Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

my computer wont do anything internet related [Solved]

internet virus malware

  • This topic is locked This topic is locked

#1
emirr123

emirr123

    Member

  • Member
  • PipPip
  • 14 posts

hi good day,

                 my computer says its connected to the internet, but it will not load any pages or connect any programs. any help would be appreciated. ive tried everything i possibly can.

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:12-08-2015
Ran by emir (administrator) on EMIR-HP (13-08-2015 13:24:23)
Running from C:\Users\emir\Desktop
Loaded Profiles: emir & DefaultAppPool (Available Profiles: emir & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
() C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
() C:\Program Files\Serviio\bin\ServiioService.exe
(NETGEAR) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
() C:\Program Files\Serviio\bin\ServiioService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
() C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
() C:\Program Files\Serviio\bin\ServiioConsole.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Apple Inc.) C:\Program Files (x86)\AirPort\APAgent.exe
() C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
() C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-01-04] (IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-11] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-30] (Synaptics Incorporated)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1603544 2015-06-30] (Bitdefender)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.)
HKLM-x32\...\Run: [Guard.Mail.ru.gui] => "C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe" /gui
HKLM-x32\...\Run: [AirPort Base Station Agent] => C:\Program Files (x86)\AirPort\APAgent.exe [771360 2009-11-11] (Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1679360 2012-02-28] (Wondershare)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [NETGEAR USB Control Center] => C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe [4139008 2012-09-20] ()
HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Spotify Web Helper] => C:\Users\emir\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2008632 2015-07-15] (Spotify Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Google Update] => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-16] (Google Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671904 2012-08-28] (DT Soft Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [NETGEARGenie] => C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [1044224 2013-04-07] ()
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-18] (Bitdefender)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Spotify] => C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe [7334968 2015-07-15] (Spotify Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [GoogleChromeAutoLaunch_E9444CBBF542E6F567C8F4E0161A18BE] => C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe [813896 2015-07-25] (Google Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Dropbox Update] => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-29] (Dropbox, Inc.)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2013-09-25]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-12-17]
ShortcutTarget: Dropbox.lnk -> C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Serviio.lnk [2012-05-16]
ShortcutTarget: Serviio.lnk -> C:\Program Files\Serviio\bin\ServiioConsole.exe ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=en-TT&Src=WD8&Tid=000328B9&OHP=about%3Ablank&OSP=
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
SearchScopes: HKLM -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://uk.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000 -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-07-28] (Bitdefender)
BHO: AVG Do Not Track -> {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} ->  No File
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-23] (Oracle Corporation)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-08-25] (HP)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-23] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-07-28] (Bitdefender)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-23] (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-08-25] (HP)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-23] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-07-28] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-07-28] (Bitdefender)
Toolbar: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
DPF: HKLM-x32 {A4110378-789B-455F-AE86-3A1BFC402853} hxxp://zone.msn.com/bingame/zpagames/zpa_shvl.cab55579.cab
DPF: HKLM-x32 {B8BE5E93-A60C-4D26-A2DC-220313175592} hxxp://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2011-06-21] (EasyBits Software Corp.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8ad8bb11-2ba2-4370-ac96-06bf30612d63}: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default
FF NewTab: about:blank
FF DefaultSearchEngine: Search Here
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-23] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-07] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-02] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\emir\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @talk.google.com/O1DPlugin -> C:\Users\emir\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @tools.google.com/Google Update;version=3 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @tools.google.com/Google Update;version=9 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\emir\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\emir\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\[email protected] [2015-04-20]
FF Extension: Ghostery - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\[email protected] [2013-08-17]
FF Extension: MEGA EXTENSION - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\[email protected] [2013-02-20]
FF Extension: Show my Password - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2013-07-21]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected] [2015-02-19]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff [2015-07-30]
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-07-30]
FF HKLM-x32\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files (x86)\AVG\AVG2012\Firefox4
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-09-25]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-07-30]
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] [not found]
 
