Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-05-2017
Ran by I am (administrator) on DESKTOP-B72NMJ6 (26-05-2017 18:33:45)
Running from C:\Users\I am\Desktop
Loaded Profiles: I am (Available Profiles: I am)
Platform: Windows 10 Home Version 1703 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\pcCMService.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\pcCMService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CtHdaSvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
() C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
() C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
() C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.551\SSScheduler.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe
( ) C:\Windows\SysWOW64\lxebcoms.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
() C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe
() C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe
() C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
(FNet Co., Ltd.) C:\Program Files (x86)\ASUSRAMCACHE\RamCache.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
() C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\AsPowerBar.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8495320 2015-06-23] (Realtek Semiconductor)
HKLM\...\Run: [lxebmon.exe] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe [772712 2013-01-23] ()
HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe [150264 2013-01-23] ()
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-23] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\windows\system32\rundll32.exe" C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] ()
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32\...\Run: [UpdReg] => C:\windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Sound Blaster Z-Series Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe [877056 2014-11-24] (Creative Technology Ltd)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUS Media Streamer ShareEdit] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe [1189688 2015-06-01] ()
HKLM-x32\...\Run: [ASUS Media Streamer DMS] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe [2536760 2015-06-01] ()
HKLM-x32\...\Run: [ASUS Media Streamer WSAgent] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe [86840 2015-06-03] ()
HKLM-x32\...\Run: [ASUSRAMCACHE] => C:\Program Files (x86)\ASUSRAMCACHE\RamCache.exe [4325520 2015-12-15] (FNet Co., Ltd.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-04-13] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-04-24]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.551\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk [2017-05-11]
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe (Samsung Electronics Co., Ltd.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{dada2ac9-a9a8-4954-abdc-8dd4ab64e790}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-465181129-2301691221-1871877518-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-25] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-21] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-21] (Oracle Corporation)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://files.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-25] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-25] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-25] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-25] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-21] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-25] (Microsoft Corporation)
FF Plugin-x32: @Motive.com/NpMotive,version=1.0 -> C:\Program Files (x86)\Common Files\Motive\npMotive.dll [2012-10-05] (Alcatel-Lucent)
FF Plugin-x32: @Motive.com/npMotiveRequest,version=1.0 -> C:\Program Files (x86)\Common Files\Motive\npMotiveRequest.dll [2011-12-06] (Alcatel-Lucent)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxps://us.yahoo.com/
CHR StartupUrls: Default -> "hxxps://us.yahoo.com/"
CHR Profile: C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default [2017-05-26]
CHR Extension: (Google Slides) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-16]
CHR Extension: (Google Docs) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-16]
CHR Extension: (Google Drive) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-16]
CHR Extension: (YouTube) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-16]
CHR Extension: (Adblock Plus) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-21]
CHR Extension: (Adobe Acrobat) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Google Sheets) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-16]
CHR Extension: (Google Docs Offline) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-16]
CHR Extension: (Chrome Media Router) - C:\Users\I am\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-13]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2015-05-08] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-09-26] () [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe [397592 2015-07-02] (ASUSTeK Computer Inc.)
R2 AsusGameFirstService; C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe [356632 2015-06-10] (ASUSTeK)
S2 BT Help Wizard; C:\Program Files (x86)\BT Broadband Desktop Help\btbb\MA\8.4.0.53.bt.10\ma\bin\MAHostService.exe [321024 2014-04-09] (Alcatel-Lucent) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3971264 2017-05-14] (Microsoft Corporation)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [File not signed]
R2 CtHdaSvc; C:\WINDOWS\sysWow64\CtHdaSvc.exe [122880 2017-01-18] (Creative Technology Ltd)
R3 Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe [1280240 2015-05-08] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-23] (NVIDIA Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-11] (Intel Corporation)
S2 lxebCATSCustConnectService; C:\windows\system32\spool\DRIVERS\x64\3\\lxebserv.exe [45736 2010-04-14] (Lexmark International, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.551\McCHSvc.exe [404376 2017-04-18] (McAfee, Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-23] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-23] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2162064 2017-05-17] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3136920 2017-05-17] (Electronic Arts)
S3 PAExec; C:\windows\PAExec.exe [189112 2016-02-18] (Power Admin LLC)
R2 pcCMService64; C:\Program Files\Common Files\Motive\pcCMService.exe [467256 2013-11-11] (Alcatel-Lucent)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2017-03-25] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [348360 2017-05-21] ()
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [401024 2017-04-19] (Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [178312 2017-04-19] (Razer Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
R2 Samsung Network Fax Server; C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxServer64.exe [509664 2014-03-12] (Samsung Electronics Co., Ltd.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [43064 2015-06-11] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1074984 2017-01-18] (Creative Technology Ltd)
R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [33792 2017-02-13] (Creative Technology Ltd)
R3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [30352 2015-12-15] (Disc Soft Ltd)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [559080 2016-04-19] (Intel Corporation)
R2 ei2c; C:\windows\system32\drivers\ei2c.sys [20784 2015-12-16] (Nicomsoft Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-05-09] ()
R0 FNETHYRAMAS; C:\WINDOWS\System32\drivers\FNETHYRAMAS.SYS [45688 2015-12-15] (FNet Co., Ltd.)
