 2015-07-29 09:05 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-10-30 12:59 - 2015-07-10 23:51 - 00541600 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-10-30 12:59 - 2015-07-10 23:51 - 00395168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2015-10-30 12:59 - 2015-07-10 23:51 - 00330136 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-10-30 12:59 - 2015-07-10 23:51 - 00258456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-10-30 12:59 - 2015-07-10 23:46 - 00680432 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-10-30 12:59 - 2015-07-10 23:46 - 00285184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-10-30 12:59 - 2015-07-10 23:46 - 00262640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-10-30 12:58 - 2015-07-10 23:50 - 03797424 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-10-30 12:58 - 2015-07-10 23:49 - 12335600 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2015-10-30 12:58 - 2015-07-10 23:49 - 11905432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-10-30 12:58 - 2015-07-10 23:49 - 10574992 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-10-30 12:58 - 2015-07-10 23:49 - 04637640 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2015-10-30 12:58 - 2015-07-10 23:49 - 03672344 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2015-10-29 23:18 - 2015-06-10 13:19 - 00000000 ____D C:\Users\AmyLee\Desktop\picturs for quotes
2015-10-29 19:41 - 2015-05-19 22:17 - 00000000 ____D C:\Users\AmyLee\AppData\Local\Packages
2015-10-29 14:22 - 2015-07-28 08:47 - 00003836 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-2846697123-1680852690-3445690203-1001
2015-10-29 14:22 - 2015-07-28 08:47 - 00003740 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-2846697123-1680852690-3445690203-1001
2015-10-28 20:04 - 2014-10-18 14:18 - 00000000 ____D C:\Users\AmyLee\Desktop\LuLaRoe
2015-10-27 10:51 - 2015-08-01 23:03 - 00000000 ____D C:\Users\AmyLee\AppData\LocalLow\Temp
2015-10-27 10:38 - 2015-05-19 23:47 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-22 13:35 - 2015-05-19 23:33 - 00002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-20 17:36 - 2015-07-13 02:37 - 00000000 ____D C:\Users\AmyLee\Desktop\unstoppable
2015-10-20 14:42 - 2015-09-15 23:08 - 00000000 ____D C:\Users\AmyLee\Desktop\September Stocking
2015-10-18 13:42 - 2015-05-22 13:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-18 13:30 - 2015-05-22 13:53 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-15 18:10 - 2015-07-10 02:06 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-15 18:10 - 2015-07-10 02:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-13 17:36 - 2015-07-31 19:00 - 00000000 ____D C:\ProgramData\Skype
2015-10-02 02:52 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\rescache
2015-10-02 02:33 - 2015-07-10 02:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-10-02 02:33 - 2015-07-10 02:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-02 02:33 - 2015-07-10 02:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-02 02:33 - 2015-07-10 02:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-02 02:33 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-02 02:33 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-02 02:33 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-02 02:33 - 2015-07-10 02:04 - 00000000 ____D C:\WINDOWS\L2Schemas

Some files in TEMP:
====================
C:\Users\AmyLee\AppData\Local\Temp\setup.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-26 10:30

==================== End of FRST.txt ============================