Chrome: 
=======
CHR Profile: C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-16]
CHR Extension: (Google Search) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-16]
CHR Extension: (Website Logon) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfaldikcoaplhepekpbngkepfcoiihef [2012-07-16]
CHR Extension: (Bitdefender Wallet) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih [2015-08-12]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Gmail) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-07-16]
CHR HKLM-x32\...\Chrome\Extension: [dfaldikcoaplhepekpbngkepfcoiihef] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx [2011-08-22]
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [_01&ven_111d&dev_7605&subsys_103c3385] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx <not found>
StartMenuInternet: Google Chrome - C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [680112 2015-06-09] (Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2015-07-24] (Bitdefender)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 CLDTVHNService; C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe [75048 2009-09-17] ()
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-22] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-21] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2012-03-19] (Realsil Microelectronics Inc.) [File not signed]
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-07-23] (Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
S3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
S3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-07-30] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [232192 2013-04-07] (NETGEAR)
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-07-21] (Microsoft Corporation)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-11] (Microsoft Corporation)
R2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [359936 2014-03-20] () [File not signed]
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-30] (Synaptics Incorporated)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-23] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-23] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2015-04-22] (Bitdefender)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-21] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
R2 vsserv; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1540744 2015-07-27] (Bitdefender)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-30] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-07-30] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-05-28] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-05-29] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-05-28] (BitDefender)
U5 bdelam; C:\Windows\System32\Drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2014-12-15] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [115800 2015-05-21] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [79192 2013-07-30] (BitDefender)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-09-04] (DT Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-02-24] (BitDefender LLC)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-07-30] (Microsoft Corporation)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R3 NetgearUDSMBus; C:\Windows\system32\drivers\NetgearUDSMBus.sys [107296 2012-08-13] (Windows ® Codename Longhorn DDK provider)
R3 NetgearUDSTcpBus; C:\Windows\System32\Drivers\NetgearUDSTcpBus.sys [183584 2012-08-13] (Windows ® Codename Longhorn DDK provider)
R3 NetgearUDSTcpBus; C:\Windows\SysWow64\Drivers\NetgearUDSTcpBus.sys [153600 2012-06-15] (Windows ® Codename Longhorn DDK provider) [File not signed]
R2 NPF; C:\Windows\system32\drivers\npf.sys [35344 2013-09-25] (CACE Technologies, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
S3 SL4UsbNoSSL; C:\Windows\System32\Drivers\SL4UsbNoSSL.sys [50296 2012-05-02] (Cristalink Ltd)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-30] (Synaptics Incorporated)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-13] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 voxaldriver; C:\Windows\System32\DRIVERS\voxaldriverx64.sys [33488 2013-10-30] ()
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
R3 WsAudioDevice_383S(1); C:\Windows\system32\drivers\WsAudioDevice_383S(1).sys [29288 2013-01-08] (Wondershare)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
NETSVC: dosvc -> C:\Windows\system32\dosvc.dll (Microsoft Corporation)
NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)
NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVC: RetailDemo -> C:\Windows\system32\RDXService.dll (Microsoft Corporation)
NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-08-13 13:24 - 2015-08-13 13:24 - 00043889 _____ C:\Users\emir\Desktop\FRST.txt
2015-08-13 13:20 - 2015-08-13 13:21 - 00001243 _____ C:\Users\emir\Desktop\FSS.txt
2015-08-13 13:19 - 2015-08-13 01:01 - 00899072 _____ (Farbar) C:\Users\emir\Desktop\FSS.exe
2015-08-13 13:15 - 2015-08-13 13:15 - 00016148 _____ C:\WINDOWS\system32\EMIR-HP_emir_HistoryPrediction.bin
2015-08-13 11:13 - 2015-08-13 00:16 - 02173952 _____ (Farbar) C:\Users\emir\Desktop\FRST64.exe
2015-08-13 11:13 - 2015-08-12 23:07 - 02248704 _____ C:\Users\emir\Desktop\AdwCleaner.exe
2015-08-13 11:13 - 2015-08-12 22:58 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\emir\Desktop\mbam-setup-2.1.8.1057.exe
2015-08-13 01:06 - 2015-08-13 13:24 - 00000000 ____D C:\FRST
2015-08-13 00:55 - 2015-08-13 00:51 - 01063160 _____ (Bleeping Computer, LLC) C:\Users\emir\Desktop\rkill64.com
2015-08-13 00:52 - 2015-08-13 13:12 - 00000000 ____D C:\AdwCleaner
2015-08-13 00:51 - 2015-08-13 11:20 - 00006120 _____ C:\Users\emir\Desktop\Rkill.txt
2015-08-13 00:47 - 2015-08-13 00:47 - 00003232 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForemir
2015-08-13 00:46 - 2015-08-13 00:59 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForemir.job
2015-08-12 23:00 - 2015-08-13 11:21 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-12 23:00 - 2015-08-13 11:21 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-12 23:00 - 2015-08-13 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-12 23:00 - 2015-08-13 11:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-12 23:00 - 2015-08-12 23:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-12 23:00 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-12 23:00 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-12 23:00 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-12 07:25 - 2015-08-12 07:25 - 00000000 _____ C:\WINDOWS\SysWOW64\shoAC1E.tmp
2015-08-11 14:23 - 2015-08-11 14:23 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Quotestream
2015-08-11 08:48 - 2015-08-11 08:48 - 06155672 _____ C:\Users\emir\Downloads\SUREDEMO.exe
2015-08-10 16:47 - 2015-08-10 16:47 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-08-04 22:25 - 2015-08-04 22:31 - 13545694 _____ C:\Users\emir\AppData\Local\package.nw.new
2015-08-04 22:22 - 2015-08-04 22:22 - 00000000 ___HD C:\$Windows.~WS
2015-07-31 10:34 - 2015-07-31 10:34 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-07-30 09:02 - 2015-08-12 07:37 - 00002372 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-07-30 09:02 - 2015-08-12 07:37 - 00000000 ___RD C:\Users\emir\OneDrive
2015-07-30 09:00 - 2015-07-30 09:00 - 00517374 _____ C:\ProgramData\1438260563.bdinstall.bin
2015-07-30 08:59 - 2015-08-12 16:18 - 00000682 ____H C:\bdr-cf01
2015-07-30 08:58 - 2015-07-30 08:58 - 00002274 _____ C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk
2015-07-30 08:58 - 2015-07-30 08:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2015-07-30 08:58 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2015-07-30 08:58 - 2013-07-30 18:41 - 00079192 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2015-07-30 08:57 - 2015-05-29 09:50 - 00271272 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2015-07-30 08:57 - 2015-05-28 14:21 - 00747120 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2015-07-30 08:57 - 2015-05-28 13:37 - 01369288 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2015-07-30 08:57 - 2014-12-15 18:04 - 00098768 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\bdfndisf6.sys
2015-07-30 08:56 - 2015-07-30 09:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Bitdefender
2015-07-30 08:56 - 2015-07-30 08:59 - 00253404 ____H C:\bdr-ld01
2015-07-30 08:56 - 2015-07-30 08:59 - 00009216 ____H C:\bdr-ld01.mbr
2015-07-30 08:56 - 2015-05-27 17:02 - 49626058 ____H C:\bdr-im01.gz
2015-07-30 08:56 - 2013-08-13 13:38 - 03271472 ____H C:\bdr-bz01
2015-07-30 08:50 - 2015-02-24 16:52 - 00160544 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2015-07-30 08:50 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2015-07-30 08:43 - 2015-07-14 19:37 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-30 08:43 - 2015-07-14 19:37 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-30 08:24 - 2015-07-30 08:24 - 13059896 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 13037568 _____ (Intel Corporation) C:\WINDOWS\system32\ig4icd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 12814752 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 11352688 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 11223896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 10820096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig4icd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 09016320 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 05916080 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 05384176 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-07-30 08:24 - 2015-07-30 08:24 - 03520000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 03129856 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 01981696 _____ C:\WINDOWS\system32\iglhxa64.cpa
2015-07-30 08:24 - 2015-07-30 08:24 - 01067696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00963452 _____ C:\WINDOWS\SysWOW64\igcodeckrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00963452 _____ C:\WINDOWS\system32\igcodeckrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00957472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00584192 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00551424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00544552 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00539312 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00523184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00453552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00451584 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00449024 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00445952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00445952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00444416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00444416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00440832 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00439808 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00437760 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00437248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00418816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00411056 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00393216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00339456 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00294912 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00290224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00272928 _____ C:\WINDOWS\SysWOW64\igvpkrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00272928 _____ C:\WINDOWS\system32\igvpkrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00266152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00231312 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00223664 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00210106 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00197040 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00194880 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00194245 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00183808 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00183216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00166170 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00163421 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00159008 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00151040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00149682 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00148042 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00147393 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00147288 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00146004 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00145491 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144645 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144260 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144020 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00143932 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142882 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142877 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142717 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142289 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142008 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00141838 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00141049 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137889 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137784 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137141 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00135680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2015-07-30 08:24 - 2015-07-30 08:24 - 00132623 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00126300 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00124928 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4229.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00124650 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00119296 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00110080 _____ C:\WINDOWS\system32\igdde64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00102912 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00090112 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00072704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00059425 _____ C:\WINDOWS\system32\iglhxo64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059398 _____ C:\WINDOWS\system32\iglhxg64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059230 _____ C:\WINDOWS\system32\iglhxc64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059104 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00058796 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00058109 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00041288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00033792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00018432 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00017082 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00001074 _____ C:\WINDOWS\system32\iglhxa64.vp
2015-07-30 08:19 - 2015-07-30 08:19 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-07-30 08:19 - 2015-07-30 08:19 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-07-30 08:19 - 2015-07-30 08:18 - 00042696 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-07-30 08:18 - 2015-07-30 08:18 - 01804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00764616 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00419528 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00269000 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00255688 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo31.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00042696 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-07-30 08:18 - 2015-07-30 08:18 - 00042184 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-07-30 08:17 - 2015-07-23 22:48 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-07-30 08:17 - 2015-07-22 00:07 - 16710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-07-30 08:17 - 2015-07-21 23:27 - 13024256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-07-30 08:17 - 2015-07-15 23:57 - 24591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-30 08:17 - 2015-07-15 23:39 - 19333632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-30 08:16 - 2015-07-26 00:48 - 22320576 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-07-30 04:28 - 2015-08-04 22:24 - 00000000 ___DC C:\WINDOWS\Panther
2015-07-30 04:27 - 2015-07-30 00:35 - 00000000 __SHD C:\Recovery
2015-07-30 04:18 - 2015-07-30 04:18 - 00000000 ____D C:\Windows.old
2015-07-30 04:17 - 2015-07-30 04:17 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files\MSBuild
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\inetpub
2015-07-30 04:13 - 2015-06-17 22:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-07-30 04:13 - 2015-06-17 22:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-07-30 04:13 - 2015-06-17 22:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-07-30 04:13 - 2015-05-30 01:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-07-30 04:13 - 2015-05-30 01:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-07-30 04:13 - 2015-05-30 01:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-07-30 01:39 - 2015-07-26 01:15 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-07-30 01:39 - 2015-07-26 01:13 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-07-30 01:39 - 2015-07-26 00:28 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-07-30 01:39 - 2015-07-26 00:28 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-07-30 01:39 - 2015-07-26 00:20 - 20854232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-07-30 01:39 - 2015-07-25 23:47 - 11552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-07-30 01:39 - 2015-07-25 23:39 - 09885184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-07-30 01:39 - 2015-07-23 22:46 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-07-30 01:39 - 2015-07-23 22:31 - 02661376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-07-30 01:39 - 2015-07-23 22:31 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-07-30 01:39 - 2015-07-23 22:30 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-07-30 01:39 - 2015-07-23 22:26 - 18810368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-07-30 01:39 - 2015-07-22 01:22 - 02462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-07-30 01:39 - 2015-07-22 01:19 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-07-30 01:39 - 2015-07-22 01:13 - 01983328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-07-30 01:39 - 2015-07-22 00:13 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-07-30 01:39 - 2015-07-22 00:02 - 02150696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-07-30 01:39 - 2015-07-22 00:00 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-30 01:39 - 2015-07-21 23:55 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-07-30 01:39 - 2015-07-21 23:54 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-07-30 01:39 - 2015-07-21 23:53 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-07-30 01:39 - 2015-07-21 23:51 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-07-30 01:39 - 2015-07-21 23:48 - 03589632 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-07-30 01:39 - 2015-07-21 23:48 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-07-30 01:39 - 2015-07-21 23:47 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-07-30 01:39 - 2015-07-21 23:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-07-30 01:39 - 2015-07-21 23:08 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-07-30 01:39 - 2015-07-21 23:05 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-07-30 01:39 - 2015-07-21 23:04 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-07-30 01:39 - 2015-07-19 00:11 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-07-30 01:39 - 2015-07-19 00:11 - 01561360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-07-30 01:39 - 2015-07-18 23:40 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-07-30 01:39 - 2015-07-18 23:19 - 02415616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-07-30 01:39 - 2015-07-18 23:12 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-07-30 01:39 - 2015-07-18 23:12 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-07-30 01:39 - 2015-07-18 22:53 - 01914880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-07-30 01:39 - 2015-07-18 04:46 - 01769568 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 04:43 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-07-30 01:39 - 2015-07-18 03:29 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 01:17 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-07-30 01:39 - 2015-07-18 01:14 - 01396576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-07-30 01:39 - 2015-07-17 23:52 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-07-30 01:39 - 2015-07-17 00:07 - 02116960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-07-30 01:39 - 2015-07-16 23:39 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-07-30 01:39 - 2015-07-16 22:48 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-07-30 01:39 - 2015-07-16 22:36 - 00858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-07-30 01:39 - 2015-07-16 22:34 - 01601024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-07-30 01:39 - 2015-07-16 22:31 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-30 01:39 - 2015-07-16 22:19 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-07-30 01:39 - 2015-07-16 22:00 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-07-30 01:39 - 2015-07-16 21:46 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-07-30 01:39 - 2015-07-16 01:43 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-07-30 01:39 - 2015-07-16 01:11 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-30 01:39 - 2015-07-16 00:55 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-30 01:39 - 2015-07-15 23:48 - 12502016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-30 01:39 - 2015-07-15 23:47 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-07-30 01:39 - 2015-07-15 23:44 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-30 01:39 - 2015-07-15 23:43 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-30 01:39 - 2015-07-15 23:27 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-30 01:39 - 2015-07-15 23:22 - 11260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-30 01:39 - 2015-07-14 22:41 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-07-30 01:39 - 2015-07-14 22:22 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-30 01:39 - 2015-07-14 22:10 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-07-30 01:39 - 2015-07-14 21:47 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-30 01:39 - 2015-07-14 21:34 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-07-30 01:39 - 2015-07-13 21:51 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-07-30 01:39 - 2015-07-13 21:31 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-07-30 01:39 - 2015-07-11 20:18 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-07-30 01:39 - 2015-07-10 21:17 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-07-30 01:39 - 2015-07-10 21:04 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-30 01:39 - 2015-07-10 21:03 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-07-30 01:39 - 2015-07-10 20:51 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-07-30 01:39 - 2015-07-10 20:41 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-30 01:39 - 2015-07-10 20:40 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-07-30 01:39 - 2015-07-10 11:51 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-07-30 01:39 - 2015-07-10 05:53 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-07-30 01:39 - 2015-07-10 05:31 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-30 01:38 - 2015-07-26 01:16 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-07-30 01:38 - 2015-07-26 01:16 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-07-30 01:38 - 2015-07-26 01:14 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-07-30 01:38 - 2015-07-26 01:14 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-07-30 01:38 - 2015-07-26 01:06 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-07-30 01:38 - 2015-07-25 23:49 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-30 01:38 - 2015-07-25 23:49 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-07-30 01:38 - 2015-07-25 23:47 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-07-30 01:38 - 2015-07-25 23:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-07-30 01:38 - 2015-07-25 23:40 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-07-30 01:38 - 2015-07-25 23:39 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-07-30 01:38 - 2015-07-25 23:39 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-07-30 01:38 - 2015-07-25 23:38 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-07-30 01:38 - 2015-07-25 23:35 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-07-30 01:38 - 2015-07-25 23:34 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-07-30 01:38 - 2015-07-25 23:30 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-07-30 01:38 - 2015-07-25 23:30 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-07-30 01:38 - 2015-07-25 23:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-07-30 01:38 - 2015-07-23 23:31 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-07-30 01:38 - 2015-07-23 23:30 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-07-30 01:38 - 2015-07-23 23:18 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-07-30 01:38 - 2015-07-23 23:17 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-07-30 01:38 - 2015-07-23 23:17 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-07-30 01:38 - 2015-07-23 23:17 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-07-30 01:38 - 2015-07-23 23:12 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-07-30 01:38 - 2015-07-23 23:11 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-07-30 01:38 - 2015-07-23 22:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-07-30 01:38 - 2015-07-23 22:52 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-07-30 01:38 - 2015-07-23 22:46 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-07-30 01:38 - 2015-07-23 22:46 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-07-30 01:38 - 2015-07-23 22:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-07-30 01:38 - 2015-07-23 22:40 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-07-30 01:38 - 2015-07-23 22:39 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-07-30 01:38 - 2015-07-23 22:36 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-07-30 01:38 - 2015-07-23 22:34 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-07-30 01:38 - 2015-07-23 22:30 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-07-30 01:38 - 2015-07-23 22:29 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-07-30 01:38 - 2015-07-23 22:25 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-07-30 01:38 - 2015-07-23 22:24 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-07-30 01:38 - 2015-07-22 01:18 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-07-30 01:38 - 2015-07-22 01:17 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-07-30 01:38 - 2015-07-22 01:16 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-07-30 01:38 - 2015-07-22 01:15 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-07-30 01:38 - 2015-07-22 01:15 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-07-30 01:38 - 2015-07-22 01:14 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-07-30 01:38 - 2015-07-22 01:02 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-07-30 01:38 - 2015-07-22 00:21 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-07-30 01:38 - 2015-07-22 00:13 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-07-30 01:38 - 2015-07-22 00:02 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-07-30 01:38 - 2015-07-22 00:02 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-07-30 01:38 - 2015-07-22 00:01 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00643616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-07-30 01:38 - 2015-07-22 00:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-07-30 01:38 - 2015-07-21 23:59 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-30 01:38 - 2015-07-21 23:53 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-07-30 01:38 - 2015-07-21 23:49 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-07-30 01:38 - 2015-07-21 23:46 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-07-30 01:38 - 2015-07-21 23:21 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-07-30 01:38 - 2015-07-21 23:13 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-30 01:38 - 2015-07-21 23:10 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-07-30 01:38 - 2015-07-21 23:03 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-07-30 01:38 - 2015-07-21 22:50 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-07-30 01:38 - 2015-07-19 00:04 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-07-30 01:38 - 2015-07-18 23:54 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-07-30 01:38 - 2015-07-18 23:29 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-07-30 01:38 - 2015-07-18 23:29 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-07-30 01:38 - 2015-07-18 23:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-07-30 01:38 - 2015-07-18 23:22 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-07-30 01:38 - 2015-07-18 23:18 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-07-30 01:38 - 2015-07-18 23:11 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-07-30 01:38 - 2015-07-18 23:11 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-07-30 01:38 - 2015-07-18 23:02 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-07-30 01:38 - 2015-07-18 22:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-07-30 01:38 - 2015-07-18 04:48 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-07-30 01:38 - 2015-07-18 04:47 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-07-30 01:38 - 2015-07-18 04:22 - 00539216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-07-30 01:38 - 2015-07-18 03:48 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-30 01:38 - 2015-07-18 03:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-07-30 01:38 - 2015-07-18 03:39 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-07-30 01:38 - 2015-07-18 03:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-07-30 01:38 - 2015-07-18 03:33 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-07-30 01:38 - 2015-07-18 03:28 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-07-30 01:38 - 2015-07-18 03:28 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-30 01:38 - 2015-07-18 03:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-07-30 01:38 - 2015-07-18 01:18 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-07-30 01:38 - 2015-07-18 01:17 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-07-30 01:38 - 2015-07-18 01:15 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-07-30 01:38 - 2015-07-18 01:02 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-07-30 01:38 - 2015-07-18 00:54 - 00606392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-07-30 01:38 - 2015-07-18 00:17 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-07-30 01:38 - 2015-07-18 00:13 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-30 01:38 - 2015-07-18 00:09 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-07-30 01:38 - 2015-07-18 00:06 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-07-30 01:38 - 2015-07-18 00:01 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-07-30 01:38 - 2015-07-17 23:59 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-07-30 01:38 - 2015-07-17 23:59 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-07-30 01:38 - 2015-07-17 23:58 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-07-30 01:38 - 2015-07-17 23:57 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-07-30 01:38 - 2015-07-17 23:56 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-07-30 01:38 - 2015-07-17 23:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-07-30 01:38 - 2015-07-17 23:50 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-30 01:38 - 2015-07-17 23:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-07-30 01:38 - 2015-07-17 23:49 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-07-30 01:38 - 2015-07-17 23:49 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-07-30 01:38 - 2015-07-17 23:48 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-07-30 01:38 - 2015-07-17 23:48 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-07-30 01:38 - 2015-07-17 23:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-07-30 01:38 - 2015-07-17 00:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-07-30 01:38 - 2015-07-17 00:17 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-07-30 01:38 - 2015-07-17 00:14 - 02147592 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-07-30 01:38 - 2015-07-17 00:13 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-07-30 01:38 - 2015-07-17 00:12 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-07-30 01:38 - 2015-07-17 00:07 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-07-30 01:38 - 2015-07-17 00:05 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-07-30 01:38 - 2015-07-16 23:07 - 01867672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-07-30 01:38 - 2015-07-16 23:05 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-07-30 01:38 - 2015-07-16 23:03 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-07-30 01:38 - 2015-07-16 22:39 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-07-30 01:38 - 2015-07-16 22:39 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-07-30 01:38 - 2015-07-16 22:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-07-30 01:38 - 2015-07-16 22:33 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-07-30 01:38 - 2015-07-16 22:33 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-07-30 01:38 - 2015-07-16 22:32 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-07-30 01:38 - 2015-07-16 22:26 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-07-30 01:38 - 2015-07-16 22:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-07-30 01:38 - 2015-07-16 22:24 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-07-30 01:38 - 2015-07-16 22:21 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-07-30 01:38 - 2015-07-16 22:19 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-07-30 01:38 - 2015-07-16 22:19 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-07-30 01:38 - 2015-07-16 22:18 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-07-30 01:38 - 2015-07-16 22:16 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-07-30 01:38 - 2015-07-16 22:05 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-07-30 01:38 - 2015-07-16 22:05 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-07-30 01:38 - 2015-07-16 21:56 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-07-30 01:38 - 2015-07-16 21:53 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-07-30 01:38 - 2015-07-16 21:51 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-07-30 01:38 - 2015-07-16 21:50 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-07-30 01:38 - 2015-07-16 21:44 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-07-30 01:38 - 2015-07-16 01:39 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-07-30 01:38 - 2015-07-16 01:34 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-07-30 01:38 - 2015-07-16 00:09 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-07-30 01:38 - 2015-07-16 00:04 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-07-30 01:38 - 2015-07-16 00:03 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-07-30 01:38 - 2015-07-16 00:01 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-07-30 01:38 - 2015-07-15 23:45 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-07-30 01:38 - 2015-07-15 23:41 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-07-30 01:38 - 2015-07-15 23:40 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-07-30 01:38 - 2015-07-15 23:39 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-07-30 01:38 - 2015-07-15 23:36 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-07-30 01:38 - 2015-07-15 23:35 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-07-30 01:38 - 2015-07-15 23:33 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-07-30 01:38 - 2015-07-15 23:32 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-07-30 01:38 - 2015-07-15 23:29 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-30 01:38 - 2015-07-15 23:19 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-07-30 01:38 - 2015-07-14 23:21 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-30 01:38 - 2015-07-14 22:49 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-30 01:38 - 2015-07-14 22:49 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-07-30 01:38 - 2015-07-14 22:16 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-07-30 01:38 - 2015-07-14 22:04 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-07-30 01:38 - 2015-07-14 21:59 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-07-30 01:38 - 2015-07-14 21:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-07-30 01:38 - 2015-07-14 21:43 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-07-30 01:38 - 2015-07-14 21:41 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-07-30 01:38 - 2015-07-14 21:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-07-30 01:38 - 2015-07-14 21:35 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-07-30 01:38 - 2015-07-14 21:34 - 01680896 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-07-30 01:38 - 2015-07-14 21:27 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-07-30 01:38 - 2015-07-13 23:13 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-07-30 01:38 - 2015-07-13 23:00 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-07-30 01:38 - 2015-07-13 22:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-07-30 01:38 - 2015-07-13 22:04 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-07-30 01:38 - 2015-07-13 21:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-07-30 01:38 - 2015-07-13 21:50 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-07-30 01:38 - 2015-07-13 21:49 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-07-30 01:38 - 2015-07-13 21:38 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-07-30 01:38 - 2015-07-13 21:31 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-07-30 01:38 - 2015-07-13 21:20 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-07-30 01:38 - 2015-07-12 20:01 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-07-30 01:38 - 2015-07-12 19:30 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-07-30 01:38 - 2015-07-11 20:38 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-07-30 01:38 - 2015-07-11 20:25 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-07-30 01:38 - 2015-07-11 19:46 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-07-30 01:38 - 2015-07-10 22:24 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-07-30 01:38 - 2015-07-10 21:28 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-07-30 01:38 - 2015-07-10 21:22 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-07-30 01:38 - 2015-07-10 21:21 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-07-30 01:38 - 2015-07-10 21:07 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-07-30 01:38 - 2015-07-10 21:05 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-07-30 01:38 - 2015-07-10 21:03 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-07-30 01:38 - 2015-07-10 21:03 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-30 01:38 - 2015-07-10 21:02 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-07-30 01:38 - 2015-07-10 21:01 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-30 01:38 - 2015-07-10 20:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-07-30 01:38 - 2015-07-10 20:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-07-30 01:38 - 2015-07-10 20:42 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-07-30 01:38 - 2015-07-10 20:41 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-07-30 01:38 - 2015-07-10 20:40 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-30 01:38 - 2015-07-10 20:40 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-30 01:38 - 2015-07-10 20:34 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-07-30 01:38 - 2015-07-10 11:47 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-07-30 01:38 - 2015-07-10 11:00 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-07-30 01:38 - 2015-07-10 10:52 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-07-30 01:38 - 2015-07-10 06:59 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-07-30 01:38 - 2015-07-10 06:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-07-30 01:38 - 2015-07-10 06:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-07-30 01:38 - 2015-07-10 06:05 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-07-30 01:38 - 2015-07-10 05:35 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-07-30 01:38 - 2015-07-10 05:29 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-07-30 01:38 - 2015-07-10 04:38 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-07-30 01:37 - 2015-07-30 01:37 - 00000000 ____D C:\Users\emir\AppData\Local\Sun
2015-07-30 01:31 - 2015-07-30 01:31 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-07-30 01:31 - 2015-07-30 01:31 - 00000000 ____D C:\Users\DefaultAppPool
2015-07-30 01:31 - 2015-07-30 00:49 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 01:31 - 2015-07-30 00:49 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\TuneUp Software
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-30 01:26 - 2015-07-30 01:26 - 00001051 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
2015-07-30 01:26 - 2015-07-30 01:26 - 00000000 ____D C:\Users\emir\AppData\Local\NetworkTiles
2015-07-30 01:24 - 2015-07-30 01:24 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-07-30 01:21 - 2015-07-30 01:21 - 00000000 ____D C:\Users\emir\AppData\Local\Publishers
2015-07-30 01:18 - 2015-07-30 01:20 - 00000000 ____D C:\Users\emir\AppData\Local\Comms
2015-07-30 01:17 - 2015-08-13 01:40 - 00000000 ____D C:\Users\emir\AppData\Local\Packages
2015-07-30 01:17 - 2015-07-30 01:17 - 00000000 ____D C:\Users\emir\AppData\Local\TileDataLayer
2015-07-30 01:16 - 2015-07-30 01:16 - 00000258 __RSH C:\Users\emir\ntuser.pol
2015-07-30 01:16 - 2015-07-30 01:16 - 00000020 ___SH C:\Users\emir\ntuser.ini
2015-07-30 01:07 - 2015-07-30 01:07 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-07-30 00:56 - 2015-07-10 06:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-07-30 00:49 - 2015-07-30 00:49 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-07-30 00:49 - 2015-07-30 00:49 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2015-07-30 00:49 - 2015-07-30 00:49 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-07-30 00:40 - 2015-07-30 00:40 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-07-30 00:37 - 2015-08-13 00:46 - 00000000 ____D C:\Users\emir
2015-07-30 00:37 - 2015-07-30 01:17 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-30 00:36 - 2015-08-13 13:21 - 01006464 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-30 00:35 - 2015-07-30 00:36 - 00021209 _____ C:\WINDOWS\iis.log
2015-07-30 00:35 - 2015-07-30 00:35 - 00961296 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-07-30 00:32 - 2015-07-30 00:51 - 00000000 ____D C:\Program Files\IDT
2015-07-30 00:32 - 2015-07-30 00:32 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2015-07-30 00:32 - 2015-07-30 00:32 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-07-30 00:32 - 2012-01-04 00:37 - 06344704 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNGUI.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 05298688 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNHP.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 04444672 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 01987072 _____ (IDT, Inc.) C:\WINDOWS\system32\stapo64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 01819136 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2015-07-30 00:32 - 2012-01-04 00:37 - 01425408 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 01085440 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNX.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 00654336 ____N (IDT, Inc.) C:\WINDOWS\system32\stapi64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 00249344 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNJ.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 00223744 _____ (IDT, Inc.) C:\WINDOWS\system32\HPToneCtrls64.dll
2015-07-30 00:32 - 2010-04-01 14:11 - 00162304 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAC64.dll
2015-07-30 00:32 - 2009-10-10 00:45 - 00442368 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTEC64.dll
2015-07-30 00:32 - 2009-03-03 01:58 - 00068608 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAR64.dll
2015-07-30 00:32 - 2009-03-03 01:47 - 00090624 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTCo64.dll
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 ____D C:\Program Files\Synaptics
2015-07-30 00:30 - 2015-07-30 00:30 - 00030382 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-07-30 00:29 - 2015-08-13 00:58 - 00167812 _____ C:\WINDOWS\PFRO.log
2015-07-29 23:48 - 2015-07-30 01:08 - 00006477 _____ C:\WINDOWS\comsetup.log
2015-07-29 23:23 - 2015-08-04 22:24 - 00000000 ___HD C:\$Windows.~BT
2015-07-29 23:09 - 2015-08-04 22:24 - 00012978 _____ C:\WINDOWS\diagerr.xml
2015-07-29 23:09 - 2015-08-04 22:24 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2015-07-29 22:51 - 2015-07-29 22:51 - 00000000 ____D C:\Users\emir\AppData\Local\GWX
2015-07-29 17:26 - 2015-07-29 17:26 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64 (2).exe
2015-07-29 17:06 - 2015-07-29 17:06 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64 (1).exe
2015-07-29 17:00 - 2015-05-25 13:00 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-07-29 16:59 - 2015-07-09 13:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-07-29 16:57 - 2015-08-04 22:22 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64.exe
2015-07-29 16:50 - 2015-07-29 16:50 - 00000776 _____ C:\Users\emir\ReserveWindows10.cmd
2015-07-28 11:51 - 2015-08-04 12:30 - 00000000 ____D C:\Users\emir\AppData\Roaming\HpUpdate
2015-07-25 10:00 - 2015-07-30 00:51 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-07-24 10:44 - 2015-07-24 10:44 - 00000000 ____D C:\Users\emir\AppData\Local\{B8EE5CB0-E7FC-4939-9F1E-94E14C48F855}
2015-07-23 18:47 - 2015-08-12 07:24 - 00000000 ____D C:\Users\emir\AppData\Local\Popcorn-Time
2015-07-23 18:46 - 2015-07-30 00:51 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2015-07-23 18:45 - 2015-08-04 22:31 - 00000000 ____D C:\Users\emir\AppData\Local\Popcorn Time
2015-07-23 18:42 - 2015-07-23 18:44 - 29103264 _____ (Popcorn Official) C:\Users\emir\Downloads\Popcorn-Time-0.3.8-0-Setup.exe
2015-07-23 12:27 - 2015-07-23 12:27 - 00000000 _____ C:\WINDOWS\SysWOW64\REN4FF9.tmp
2015-07-20 18:18 - 2015-08-13 13:20 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-20 18:16 - 2015-07-20 18:16 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-07-20 18:16 - 2015-07-20 18:16 - 00001213 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-07-20 17:56 - 2015-07-30 01:07 - 00003608 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-emir-HP-emir
2015-07-20 17:54 - 2015-07-20 17:54 - 00000000 ____D C:\Users\emir\Documents\Adobe
2015-07-20 17:47 - 2015-07-20 17:47 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-07-20 17:46 - 2015-07-20 17:46 - 00001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2015-07-20 17:46 - 2015-07-20 17:46 - 00000000 ____D C:\Program Files\Adobe
2015-07-20 17:37 - 2015-07-20 17:46 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-07-20 17:31 - 2015-07-20 17:35 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-16 11:38 - 2015-07-16 11:38 - 00000000 _____ C:\WINDOWS\SysWOW64\sho519E.tmp
2015-07-15 16:57 - 2015-06-09 14:03 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2015-07-15 16:56 - 2015-06-20 15:25 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-07-15 16:56 - 2015-06-20 14:46 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-07-15 16:56 - 2015-06-19 13:39 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2015-07-15 11:43 - 2015-07-15 11:43 - 00000000 _____ C:\WINDOWS\SysWOW64\shoB0D.tmp
2015-07-15 11:24 - 2015-07-30 00:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-07-15 11:24 - 2015-07-15 11:24 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-07-15 11:22 - 2015-07-15 11:22 - 00000000 ____D C:\Program Files\iPod
2015-07-15 11:22 - 2015-07-15 11:22 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-07-15 11:21 - 2015-07-15 11:23 - 00000000 ____D C:\Program Files\iTunes
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-08-13 13:23 - 2012-06-16 19:41 - 00000000 ____D C:\Users\emir\AppData\Roaming\Spotify
2015-08-13 13:20 - 2012-08-15 22:31 - 00000000 ____D C:\Users\emir\AppData\Roaming\Skype
2015-08-13 13:17 - 2012-06-16 19:42 - 00000000 ____D C:\Users\emir\AppData\Local\Spotify
2015-08-13 13:16 - 2013-07-03 11:10 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-13 13:15 - 2015-07-10 08:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-13 13:14 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-13 13:14 - 2015-07-10 08:20 - 00049767 _____ C:\WINDOWS\setupact.log
2015-08-13 13:13 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-13 13:13 - 2015-07-10 05:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-13 13:04 - 2012-07-06 18:27 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-13 12:54 - 2015-06-29 13:28 - 00000914 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job
2015-08-13 12:36 - 2012-07-16 10:34 - 00000904 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job
2015-08-13 12:33 - 2013-07-03 11:10 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-13 11:30 - 2012-03-06 16:22 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A39AF485-2FF1-415D-B218-4ADC49AB0028}
2015-08-13 08:54 - 2015-06-29 13:28 - 00000862 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job
2015-08-13 02:24 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-13 01:32 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-13 00:47 - 2013-09-25 11:11 - 00000000 ____D C:\Users\emir\AppData\Local\NETGEARGenie
2015-08-13 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-08-13 00:41 - 2012-10-06 00:46 - 00000000 ____D C:\ProgramData\ICQ
2015-08-12 22:44 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-12 08:56 - 2015-07-10 08:20 - 04861632 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-12 08:54 - 2012-09-10 13:02 - 00000000 ____D C:\Users\emir\AppData\Roaming\SoftGrid Client
2015-08-12 08:50 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-08-12 07:29 - 2015-07-10 05:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-12 07:24 - 2012-07-16 10:34 - 00000852 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job
2015-08-12 07:23 - 2012-03-20 18:59 - 00000000 ____D C:\Users\emir\AppData\Local\Adobe
2015-08-11 14:24 - 2012-03-20 15:51 - 00000000 ____D C:\Users\emir\Documents\qs
2015-08-11 14:23 - 2015-05-05 08:58 - 00002564 _____ C:\Users\emir\Desktop\Quotestream.lnk
2015-08-11 08:09 - 2012-06-08 13:08 - 00000000 ____D C:\Users\emir\AppData\Roaming\vlc
2015-08-09 23:15 - 2012-05-16 14:57 - 00000000 ____D C:\Users\emir\AppData\Roaming\tixati
2015-08-09 12:22 - 2012-05-24 23:05 - 00000000 ___RD C:\Users\emir\Dropbox
2015-08-08 08:32 - 2015-04-27 08:45 - 00000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-08-06 16:25 - 2015-04-20 14:41 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-08-06 16:25 - 2015-04-20 14:40 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-05 15:27 - 2012-03-07 15:10 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-08-04 22:24 - 2015-07-10 08:20 - 00000229 _____ C:\WINDOWS\setuperr.log
2015-08-02 14:33 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
2015-07-30 08:59 - 2014-03-10 14:23 - 00000000 ____D C:\ProgramData\Bitdefender
2015-07-30 08:50 - 2013-03-14 14:08 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2015-07-30 08:48 - 2012-05-24 23:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Dropbox
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-07-30 08:38 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-07-30 08:38 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-07-30 08:30 - 2013-03-14 14:34 - 00000000 ____D C:\Program Files\Bitdefender
2015-07-30 08:28 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-07-30 08:25 - 2011-09-23 11:48 - 00000000 ____D C:\Program Files (x86)\Intel
2015-07-30 08:18 - 2011-10-14 05:37 - 00614088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-07-30 04:28 - 2015-07-10 07:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-07-30 04:14 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-07-30 04:14 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-07-30 04:14 - 2015-07-10 07:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-07-30 04:14 - 2015-07-10 07:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-07-30 04:14 - 2015-07-10 07:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-07-30 04:14 - 2015-07-10 07:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-07-30 01:28 - 2015-07-10 09:12 - 00000000 ____D C:\WINDOWS\OCR
2015-07-30 01:20 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-07-30 01:20 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-07-30 01:19 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-07-30 01:19 - 2012-07-17 13:34 - 00002047 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Uninstall .lnk
2015-07-30 01:16 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-07-30 01:08 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Registration
2015-07-30 01:07 - 2015-06-29 13:28 - 00003992 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA
2015-07-30 01:07 - 2015-06-29 13:28 - 00003596 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core
2015-07-30 01:07 - 2015-06-23 10:14 - 00003628 _____ C:\WINDOWS\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8
2015-07-30 01:07 - 2015-04-27 08:45 - 00003992 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-07-30 01:07 - 2014-12-29 07:51 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-07-30 01:07 - 2013-07-03 11:10 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-30 01:07 - 2013-07-03 11:10 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-30 01:07 - 2012-08-29 14:26 - 00002880 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-07-30 01:07 - 2012-07-16 10:34 - 00003982 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA
2015-07-30 01:07 - 2012-07-16 10:34 - 00003586 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core
2015-07-30 01:07 - 2012-07-06 18:27 - 00003878 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-07-30 01:07 - 2012-06-08 12:56 - 00003316 _____ C:\WINDOWS\System32\Tasks\Windows Codec Update Service
2015-07-30 01:07 - 2012-03-06 15:28 - 00003300 _____ C:\WINDOWS\System32\Tasks\SidebarExecute
2015-07-30 01:07 - 2011-09-23 12:02 - 00003258 _____ C:\WINDOWS\System32\Tasks\MirageAgent
2015-07-30 01:06 - 2015-07-10 07:04 - 00000000 __RSD C:\WINDOWS\Media
2015-07-30 01:06 - 2015-07-10 07:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-07-30 01:00 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-07-30 00:54 - 2009-07-13 23:20 - 00000000 ____D C:\Users\Default.migrated
2015-07-30 00:51 - 2015-07-10 07:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:51 - 2015-07-08 11:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-07-30 00:51 - 2015-07-01 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-07-30 00:51 - 2015-05-27 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-07-30 00:51 - 2015-04-20 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-30 00:51 - 2015-04-04 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
2015-07-30 00:51 - 2015-01-19 19:29 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2015-07-30 00:51 - 2014-10-15 23:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMATPrep
2015-07-30 00:51 - 2014-09-14 18:01 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
2015-07-30 00:51 - 2014-03-22 11:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serviio
2015-07-30 00:51 - 2013-12-05 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-07-30 00:51 - 2013-10-30 17:39 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Voice Changer Software
2015-07-30 00:51 - 2013-10-30 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2015-07-30 00:51 - 2013-10-21 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DvrClient
2015-07-30 00:51 - 2013-10-21 13:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1 Step Remote Viewing
2015-07-30 00:51 - 2013-10-13 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-07-30 00:51 - 2013-07-22 11:07 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
2015-07-30 00:51 - 2013-07-22 11:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2015-07-30 00:51 - 2013-07-22 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-07-30 00:51 - 2013-07-21 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Passware
2015-07-30 00:51 - 2013-03-14 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-07-30 00:51 - 2013-03-14 04:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-07-30 00:51 - 2013-02-14 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-07-30 00:51 - 2013-01-31 18:53 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AirParrot
2015-07-30 00:51 - 2013-01-31 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixMeister
2015-07-30 00:51 - 2012-12-12 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Light-O-Rama
2015-07-30 00:51 - 2012-11-30 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DIRECTV2PC™
2015-07-30 00:51 - 2012-11-30 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DIRECTV2PC Playback Advisor
2015-07-30 00:51 - 2012-10-06 00:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-07-30 00:51 - 2012-09-04 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-07-30 00:51 - 2012-08-29 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-07-30 00:51 - 2012-07-17 13:49 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-30 00:51 - 2012-07-17 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-30 00:51 - 2012-07-17 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities
2015-07-30 00:51 - 2012-07-16 10:34 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-30 00:51 - 2012-06-08 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-07-30 00:51 - 2012-06-08 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essentials Codec Pack
2015-07-30 00:51 - 2012-04-12 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
2015-07-30 00:51 - 2012-04-12 12:53 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2015-07-30 00:51 - 2012-03-08 16:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2015-07-30 00:51 - 2011-09-23 12:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2015-07-30 00:51 - 2011-09-23 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Energy Star
2015-07-30 00:51 - 2011-09-23 11:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-07-30 00:51 - 2011-06-21 15:41 - 00000000 ____D C:\WINDOWS\en
2015-07-30 00:51 - 2011-06-21 15:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-07-30 00:51 - 2011-06-21 15:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
2015-07-30 00:51 - 2011-06-21 15:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-07-30 00:51 - 2011-06-21 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
2015-07-30 00:51 - 2010-11-03 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Theft Protection
2015-07-30 00:51 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-07-30 00:49 - 2015-07-10 07:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-07-30 00:49 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:49 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:49 - 2015-07-10 05:05 - 00000000 __RHD C:\Users\Default
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-07-30 00:43 - 2011-09-23 11:50 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-07-30 00:43 - 2011-06-21 15:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-07-30 00:42 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\schemas
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Resources
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-07-30 00:41 - 2015-04-20 03:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-07-30 00:41 - 2015-04-11 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJI Product
2015-07-30 00:41 - 2014-04-24 06:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnvSoft
2015-07-30 00:41 - 2014-04-24 06:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2015-07-30 00:41 - 2013-10-30 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Bee
2015-07-30 00:41 - 2013-10-21 15:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVR Soft
2015-07-30 00:41 - 2013-09-25 11:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR
2015-07-30 00:41 - 2013-07-26 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-07-30 00:41 - 2013-03-07 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2015-07-30 00:41 - 2012-09-10 13:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2015-07-30 00:41 - 2012-03-19 10:35 - 00000000 ____D C:\ProgramData\Intel
2015-07-30 00:41 - 2011-09-23 12:41 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-07-30 00:41 - 2011-09-23 12:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2015-07-30 00:41 - 2011-06-21 15:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio
2015-07-30 00:41 - 2011-06-21 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music and Media
2015-07-30 00:40 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-07-30 00:40 - 2015-07-10 07:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-07-30 00:40 - 2011-09-23 12:03 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2015-07-30 00:40 - 2011-09-23 11:53 - 00000000 ____D C:\Program Files\Intel
2015-07-30 00:40 - 2011-06-21 15:29 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-07-30 00:40 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-07-30 00:40 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-07-30 00:39 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-07-30 00:39 - 2009-07-13 23:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-07-30 00:38 - 2013-03-12 08:28 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Serato
2015-07-30 00:38 - 2012-06-08 13:47 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-07-30 00:38 - 2012-05-16 14:57 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2015-07-30 00:35 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-07-29 23:55 - 2011-09-23 11:52 - 01566675 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-07-29 23:32 - 2009-07-14 00:45 - 00032064 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-29 23:32 - 2009-07-14 00:45 - 00032064 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-29 17:01 - 2012-10-06 00:52 - 00384512 ___SH C:\Users\emir\Thumbs.db
2015-07-28 20:54 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2015-07-28 11:52 - 2013-09-25 11:39 - 00000000 ____D C:\Program Files (x86)\HP
2015-07-28 11:50 - 2011-09-23 11:55 - 00000000 ____D C:\WINDOWS\Hewlett-Packard
2015-07-27 20:36 - 2012-03-08 16:17 - 00000000 ____D C:\Users\emir\AppData\Local\CrashDumps
2015-07-23 12:29 - 2013-09-25 10:46 - 00000000 ____D C:\ProgramData\Oracle
2015-07-23 12:27 - 2015-04-20 14:29 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-23 12:25 - 2015-07-08 11:45 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-07-23 12:25 - 2011-06-21 15:45 - 00000000 ____D C:\Program Files\Java
2015-07-20 18:48 - 2011-06-21 15:42 - 00000000 ____D C:\ProgramData\Adobe
2015-07-20 18:18 - 2012-03-06 16:23 - 00000000 ____D C:\Users\emir\AppData\Roaming\Adobe
2015-07-20 18:15 - 2013-05-13 12:07 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-07-20 17:54 - 2012-03-06 16:21 - 00063744 _____ C:\Users\emir\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-20 17:44 - 2012-03-06 15:41 - 00000000 ____D C:\Program Files (x86)\CMMBSecurities
2015-07-16 09:46 - 2013-07-22 08:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-07-15 11:22 - 2012-08-22 16:43 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-07-14 18:33 - 2013-05-13 12:07 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
 