R1 FNETURPX; C:\WINDOWS\System32\drivers\FNETURPX.SYS [16648 2015-12-15] (FNet Co., Ltd.)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2015-05-14] (ASUSTeK Computer Inc.)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [187320 2017-05-19] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [113592 2017-05-20] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-05-20] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [251832 2017-05-20] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [93624 2017-05-26] (Malwarebytes)
R2 mi2c; C:\windows\system32\drivers\mi2c.sys [20784 2015-12-16] (Nicomsoft Ltd.)
S3 MREMP50; C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [21248 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MREMP50a64; C:\Program Files\Common Files\Motive\MREMP50a64.sys [43008 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA))
S3 MRESP50; C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [20096 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50a64; C:\Program Files\Common Files\Motive\MRESP50a64.sys [40960 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA))
R1 NFC_Driver; C:\WINDOWS\System32\drivers\NFC_Driver.sys [48336 2015-06-11] (Titan ARC Corp.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_b67dc924fff8de6d\nvlddmkm.sys [14199224 2017-01-04] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51736 2016-06-23] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2016-10-23] (Zemana Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-26 18:33 - 2017-05-26 18:34 - 00024099 _____ C:\Users\I am\Desktop\FRST.txt
2017-05-26 18:33 - 2017-05-26 18:33 - 00000000 ____D C:\Users\I am\Desktop\FRST-OlderVersion
2017-05-22 14:10 - 2017-05-22 14:10 - 00001085 _____ C:\Users\I am\Desktop\start emergency kit scanner.lnk
2017-05-19 16:05 - 2017-05-19 16:05 - 00000000 ____D C:\ProgramData\Emsisoft
2017-05-19 16:02 - 2017-05-22 15:51 - 00000000 ____D C:\EEK
2017-05-19 15:28 - 2017-05-20 13:35 - 00113592 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-05-19 15:28 - 2017-05-20 13:34 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-05-19 15:28 - 2017-05-19 15:28 - 00187320 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-05-19 13:34 - 2017-05-20 13:34 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-19 13:34 - 2017-05-19 13:34 - 00001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-19 13:34 - 2017-05-19 13:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-19 13:34 - 2017-05-19 13:34 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-19 13:34 - 2017-05-09 16:37 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-05-18 16:53 - 2017-05-18 16:53 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-05-14 20:06 - 2017-05-14 20:06 - 00000000 ____D C:\Users\I am\AppData\Local\DBG
2017-05-14 19:02 - 2017-05-14 19:12 - 00000000 ____D C:\Program Files (x86)\OSTotoSoft
2017-05-14 19:02 - 2017-05-14 19:09 - 00000000 ____D C:\ProgramData\DriverTalent
2017-05-14 19:02 - 2017-05-14 19:02 - 00000000 ____D C:\Users\I am\AppData\Roaming\DriverTalent
2017-05-14 19:02 - 2017-05-14 19:02 - 00000000 ____D C:\OSTotoFolder
2017-05-14 03:47 - 2017-05-26 10:14 - 00000000 ____D C:\Windows.old
2017-05-14 03:46 - 2017-05-14 03:46 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-14 03:46 - 2017-05-14 03:46 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-05-14 03:46 - 2017-05-14 03:46 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-05-14 03:46 - 2017-05-14 03:46 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-05-14 03:46 - 2017-05-14 03:46 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-05-14 03:46 - 2017-05-14 03:46 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-14 03:46 - 2017-05-14 03:46 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-05-14 03:46 - 2017-05-14 03:46 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-05-14 03:46 - 2017-05-14 03:46 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-05-14 03:46 - 2017-05-14 03:46 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-14 03:46 - 2017-05-14 03:46 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-14 03:46 - 2017-05-14 03:46 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-14 03:38 - 2017-05-14 03:38 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-05-14 03:38 - 2017-05-13 18:50 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-05-14 03:37 - 2017-05-14 03:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-05-14 03:37 - 2017-05-14 03:37 - 00000000 ____D C:\Program Files\MSBuild