==================== Files in the root of some directories =======
 
2013-10-30 17:24 - 2013-10-30 17:25 - 0001181 _____ () C:\Users\emir\AppData\Roaming\trace_FilterInstaller.txt
2013-10-30 17:24 - 2013-10-30 17:24 - 0000000 _____ () C:\Users\emir\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2015-08-04 22:25 - 2015-08-04 22:31 - 13545694 _____ () C:\Users\emir\AppData\Local\package.nw.new
2014-03-22 11:46 - 2014-03-22 11:46 - 0001485 _____ () C:\Users\emir\AppData\Local\recently-used.xbel
2015-07-30 09:00 - 2015-07-30 09:00 - 0517374 _____ () C:\ProgramData\1438260563.bdinstall.bin
2013-09-25 11:38 - 2013-09-25 11:49 - 0000357 _____ () C:\ProgramData\hpzinstall.log
 
Some files in TEMP:
====================
C:\Users\emir\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpye9vis.dll
C:\Users\emir\AppData\Local\Temp\GUR85FA.exe
C:\Users\emir\AppData\Local\Temp\i4jdel0.exe
C:\Users\emir\AppData\Local\Temp\Quarantine.exe
C:\Users\emir\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-08-12 07:40
 
==================== End of log ============================
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version:12-08-2015
Ran by emir (2015-08-13 13:27:24)
Running from C:\Users\emir\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2749324444-3110066803-3346981281-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2749324444-3110066803-3346981281-503 - Limited - Disabled)
emir (S-1-5-21-2749324444-3110066803-3346981281-1000 - Administrator - Enabled) => C:\Users\emir
Guest (S-1-5-21-2749324444-3110066803-3346981281-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2749324444-3110066803-3346981281-1002 - Limited - Enabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
1 Step Remote Viewing 1.0 (HKLM-x32\...\1 Step Remote Viewing_is1) (Version:  - cwdLimited, Inc.)
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.1.3.121 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95 - WildTangent) Hidden
AirParrot (HKLM\...\{6C4958DF-4B1A-4290-947B-5F6AFDC74398}) (Version: 1.1.3 - Squirrels)
AirPort (HKLM-x32\...\{AA68AAAE-41F0-40B5-8896-5947F5FD6889}) (Version: 5.6.1.2 - Apple Inc.)
Any Video Converter 5.5.8 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ask Toolbar for Epson (HKLM-x32\...\{45504E32-5637-006A-76A7-A758B70C1D00}) (Version: 12.29.0.1883 - APN, LLC) <==== ATTENTION
Asterisk Key 10.0 (HKLM-x32\...\asterisk key) (Version:  - )
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version:  - Audacity Team)
AuthenTec TrueAPI (Version: 1.3.0.144 - AuthenTec, Inc.) Hidden
AV Voice Changer Software 7.0 (HKLM-x32\...\AV Voice Changer Software 7.0) (Version: 7.0.56 - AVSOFT Corp.)
AVG 2012 (Version: 12.0.1913 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2171 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2176 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2178 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2180 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2193 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2195 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2197 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2221 - AVG Technologies) Hidden
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bejeweled 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}) (Version: 7.0.610.0 - Microsoft Corporation)
Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.470.0 - Microsoft Corporation)
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 19.2.0.142 - Bitdefender)
Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Blasterball 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Blio (HKLM-x32\...\{9368DDD5-CE7F-4BD7-A83A-F00FABE338EC}) (Version: 2.2.6699 - K-NFB Reading Technology, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
C4400 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.22 - Piriform)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.1.3908 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0316 - DT Soft Ltd)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden
DIRECTV2PC Playback Advisor (HKLM-x32\...\InstallShield_{479F8C12-576B-4A58-AB78-4B70F7012AA8}) (Version: 1.0 - CyberLink Corp.)
DIRECTV2PC Playback Advisor (x32 Version: 1.0 - CyberLink Corp.) Hidden
DIRECTV2PC™ (HKLM-x32\...\InstallShield_{E9B10AA5-E5F6-4DEF-A435-FB20704AF1E8}) (Version: 2.0.7507 - CyberLink Corp.)
DIRECTV2PC™ (x32 Version: 2.0.7507 - CyberLink Corp.) Hidden
DJI driver version 2.02 (HKLM-x32\...\{EDFDE5EE-84C7-4936-804C-6563943E5754}_is1) (Version: 2.02 - DJI)
DJI Phantom 2 Vision Assistant version 3.8 (HKLM-x32\...\{EDCE7221-F31F-407A-B348-30D011ED3126}_is1) (Version: 3.8 - DJI)
DJI RC System Assistant version 1.2 (HKLM-x32\...\{2849F48E-8A08-4C43-AC8D-97A367F0DCB6}_is1) (Version: 1.2 - DJI)
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Download Navigator (HKLM-x32\...\{3A3A3B34-6EA2-4031-8580-D66D29533E89}) (Version: 3.4.0 - SEIKO EPSON CORPORATION)
Dropbox (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Dropbox) (Version: 3.6.9 - Dropbox, Inc.)
DVD Architect Studio 5.0 (HKLM-x32\...\{E3D1078F-9660-11E2-9E28-F04DA23A5C58}) (Version: 5.0.178 - Sony)
DvrClient (HKLM-x32\...\{3B25FE53-D528-42E7-83D8-226C8D81A276}) (Version: 1.2.43 - DVR Soft)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version:  - )
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON NX430 Series Printer Uninstall (HKLM\...\EPSON NX430 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
Evernote v. 4.2.2 (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 4.2.2.3979 - Evernote Corp.)
Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden
FATE - The Traitor Soul (x32 Version: 2.2.0.95 - WildTangent) Hidden
FileZilla Client 3.5.3 (HKLM-x32\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)
Freemake Video Converter version 3.0.2 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 3.0.2 - Ellora Assets Corporation)
GEAR driver installer for AMD64 and Intel EM64T (HKLM\...\{50CBBEC7-1010-41C5-8718-A1A6FEDD9C3A}) (Version: 2.003.1 - GEAR Software, Inc.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
GMATPrep (HKLM-x32\...\GMATPrep 2.3.322) (Version: 2.3.322 - Graduate Management Admission Council (GMAC))
Google Chrome (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Google Chrome) (Version: 44.0.2403.125 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Guard.ICQ (HKLM-x32\...\Guard.Mail.ru) (Version:  - Mail.ru) <==== ATTENTION
HandBrake 0.9.8 (HKLM-x32\...\HandBrake) (Version: 0.9.8 - )
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{5601F151-A69F-4E30-8C60-37928124CD07}) (Version: 4.1.9.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{795AADBF-58C2-42D0-B779-E730702A247E}) (Version: 4.0.45.1 - Hewlett-Packard Company)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Documentation (HKLM-x32\...\{3C5AB11A-2DDB-49E6-9FC0-CFD88A7DDFE4}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.4 - WildTangent)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Photosmart C4400 All-In-One Driver Software 13.0 Rel. 3 (HKLM\...\{8181C5B7-2FF5-4677-BA6A-8E2C3F5A7601}) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Power Manager (HKLM-x32\...\{E44578C7-4667-4124-8BC2-1161BCA54978}) (Version: 1.4.4 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{285F722C-0E45-47DE-B38E-5B3B10FA4A7C}) (Version: 2.5.2 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{210A03F5-B2ED-4947-B27E-516F50CBB292}) (Version: 8.6.4530.3651 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13231.3673 - Hewlett-Packard Company)
HP SimplePass 2011 (HKLM-x32\...\{4741965C-AFD0-4D00-81D1-1039F96D4DC3}) (Version: 5.3.0.273 - Hewlett-Packard)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Software Framework (HKLM-x32\...\{28FE073B-1230-4BF6-830C-7434FD0C0069}) (Version: 4.1.13.1 - Hewlett-Packard Company)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6381.0 - IDT)
Intel PROSet Wireless (x32 Version:  - ) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Intel® Wireless Display (HKLM-x32\...\{5B46CEC7-DAD0-46A2-BCD6-B46A3CFD9B61}) (Version: 2.0.30.0 - Intel Corporation)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.15 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Light-O-Rama (HKLM-x32\...\{E744BFEA-E027-441E-83A2-36202F661E31}) (Version: 3.9.0 - Light-O-Rama)
Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5131.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MixMeister BPM Analyzer 1.0 (HKLM-x32\...\MixMeister BPM Analyzer_is1) (Version:  - MixMeister Technology LLC)
MixMeister Studio Demo 7.4.4 (HKLM-x32\...\mmssetup_is1) (Version:  - MixMeister Technology LLC)
MorphVOX Pro (HKLM-x32\...\{2D7CF073-6583-464A-84D4-F86DE59DCA42}) (Version: 4.4.8 - Screaming Bee)
Movie Studio Platinum 12.0 (64-bit) (HKLM\...\{6BE763B0-958D-11E2-A440-F04DA23A5C58}) (Version: 12.0.896 - Sony)
Movie Studio Platinum 13.0 (HKLM-x32\...\{C07796C0-7C69-11E3-8E39-F04DA23A5C58}) (Version: 13.0.878 - Sony)
Mozilla Firefox 35.0.1 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 en-GB)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.2.28.24.exe  - NETGEAR Inc.)
NETGEAR USB Control Center   (HKLM-x32\...\{4528B812-FF2C-4E3A-A9EA-1ECB483BF03A}) (Version: 1.32 - NETGEAR)
NirSoft Wireless Network Watcher (HKLM-x32\...\NirSoft Wireless Network Watcher) (Version:  - )
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Opera Stable 31.0.1889.99 (HKLM-x32\...\Opera 31.0.1889.99) (Version: 31.0.1889.99 - Opera Software)
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version:  - )
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)
Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden
Popcorn Time (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Popcorn Time) (Version:  - Popcorn Official)
PS_AIO_03_C4400_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Rane SL 4 (ver. 1.0.1f4) (HKLM\...\RaneAsioSL4_is1) (Version:  - Rane Corporation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 2.0.0 - Hewlett-Packard) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.19.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller Pro 3.0.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.2 - VS Revo Group, Ltd.)
RoxioNow Player (HKLM-x32\...\{0EDEB615-1A60-425E-8306-0E10519C7B55}) (Version: 1.9.5.103 - RoxioNow)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Scratch Live 2.4.4 (18) (HKLM-x32\...\{5B4DA057-7C39-4CBF-BD5D-85ED16A8D8D2}) (Version: 2.4.4 - Serato Inc LP)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Serviio (HKLM\...\Serviio) (Version:  - )
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Slingo Supreme (x32 Version: 2.2.0.95 - WildTangent) Hidden
SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sound Forge Audio Studio 10.0 (HKLM-x32\...\{75648F62-925B-11E2-B9EF-F04DA23A5C58}) (Version: 10.0.245 - Sony)
Spotify (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Spotify) (Version: 1.0.9.133.gcedaee38 - Spotify AB)
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Validity WBF DDK (HKLM\...\{79174AF2-6CB1-42F5-981E-66DCA49391D0}) (Version: 4.3.205.0 - Validity Sensors, Inc.)
Video Player (x32 Version: 1.2.9 - DVR Soft) Hidden <==== ATTENTION
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voxal Voice Changer (HKLM-x32\...\Voxal) (Version: 1.02 - NCH Software)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.02 - NCH Software)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Wheel of Fortune 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games App (HP Games) (x32 Version: 4.0.5.2 - WildTangent) Hidden
Windows Driver Package - dji-innovations inc. (usbser) Ports  (12/06/2012 5.1.2600.5512) (HKLM\...\F731C4A8B354FB9B7579C5D98402D2F988E8B95C) (Version: 12/06/2012 5.1.2600.5512 - dji-innovations inc.)
Windows Essentials Media Codec Pack 4.0 [64-Bit] (HKLM-x32\...\Windows Essentials Media Codec Pack) (Version: 4.0 - Media Codec)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinUtilities 10.52 Professional Edition (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043009}_is1) (Version:  - YL Computing, Inc)
WinUtilities 10.53 Free Edition (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043010}_is1) (Version:  - YL Computing, Inc)
WinX Video Converter 5.0.5 (HKLM-x32\...\WinX Video Converter_is1) (Version:  - Digiarty Software, Inc.)
Wondershare Streaming Audio Recorder(Build 2.1.0.0) (HKLM-x32\...\Wondershare Streaming Audio Recorder_is1) (Version: 2.1.0.0 - Wondershare Software Co.,Ltd.)
XBMC (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\XBMC) (Version:  - Team XBMC)
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File
 