2017-05-14 03:37 - 2017-05-14 03:37 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-05-14 03:37 - 2017-05-14 03:37 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-05-14 03:36 - 2017-02-10 20:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-05-14 03:36 - 2017-02-10 20:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-05-14 03:36 - 2017-02-10 20:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-05-14 03:36 - 2017-02-10 20:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-05-14 03:36 - 2017-02-10 20:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-05-14 03:36 - 2017-02-10 20:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-05-14 01:05 - 2017-05-14 01:05 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2017-05-13 19:21 - 2017-05-13 19:21 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-05-13 19:19 - 2017-05-13 19:19 - 00001259 _____ C:\Users\I am\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update and Privacy Settings.lnk
2017-05-13 19:18 - 2017-05-13 19:18 - 00000020 ___SH C:\Users\I am\ntuser.ini
2017-05-13 19:17 - 2017-05-13 19:17 - 00000000 _SHDL C:\Users\Default\My Documents
2017-05-13 19:14 - 2017-05-13 19:16 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-05-13 19:14 - 2017-05-13 19:16 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-05-13 19:09 - 2017-05-26 11:06 - 01037722 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-13 19:08 - 2017-05-20 13:34 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-13 19:08 - 2017-05-13 19:23 - 00003288 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-05-13 19:08 - 2017-05-13 19:08 - 00003582 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-05-13 19:08 - 2017-05-13 19:08 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-05-13 19:08 - 2017-05-13 19:08 - 00003344 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-05-13 19:08 - 2017-05-13 19:08 - 00002432 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2017-05-13 19:08 - 2017-05-13 19:08 - 00002228 _____ C:\WINDOWS\System32\Tasks\{71CD92AA-5F4B-4C9B-A99F-B388D595AA97}
2017-05-13 19:08 - 2017-05-13 19:08 - 00002180 _____ C:\WINDOWS\System32\Tasks\{0B224D43-A97E-4F8D-9D2E-544B2E947BA4}
2017-05-13 19:08 - 2017-05-13 19:08 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-05-13 19:01 - 2017-05-13 19:01 - 00000000 ____D C:\ProgramData\USOShared
2017-05-13 19:00 - 2017-05-13 19:00 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-05-13 18:56 - 2017-05-13 19:01 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-05-13 18:55 - 2017-05-21 20:00 - 00000000 ____D C:\Users\I am
2017-05-13 18:55 - 2017-05-13 18:55 - 00000000 _SHDL C:\Users\I am\My Documents
2017-05-13 18:55 - 2017-05-13 18:55 - 00000000 _SHDL C:\Users\I am\Documents\My Videos
2017-05-13 18:55 - 2017-05-13 18:55 - 00000000 _SHDL C:\Users\I am\Documents\My Pictures
2017-05-13 18:55 - 2017-05-13 18:55 - 00000000 _SHDL C:\Users\I am\Documents\My Music
2017-05-13 18:53 - 2017-05-13 19:03 - 00000000 ____D C:\Users\Public\Creative
2017-05-13 18:53 - 2017-05-13 18:57 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-13 18:53 - 2017-05-13 18:57 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-13 18:53 - 2017-05-13 18:57 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-13 18:53 - 2017-05-13 18:53 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-05-13 18:53 - 2017-05-13 18:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-05-13 18:53 - 2017-05-13 18:53 - 00000000 ____D C:\WINDOWS\system32\DAX2
2017-05-13 18:53 - 2017-05-13 18:53 - 00000000 ____D C:\Program Files\Realtek