==================== Restore Points =========================
 
30-07-2015 01:16:11 Windows Modules Installer
06-08-2015 09:37:35 Windows Modules Installer
12-08-2015 15:09:40 Restore Operation
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-07-20 18:07 - 2015-07-20 18:07 - 00450840 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
 
There are 1000 more lines.
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0275D93A-D882-4736-8466-FCB6DAFBEFC8} - System32\Tasks\AdobeAAMUpdater-1.0-emir-HP-emir => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-05-26] (Adobe Systems Incorporated)
Task: {05268B7A-C092-417D-AF77-850B6CEB3714} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {0A5B4BCA-EE91-4625-A26F-297854B55C53} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {1028D72F-FC26-4C34-805A-5B954664A6DC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {1641F54C-1E57-4902-AB65-EE2B65E5629D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {196BE614-78F7-481C-A42E-43AEC3EED51E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1CE49C2D-03A9-4B4A-8B43-D9C179787CE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-03] (Google Inc.)
Task: {1D3D099E-EE1E-4907-8BA2-BA8F12D11AA6} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2015-07-10] (Microsoft Corporation)
Task: {250A9329-6D88-40A6-BF48-54136EA1DA3D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {28BC07C0-53B8-442C-9D34-024A6CA91943} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {2A5CD751-53E1-4BFF-B188-73078BAD3D25} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2BB8E94A-3A93-4235-8FCC-F7CE212174A9} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {2C97A00A-1C5C-4318-B5CC-8A1A126B77F9} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
Task: {2D4EF3F4-3D70-4D6C-8633-1B25143A9672} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-03-08] (CyberLink)
Task: {3B8752B3-7480-4795-B07B-0B153EC99B54} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {3BE33C65-DB54-4F34-A1C4-7C94F25890F4} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {401100A2-E033-47E2-9287-73B17C9679EE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16] (Google Inc.)
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {41DD5B13-B8BE-4998-95BE-7621D0847066} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
Task: {4280E8D1-B944-444B-967B-594C7C1FA934} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4454A8D0-2E4E-4A02-BF67-48DF6A7BFAB4} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask
Task: {44B2738A-6589-40D9-917C-CFDCDFD38652} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {4CC9E10C-382E-4C29-BBEA-ABA4AA7499DF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {57210348-CDA2-4D9B-BF11-BACDAEC49A1C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {5E5515C1-7D87-4904-B9CE-FD29EB2ADB72} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync
Task: {5FFC0E3C-567A-42ED-9953-0BD4A4A9DFA3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-08-22] (Piriform Ltd)
Task: {611C823C-437B-46E7-9683-5312DFFCFD7B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {61CA2BAC-BBFB-4B56-82C3-562328E3A3CD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16] (Google Inc.)
Task: {644D9CE3-5AD2-4FF1-8C67-39B40B45B6BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {646C1C23-56B7-4644-B930-5D41B625D111} - System32\Tasks\Windows Codec Update Service => C:\Program Files (x86)\Essentials Codec Pack\WECPUpdate.exe [2012-02-03] (MediaCodec.Org)
Task: {65694927-9AF7-45F4-B789-AFC3D8226D93} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2015-04-26] (Apple Inc.)
Task: {659CE942-C08A-4E1D-B67D-03AF6B6FE207} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {66142C5A-900D-454B-B659-014A8074DC0B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {6723AF95-483F-4D31-9516-9E373745B4F5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {67554929-F1F6-4640-9980-0B1D78B8391A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {6AF87191-0F57-4EAC-BCCE-C7A6211552A8} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6BF15CFE-D373-43B0-A8E8-0CF992642924} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {6CF5CB0E-69CA-47EE-BB43-2F6925B97BF4} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe [2015-07-15] (Adobe Systems Incorporated)
Task: {6F67005E-BE57-44A3-83A2-D55E7EE56A7B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-03] (Google Inc.)
Task: {711EE2F9-A611-4773-AF8E-D4B278A6718D} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {744C9FEA-08B7-43E1-A729-0F94647D655C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {74805F74-CBCF-4AF6-9B2B-C71FA626ACC0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7A003965-A297-4DC6-B15B-852D798391E0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\Windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
Task: {820AFCAF-B2F6-4B4E-9CE5-A8415599B33F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {848DCC36-520C-4946-BF68-C7EFFEFA2F84} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
Task: {87463296-FC69-4AF1-A21E-150CCF414D09} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [2013-11-04] (Hewlett-Packard Company)
Task: {8D0F46DC-1185-4E2C-9C72-3509719AE6FF} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-07-14] (Microsoft Corporation)
Task: {912355CE-F23E-4CF5-90AD-BE579E854BF9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A364E297-00AD-490D-900E-22AC34598C71} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AAB70D87-C4CF-4BC6-88B3-B040DAF816E1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {AC29E64E-3271-47BA-B8F1-914523CF379B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update
Task: {B1258828-FED6-4126-B09B-4331F94B5231} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {B1AAFB89-66FD-4914-B58F-741C920FE777} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {B1D5776B-ADF4-4DE0-AD85-33CB7C600081} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {B9B36D41-C776-424E-9A13-5387E17A2CEB} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2015-07-10] (Microsoft Corporation)
Task: {BCF158EF-9EC8-4CC8-8918-E080A3C8B543} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {C2162702-FFEB-48C0-AA5F-2DA3A8887D61} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation
Task: {C2A4C5B9-1D68-436B-930E-8ABD9D603B6B} - System32\Tasks\HPCeeScheduleForemir => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C62DE5C8-7FD9-4914-BE63-7C53D0D6A3A3} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {C6C19158-11BC-4324-8FF4-E71639A82B3C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {C87C9005-D391-4C45-9068-270279ED75F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-15] (Adobe Systems Incorporated)
Task: {CD2C63FF-B388-4676-9EED-3DA3732FCBCF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D10F2DEF-0465-481C-BBE9-ACE604218CD1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {D2401052-A382-42DE-9C79-D1CF3563F654} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation
Task: {DAD3ADDF-9E69-4D7C-8581-B97E7643BFAA} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {DAF2BAE3-1C5B-4CB5-9F62-0911C031A15A} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2015-07-10] (Microsoft Corporation)
Task: {E16A76EE-E953-431A-A2CC-582E291031A7} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {E1AED1EB-4F6E-479A-8EF9-00CA8186566C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {E3297DC9-57A0-4E1A-88D8-D2C37A45B15A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {E62FAB8B-A5AC-4211-9C91-CACE8B601ABA} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
Task: {E63A817F-EC9E-4BBB-931C-C98E6B206848} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {E7D51BF4-AB91-4491-B257-96FCC2BCED77} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {E947AD4E-39B4-4AA1-B482-DDDC0844736F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E9CA85CE-ED3C-4DB6-96DE-3115E709C049} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {EA3F661E-B31C-44A9-B40C-E3D5D56149D4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForemir.job => 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
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-07-30 01:38 - 2015-07-14 22:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-30 08:57 - 2015-04-22 16:55 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2015-07-30 08:57 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2015-07-30 08:58 - 2015-07-28 19:06 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2015-07-30 08:57 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2015-07-30 08:57 - 2015-07-21 15:39 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpbr.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 00743000 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpdsp.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 02795272 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpph.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 01414048 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttprbl.mdl
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-07-30 01:38 - 2015-07-10 21:22 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2009-09-17 19:40 - 2009-09-17 19:40 - 00075048 ____N () C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
2014-03-20 21:57 - 2014-03-20 21:57 - 00359936 _____ () C:\Program Files\Serviio\bin\ServiioService.exe
2012-08-27 01:26 - 2014-03-20 21:57 - 00007680 _____ () C:\Program Files\Serviio\lib\winp.x64.dll
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-06-13 14:17 - 2015-06-13 14:17 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-30 01:39 - 2015-07-23 22:25 - 06576640 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 07:00 - 2015-07-10 09:14 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-07-30 01:39 - 2015-07-23 22:23 - 01806848 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-07-30 01:39 - 2015-07-23 22:23 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-04-07 07:38 - 2013-04-07 07:38 - 01044224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
2014-03-20 21:57 - 2014-03-20 21:57 - 00399360 _____ () C:\Program Files\Serviio\bin\ServiioConsole.exe
2013-04-07 07:42 - 2013-04-07 07:42 - 00123136 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
2012-09-20 17:57 - 2012-09-20 17:57 - 04139008 _____ () C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
2015-06-13 14:16 - 2015-06-13 14:16 - 31404192 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-07-30 01:39 - 2015-07-22 01:04 - 02590560 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2015-07-30 01:39 - 2015-07-22 00:59 - 02108256 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll
2015-05-15 16:27 - 2015-05-15 16:27 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00011362 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\mingwm10.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00043008 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libgcc_s_dw2-1.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 02537472 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtCore4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 09814016 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtGui4.dll
2013-06-04 21:22 - 2013-06-04 21:22 - 00481280 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\Genie.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 01553920 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SvtNetworkTool.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00399360 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtXml4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 01140224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtNetwork4.dll
2013-05-09 23:12 - 2013-05-09 23:12 - 00229888 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Airprint.dll
2013-03-27 04:43 - 2013-03-27 04:43 - 01067520 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Internet.dll
2013-05-28 02:21 - 2013-05-28 02:21 - 04334592 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Map.dll
2013-03-27 04:52 - 2013-03-27 04:52 - 00500736 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_NetworkProblem.dll
2013-03-27 04:50 - 2013-03-27 04:50 - 00186368 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DragonNetTool.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 01198080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_ParentalControl.dll
2013-05-14 22:56 - 2013-05-14 22:56 - 08432128 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Resource.dll
2013-04-28 02:25 - 2013-04-28 02:25 - 01205760 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_RouterConfiguration.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 00088064 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QRCode.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 00641536 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Statistics.dll
2013-05-14 01:18 - 2013-05-14 01:18 - 00931840 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Ui.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00438272 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Wireless.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00083456 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qgif4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00083456 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qico4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00287232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qjpeg4.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 00137728 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnosePlugin.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00139264 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnoseDll.dll
2012-11-29 05:56 - 2012-11-29 05:56 - 03332720 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\drivers\libntgr_api.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00072192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SVTUtils.DLL
2013-03-26 22:58 - 2013-03-26 22:58 - 00074752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NetcardApi.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00136704 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\airprintdll.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 00714240 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_Update.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00485376 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_WirelessExport.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00116224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupApiPlugin.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00066560 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupDll.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 41287224 _____ () C:\Users\emir\AppData\Roaming\Spotify\libcef.dll
2015-08-13 13:18 - 2015-08-13 13:18 - 00043008 _____ () c:\users\emir\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpye9vis.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00750080 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00047616 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00865280 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00200704 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2015-07-29 18:41 - 2015-07-25 04:46 - 01405768 _____ () C:\Users\emir\AppData\Local\Google\Chrome\Application\44.0.2403.125\libglesv2.dll
2015-07-29 18:41 - 2015-07-25 04:46 - 00081224 _____ () C:\Users\emir\AppData\Local\Google\Chrome\Application\44.0.2403.125\libegl.dll
2015-06-09 22:36 - 2015-06-09 22:36 - 36732592 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 01488440 _____ () C:\Users\emir\AppData\Roaming\Spotify\libglesv2.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 00079928 _____ () C:\Users\emir\AppData\Roaming\Spotify\libegl.dll
2015-03-18 14:20 - 2015-03-18 14:20 - 09305656 _____ () C:\Users\emir\AppData\Roaming\Spotify\pdf.dll
2015-08-02 14:13 - 2015-08-02 14:13 - 00172544 _____ () C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1865c610e4f6355862bc377619741d44\IsdiInterop.ni.dll
2011-09-23 11:48 - 2011-05-20 11:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\Temp:0B4227B4
AlternateDataStreams: C:\Users\emir\Downloads\ariskkey.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\avc-free.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\AVSVideoEditor.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\bitdefender_tsecurity (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\bitdefender_tsecurity (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u21.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u25.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u55.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\epson14860.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\gimp-2.8.10-setup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GMATPrep-2.3.322-Windows (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GMATPrep-2.3.322-Windows.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthPluginSetup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthPluginSetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthSetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\guiminer-20121203.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_flashplayer11x32au_mssa_aaa_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_flashplayer13x32au_mssa_aaa_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_reader11_es_mssd_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\iTunes64Setup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jdk-8u45-windows-x64.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jre-7u25-windows-i586.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jre-7u51-windows-i586.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jxpiinstall(2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jxpiinstall(3).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\KernelPasswordUnmask.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64 (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64 (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\mining_proxy.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\moviestudiope12.0.896_64bit.suite.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\moviestudiope13.0.878_32-bit.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\NETGEARGenie-install.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Opera_NI_stable.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\PokerStarsInstall (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Popcorn-Time-0.3.8-0-Setup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\PS_AIO_03_C4400_NonNet_Full_Win_WW_130_140.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\serviio-1.4.1.2-win-setup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Shockwave_Installer_Slim (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Shockwave_Installer_Slim.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\sp43935.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\sp58226.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\SpotifySetup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\SpotifySetup (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\spybot-2.2.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\SUREDEMO.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\tixati-1.95-1.win32-install.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Unconfirmed 22632.crdownload:BDU
AlternateDataStreams: C:\Users\emir\Downloads\vxlsetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\winx-free-video-converter.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\wnetwatcher_setup.exe:BDU
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123simsen.com -> www.123simsen.com
 
There are 7864 more restricted sites.
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\emir\Desktop\shaina\rrgh40_516535ba3d28f.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{32129213-F27C-4BB2-9B3A-6BB5AB8E1F66}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{AEFC00DB-5E31-4AE3-BD74-08DC34357C12}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C2A294AD-C28B-4DE4-9C62-81AAFF8C99FC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{66CB07D9-2DB9-4C1C-B5B4-616A2544C3EB}] => (Allow) C:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{656C87C1-D1E2-4B22-9DC3-9CE955E65EC2}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{1EBC68CC-795D-4D39-B8D7-BD9B03FBB08F}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [UDP Query User{62F00302-736B-4612-A51A-2F8EBE6DC3E8}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{1868DC34-EBF9-46BE-A5AC-8F4541526FCF}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{9A42DB7A-2CE9-41FF-AE04-31969E32C8D3}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{9ED2E1C5-9394-440C-A8BA-9E50FD3EED26}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{52325B30-B189-45A2-B6B5-A0CEEF416527}C:\program files (x86)\netgear\usb control center\control center.exe] => (Block) C:\program files (x86)\netgear\usb control center\control center.exe
FirewallRules: [TCP Query User{F907D10E-0C25-4B7D-B349-50868DDC6B77}C:\program files (x86)\netgear\usb control center\control center.exe] => (Block) C:\program files (x86)\netgear\usb control center\control center.exe
FirewallRules: [{901C536D-7157-4A2E-92B5-EBA37DCA01B2}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{B186FADF-D33C-4F93-8710-B337CC074950}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{18F32B11-23D7-4D46-AE05-2C8FE120B791}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{EC153A95-5B8B-4CE5-90B2-D02B7CF5F3F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{F788BE79-62D7-491F-831F-63B24729613D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{AECBFC82-5307-4FD9-B772-F3F521B67F6C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{211C909D-CFDD-4126-8138-5DF52CC4BB98}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{6E9EFFE2-9385-4AA9-B5C7-8D37EBBBFC42}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{B03BAFD5-1A3F-4950-B27C-E344B833814F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{75053B87-21D6-4D33-9436-96B2601F0BA7}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{39DE4EB2-7C01-462C-A5BD-FF3E10FC7CF0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{498C11DC-7C24-453C-93F6-062B38EFC2EF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{E104BBB7-F1F1-4020-A421-48E9626DF30A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{DF5BAA9D-01FA-4D5F-8500-C6910478C946}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{EE2BF635-8E29-41D8-8ACA-8B0750B69A27}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{7B6B34AA-33DA-460A-8C48-09E3DAC830FA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{A38E66B5-816B-45D5-8880-73602DD60006}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{E654B050-A343-48C0-9B0B-4B78956FA302}] => (Allow) LPort=7423
FirewallRules: [{265CDFB2-56D5-4FF6-920B-E268D9BEFE65}] => (Allow) C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
FirewallRules: [{44AD9262-202E-48C5-A086-E7F5A4C14AE1}] => (Allow) C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
FirewallRules: [{2A64486F-25BA-444D-BA5C-A217F6595856}] => (Allow) C:\Program Files (x86)\AirPort\APAgent.exe
FirewallRules: [{B0138C95-1F9C-448B-82D0-3958C3CB291C}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\Kernel\CLML\VDTVRec.exe
FirewallRules: [{77826DA6-B05C-4F82-BCC5-7D8F50FCCA0A}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\VDTV.exe
FirewallRules: [{7569C53E-0F72-4567-9996-D149A3D9F56D}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\DIRECTV2PC™.exe
FirewallRules: [UDP Query User{4EA6B76F-2999-4862-8B1F-327CB754ECB3}C:\users\emir\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\emir\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{7179C89C-9EC7-4403-90FA-A5B36321DC45}C:\users\emir\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\emir\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [{0C3891A4-736E-4DE9-A228-B3BDF192E3F1}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{85D789CC-431D-4F1A-A2B1-F3622247D744}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{2ADBD0EA-3E1A-438D-AFD6-FFA1FAB4AB58}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{B9EBA313-DDE9-4FBF-B3A3-D23E2743038C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{19FB0E38-63C4-4479-90D0-0AFF1576C20F}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{AF3D7B70-73FC-4DB3-94C7-A15B5ECB452C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{5A266551-3A64-4C4E-9DE9-8BDD6DFE298D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{057E1797-75ED-492A-A390-C910A1E20CED}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E2FEF8A5-DED5-4101-AE39-7DAA5A6DF601}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{27A76959-1D7A-4830-9413-D380FD6A9686}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{AECD8B6C-4BBF-47F6-9663-C6D49318C531}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{E6154C10-BA46-4A43-BAF6-2E3CD6B55750}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [{16215392-F824-49CD-86D9-FBBD52375A36}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{01B27C99-69BB-4350-90D2-7CDD4D668052}C:\users\emir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\emir\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{4DD4A5A6-2992-41B9-9BFF-BDDE8F0FFC66}C:\users\emir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\emir\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{DE304784-C630-4E3B-BA61-7FEEF1FFE0C0}C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{7CE6AAC0-E586-4A87-B7D4-CC42FC148F3F}C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{E0D8F14E-2C7B-4372-8C87-5E1C4CB65FF5}] => (Allow) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{32737E34-4ECB-4D91-82A1-9A3B0C406637}] => (Allow) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{C01E5C48-855C-47EA-A4C8-B422DD51973D}] => (Allow) C:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{92376824-DCB3-439E-9CD8-A928543D4475}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{7D265A73-A4C7-4D29-8A59-351A98C40D20}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [UDP Query User{46567092-BACC-4EF2-BD85-6D5F36A8896C}C:\program files (x86)\tixati\tixati.exe] => (Allow) C:\program files (x86)\tixati\tixati.exe
FirewallRules: [TCP Query User{CDA09C33-6342-4F09-96C6-6245E1829729}C:\program files (x86)\tixati\tixati.exe] => (Allow) C:\program files (x86)\tixati\tixati.exe
FirewallRules: [{EF38292B-E529-4196-BC28-393D6BE4221C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{AF3B971E-CF5B-460F-AC92-1F9883FEC837}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [UDP Query User{8BEABE2B-3C7B-4519-9C4D-A0189AC5CB3C}C:\program files (x86)\xbmc\xbmc.exe] => (Allow) C:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [TCP Query User{E0C91C1E-4C1B-448D-839E-54EAD535A66F}C:\program files (x86)\xbmc\xbmc.exe] => (Allow) C:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [{FE733C99-E551-4AF8-8E98-A45DEC91F510}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{10E49532-BFB2-402D-AE42-D9D84A13828B}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel Wireless Display\WiDiApp.exe
FirewallRules: [{E8E4F810-9E4B-4680-9169-7CC3E414DE06}] => (Allow) C:\Program Files (x86)\EasyBits For Kids\ezDesktop.exe
FirewallRules: [{E248442D-ACB2-4DE2-B52E-625F57627040}] => (Allow) C:\Windows\system32\ezSharedSvcHost.exe
FirewallRules: [{54E8B167-0B45-44C1-8DF3-9500776B81A0}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{D2EE4647-263B-4861-8645-C6F1E0EFCB42}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{A4434578-0F65-4073-9D0D-96CF7A796ADF}] => (Allow) LPort=1900
FirewallRules: [{3A027150-1368-4FE4-A8B8-9B6AF833E2C2}] => (Allow) LPort=2869
FirewallRules: [{D7776677-CD4C-465A-8017-7F99230EFD62}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{F81DB3FF-48CF-4B03-9E61-EA74B9BCE4E9}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\RoxioNow\RNow.exe
FirewallRules: [{77D7C794-AE1D-4E44-95B4-A6DFBA3D7E63}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\RoxioNow\RNow.exe
FirewallRules: [{9EDA278D-1263-47F1-AC93-0AE70F780010}] => (Allow) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowShell.exe
FirewallRules: [{F9C300F8-DF28-4FE0-AFFE-718F8E01D2AC}] => (Allow) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowShell.exe
FirewallRules: [TCP Query User{86966CDC-8149-4DA0-9918-B90A66B031B7}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{4E80A35D-6237-4F4C-B760-2F3030692F81}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{4DB57E7D-A4AB-4322-AAA0-39097F44925E}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{0F033E85-EB29-489C-89B8-7E2F44AB7EB9}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (08/13/2015 01:20:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/13/2015 01:20:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/13/2015 01:16:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 11.0.10240.16384, time stamp: 0x559f3c75
Faulting module name: hpswp_BHO.dll, version: 131.1.35898.0, time stamp: 0x4a4aa50d
Exception code: 0xc0000005
Fault offset: 0x0001e75c
Faulting process id: 0x253c
Faulting application start time: 0xIEXPLORE.EXE0
Faulting application path: IEXPLORE.EXE1
Faulting module path: IEXPLORE.EXE2
Report Id: IEXPLORE.EXE3
Faulting package full name: IEXPLORE.EXE4
Faulting package-relative application ID: IEXPLORE.EXE5
 
Error: (08/13/2015 01:13:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchUI.exe version 10.0.10240.16401 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: db0
 
Start Time: 01d0d5851a9505d6
 
Termination Time: 4294967295
 
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
 
Report Id: d29ce228-4179-11e5-9bd0-ac7289b6b1b4
 
Faulting package full name: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy
 
Faulting package-relative application ID: CortanaUI
 
Error: (08/13/2015 01:11:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: emir-HP)
Description: Package Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI was terminated because it took too long to suspend.
 