2017-05-13 18:53 - 2017-03-18 21:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-05-13 18:53 - 2016-12-29 13:44 - 06386232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-05-13 18:53 - 2016-12-29 13:44 - 02477624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-05-13 18:53 - 2016-12-29 13:44 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-05-13 18:53 - 2016-12-29 13:44 - 00546752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-05-13 18:53 - 2016-12-29 13:44 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-05-13 18:53 - 2016-12-29 13:44 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-13 18:53 - 2016-12-29 13:44 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-05-13 18:53 - 2016-12-19 08:26 - 07651057 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-05-13 18:50 - 2017-05-26 11:38 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-13 18:50 - 2017-05-20 13:34 - 00264616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-13 17:31 - 2017-05-13 19:18 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-13 17:13 - 2017-05-13 17:13 - 00000000 ____D C:\Users\I am\AppData\Local\UNP
2017-05-13 15:08 - 2017-05-13 19:01 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-05-13 15:08 - 2017-05-13 15:09 - 00000000 ____D C:\Program Files\UNP
2017-05-11 13:03 - 2017-05-11 13:03 - 00000000 ____D C:\Users\I am\Documents\Scan
2017-05-11 12:37 - 2017-05-11 12:37 - 00000000 ____D C:\Program Files\Common Files\Common Desktop Agent
2017-05-11 11:38 - 2017-05-11 12:38 - 00002353 _____ C:\Users\Public\Desktop\Samsung Printer Diagnostics.lnk
2017-05-11 11:38 - 2014-03-12 09:31 - 00288480 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\NetFaxPort64.dll
2017-05-11 11:38 - 2014-03-12 09:31 - 00225504 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\SysWOW64\NetFaxPort.dll
2017-05-11 11:38 - 2014-03-12 06:13 - 00482424 _____ (Samsung Software Center) C:\WINDOWS\prinst.exe
2017-05-11 11:37 - 2017-05-13 19:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2017-05-11 11:37 - 2017-05-11 11:37 - 00000000 ____D C:\Users\I am\AppData\Roaming\Samsung
2017-05-11 11:36 - 2017-05-11 12:47 - 00000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller
2017-05-11 11:36 - 2017-05-11 12:37 - 00000000 ____D C:\ProgramData\Samsung
2017-05-11 11:36 - 2017-05-11 11:36 - 00000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdate
2017-05-11 11:36 - 2015-05-11 16:33 - 00152896 ____R C:\WINDOWS\Wiainst64.exe
2017-05-11 11:36 - 2015-01-26 12:23 - 00073728 _____ (Samsung Electronics) C:\WINDOWS\system32\Ssdevm64.dll
2017-05-11 11:36 - 2015-01-26 12:23 - 00057344 _____ (Samsung Electronics) C:\WINDOWS\SysWOW64\Ssdevm.dll
2017-05-11 11:36 - 2015-01-26 12:23 - 00049152 _____ (Samsung Electronics) C:\WINDOWS\SysWOW64\Ssusbpn.dll
2017-05-11 11:36 - 2015-01-26 12:23 - 00043520 _____ (Samsung Electronics) C:\WINDOWS\system32\Ssusbp64.dll
2017-05-11 11:36 - 2015-01-26 12:23 - 00011576 _____ (Samsung Electronics) C:\WINDOWS\system32\Drivers\SSPORT.sys
2017-05-11 11:36 - 2012-03-16 11:11 - 00325120 _____ C:\WINDOWS\system32\SaMinDrv.dll
2017-05-11 11:36 - 2012-03-16 11:11 - 00123904 _____ C:\WINDOWS\system32\SaImgFlt.dll
2017-05-11 11:36 - 2012-03-16 11:10 - 00055296 _____ C:\WINDOWS\system32\SaErHdlr.dll
2017-05-11 11:35 - 2017-05-11 11:38 - 00000000 ____D C:\Program Files (x86)\Samsung
2017-05-11 11:35 - 2015-04-24 12:46 - 00022528 _____ () C:\WINDOWS\system32\ssy4clm.dll
2017-05-11 11:35 - 2015-02-27 12:21 - 03190784 _____ C:\WINDOWS\system32\eed_ec.dll
2017-05-11 11:35 - 2015-02-27 12:21 - 00685360 _____ (Samsung Electronics) C:\WINDOWS\system32\eed_sl.exe
2017-05-11 11:35 - 2015-02-27 12:21 - 00158040 _____ (SS) C:\WINDOWS\system32\ssy4cci.exe
2017-05-11 11:35 - 2015-02-27 12:21 - 00000273 _____ C:\WINDOWS\system32\eed_sl.exe.config
2017-05-11 11:35 - 2015-02-27 12:20 - 00089600 _____ (SS) C:\WINDOWS\system32\ssy4cci.dll
2017-05-10 00:18 - 2017-03-04 07:26 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-05-09 23:17 - 2017-05-09 23:17 - 04102600 _____ C:\Users\I am\Desktop\adwcleaner_6.046.exe
2017-05-09 23:11 - 2017-05-09 23:11 - 00000000 ____D C:\Users\I am\Desktop\revouninstaller-portable
2017-05-09 19:10 - 2017-05-09 19:10 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Skype