Error: (08/13/2015 01:10:29 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
 
Error: (08/13/2015 01:03:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/13/2015 01:03:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/13/2015 12:54:55 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
 
Error: (08/13/2015 12:54:02 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program ShellExperienceHost.exe version 10.0.10240.16401 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 728
 
Start Time: 01d0d582eb4c412e
 
Termination Time: 4294967295
 
Application Path: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
 
Report Id: f875c8f2-4176-11e5-9bcf-ac7289b6b1b4
 
Faulting package full name: Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy
 
Faulting package-relative application ID: App
 
 
System errors:
=============
Error: (08/13/2015 01:23:08 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The HP Support Assistant Service service hung on starting.
 
Error: (08/13/2015 01:14:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: 
%%1058
 
Error: (08/13/2015 01:13:25 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: 
%%1056
 
Error: (08/13/2015 01:13:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (08/13/2015 01:12:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (08/13/2015 01:12:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Print Spooler service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.
 
Error: (08/13/2015 01:12:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Management and Security Application User Notification Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (08/13/2015 01:12:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The HP Software Framework Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (08/13/2015 01:12:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Rapid Storage Technology service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (08/13/2015 01:12:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The iPod Service service terminated unexpectedly.  It has done this 1 time(s).
 
 
Microsoft Office:
=========================
Error: (08/13/2015 01:20:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/13/2015 01:20:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/13/2015 01:16:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.10240.16384559f3c75hpswp_BHO.dll131.1.35898.04a4aa50dc00000050001e75c253c01d0d5873291af6cC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll94e5ab12-dcc4-4cf6-8cbe-defc319a298d
 
Error: (08/13/2015 01:13:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SearchUI.exe10.0.10240.16401db001d0d5851a9505d64294967295C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exed29ce228-4179-11e5-9bd0-ac7289b6b1b4Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyCortanaUI
 
Error: (08/13/2015 01:11:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: emir-HP)
Description: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI
 
Error: (08/13/2015 01:10:29 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
 
Error: (08/13/2015 01:03:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/13/2015 01:03:27 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/13/2015 12:54:55 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
 
Error: (08/13/2015 12:54:02 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: ShellExperienceHost.exe10.0.10240.1640172801d0d582eb4c412e4294967295C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exef875c8f2-4176-11e5-9bcf-ac7289b6b1b4Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewyApp
 
 
CodeIntegrity:
===================================
  Date: 2015-07-30 08:38:13.475
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.452
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.380
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.248
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.223
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.118
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:48.149
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:48.131
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:47.541
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:47.524
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i3-2330M CPU @ 2.20GHz
Percentage of memory in use: 57%
Total physical RAM: 4043.86 MB
Available physical RAM: 1715.95 MB
Total Virtual: 8139.86 MB
Available Virtual: 5439.46 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:581.59 GB) (Free:55 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:14.29 GB) (Free:1.57 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.04 GB) FAT32
Drive g: (Spanish 1 1.3) (CDROM) (Total:4.02 GB) (Free:0 GB) CDFS
Drive h: () (Removable) (Total:29.47 GB) (Free:25.01 GB) FAT32
Drive i: (ESD-USB) (Removable) (Total:14.92 GB) (Free:14.89 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 7ADEB7CE)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=581.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
 
========================================================
Disk: 1 (Size: 29.5 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 14.9 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
==================== End of log ============================
 
 
 
 

  • 0

Advertisements


#2
emirr123

emirr123

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

anybody?????


  • 0

#3
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Sorry for the delay

Could I have a fresh FRST scan please
  • 0

#4
emirr123

emirr123

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

hi thanks for the responses.

 

this is the fresh scan

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:12-08-2015
Ran by emir (administrator) on EMIR-HP (16-08-2015 19:43:16)
Running from C:\Users\emir\Desktop
Loaded Profiles: emir & DefaultAppPool (Available Profiles: emir & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(NETGEAR) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
() C:\Program Files\Serviio\bin\ServiioService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
() C:\Program Files\Serviio\bin\ServiioService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
() C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\Serviio\bin\ServiioConsole.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Apple Inc.) C:\Program Files (x86)\AirPort\APAgent.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\SpotifyCrashService.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
() C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\odscanui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\downloader.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-01-04] (IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-11] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-30] (Synaptics Incorporated)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1603544 2015-06-30] (Bitdefender)
HKLM\...\Run: [IntelPAN] => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.)
HKLM-x32\...\Run: [Guard.Mail.ru.gui] => "C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe" /gui
HKLM-x32\...\Run: [AirPort Base Station Agent] => C:\Program Files (x86)\AirPort\APAgent.exe [771360 2009-11-11] (Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1679360 2012-02-28] (Wondershare)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [NETGEAR USB Control Center] => C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe [4139008 2012-09-20] ()
HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Spotify Web Helper] => C:\Users\emir\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2008632 2015-07-15] (Spotify Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Google Update] => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-16] (Google Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671904 2012-08-28] (DT Soft Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [NETGEARGenie] => C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [1044224 2013-04-07] ()
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-18] (Bitdefender)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Spotify] => C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe [7334968 2015-07-15] (Spotify Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [GoogleChromeAutoLaunch_E9444CBBF542E6F567C8F4E0161A18BE] => C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe [813896 2015-07-25] (Google Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Dropbox Update] => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-29] (Dropbox, Inc.)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2013-09-25]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-12-17]
ShortcutTarget: Dropbox.lnk -> C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Serviio.lnk [2012-05-16]
ShortcutTarget: Serviio.lnk -> C:\Program Files\Serviio\bin\ServiioConsole.exe ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=en-TT&Src=WD8&Tid=000328B9&OHP=about%3Ablank&OSP=
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
SearchScopes: HKLM -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://uk.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000 -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-07-28] (Bitdefender)
BHO: AVG Do Not Track -> {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} ->  No File
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-23] (Oracle Corporation)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-08-25] (HP)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-23] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-07-28] (Bitdefender)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-23] (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-08-25] (HP)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-23] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-07-28] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-07-28] (Bitdefender)
Toolbar: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
DPF: HKLM-x32 {A4110378-789B-455F-AE86-3A1BFC402853} hxxp://zone.msn.com/bingame/zpagames/zpa_shvl.cab55579.cab
DPF: HKLM-x32 {B8BE5E93-A60C-4D26-A2DC-220313175592} hxxp://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2011-06-21] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8ad8bb11-2ba2-4370-ac96-06bf30612d63}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9ff4345c-eb1b-4212-8598-1997e843e93c}: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default
FF NewTab: about:blank
FF DefaultSearchEngine: Search Here
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-23] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-07] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-02] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\emir\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @talk.google.com/O1DPlugin -> C:\Users\emir\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @tools.google.com/Google Update;version=3 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @tools.google.com/Google Update;version=9 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\emir\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\emir\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\[email protected] [2015-04-20]
FF Extension: Ghostery - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\[email protected] [2013-08-17]
FF Extension: MEGA EXTENSION - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\[email protected] [2013-02-20]
FF Extension: Show my Password - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2013-07-21]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected] [2015-02-19]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff [2015-07-30]
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-07-30]
FF HKLM-x32\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files (x86)\AVG\AVG2012\Firefox4
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-09-25]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-07-30]
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] [not found]
 
Chrome: 
=======
CHR Profile: C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-16]
CHR Extension: (Google Search) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-16]
CHR Extension: (Website Logon) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfaldikcoaplhepekpbngkepfcoiihef [2012-07-16]
CHR Extension: (Bitdefender Wallet) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih [2015-08-12]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Gmail) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-07-16]
CHR HKLM-x32\...\Chrome\Extension: [dfaldikcoaplhepekpbngkepfcoiihef] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx [2011-08-22]
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [_01&ven_111d&dev_7605&subsys_103c3385] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx <not found>
StartMenuInternet: Google Chrome - C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [680112 2015-06-09] (Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2015-07-24] (Bitdefender)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 CLDTVHNService; C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe [75048 2009-09-17] ()
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-22] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-21] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2012-03-19] (Realsil Microelectronics Inc.) [File not signed]
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-07-23] (Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
S3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
S3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
U2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-07-30] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [232192 2013-04-07] (NETGEAR)
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
U2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-07-21] (Microsoft Corporation)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-11] (Microsoft Corporation)
R2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [359936 2014-03-20] () [File not signed]
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-30] (Synaptics Incorporated)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-23] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-23] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2015-04-22] (Bitdefender)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-21] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
R2 vsserv; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1540744 2015-07-27] (Bitdefender)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-30] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-07-30] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-05-28] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-05-29] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-05-28] (BitDefender)
U5 bdelam; C:\Windows\System32\Drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2014-12-15] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [115800 2015-05-21] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [79192 2013-07-30] (BitDefender)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-09-04] (DT Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-02-24] (BitDefender LLC)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-07-30] (Microsoft Corporation)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R3 NetgearUDSMBus; C:\Windows\system32\drivers\NetgearUDSMBus.sys [107296 2012-08-13] (Windows ® Codename Longhorn DDK provider)
R3 NetgearUDSTcpBus; C:\Windows\System32\Drivers\NetgearUDSTcpBus.sys [183584 2012-08-13] (Windows ® Codename Longhorn DDK provider)
R3 NetgearUDSTcpBus; C:\Windows\SysWow64\Drivers\NetgearUDSTcpBus.sys [153600 2012-06-15] (Windows ® Codename Longhorn DDK provider) [File not signed]
R2 NPF; C:\Windows\system32\drivers\npf.sys [35344 2013-09-25] (CACE Technologies, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
S3 SL4UsbNoSSL; C:\Windows\System32\Drivers\SL4UsbNoSSL.sys [50296 2012-05-02] (Cristalink Ltd)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-30] (Synaptics Incorporated)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-13] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 voxaldriver; C:\Windows\System32\DRIVERS\voxaldriverx64.sys [33488 2013-10-30] ()
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
R3 WsAudioDevice_383S(1); C:\Windows\system32\drivers\WsAudioDevice_383S(1).sys [29288 2013-01-08] (Wondershare)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
NETSVC: dosvc -> C:\Windows\system32\dosvc.dll (Microsoft Corporation)
NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)
NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVC: RetailDemo -> C:\Windows\system32\RDXService.dll (Microsoft Corporation)
NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-08-16 19:43 - 2015-08-16 19:43 - 00044447 _____ C:\Users\emir\Desktop\FRST.txt
2015-08-16 19:38 - 2015-08-16 19:38 - 00016148 _____ C:\WINDOWS\system32\EMIR-HP_emir_HistoryPrediction.bin
2015-08-16 19:35 - 2015-08-16 19:35 - 00000000 ____H C:\Users\emir\AppData\Local\BIT5C6A.tmp
2015-08-16 19:32 - 2015-08-16 19:34 - 00000000 ____D C:\Users\emir\Desktop\HostsXpert
2015-08-16 19:22 - 2015-08-16 19:20 - 00891392 _____ (Farbar) C:\Users\emir\Desktop\MiniToolBox.exe
2015-08-16 19:16 - 2015-08-16 19:33 - 00000000 _____ C:\Users\emir\AppData\Local\{08B44E72-5A23-43E8-8DDB-2090AE919D42}
2015-08-14 07:50 - 2015-08-14 07:47 - 00000762 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt
2015-08-14 06:01 - 2015-08-14 06:01 - 00000000 ___HD C:\$Windows.~WS
2015-08-13 13:19 - 2015-08-13 01:01 - 00899072 _____ (Farbar) C:\Users\emir\Desktop\FSS.exe
2015-08-13 11:13 - 2015-08-13 00:16 - 02173952 _____ (Farbar) C:\Users\emir\Desktop\FRST64.exe
2015-08-13 11:13 - 2015-08-12 23:07 - 02248704 _____ C:\Users\emir\Desktop\AdwCleaner.exe
2015-08-13 11:13 - 2015-08-12 22:58 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\emir\Desktop\mbam-setup-2.1.8.1057.exe
2015-08-13 01:06 - 2015-08-16 19:43 - 00000000 ____D C:\FRST
2015-08-13 00:55 - 2015-08-13 00:51 - 01063160 _____ (Bleeping Computer, LLC) C:\Users\emir\Desktop\rkill64.com
2015-08-13 00:52 - 2015-08-14 06:25 - 00000000 ____D C:\AdwCleaner
2015-08-13 00:47 - 2015-08-13 00:47 - 00003232 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForemir
2015-08-13 00:46 - 2015-08-13 00:59 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForemir.job
2015-08-12 23:00 - 2015-08-14 06:42 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-12 23:00 - 2015-08-14 06:42 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-12 23:00 - 2015-08-14 06:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-12 23:00 - 2015-08-14 06:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-12 23:00 - 2015-08-12 23:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-12 23:00 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-12 23:00 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-12 23:00 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-12 07:25 - 2015-08-12 07:25 - 00000000 _____ C:\WINDOWS\SysWOW64\shoAC1E.tmp
2015-08-11 14:23 - 2015-08-11 14:23 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Quotestream
2015-08-10 16:47 - 2015-08-10 16:47 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-08-04 22:25 - 2015-08-04 22:31 - 13545694 _____ C:\Users\emir\AppData\Local\package.nw.new
2015-07-31 10:34 - 2015-07-31 10:34 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-07-30 09:02 - 2015-08-12 07:37 - 00002372 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-07-30 09:02 - 2015-08-12 07:37 - 00000000 ___RD C:\Users\emir\OneDrive
2015-07-30 09:00 - 2015-07-30 09:00 - 00517374 _____ C:\ProgramData\1438260563.bdinstall.bin
2015-07-30 08:59 - 2015-08-12 16:18 - 00000682 ____H C:\bdr-cf01
2015-07-30 08:58 - 2015-07-30 08:58 - 00002274 _____ C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk
2015-07-30 08:58 - 2015-07-30 08:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2015-07-30 08:58 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2015-07-30 08:58 - 2013-07-30 18:41 - 00079192 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2015-07-30 08:57 - 2015-05-29 09:50 - 00271272 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2015-07-30 08:57 - 2015-05-28 14:21 - 00747120 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2015-07-30 08:57 - 2015-05-28 13:37 - 01369288 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2015-07-30 08:57 - 2014-12-15 18:04 - 00098768 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\bdfndisf6.sys
2015-07-30 08:56 - 2015-07-30 09:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Bitdefender
2015-07-30 08:56 - 2015-07-30 08:59 - 00253404 ____H C:\bdr-ld01
2015-07-30 08:56 - 2015-07-30 08:59 - 00009216 ____H C:\bdr-ld01.mbr
2015-07-30 08:56 - 2015-05-27 17:02 - 49626058 ____H C:\bdr-im01.gz
2015-07-30 08:56 - 2013-08-13 13:38 - 03271472 ____H C:\bdr-bz01
2015-07-30 08:50 - 2015-02-24 16:52 - 00160544 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2015-07-30 08:50 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2015-07-30 08:43 - 2015-07-14 19:37 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-30 08:43 - 2015-07-14 19:37 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-30 08:24 - 2015-07-30 08:24 - 13059896 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 13037568 _____ (Intel Corporation) C:\WINDOWS\system32\ig4icd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 12814752 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 11352688 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 11223896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 10820096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig4icd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 09016320 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 05916080 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 05384176 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-07-30 08:24 - 2015-07-30 08:24 - 03520000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 03129856 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 01981696 _____ C:\WINDOWS\system32\iglhxa64.cpa
2015-07-30 08:24 - 2015-07-30 08:24 - 01067696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00963452 _____ C:\WINDOWS\SysWOW64\igcodeckrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00963452 _____ C:\WINDOWS\system32\igcodeckrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00957472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00584192 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00551424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00544552 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00539312 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00523184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00453552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00451584 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00449024 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00445952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00445952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00444416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00444416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00440832 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00439808 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00437760 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00437248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00418816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00411056 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00393216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00339456 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00294912 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00290224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00272928 _____ C:\WINDOWS\SysWOW64\igvpkrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00272928 _____ C:\WINDOWS\system32\igvpkrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00266152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00231312 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00223664 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00210106 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00197040 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00194880 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00194245 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00183808 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00183216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00166170 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00163421 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00159008 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00151040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00149682 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00148042 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00147393 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00147288 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00146004 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00145491 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144645 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144260 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144020 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00143932 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142882 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142877 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142717 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142289 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142008 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00141838 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00141049 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137889 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137784 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137141 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00135680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2015-07-30 08:24 - 2015-07-30 08:24 - 00132623 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00126300 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00124928 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4229.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00124650 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00119296 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00110080 _____ C:\WINDOWS\system32\igdde64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00102912 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00090112 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00072704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00059425 _____ C:\WINDOWS\system32\iglhxo64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059398 _____ C:\WINDOWS\system32\iglhxg64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059230 _____ C:\WINDOWS\system32\iglhxc64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059104 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00058796 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00058109 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00041288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00033792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00018432 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00017082 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00001074 _____ C:\WINDOWS\system32\iglhxa64.vp
2015-07-30 08:19 - 2015-07-30 08:19 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-07-30 08:19 - 2015-07-30 08:19 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-07-30 08:19 - 2015-07-30 08:18 - 00042696 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-07-30 08:18 - 2015-07-30 08:18 - 01804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00764616 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00419528 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00269000 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00255688 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo31.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00042696 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-07-30 08:18 - 2015-07-30 08:18 - 00042184 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-07-30 08:17 - 2015-07-23 22:48 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-07-30 08:17 - 2015-07-22 00:07 - 16710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-07-30 08:17 - 2015-07-21 23:27 - 13024256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-07-30 08:17 - 2015-07-15 23:57 - 24591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-30 08:17 - 2015-07-15 23:39 - 19333632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-30 08:16 - 2015-07-26 00:48 - 22320576 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-07-30 04:28 - 2015-08-14 06:02 - 00000000 ___DC C:\WINDOWS\Panther
2015-07-30 04:27 - 2015-07-30 00:35 - 00000000 __SHD C:\Recovery
2015-07-30 04:18 - 2015-07-30 04:18 - 00000000 ____D C:\Windows.old
2015-07-30 04:17 - 2015-07-30 04:17 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files\MSBuild
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\inetpub
2015-07-30 04:13 - 2015-06-17 22:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-07-30 04:13 - 2015-06-17 22:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-07-30 04:13 - 2015-06-17 22:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-07-30 04:13 - 2015-05-30 01:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-07-30 04:13 - 2015-05-30 01:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-07-30 04:13 - 2015-05-30 01:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-07-30 01:39 - 2015-07-26 01:15 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-07-30 01:39 - 2015-07-26 01:13 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-07-30 01:39 - 2015-07-26 00:28 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-07-30 01:39 - 2015-07-26 00:28 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-07-30 01:39 - 2015-07-26 00:20 - 20854232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-07-30 01:39 - 2015-07-25 23:47 - 11552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-07-30 01:39 - 2015-07-25 23:39 - 09885184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-07-30 01:39 - 2015-07-23 22:46 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-07-30 01:39 - 2015-07-23 22:31 - 02661376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-07-30 01:39 - 2015-07-23 22:31 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-07-30 01:39 - 2015-07-23 22:30 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-07-30 01:39 - 2015-07-23 22:26 - 18810368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-07-30 01:39 - 2015-07-22 01:22 - 02462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-07-30 01:39 - 2015-07-22 01:19 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-07-30 01:39 - 2015-07-22 01:13 - 01983328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-07-30 01:39 - 2015-07-22 00:13 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-07-30 01:39 - 2015-07-22 00:02 - 02150696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-07-30 01:39 - 2015-07-22 00:00 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-30 01:39 - 2015-07-21 23:55 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-07-30 01:39 - 2015-07-21 23:54 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-07-30 01:39 - 2015-07-21 23:53 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-07-30 01:39 - 2015-07-21 23:51 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-07-30 01:39 - 2015-07-21 23:48 - 03589632 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-07-30 01:39 - 2015-07-21 23:48 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-07-30 01:39 - 2015-07-21 23:47 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-07-30 01:39 - 2015-07-21 23:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-07-30 01:39 - 2015-07-21 23:08 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-07-30 01:39 - 2015-07-21 23:05 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-07-30 01:39 - 2015-07-21 23:04 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-07-30 01:39 - 2015-07-19 00:11 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-07-30 01:39 - 2015-07-19 00:11 - 01561360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-07-30 01:39 - 2015-07-18 23:40 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-07-30 01:39 - 2015-07-18 23:19 - 02415616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-07-30 01:39 - 2015-07-18 23:12 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-07-30 01:39 - 2015-07-18 23:12 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-07-30 01:39 - 2015-07-18 22:53 - 01914880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-07-30 01:39 - 2015-07-18 04:46 - 01769568 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 04:43 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-07-30 01:39 - 2015-07-18 03:29 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 01:17 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-07-30 01:39 - 2015-07-18 01:14 - 01396576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-07-30 01:39 - 2015-07-17 23:52 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-07-30 01:39 - 2015-07-17 00:07 - 02116960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-07-30 01:39 - 2015-07-16 23:39 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-07-30 01:39 - 2015-07-16 22:48 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-07-30 01:39 - 2015-07-16 22:36 - 00858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-07-30 01:39 - 2015-07-16 22:34 - 01601024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-07-30 01:39 - 2015-07-16 22:31 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-30 01:39 - 2015-07-16 22:19 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-07-30 01:39 - 2015-07-16 22:00 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-07-30 01:39 - 2015-07-16 21:46 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-07-30 01:39 - 2015-07-16 01:43 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-07-30 01:39 - 2015-07-16 01:11 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-30 01:39 - 2015-07-16 00:55 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-30 01:39 - 2015-07-15 23:48 - 12502016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-30 01:39 - 2015-07-15 23:47 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-07-30 01:39 - 2015-07-15 23:44 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-30 01:39 - 2015-07-15 23:43 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-30 01:39 - 2015-07-15 23:27 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-30 01:39 - 2015-07-15 23:22 - 11260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-30 01:39 - 2015-07-14 22:41 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-07-30 01:39 - 2015-07-14 22:22 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-30 01:39 - 2015-07-14 22:10 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-07-30 01:39 - 2015-07-14 21:47 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-30 01:39 - 2015-07-14 21:34 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-07-30 01:39 - 2015-07-13 21:51 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-07-30 01:39 - 2015-07-13 21:31 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-07-30 01:39 - 2015-07-11 20:18 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-07-30 01:39 - 2015-07-10 21:17 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-07-30 01:39 - 2015-07-10 21:04 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-30 01:39 - 2015-07-10 21:03 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-07-30 01:39 - 2015-07-10 20:51 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-07-30 01:39 - 2015-07-10 20:41 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-30 01:39 - 2015-07-10 20:40 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-07-30 01:39 - 2015-07-10 11:51 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-07-30 01:39 - 2015-07-10 05:53 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-07-30 01:39 - 2015-07-10 05:31 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-30 01:38 - 2015-07-26 01:16 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-07-30 01:38 - 2015-07-26 01:16 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-07-30 01:38 - 2015-07-26 01:14 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-07-30 01:38 - 2015-07-26 01:14 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-07-30 01:38 - 2015-07-26 01:06 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-07-30 01:38 - 2015-07-25 23:49 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-30 01:38 - 2015-07-25 23:49 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-07-30 01:38 - 2015-07-25 23:47 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-07-30 01:38 - 2015-07-25 23:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-07-30 01:38 - 2015-07-25 23:40 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-07-30 01:38 - 2015-07-25 23:39 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-07-30 01:38 - 2015-07-25 23:39 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-07-30 01:38 - 2015-07-25 23:38 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-07-30 01:38 - 2015-07-25 23:35 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-07-30 01:38 - 2015-07-25 23:34 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-07-30 01:38 - 2015-07-25 23:30 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-07-30 01:38 - 2015-07-25 23:30 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-07-30 01:38 - 2015-07-25 23:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-07-30 01:38 - 2015-07-23 23:31 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-07-30 01:38 - 2015-07-23 23:30 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-07-30 01:38 - 2015-07-23 23:18 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-07-30 01:38 - 2015-07-23 23:17 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-07-30 01:38 - 2015-07-23 23:17 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-07-30 01:38 - 2015-07-23 23:17 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-07-30 01:38 - 2015-07-23 23:12 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-07-30 01:38 - 2015-07-23 23:11 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-07-30 01:38 - 2015-07-23 22:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-07-30 01:38 - 2015-07-23 22:52 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-07-30 01:38 - 2015-07-23 22:46 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-07-30 01:38 - 2015-07-23 22:46 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-07-30 01:38 - 2015-07-23 22:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-07-30 01:38 - 2015-07-23 22:40 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-07-30 01:38 - 2015-07-23 22:39 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-07-30 01:38 - 2015-07-23 22:36 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-07-30 01:38 - 2015-07-23 22:34 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-07-30 01:38 - 2015-07-23 22:30 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-07-30 01:38 - 2015-07-23 22:29 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-07-30 01:38 - 2015-07-23 22:25 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-07-30 01:38 - 2015-07-23 22:24 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-07-30 01:38 - 2015-07-22 01:18 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-07-30 01:38 - 2015-07-22 01:17 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-07-30 01:38 - 2015-07-22 01:16 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-07-30 01:38 - 2015-07-22 01:15 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-07-30 01:38 - 2015-07-22 01:15 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-07-30 01:38 - 2015-07-22 01:14 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-07-30 01:38 - 2015-07-22 01:02 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-07-30 01:38 - 2015-07-22 00:21 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-07-30 01:38 - 2015-07-22 00:13 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-07-30 01:38 - 2015-07-22 00:02 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-07-30 01:38 - 2015-07-22 00:02 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-07-30 01:38 - 2015-07-22 00:01 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00643616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-07-30 01:38 - 2015-07-22 00:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-07-30 01:38 - 2015-07-21 23:59 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-30 01:38 - 2015-07-21 23:53 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-07-30 01:38 - 2015-07-21 23:49 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-07-30 01:38 - 2015-07-21 23:46 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-07-30 01:38 - 2015-07-21 23:21 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-07-30 01:38 - 2015-07-21 23:13 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-30 01:38 - 2015-07-21 23:10 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-07-30 01:38 - 2015-07-21 23:03 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-07-30 01:38 - 2015-07-21 22:50 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-07-30 01:38 - 2015-07-19 00:04 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-07-30 01:38 - 2015-07-18 23:54 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-07-30 01:38 - 2015-07-18 23:29 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-07-30 01:38 - 2015-07-18 23:29 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-07-30 01:38 - 2015-07-18 23:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-07-30 01:38 - 2015-07-18 23:22 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-07-30 01:38 - 2015-07-18 23:18 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-07-30 01:38 - 2015-07-18 23:11 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-07-30 01:38 - 2015-07-18 23:11 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-07-30 01:38 - 2015-07-18 23:02 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-07-30 01:38 - 2015-07-18 22:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-07-30 01:38 - 2015-07-18 04:48 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-07-30 01:38 - 2015-07-18 04:47 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-07-30 01:38 - 2015-07-18 04:22 - 00539216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-07-30 01:38 - 2015-07-18 03:48 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-30 01:38 - 2015-07-18 03:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-07-30 01:38 - 2015-07-18 03:39 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-07-30 01:38 - 2015-07-18 03:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-07-30 01:38 - 2015-07-18 03:33 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-07-30 01:38 - 2015-07-18 03:28 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-07-30 01:38 - 2015-07-18 03:28 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-30 01:38 - 2015-07-18 03:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-07-30 01:38 - 2015-07-18 01:18 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-07-30 01:38 - 2015-07-18 01:17 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-07-30 01:38 - 2015-07-18 01:15 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-07-30 01:38 - 2015-07-18 01:02 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-07-30 01:38 - 2015-07-18 00:54 - 00606392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-07-30 01:38 - 2015-07-18 00:17 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-07-30 01:38 - 2015-07-18 00:13 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-30 01:38 - 2015-07-18 00:09 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-07-30 01:38 - 2015-07-18 00:06 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-07-30 01:38 - 2015-07-18 00:01 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-07-30 01:38 - 2015-07-17 23:59 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-07-30 01:38 - 2015-07-17 23:59 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-07-30 01:38 - 2015-07-17 23:58 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-07-30 01:38 - 2015-07-17 23:57 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-07-30 01:38 - 2015-07-17 23:56 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-07-30 01:38 - 2015-07-17 23:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-07-30 01:38 - 2015-07-17 23:50 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-30 01:38 - 2015-07-17 23:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-07-30 01:38 - 2015-07-17 23:49 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-07-30 01:38 - 2015-07-17 23:49 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-07-30 01:38 - 2015-07-17 23:48 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-07-30 01:38 - 2015-07-17 23:48 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-07-30 01:38 - 2015-07-17 23:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-07-30 01:38 - 2015-07-17 00:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-07-30 01:38 - 2015-07-17 00:17 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-07-30 01:38 - 2015-07-17 00:14 - 02147592 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-07-30 01:38 - 2015-07-17 00:13 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-07-30 01:38 - 2015-07-17 00:12 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-07-30 01:38 - 2015-07-17 00:07 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-07-30 01:38 - 2015-07-17 00:05 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-07-30 01:38 - 2015-07-16 23:07 - 01867672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-07-30 01:38 - 2015-07-16 23:05 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-07-30 01:38 - 2015-07-16 23:03 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-07-30 01:38 - 2015-07-16 22:39 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-07-30 01:38 - 2015-07-16 22:39 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-07-30 01:38 - 2015-07-16 22:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-07-30 01:38 - 2015-07-16 22:33 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-07-30 01:38 - 2015-07-16 22:33 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-07-30 01:38 - 2015-07-16 22:32 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-07-30 01:38 - 2015-07-16 22:26 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-07-30 01:38 - 2015-07-16 22:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-07-30 01:38 - 2015-07-16 22:24 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-07-30 01:38 - 2015-07-16 22:21 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-07-30 01:38 - 2015-07-16 22:19 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-07-30 01:38 - 2015-07-16 22:19 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-07-30 01:38 - 2015-07-16 22:18 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-07-30 01:38 - 2015-07-16 22:16 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-07-30 01:38 - 2015-07-16 22:05 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-07-30 01:38 - 2015-07-16 22:05 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-07-30 01:38 - 2015-07-16 21:56 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-07-30 01:38 - 2015-07-16 21:53 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-07-30 01:38 - 2015-07-16 21:51 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-07-30 01:38 - 2015-07-16 21:50 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-07-30 01:38 - 2015-07-16 21:44 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-07-30 01:38 - 2015-07-16 01:39 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-07-30 01:38 - 2015-07-16 01:34 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-07-30 01:38 - 2015-07-16 00:09 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-07-30 01:38 - 2015-07-16 00:04 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-07-30 01:38 - 2015-07-16 00:03 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-07-30 01:38 - 2015-07-16 00:01 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-07-30 01:38 - 2015-07-15 23:45 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-07-30 01:38 - 2015-07-15 23:41 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-07-30 01:38 - 2015-07-15 23:40 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-07-30 01:38 - 2015-07-15 23:39 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-07-30 01:38 - 2015-07-15 23:36 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-07-30 01:38 - 2015-07-15 23:35 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-07-30 01:38 - 2015-07-15 23:33 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-07-30 01:38 - 2015-07-15 23:32 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-07-30 01:38 - 2015-07-15 23:29 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-30 01:38 - 2015-07-15 23:19 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-07-30 01:38 - 2015-07-14 23:21 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-30 01:38 - 2015-07-14 22:49 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-30 01:38 - 2015-07-14 22:49 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-07-30 01:38 - 2015-07-14 22:16 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-07-30 01:38 - 2015-07-14 22:04 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-07-30 01:38 - 2015-07-14 21:59 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-07-30 01:38 - 2015-07-14 21:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-07-30 01:38 - 2015-07-14 21:43 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-07-30 01:38 - 2015-07-14 21:41 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-07-30 01:38 - 2015-07-14 21:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-07-30 01:38 - 2015-07-14 21:35 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-07-30 01:38 - 2015-07-14 21:34 - 01680896 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-07-30 01:38 - 2015-07-14 21:27 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-07-30 01:38 - 2015-07-13 23:13 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-07-30 01:38 - 2015-07-13 23:00 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-07-30 01:38 - 2015-07-13 22:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-07-30 01:38 - 2015-07-13 22:04 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-07-30 01:38 - 2015-07-13 21:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-07-30 01:38 - 2015-07-13 21:50 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-07-30 01:38 - 2015-07-13 21:49 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-07-30 01:38 - 2015-07-13 21:38 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-07-30 01:38 - 2015-07-13 21:31 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-07-30 01:38 - 2015-07-13 21:20 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-07-30 01:38 - 2015-07-12 20:01 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-07-30 01:38 - 2015-07-12 19:30 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-07-30 01:38 - 2015-07-11 20:38 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-07-30 01:38 - 2015-07-11 20:25 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-07-30 01:38 - 2015-07-11 19:46 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-07-30 01:38 - 2015-07-10 22:24 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-07-30 01:38 - 2015-07-10 21:28 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-07-30 01:38 - 2015-07-10 21:22 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-07-30 01:38 - 2015-07-10 21:21 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-07-30 01:38 - 2015-07-10 21:07 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-07-30 01:38 - 2015-07-10 21:05 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-07-30 01:38 - 2015-07-10 21:03 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-07-30 01:38 - 2015-07-10 21:03 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-30 01:38 - 2015-07-10 21:02 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-07-30 01:38 - 2015-07-10 21:01 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-30 01:38 - 2015-07-10 20:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-07-30 01:38 - 2015-07-10 20:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-07-30 01:38 - 2015-07-10 20:42 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-07-30 01:38 - 2015-07-10 20:41 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-07-30 01:38 - 2015-07-10 20:40 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-30 01:38 - 2015-07-10 20:40 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-30 01:38 - 2015-07-10 20:34 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-07-30 01:38 - 2015-07-10 11:47 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-07-30 01:38 - 2015-07-10 11:00 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-07-30 01:38 - 2015-07-10 10:52 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-07-30 01:38 - 2015-07-10 06:59 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-07-30 01:38 - 2015-07-10 06:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-07-30 01:38 - 2015-07-10 06:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-07-30 01:38 - 2015-07-10 06:05 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-07-30 01:38 - 2015-07-10 05:35 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-07-30 01:38 - 2015-07-10 05:29 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-07-30 01:38 - 2015-07-10 04:38 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-07-30 01:37 - 2015-07-30 01:37 - 00000000 ____D C:\Users\emir\AppData\Local\Sun
2015-07-30 01:31 - 2015-07-30 01:31 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-07-30 01:31 - 2015-07-30 01:31 - 00000000 ____D C:\Users\DefaultAppPool
2015-07-30 01:31 - 2015-07-30 00:49 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 01:31 - 2015-07-30 00:49 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\TuneUp Software
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-30 01:26 - 2015-07-30 01:26 - 00001051 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
2015-07-30 01:26 - 2015-07-30 01:26 - 00000000 ____D C:\Users\emir\AppData\Local\NetworkTiles
2015-07-30 01:24 - 2015-07-30 01:24 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-07-30 01:21 - 2015-07-30 01:21 - 00000000 ____D C:\Users\emir\AppData\Local\Publishers
2015-07-30 01:18 - 2015-07-30 01:20 - 00000000 ____D C:\Users\emir\AppData\Local\Comms
2015-07-30 01:17 - 2015-08-13 01:40 - 00000000 ____D C:\Users\emir\AppData\Local\Packages
2015-07-30 01:17 - 2015-07-30 01:17 - 00000000 ____D C:\Users\emir\AppData\Local\TileDataLayer
2015-07-30 01:16 - 2015-07-30 01:16 - 00000258 __RSH C:\Users\emir\ntuser.pol
2015-07-30 01:16 - 2015-07-30 01:16 - 00000020 ___SH C:\Users\emir\ntuser.ini
2015-07-30 01:07 - 2015-07-30 01:07 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-07-30 00:56 - 2015-07-10 06:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-07-30 00:49 - 2015-07-30 00:49 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-07-30 00:49 - 2015-07-30 00:49 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2015-07-30 00:49 - 2015-07-30 00:49 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-07-30 00:40 - 2015-07-30 00:40 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-07-30 00:37 - 2015-08-14 07:10 - 00000000 ____D C:\Users\emir
2015-07-30 00:37 - 2015-07-30 01:17 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-30 00:36 - 2015-08-16 19:23 - 01006464 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-30 00:35 - 2015-07-30 00:36 - 00021209 _____ C:\WINDOWS\iis.log
2015-07-30 00:35 - 2015-07-30 00:35 - 00961296 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-07-30 00:32 - 2015-07-30 00:51 - 00000000 ____D C:\Program Files\IDT
2015-07-30 00:32 - 2015-07-30 00:32 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-07-30 00:32 - 2015-07-30 00:32 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2015-07-30 00:32 - 2012-01-04 00:37 - 06344704 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNGUI.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 05298688 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNHP.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 04444672 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 01987072 _____ (IDT, Inc.) C:\WINDOWS\system32\stapo64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 01819136 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2015-07-30 00:32 - 2012-01-04 00:37 - 01425408 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 01085440 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNX.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 00654336 ____N (IDT, Inc.) C:\WINDOWS\system32\stapi64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 00249344 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNJ.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 00223744 _____ (IDT, Inc.) C:\WINDOWS\system32\HPToneCtrls64.dll
2015-07-30 00:32 - 2010-04-01 14:11 - 00162304 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAC64.dll
2015-07-30 00:32 - 2009-10-10 00:45 - 00442368 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTEC64.dll
2015-07-30 00:32 - 2009-03-03 01:58 - 00068608 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAR64.dll
2015-07-30 00:32 - 2009-03-03 01:47 - 00090624 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTCo64.dll
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 ____D C:\Program Files\Synaptics
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-07-30 00:30 - 2015-07-30 00:30 - 00030382 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-07-30 00:29 - 2015-08-13 00:58 - 00167812 _____ C:\WINDOWS\PFRO.log
2015-07-29 23:48 - 2015-07-30 01:08 - 00006477 _____ C:\WINDOWS\comsetup.log
2015-07-29 23:23 - 2015-08-04 22:24 - 00000000 ___HD C:\$Windows.~BT
2015-07-29 23:09 - 2015-08-14 06:02 - 00380964 _____ C:\WINDOWS\diagerr.xml
2015-07-29 23:09 - 2015-08-14 06:02 - 00021180 _____ C:\WINDOWS\diagwrn.xml
2015-07-29 22:51 - 2015-07-29 22:51 - 00000000 ____D C:\Users\emir\AppData\Local\GWX
2015-07-29 17:26 - 2015-08-14 06:01 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64 (2).exe
2015-07-29 17:06 - 2015-07-29 17:06 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64 (1).exe
2015-07-29 17:00 - 2015-05-25 13:00 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-07-29 16:59 - 2015-07-09 13:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-07-29 16:57 - 2015-08-04 22:22 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64.exe
2015-07-29 16:50 - 2015-07-29 16:50 - 00000776 _____ C:\Users\emir\ReserveWindows10.cmd
2015-07-28 11:51 - 2015-08-04 12:30 - 00000000 ____D C:\Users\emir\AppData\Roaming\HpUpdate
2015-07-25 10:00 - 2015-07-30 00:51 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-07-24 10:44 - 2015-07-24 10:44 - 00000000 ____D C:\Users\emir\AppData\Local\{B8EE5CB0-E7FC-4939-9F1E-94E14C48F855}
2015-07-23 18:47 - 2015-08-12 07:24 - 00000000 ____D C:\Users\emir\AppData\Local\Popcorn-Time
2015-07-23 18:46 - 2015-07-30 00:51 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2015-07-23 18:45 - 2015-08-04 22:31 - 00000000 ____D C:\Users\emir\AppData\Local\Popcorn Time
2015-07-23 12:27 - 2015-07-23 12:27 - 00000000 _____ C:\WINDOWS\SysWOW64\REN4FF9.tmp
2015-07-20 18:18 - 2015-08-16 19:42 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-20 18:16 - 2015-07-20 18:16 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-07-20 18:16 - 2015-07-20 18:16 - 00001213 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-07-20 17:56 - 2015-07-30 01:07 - 00003608 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-emir-HP-emir
2015-07-20 17:54 - 2015-07-20 17:54 - 00000000 ____D C:\Users\emir\Documents\Adobe
2015-07-20 17:47 - 2015-07-20 17:47 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-07-20 17:46 - 2015-07-20 17:46 - 00001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2015-07-20 17:46 - 2015-07-20 17:46 - 00000000 ____D C:\Program Files\Adobe
2015-07-20 17:37 - 2015-07-20 17:46 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-07-20 17:31 - 2015-07-20 17:35 - 00000000 ____D C:\ProgramData\Package Cache
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-08-16 19:45 - 2012-06-16 19:41 - 00000000 ____D C:\Users\emir\AppData\Roaming\Spotify
2015-08-16 19:39 - 2013-07-03 11:10 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-16 19:39 - 2012-06-16 19:42 - 00000000 ____D C:\Users\emir\AppData\Local\Spotify
2015-08-16 19:38 - 2015-07-10 08:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-16 19:37 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-16 19:37 - 2015-07-10 08:20 - 00077295 _____ C:\WINDOWS\setupact.log
2015-08-16 19:37 - 2013-07-03 11:10 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-16 19:36 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-16 19:36 - 2015-07-10 05:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-16 19:36 - 2012-07-16 10:34 - 00000904 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job
2015-08-16 19:36 - 2012-07-16 10:34 - 00000852 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job
2015-08-16 19:20 - 2012-03-20 18:59 - 00000000 ____D C:\Users\emir\AppData\Local\Adobe
2015-08-16 19:20 - 2012-03-06 16:22 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A39AF485-2FF1-415D-B218-4ADC49AB0028}
2015-08-14 08:28 - 2015-07-10 08:20 - 04862024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-14 08:15 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-14 08:07 - 2012-08-15 22:31 - 00000000 ____D C:\Users\emir\AppData\Roaming\Skype
2015-08-14 08:04 - 2012-07-06 18:27 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-14 07:54 - 2015-06-29 13:28 - 00000914 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job
2015-08-14 07:11 - 2015-07-10 05:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-14 06:32 - 2013-09-25 11:11 - 00000000 ____D C:\Users\emir\AppData\Local\NETGEARGenie
2015-08-14 06:02 - 2015-07-10 08:20 - 00000863 _____ C:\WINDOWS\setuperr.log
2015-08-13 08:54 - 2015-06-29 13:28 - 00000862 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job
2015-08-13 02:24 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-13 01:32 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-13 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-08-13 00:41 - 2012-10-06 00:46 - 00000000 ____D C:\ProgramData\ICQ
2015-08-12 08:54 - 2012-09-10 13:02 - 00000000 ____D C:\Users\emir\AppData\Roaming\SoftGrid Client
2015-08-12 08:50 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-08-11 14:24 - 2012-03-20 15:51 - 00000000 ____D C:\Users\emir\Documents\qs
2015-08-11 14:23 - 2015-05-05 08:58 - 00002564 _____ C:\Users\emir\Desktop\Quotestream.lnk
2015-08-11 08:09 - 2012-06-08 13:08 - 00000000 ____D C:\Users\emir\AppData\Roaming\vlc
2015-08-09 23:15 - 2012-05-16 14:57 - 00000000 ____D C:\Users\emir\AppData\Roaming\tixati
2015-08-09 12:22 - 2012-05-24 23:05 - 00000000 ___RD C:\Users\emir\Dropbox
2015-08-08 08:32 - 2015-04-27 08:45 - 00000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-08-06 16:25 - 2015-04-20 14:41 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-08-06 16:25 - 2015-04-20 14:40 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-05 15:27 - 2012-03-07 15:10 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-08-02 14:33 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
2015-07-30 08:59 - 2014-03-10 14:23 - 00000000 ____D C:\ProgramData\Bitdefender
2015-07-30 08:50 - 2013-03-14 14:08 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2015-07-30 08:48 - 2012-05-24 23:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Dropbox
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-07-30 08:38 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-07-30 08:38 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-07-30 08:30 - 2013-03-14 14:34 - 00000000 ____D C:\Program Files\Bitdefender
2015-07-30 08:28 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-07-30 08:25 - 2011-09-23 11:48 - 00000000 ____D C:\Program Files (x86)\Intel
2015-07-30 08:18 - 2011-10-14 05:37 - 00614088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-07-30 04:28 - 2015-07-10 07:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-07-30 04:14 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-07-30 04:14 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-07-30 04:14 - 2015-07-10 07:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-07-30 04:14 - 2015-07-10 07:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-07-30 04:14 - 2015-07-10 07:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-07-30 04:14 - 2015-07-10 07:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-07-30 01:28 - 2015-07-10 09:12 - 00000000 ____D C:\WINDOWS\OCR
2015-07-30 01:20 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-07-30 01:20 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-07-30 01:19 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-07-30 01:19 - 2012-07-17 13:34 - 00002047 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Uninstall .lnk
2015-07-30 01:16 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-07-30 01:08 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Registration
2015-07-30 01:07 - 2015-06-29 13:28 - 00003992 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA
2015-07-30 01:07 - 2015-06-29 13:28 - 00003596 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core
2015-07-30 01:07 - 2015-06-23 10:14 - 00003628 _____ C:\WINDOWS\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8
2015-07-30 01:07 - 2015-04-27 08:45 - 00003992 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-07-30 01:07 - 2014-12-29 07:51 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-07-30 01:07 - 2013-07-03 11:10 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-30 01:07 - 2013-07-03 11:10 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-30 01:07 - 2012-08-29 14:26 - 00002880 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-07-30 01:07 - 2012-07-16 10:34 - 00003982 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA
2015-07-30 01:07 - 2012-07-16 10:34 - 00003586 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core
2015-07-30 01:07 - 2012-07-06 18:27 - 00003878 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-07-30 01:07 - 2012-06-08 12:56 - 00003316 _____ C:\WINDOWS\System32\Tasks\Windows Codec Update Service
2015-07-30 01:07 - 2012-03-06 15:28 - 00003300 _____ C:\WINDOWS\System32\Tasks\SidebarExecute
2015-07-30 01:07 - 2011-09-23 12:02 - 00003258 _____ C:\WINDOWS\System32\Tasks\MirageAgent
2015-07-30 01:06 - 2015-07-10 07:04 - 00000000 __RSD C:\WINDOWS\Media
2015-07-30 01:06 - 2015-07-10 07:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-07-30 01:00 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-07-30 00:54 - 2009-07-13 23:20 - 00000000 ____D C:\Users\Default.migrated
2015-07-30 00:51 - 2015-07-15 11:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-07-30 00:51 - 2015-07-10 07:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:51 - 2015-07-08 11:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-07-30 00:51 - 2015-07-01 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-07-30 00:51 - 2015-05-27 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-07-30 00:51 - 2015-04-20 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-30 00:51 - 2015-04-04 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
2015-07-30 00:51 - 2015-01-19 19:29 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2015-07-30 00:51 - 2014-10-15 23:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMATPrep
2015-07-30 00:51 - 2014-09-14 18:01 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
2015-07-30 00:51 - 2014-03-22 11:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serviio
2015-07-30 00:51 - 2013-12-05 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-07-30 00:51 - 2013-10-30 17:39 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Voice Changer Software
2015-07-30 00:51 - 2013-10-30 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2015-07-30 00:51 - 2013-10-21 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DvrClient
2015-07-30 00:51 - 2013-10-21 13:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1 Step Remote Viewing
2015-07-30 00:51 - 2013-10-13 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-07-30 00:51 - 2013-07-22 11:07 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
2015-07-30 00:51 - 2013-07-22 11:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2015-07-30 00:51 - 2013-07-22 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-07-30 00:51 - 2013-07-21 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Passware
2015-07-30 00:51 - 2013-03-14 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-07-30 00:51 - 2013-03-14 04:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-07-30 00:51 - 2013-02-14 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-07-30 00:51 - 2013-01-31 18:53 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AirParrot
2015-07-30 00:51 - 2013-01-31 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixMeister
2015-07-30 00:51 - 2012-12-12 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Light-O-Rama
2015-07-30 00:51 - 2012-11-30 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DIRECTV2PC™
2015-07-30 00:51 - 2012-11-30 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DIRECTV2PC Playback Advisor
2015-07-30 00:51 - 2012-10-06 00:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-07-30 00:51 - 2012-09-04 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-07-30 00:51 - 2012-08-29 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-07-30 00:51 - 2012-07-17 13:49 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-30 00:51 - 2012-07-17 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-30 00:51 - 2012-07-17 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities
2015-07-30 00:51 - 2012-07-16 10:34 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-30 00:51 - 2012-06-08 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-07-30 00:51 - 2012-06-08 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essentials Codec Pack
2015-07-30 00:51 - 2012-04-12 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
2015-07-30 00:51 - 2012-04-12 12:53 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2015-07-30 00:51 - 2012-03-08 16:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2015-07-30 00:51 - 2011-09-23 12:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2015-07-30 00:51 - 2011-09-23 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Energy Star
2015-07-30 00:51 - 2011-09-23 11:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-07-30 00:51 - 2011-06-21 15:41 - 00000000 ____D C:\WINDOWS\en
2015-07-30 00:51 - 2011-06-21 15:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-07-30 00:51 - 2011-06-21 15:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
2015-07-30 00:51 - 2011-06-21 15:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-07-30 00:51 - 2011-06-21 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
2015-07-30 00:51 - 2010-11-03 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Theft Protection
2015-07-30 00:51 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-07-30 00:49 - 2015-07-10 07:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-07-30 00:49 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:49 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:49 - 2015-07-10 05:05 - 00000000 __RHD C:\Users\Default
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-07-30 00:43 - 2011-09-23 11:50 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-07-30 00:43 - 2011-06-21 15:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-07-30 00:42 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\schemas
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Resources
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-07-30 00:41 - 2015-04-20 03:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-07-30 00:41 - 2015-04-11 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJI Product
2015-07-30 00:41 - 2014-04-24 06:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnvSoft
2015-07-30 00:41 - 2014-04-24 06:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2015-07-30 00:41 - 2013-10-30 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Bee
2015-07-30 00:41 - 2013-10-21 15:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVR Soft
2015-07-30 00:41 - 2013-09-25 11:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR
2015-07-30 00:41 - 2013-07-26 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-07-30 00:41 - 2013-03-07 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2015-07-30 00:41 - 2012-09-10 13:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2015-07-30 00:41 - 2012-03-19 10:35 - 00000000 ____D C:\ProgramData\Intel
2015-07-30 00:41 - 2011-09-23 12:41 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-07-30 00:41 - 2011-09-23 12:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2015-07-30 00:41 - 2011-06-21 15:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio
2015-07-30 00:41 - 2011-06-21 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music and Media
2015-07-30 00:40 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-07-30 00:40 - 2015-07-10 07:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-07-30 00:40 - 2011-09-23 12:03 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2015-07-30 00:40 - 2011-09-23 11:53 - 00000000 ____D C:\Program Files\Intel
2015-07-30 00:40 - 2011-06-21 15:29 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-07-30 00:40 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-07-30 00:40 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-07-30 00:39 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-07-30 00:39 - 2009-07-13 23:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-07-30 00:38 - 2013-03-12 08:28 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Serato
2015-07-30 00:38 - 2012-06-08 13:47 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-07-30 00:38 - 2012-05-16 14:57 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2015-07-30 00:35 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-07-29 23:55 - 2011-09-23 11:52 - 01566675 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-07-29 23:32 - 2009-07-14 00:45 - 00032064 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-29 23:32 - 2009-07-14 00:45 - 00032064 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-29 17:01 - 2012-10-06 00:52 - 00384512 ___SH C:\Users\emir\Thumbs.db
2015-07-28 20:54 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2015-07-28 11:52 - 2013-09-25 11:39 - 00000000 ____D C:\Program Files (x86)\HP
2015-07-28 11:50 - 2011-09-23 11:55 - 00000000 ____D C:\WINDOWS\Hewlett-Packard
2015-07-27 20:36 - 2012-03-08 16:17 - 00000000 ____D C:\Users\emir\AppData\Local\CrashDumps
2015-07-23 12:29 - 2013-09-25 10:46 - 00000000 ____D C:\ProgramData\Oracle
2015-07-23 12:27 - 2015-04-20 14:29 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-23 12:25 - 2015-07-08 11:45 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-07-23 12:25 - 2011-06-21 15:45 - 00000000 ____D C:\Program Files\Java
2015-07-20 18:48 - 2011-06-21 15:42 - 00000000 ____D C:\ProgramData\Adobe
2015-07-20 18:18 - 2012-03-06 16:23 - 00000000 ____D C:\Users\emir\AppData\Roaming\Adobe
2015-07-20 18:15 - 2013-05-13 12:07 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-07-20 17:54 - 2012-03-06 16:21 - 00063744 _____ C:\Users\emir\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-20 17:44 - 2012-03-06 15:41 - 00000000 ____D C:\Program Files (x86)\CMMBSecurities
 