2017-05-09 19:09 - 2017-05-09 19:10 - 00000000 ___RD C:\Users\Administrator\OneDrive
2017-05-09 19:09 - 2017-05-09 19:09 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\ControlCenter4
2017-05-09 19:09 - 2017-05-09 19:09 - 00000000 ____D C:\Users\Administrator\AppData\Local\Razer
2017-05-09 19:08 - 2017-05-09 19:09 - 00000000 ____D C:\Users\Administrator\AppData\Local\AO DMS
2017-05-09 19:08 - 2017-05-09 19:08 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\DAEMON Tools Pro
2017-05-09 19:08 - 2017-05-09 19:08 - 00000000 ____D C:\Users\Administrator\AppData\Local\Publishers
2017-05-09 19:07 - 2017-05-10 07:46 - 00000000 ____D C:\Users\Administrator\AppData\Local\AO Link
2017-05-09 19:07 - 2017-05-10 07:46 - 00000000 ____D C:\Users\Administrator
2017-05-09 19:07 - 2017-05-09 19:09 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2017-05-09 19:07 - 2017-05-09 19:08 - 00000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 _SHDL C:\Users\Administrator\My Documents
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 _SHDL C:\Users\Administrator\Documents\My Videos
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 _SHDL C:\Users\Administrator\Documents\My Pictures
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 _SHDL C:\Users\Administrator\Documents\My Music
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 ____D C:\Users\Administrator\AppData\Local\TileDataLayer
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA
2017-05-09 19:07 - 2017-05-09 19:07 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2017-05-09 18:23 - 2017-05-09 18:23 - 00000000 ____D C:\Users\I am\AppData\Roaming\ControlCenter4
2017-05-09 16:30 - 2017-05-10 07:47 - 00000000 ____D C:\Program Files (x86)\ControlCenter4 CSDK
2017-05-09 16:29 - 2017-05-10 07:47 - 00000000 ____D C:\Program Files (x86)\ControlCenter4
2017-05-09 16:29 - 2017-05-10 07:46 - 00000000 ____D C:\ProgramData\ControlCenter4
2017-05-09 16:28 - 2017-05-10 07:46 - 00000000 ____D C:\ProgramData\Brother

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-26 18:34 - 2016-10-23 19:56 - 01650533 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-05-26 18:33 - 2016-10-11 19:40 - 00000000 ____D C:\FRST
2017-05-26 18:33 - 2016-10-11 19:39 - 02429952 _____ (Farbar) C:\Users\I am\Desktop\FRST64.exe
2017-05-26 13:58 - 2017-03-22 15:20 - 00093624 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-05-26 10:11 - 2017-03-18 22:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-26 10:11 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-25 20:24 - 2017-03-18 22:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-25 20:23 - 2015-12-12 01:12 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-05-25 17:17 - 2015-12-15 14:28 - 00000000 ____D C:\Users\I am\AppData\Local\Packages
2017-05-23 16:18 - 2015-12-15 16:37 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 16:15 - 2015-12-15 16:37 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-21 20:00 - 2015-12-15 21:49 - 00000000 ____D C:\ProgramData\Origin
2017-05-21 18:40 - 2015-12-16 20:09 - 00348360 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2017-05-21 18:40 - 2015-12-16 20:06 - 00348360 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2017-05-21 18:39 - 2015-12-16 20:06 - 00280904 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2017-05-21 18:34 - 2015-12-15 22:00 - 00000000 ____D C:\Users\I am\AppData\Roaming\Origin
2017-05-20 13:34 - 2016-09-26 09:54 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-19 15:52 - 2017-03-18 12:40 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-05-19 13:34 - 2015-12-15 21:31 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-19 12:24 - 2017-03-18 22:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-19 12:24 - 2016-01-12 14:51 - 00000000 ____D C:\Program Files (x86)\Razer
2017-05-19 10:22 - 2015-12-15 17:45 - 00000000 ____D C:\Users\I am\Documents\Job
2017-05-17 19:20 - 2015-12-15 21:49 - 00000000 ____D C:\Program Files (x86)\Origin
2017-05-16 06:55 - 2017-04-24 14:54 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2017-05-16 06:55 - 2017-03-18 12:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-05-16 06:55 - 2015-12-15 20:24 - 00000000 ____D C:\Users\I am\AppData\Local\AO DMS