==================== Files in the root of some directories =======
 
2013-10-30 17:24 - 2013-10-30 17:25 - 0001181 _____ () C:\Users\emir\AppData\Roaming\trace_FilterInstaller.txt
2013-10-30 17:24 - 2013-10-30 17:24 - 0000000 _____ () C:\Users\emir\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2015-08-16 19:35 - 2015-08-16 19:35 - 0000000 ____H () C:\Users\emir\AppData\Local\BIT5C6A.tmp
2015-08-04 22:25 - 2015-08-04 22:31 - 13545694 _____ () C:\Users\emir\AppData\Local\package.nw.new
2014-03-22 11:46 - 2014-03-22 11:46 - 0001485 _____ () C:\Users\emir\AppData\Local\recently-used.xbel
2015-08-16 19:16 - 2015-08-16 19:33 - 0000000 _____ () C:\Users\emir\AppData\Local\{08B44E72-5A23-43E8-8DDB-2090AE919D42}
2015-07-30 09:00 - 2015-07-30 09:00 - 0517374 _____ () C:\ProgramData\1438260563.bdinstall.bin
2013-09-25 11:38 - 2013-09-25 11:49 - 0000357 _____ () C:\ProgramData\hpzinstall.log
 
Some files in TEMP:
====================
C:\Users\emir\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp_2bwht.dll
C:\Users\emir\AppData\Local\Temp\GUR1D96.exe
C:\Users\emir\AppData\Local\Temp\GUR85FA.exe
C:\Users\emir\AppData\Local\Temp\GURCF1D.exe
C:\Users\emir\AppData\Local\Temp\i4jdel0.exe
C:\Users\emir\AppData\Local\Temp\Quarantine.exe
C:\Users\emir\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-08-12 07:40
 
==================== End of log ============================
 
 
 
 
 
 
 
 
 
 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:12-08-2015
Ran by emir (2015-08-16 19:48:37)
Running from C:\Users\emir\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2749324444-3110066803-3346981281-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2749324444-3110066803-3346981281-503 - Limited - Disabled)
emir (S-1-5-21-2749324444-3110066803-3346981281-1000 - Administrator - Enabled) => C:\Users\emir
Guest (S-1-5-21-2749324444-3110066803-3346981281-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2749324444-3110066803-3346981281-1002 - Limited - Enabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
1 Step Remote Viewing 1.0 (HKLM-x32\...\1 Step Remote Viewing_is1) (Version:  - cwdLimited, Inc.)
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.1.3.121 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95 - WildTangent) Hidden
AirParrot (HKLM\...\{6C4958DF-4B1A-4290-947B-5F6AFDC74398}) (Version: 1.1.3 - Squirrels)
AirPort (HKLM-x32\...\{AA68AAAE-41F0-40B5-8896-5947F5FD6889}) (Version: 5.6.1.2 - Apple Inc.)
Any Video Converter 5.5.8 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ask Toolbar for Epson (HKLM-x32\...\{45504E32-5637-006A-76A7-A758B70C1D00}) (Version: 12.29.0.1883 - APN, LLC) <==== ATTENTION
Asterisk Key 10.0 (HKLM-x32\...\asterisk key) (Version:  - )
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version:  - Audacity Team)
AuthenTec TrueAPI (Version: 1.3.0.144 - AuthenTec, Inc.) Hidden
AV Voice Changer Software 7.0 (HKLM-x32\...\AV Voice Changer Software 7.0) (Version: 7.0.56 - AVSOFT Corp.)
AVG 2012 (Version: 12.0.1913 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2171 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2176 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2178 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2180 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2193 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2195 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2197 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2221 - AVG Technologies) Hidden
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bejeweled 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}) (Version: 7.0.610.0 - Microsoft Corporation)
Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.470.0 - Microsoft Corporation)
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 19.2.0.142 - Bitdefender)
Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Blasterball 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Blio (HKLM-x32\...\{9368DDD5-CE7F-4BD7-A83A-F00FABE338EC}) (Version: 2.2.6699 - K-NFB Reading Technology, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
C4400 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.22 - Piriform)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.1.3908 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0316 - DT Soft Ltd)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden
DIRECTV2PC Playback Advisor (HKLM-x32\...\InstallShield_{479F8C12-576B-4A58-AB78-4B70F7012AA8}) (Version: 1.0 - CyberLink Corp.)
DIRECTV2PC Playback Advisor (x32 Version: 1.0 - CyberLink Corp.) Hidden
DIRECTV2PC™ (HKLM-x32\...\InstallShield_{E9B10AA5-E5F6-4DEF-A435-FB20704AF1E8}) (Version: 2.0.7507 - CyberLink Corp.)
DIRECTV2PC™ (x32 Version: 2.0.7507 - CyberLink Corp.) Hidden
DJI driver version 2.02 (HKLM-x32\...\{EDFDE5EE-84C7-4936-804C-6563943E5754}_is1) (Version: 2.02 - DJI)
DJI Phantom 2 Vision Assistant version 3.8 (HKLM-x32\...\{EDCE7221-F31F-407A-B348-30D011ED3126}_is1) (Version: 3.8 - DJI)
DJI RC System Assistant version 1.2 (HKLM-x32\...\{2849F48E-8A08-4C43-AC8D-97A367F0DCB6}_is1) (Version: 1.2 - DJI)
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Download Navigator (HKLM-x32\...\{3A3A3B34-6EA2-4031-8580-D66D29533E89}) (Version: 3.4.0 - SEIKO EPSON CORPORATION)
Dropbox (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Dropbox) (Version: 3.6.9 - Dropbox, Inc.)
DVD Architect Studio 5.0 (HKLM-x32\...\{E3D1078F-9660-11E2-9E28-F04DA23A5C58}) (Version: 5.0.178 - Sony)
DvrClient (HKLM-x32\...\{3B25FE53-D528-42E7-83D8-226C8D81A276}) (Version: 1.2.43 - DVR Soft)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version:  - )
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON NX430 Series Printer Uninstall (HKLM\...\EPSON NX430 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
Evernote v. 4.2.2 (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 4.2.2.3979 - Evernote Corp.)
Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden
FATE - The Traitor Soul (x32 Version: 2.2.0.95 - WildTangent) Hidden
FileZilla Client 3.5.3 (HKLM-x32\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)
Freemake Video Converter version 3.0.2 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 3.0.2 - Ellora Assets Corporation)
GEAR driver installer for AMD64 and Intel EM64T (HKLM\...\{50CBBEC7-1010-41C5-8718-A1A6FEDD9C3A}) (Version: 2.003.1 - GEAR Software, Inc.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
GMATPrep (HKLM-x32\...\GMATPrep 2.3.322) (Version: 2.3.322 - Graduate Management Admission Council (GMAC))
Google Chrome (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Google Chrome) (Version: 44.0.2403.125 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Guard.ICQ (HKLM-x32\...\Guard.Mail.ru) (Version:  - Mail.ru) <==== ATTENTION
HandBrake 0.9.8 (HKLM-x32\...\HandBrake) (Version: 0.9.8 - )
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{5601F151-A69F-4E30-8C60-37928124CD07}) (Version: 4.1.9.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{795AADBF-58C2-42D0-B779-E730702A247E}) (Version: 4.0.45.1 - Hewlett-Packard Company)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Documentation (HKLM-x32\...\{3C5AB11A-2DDB-49E6-9FC0-CFD88A7DDFE4}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.4 - WildTangent)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Photosmart C4400 All-In-One Driver Software 13.0 Rel. 3 (HKLM\...\{8181C5B7-2FF5-4677-BA6A-8E2C3F5A7601}) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Power Manager (HKLM-x32\...\{E44578C7-4667-4124-8BC2-1161BCA54978}) (Version: 1.4.4 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{285F722C-0E45-47DE-B38E-5B3B10FA4A7C}) (Version: 2.5.2 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{210A03F5-B2ED-4947-B27E-516F50CBB292}) (Version: 8.6.4530.3651 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13231.3673 - Hewlett-Packard Company)
HP SimplePass 2011 (HKLM-x32\...\{4741965C-AFD0-4D00-81D1-1039F96D4DC3}) (Version: 5.3.0.273 - Hewlett-Packard)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Software Framework (HKLM-x32\...\{28FE073B-1230-4BF6-830C-7434FD0C0069}) (Version: 4.1.13.1 - Hewlett-Packard Company)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6381.0 - IDT)
Intel PROSet Wireless (x32 Version:  - ) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Intel® Wireless Display (HKLM-x32\...\{5B46CEC7-DAD0-46A2-BCD6-B46A3CFD9B61}) (Version: 2.0.30.0 - Intel Corporation)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.15 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Light-O-Rama (HKLM-x32\...\{E744BFEA-E027-441E-83A2-36202F661E31}) (Version: 3.9.0 - Light-O-Rama)
Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5131.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MixMeister BPM Analyzer 1.0 (HKLM-x32\...\MixMeister BPM Analyzer_is1) (Version:  - MixMeister Technology LLC)
MixMeister Studio Demo 7.4.4 (HKLM-x32\...\mmssetup_is1) (Version:  - MixMeister Technology LLC)
MorphVOX Pro (HKLM-x32\...\{2D7CF073-6583-464A-84D4-F86DE59DCA42}) (Version: 4.4.8 - Screaming Bee)
Movie Studio Platinum 12.0 (64-bit) (HKLM\...\{6BE763B0-958D-11E2-A440-F04DA23A5C58}) (Version: 12.0.896 - Sony)
Movie Studio Platinum 13.0 (HKLM-x32\...\{C07796C0-7C69-11E3-8E39-F04DA23A5C58}) (Version: 13.0.878 - Sony)
Mozilla Firefox 35.0.1 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 en-GB)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.2.28.24.exe  - NETGEAR Inc.)
NETGEAR USB Control Center   (HKLM-x32\...\{4528B812-FF2C-4E3A-A9EA-1ECB483BF03A}) (Version: 1.32 - NETGEAR)
NirSoft Wireless Network Watcher (HKLM-x32\...\NirSoft Wireless Network Watcher) (Version:  - )
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Opera Stable 31.0.1889.99 (HKLM-x32\...\Opera 31.0.1889.99) (Version: 31.0.1889.99 - Opera Software)
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version:  - )
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)
Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden
Popcorn Time (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Popcorn Time) (Version:  - Popcorn Official)
PS_AIO_03_C4400_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Rane SL 4 (ver. 1.0.1f4) (HKLM\...\RaneAsioSL4_is1) (Version:  - Rane Corporation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 2.0.0 - Hewlett-Packard) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.19.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller Pro 3.0.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.2 - VS Revo Group, Ltd.)
RoxioNow Player (HKLM-x32\...\{0EDEB615-1A60-425E-8306-0E10519C7B55}) (Version: 1.9.5.103 - RoxioNow)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Scratch Live 2.4.4 (18) (HKLM-x32\...\{5B4DA057-7C39-4CBF-BD5D-85ED16A8D8D2}) (Version: 2.4.4 - Serato Inc LP)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Serviio (HKLM\...\Serviio) (Version:  - )
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Slingo Supreme (x32 Version: 2.2.0.95 - WildTangent) Hidden
SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sound Forge Audio Studio 10.0 (HKLM-x32\...\{75648F62-925B-11E2-B9EF-F04DA23A5C58}) (Version: 10.0.245 - Sony)
Spotify (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Spotify) (Version: 1.0.9.133.gcedaee38 - Spotify AB)
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Validity WBF DDK (HKLM\...\{79174AF2-6CB1-42F5-981E-66DCA49391D0}) (Version: 4.3.205.0 - Validity Sensors, Inc.)
Video Player (x32 Version: 1.2.9 - DVR Soft) Hidden <==== ATTENTION
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voxal Voice Changer (HKLM-x32\...\Voxal) (Version: 1.02 - NCH Software)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.02 - NCH Software)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Wheel of Fortune 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games App (HP Games) (x32 Version: 4.0.5.2 - WildTangent) Hidden
Windows Driver Package - dji-innovations inc. (usbser) Ports  (12/06/2012 5.1.2600.5512) (HKLM\...\F731C4A8B354FB9B7579C5D98402D2F988E8B95C) (Version: 12/06/2012 5.1.2600.5512 - dji-innovations inc.)
Windows Essentials Media Codec Pack 4.0 [64-Bit] (HKLM-x32\...\Windows Essentials Media Codec Pack) (Version: 4.0 - Media Codec)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinUtilities 10.52 Professional Edition (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043009}_is1) (Version:  - YL Computing, Inc)
WinUtilities 10.53 Free Edition (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043010}_is1) (Version:  - YL Computing, Inc)
WinX Video Converter 5.0.5 (HKLM-x32\...\WinX Video Converter_is1) (Version:  - Digiarty Software, Inc.)
Wondershare Streaming Audio Recorder(Build 2.1.0.0) (HKLM-x32\...\Wondershare Streaming Audio Recorder_is1) (Version: 2.1.0.0 - Wondershare Software Co.,Ltd.)
XBMC (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\XBMC) (Version:  - Team XBMC)
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File
 