2017-05-16 06:55 - 2015-12-15 20:21 - 00000000 ____D C:\Users\I am\AppData\Local\AO Link
2017-05-16 06:55 - 2015-12-15 20:11 - 00000000 ____D C:\ProgramData\ASUS
2017-05-16 06:51 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\registration
2017-05-16 06:49 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-05-16 06:49 - 2015-12-15 20:25 - 00000000 ____D C:\ProgramData\FNET
2017-05-15 22:08 - 2017-03-18 21:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-15 22:03 - 2015-12-15 16:10 - 00002279 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-14 19:32 - 2015-12-15 16:08 - 00000000 ____D C:\Users\I am\AppData\Local\ElevatedDiagnostics
2017-05-14 03:49 - 2017-03-18 22:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-05-14 03:47 - 2017-03-18 22:06 - 00000000 ____D C:\WINDOWS\Setup
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\en-GB
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-14 03:46 - 2017-03-18 22:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-14 03:46 - 2017-03-18 12:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-14 03:42 - 2017-03-19 03:30 - 00000000 ____D C:\WINDOWS\OCR
2017-05-14 03:41 - 2017-03-19 03:29 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2017-05-14 03:41 - 2017-03-19 03:29 - 00000000 ____D C:\WINDOWS\system32\WCN
2017-05-14 03:41 - 2017-03-18 22:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-05-14 03:41 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-05-14 03:41 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-05-14 03:41 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-05-14 03:41 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\IME
2017-05-14 03:41 - 2017-03-18 22:03 - 00000000 ____D C:\Program Files\Common Files\System
2017-05-14 03:41 - 2017-03-18 22:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-05-14 03:41 - 2017-03-18 12:40 - 00000000 ____D C:\WINDOWS\servicing
2017-05-13 19:23 - 2015-12-15 14:31 - 00002367 _____ C:\Users\I am\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-05-13 19:23 - 2015-12-15 14:31 - 00000000 ___RD C:\Users\I am\OneDrive
2017-05-13 19:18 - 2017-03-18 22:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-13 19:18 - 2015-12-12 01:19 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-13 19:17 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-05-13 19:16 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\rescache
2017-05-13 19:16 - 2017-03-18 12:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-05-13 19:13 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-05-13 19:08 - 2017-03-19 03:31 - 00000000 ____D C:\WINDOWS\HoloShell
2017-05-13 19:08 - 2016-09-26 10:09 - 00022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-05-13 19:07 - 2017-03-18 22:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-05-13 19:01 - 2017-04-24 14:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2017-05-13 19:01 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-13 19:01 - 2017-03-18 22:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-05-13 19:01 - 2017-02-06 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2017-05-13 19:01 - 2016-10-29 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-05-13 19:01 - 2016-10-28 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2017-05-13 19:01 - 2016-02-18 00:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-13 19:01 - 2016-02-11 20:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3
2017-05-13 19:01 - 2015-12-27 11:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
2017-05-13 19:01 - 2015-12-19 17:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-05-13 19:01 - 2015-12-17 15:55 - 00000000 ____D C:\Users\I am\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-05-13 19:01 - 2015-12-16 20:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
2017-05-13 19:01 - 2015-12-16 11:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
2017-05-13 19:01 - 2015-12-15 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-05-13 19:01 - 2015-12-15 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2017-05-13 19:01 - 2015-12-15 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
2017-05-13 19:01 - 2015-12-15 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS RAMCACHE
2017-05-13 19:01 - 2015-12-15 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZotacFireStorm
2017-05-13 19:01 - 2015-12-15 19:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2017-05-13 19:01 - 2015-12-15 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Desktop Help
2017-05-13 18:58 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-05-13 18:58 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-13 18:58 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-05-13 18:58 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-05-13 18:58 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-13 18:57 - 2017-03-18 22:03 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-05-13 18:57 - 2017-03-18 22:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-13 18:57 - 2016-02-04 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
2017-05-13 18:57 - 2016-01-12 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2017-05-13 18:57 - 2015-12-15 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2017-05-13 18:57 - 2015-12-15 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-05-13 18:57 - 2015-12-15 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2017-05-13 18:57 - 2015-12-15 19:41 - 00000000 ____D C:\Program Files\Intel
2017-05-13 18:57 - 2015-12-15 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark
2017-05-13 18:56 - 2015-12-15 19:14 - 00000000 ____D C:\Users\I am\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Creative
2017-05-13 18:53 - 2017-03-18 22:03 - 00000000 ____D C:\WINDOWS\Help
2017-05-13 17:21 - 2016-01-10 16:10 - 00000000 ____D C:\Users\I am\AppData\Local\CrashDumps
2017-05-10 19:02 - 2015-12-15 19:59 - 00000000 ____D C:\Users\I am\AppData\Local\Adobe
2017-05-10 18:37 - 2016-04-26 14:32 - 00000000 ____D C:\AdwCleaner
2017-05-10 07:47 - 2016-10-29 17:24 - 00000000 ____D C:\Program Files\7-Zip
2017-05-10 07:47 - 2016-01-12 14:55 - 00000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2017-05-10 07:47 - 2015-12-15 20:26 - 00000000 ____D C:\Program Files\DAEMON Tools Pro
2017-05-10 07:47 - 2015-12-15 20:17 - 00000000 ____D C:\Program Files\ASUS
2017-05-10 07:47 - 2015-12-15 16:36 - 00000000 ____D C:\Program Files (x86)\Lexmark Toolbar
2017-05-10 07:47 - 2015-12-15 16:36 - 00000000 ____D C:\Program Files (x86)\Lexmark Pro200-S500 Series
2017-05-10 07:47 - 2015-12-15 15:20 - 00000000 ____D C:\ProgramData\lx_Cats
2017-05-10 07:47 - 2015-12-15 14:45 - 00000000 ____D C:\Program Files\Common Files\Motive
2017-05-10 07:47 - 2015-12-15 14:45 - 00000000 ____D C:\Program Files\BT Broadband Desktop Help
2017-05-10 07:37 - 2016-08-24 19:08 - 00000000 ____D C:\Program Files\Common Files\Intel
2017-05-10 07:37 - 2015-12-15 20:26 - 00000000 ____D C:\Program Files\CPUID
2017-05-10 07:37 - 2015-12-15 19:07 - 00000000 ____D C:\Program Files\Creative
2017-04-30 18:27 - 2016-10-27 14:52 - 00000000 ____D C:\Users\I am\Desktop\MAMEUI64
2017-04-29 02:05 - 2017-03-18 22:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-29 02:05 - 2017-03-18 22:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2015-12-16 00:12 - 2016-02-20 03:00 - 1649664 _____ () C:\Users\I am\AppData\Local\file__0.localstorage
2015-12-16 16:57 - 2015-12-16 16:57 - 0000017 _____ () C:\Users\I am\AppData\Local\resmon.resmoncfg
2015-12-15 15:20 - 2017-05-11 12:51 - 0074688 _____ () C:\ProgramData\Coinstaller.log
2017-05-13 18:53 - 2017-05-13 18:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-12-15 16:38 - 2015-12-15 16:38 - 0000252 _____ () C:\ProgramData\FastPics.log
2016-09-26 10:20 - 2017-05-26 18:22 - 0153116 _____ () C:\ProgramData\lxeb.log
2015-12-15 15:33 - 2017-05-06 15:35 - 0018748 _____ () C:\ProgramData\lxebJSW.log
2015-12-15 15:20 - 2017-05-26 18:22 - 0317506 _____ () C:\ProgramData\lxebscan.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-05-24 14:21

==================== End of FRST.txt ============================