==================== Restore Points =========================
 
30-07-2015 01:16:11 Windows Modules Installer
06-08-2015 09:37:35 Windows Modules Installer
12-08-2015 15:09:40 Restore Operation
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-07-20 18:07 - 2015-08-16 19:34 - 00000698 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0275D93A-D882-4736-8466-FCB6DAFBEFC8} - System32\Tasks\AdobeAAMUpdater-1.0-emir-HP-emir => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-05-26] (Adobe Systems Incorporated)
Task: {05268B7A-C092-417D-AF77-850B6CEB3714} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {0A5B4BCA-EE91-4625-A26F-297854B55C53} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {1028D72F-FC26-4C34-805A-5B954664A6DC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {1641F54C-1E57-4902-AB65-EE2B65E5629D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {196BE614-78F7-481C-A42E-43AEC3EED51E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1CE49C2D-03A9-4B4A-8B43-D9C179787CE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-03] (Google Inc.)
Task: {1D3D099E-EE1E-4907-8BA2-BA8F12D11AA6} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2015-07-10] (Microsoft Corporation)
Task: {250A9329-6D88-40A6-BF48-54136EA1DA3D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {28BC07C0-53B8-442C-9D34-024A6CA91943} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {2A5CD751-53E1-4BFF-B188-73078BAD3D25} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2BB8E94A-3A93-4235-8FCC-F7CE212174A9} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {2C97A00A-1C5C-4318-B5CC-8A1A126B77F9} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
Task: {2D4EF3F4-3D70-4D6C-8633-1B25143A9672} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-03-08] (CyberLink)
Task: {3B8752B3-7480-4795-B07B-0B153EC99B54} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {3BE33C65-DB54-4F34-A1C4-7C94F25890F4} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {401100A2-E033-47E2-9287-73B17C9679EE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16] (Google Inc.)
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {41DD5B13-B8BE-4998-95BE-7621D0847066} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
Task: {4280E8D1-B944-444B-967B-594C7C1FA934} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4454A8D0-2E4E-4A02-BF67-48DF6A7BFAB4} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask
Task: {44B2738A-6589-40D9-917C-CFDCDFD38652} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {4CC9E10C-382E-4C29-BBEA-ABA4AA7499DF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {57210348-CDA2-4D9B-BF11-BACDAEC49A1C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {5E5515C1-7D87-4904-B9CE-FD29EB2ADB72} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync
Task: {5FFC0E3C-567A-42ED-9953-0BD4A4A9DFA3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-08-22] (Piriform Ltd)
Task: {611C823C-437B-46E7-9683-5312DFFCFD7B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {61CA2BAC-BBFB-4B56-82C3-562328E3A3CD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16] (Google Inc.)
Task: {644D9CE3-5AD2-4FF1-8C67-39B40B45B6BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {646C1C23-56B7-4644-B930-5D41B625D111} - System32\Tasks\Windows Codec Update Service => C:\Program Files (x86)\Essentials Codec Pack\WECPUpdate.exe [2012-02-03] (MediaCodec.Org)
Task: {65694927-9AF7-45F4-B789-AFC3D8226D93} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2015-04-26] (Apple Inc.)
Task: {659CE942-C08A-4E1D-B67D-03AF6B6FE207} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {66142C5A-900D-454B-B659-014A8074DC0B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {6723AF95-483F-4D31-9516-9E373745B4F5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {67554929-F1F6-4640-9980-0B1D78B8391A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {6AF87191-0F57-4EAC-BCCE-C7A6211552A8} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6BF15CFE-D373-43B0-A8E8-0CF992642924} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {6CF5CB0E-69CA-47EE-BB43-2F6925B97BF4} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe [2015-07-15] (Adobe Systems Incorporated)
Task: {6F67005E-BE57-44A3-83A2-D55E7EE56A7B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-03] (Google Inc.)
Task: {711EE2F9-A611-4773-AF8E-D4B278A6718D} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {744C9FEA-08B7-43E1-A729-0F94647D655C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {74805F74-CBCF-4AF6-9B2B-C71FA626ACC0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7A003965-A297-4DC6-B15B-852D798391E0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\Windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
Task: {820AFCAF-B2F6-4B4E-9CE5-A8415599B33F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {848DCC36-520C-4946-BF68-C7EFFEFA2F84} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
Task: {87463296-FC69-4AF1-A21E-150CCF414D09} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [2013-11-04] (Hewlett-Packard Company)
Task: {8D0F46DC-1185-4E2C-9C72-3509719AE6FF} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-07-14] (Microsoft Corporation)
Task: {912355CE-F23E-4CF5-90AD-BE579E854BF9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A364E297-00AD-490D-900E-22AC34598C71} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AAB70D87-C4CF-4BC6-88B3-B040DAF816E1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {AC29E64E-3271-47BA-B8F1-914523CF379B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update
Task: {B1258828-FED6-4126-B09B-4331F94B5231} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {B1AAFB89-66FD-4914-B58F-741C920FE777} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {B1D5776B-ADF4-4DE0-AD85-33CB7C600081} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {B9B36D41-C776-424E-9A13-5387E17A2CEB} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2015-07-10] (Microsoft Corporation)
Task: {BCF158EF-9EC8-4CC8-8918-E080A3C8B543} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {C2162702-FFEB-48C0-AA5F-2DA3A8887D61} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation
Task: {C2A4C5B9-1D68-436B-930E-8ABD9D603B6B} - System32\Tasks\HPCeeScheduleForemir => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C62DE5C8-7FD9-4914-BE63-7C53D0D6A3A3} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {C6C19158-11BC-4324-8FF4-E71639A82B3C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {C87C9005-D391-4C45-9068-270279ED75F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-15] (Adobe Systems Incorporated)
Task: {CD2C63FF-B388-4676-9EED-3DA3732FCBCF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D10F2DEF-0465-481C-BBE9-ACE604218CD1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {D2401052-A382-42DE-9C79-D1CF3563F654} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation
Task: {DAD3ADDF-9E69-4D7C-8581-B97E7643BFAA} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {DAF2BAE3-1C5B-4CB5-9F62-0911C031A15A} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2015-07-10] (Microsoft Corporation)
Task: {E16A76EE-E953-431A-A2CC-582E291031A7} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {E1AED1EB-4F6E-479A-8EF9-00CA8186566C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {E3297DC9-57A0-4E1A-88D8-D2C37A45B15A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {E62FAB8B-A5AC-4211-9C91-CACE8B601ABA} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
Task: {E63A817F-EC9E-4BBB-931C-C98E6B206848} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {E7D51BF4-AB91-4491-B257-96FCC2BCED77} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {E947AD4E-39B4-4AA1-B482-DDDC0844736F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E9CA85CE-ED3C-4DB6-96DE-3115E709C049} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {EA3F661E-B31C-44A9-B40C-E3D5D56149D4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForemir.job => 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
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-07-30 01:38 - 2015-07-14 22:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-30 08:57 - 2015-04-22 16:55 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2015-07-30 08:57 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2015-07-30 08:58 - 2015-07-28 19:06 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2015-07-30 08:57 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2015-07-30 08:57 - 2015-07-21 15:39 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpbr.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 00743000 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpdsp.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 02795272 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpph.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 01414048 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttprbl.mdl
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2009-09-17 19:40 - 2009-09-17 19:40 - 00075048 ____N () C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
2015-07-30 01:38 - 2015-07-10 21:22 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2014-03-20 21:57 - 2014-03-20 21:57 - 00359936 _____ () C:\Program Files\Serviio\bin\ServiioService.exe
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-06-13 14:17 - 2015-06-13 14:17 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-30 01:39 - 2015-07-23 22:25 - 06576640 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 07:00 - 2015-07-10 09:14 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-07-30 01:39 - 2015-07-23 22:23 - 01806848 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-07-30 01:39 - 2015-07-23 22:23 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-04-07 07:38 - 2013-04-07 07:38 - 01044224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
2014-03-20 21:57 - 2014-03-20 21:57 - 00399360 _____ () C:\Program Files\Serviio\bin\ServiioConsole.exe
2012-09-20 17:57 - 2012-09-20 17:57 - 04139008 _____ () C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
2013-04-07 07:42 - 2013-04-07 07:42 - 00123136 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
2015-06-13 14:16 - 2015-06-13 14:16 - 31404192 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-05-15 16:27 - 2015-05-15 16:27 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00011362 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\mingwm10.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00043008 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libgcc_s_dw2-1.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 02537472 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtCore4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 09814016 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtGui4.dll
2013-06-04 21:22 - 2013-06-04 21:22 - 00481280 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\Genie.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00399360 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtXml4.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 01553920 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SvtNetworkTool.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 01140224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtNetwork4.dll
2013-05-09 23:12 - 2013-05-09 23:12 - 00229888 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Airprint.dll
2013-03-27 04:43 - 2013-03-27 04:43 - 01067520 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Internet.dll
2013-05-28 02:21 - 2013-05-28 02:21 - 04334592 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Map.dll
2013-03-27 04:52 - 2013-03-27 04:52 - 00500736 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_NetworkProblem.dll
2013-03-27 04:50 - 2013-03-27 04:50 - 00186368 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DragonNetTool.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 01198080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_ParentalControl.dll
2013-05-14 22:56 - 2013-05-14 22:56 - 08432128 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Resource.dll
2013-04-28 02:25 - 2013-04-28 02:25 - 01205760 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_RouterConfiguration.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 00088064 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QRCode.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 00641536 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Statistics.dll
2013-05-14 01:18 - 2013-05-14 01:18 - 00931840 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Ui.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00438272 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Wireless.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00083456 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qgif4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00083456 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qico4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00287232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qjpeg4.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 00137728 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnosePlugin.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00139264 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnoseDll.dll
2012-11-29 05:56 - 2012-11-29 05:56 - 03332720 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\drivers\libntgr_api.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00072192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SVTUtils.DLL
2013-03-26 22:58 - 2013-03-26 22:58 - 00074752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NetcardApi.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00136704 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\airprintdll.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 00714240 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_Update.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00485376 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_WirelessExport.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00116224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupApiPlugin.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00066560 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupDll.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 41287224 _____ () C:\Users\emir\AppData\Roaming\Spotify\libcef.dll
2015-08-16 19:40 - 2015-08-16 19:40 - 00043008 _____ () c:\users\emir\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp_2bwht.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00750080 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00047616 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00865280 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00200704 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2015-07-29 18:41 - 2015-07-25 04:46 - 01405768 _____ () C:\Users\emir\AppData\Local\Google\Chrome\Application\44.0.2403.125\libglesv2.dll
2015-07-29 18:41 - 2015-07-25 04:46 - 00081224 _____ () C:\Users\emir\AppData\Local\Google\Chrome\Application\44.0.2403.125\libegl.dll
2015-06-09 22:36 - 2015-06-09 22:36 - 36732592 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 01488440 _____ () C:\Users\emir\AppData\Roaming\Spotify\libglesv2.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 00079928 _____ () C:\Users\emir\AppData\Roaming\Spotify\libegl.dll
2015-03-18 14:20 - 2015-03-18 14:20 - 09305656 _____ () C:\Users\emir\AppData\Roaming\Spotify\pdf.dll
2015-08-02 14:13 - 2015-08-02 14:13 - 00172544 _____ () C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1865c610e4f6355862bc377619741d44\IsdiInterop.ni.dll
2011-09-23 11:48 - 2011-05-20 11:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\Temp:0B4227B4
AlternateDataStreams: C:\Users\emir\Downloads\ariskkey.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\avc-free.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\AVSVideoEditor.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\bitdefender_tsecurity (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\bitdefender_tsecurity (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u21.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u25.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u55.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\epson14860.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\gimp-2.8.10-setup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GMATPrep-2.3.322-Windows (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GMATPrep-2.3.322-Windows.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthPluginSetup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthPluginSetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthSetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\guiminer-20121203.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_flashplayer11x32au_mssa_aaa_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_flashplayer13x32au_mssa_aaa_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_reader11_es_mssd_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\iTunes64Setup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jdk-8u45-windows-x64.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jre-7u25-windows-i586.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jre-7u51-windows-i586.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jxpiinstall(2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jxpiinstall(3).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\KernelPasswordUnmask.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64 (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64 (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\mining_proxy.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\moviestudiope12.0.896_64bit.suite.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\moviestudiope13.0.878_32-bit.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\NETGEARGenie-install.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Opera_NI_stable.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\PokerStarsInstall (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\PS_AIO_03_C4400_NonNet_Full_Win_WW_130_140.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\serviio-1.4.1.2-win-setup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Shockwave_Installer_Slim (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Shockwave_Installer_Slim.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\sp43935.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\sp58226.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\SpotifySetup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\SpotifySetup (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\spybot-2.2.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\tixati-1.95-1.win32-install.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Unconfirmed 22632.crdownload:BDU
AlternateDataStreams: C:\Users\emir\Downloads\vxlsetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\winx-free-video-converter.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\wnetwatcher_setup.exe:BDU
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123simsen.com -> www.123simsen.com
 
There are 7864 more restricted sites.
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\emir\Desktop\shaina\rrgh40_516535ba3d28f.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{32129213-F27C-4BB2-9B3A-6BB5AB8E1F66}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{AEFC00DB-5E31-4AE3-BD74-08DC34357C12}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C2A294AD-C28B-4DE4-9C62-81AAFF8C99FC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{66CB07D9-2DB9-4C1C-B5B4-616A2544C3EB}] => (Allow) C:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{656C87C1-D1E2-4B22-9DC3-9CE955E65EC2}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{1EBC68CC-795D-4D39-B8D7-BD9B03FBB08F}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [UDP Query User{62F00302-736B-4612-A51A-2F8EBE6DC3E8}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{1868DC34-EBF9-46BE-A5AC-8F4541526FCF}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{9A42DB7A-2CE9-41FF-AE04-31969E32C8D3}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{9ED2E1C5-9394-440C-A8BA-9E50FD3EED26}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{52325B30-B189-45A2-B6B5-A0CEEF416527}C:\program files (x86)\netgear\usb control center\control center.exe] => (Block) C:\program files (x86)\netgear\usb control center\control center.exe
FirewallRules: [TCP Query User{F907D10E-0C25-4B7D-B349-50868DDC6B77}C:\program files (x86)\netgear\usb control center\control center.exe] => (Block) C:\program files (x86)\netgear\usb control center\control center.exe
FirewallRules: [{901C536D-7157-4A2E-92B5-EBA37DCA01B2}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{B186FADF-D33C-4F93-8710-B337CC074950}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{18F32B11-23D7-4D46-AE05-2C8FE120B791}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{EC153A95-5B8B-4CE5-90B2-D02B7CF5F3F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{F788BE79-62D7-491F-831F-63B24729613D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{AECBFC82-5307-4FD9-B772-F3F521B67F6C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{211C909D-CFDD-4126-8138-5DF52CC4BB98}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{6E9EFFE2-9385-4AA9-B5C7-8D37EBBBFC42}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{B03BAFD5-1A3F-4950-B27C-E344B833814F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{75053B87-21D6-4D33-9436-96B2601F0BA7}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{39DE4EB2-7C01-462C-A5BD-FF3E10FC7CF0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{498C11DC-7C24-453C-93F6-062B38EFC2EF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{E104BBB7-F1F1-4020-A421-48E9626DF30A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{DF5BAA9D-01FA-4D5F-8500-C6910478C946}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{EE2BF635-8E29-41D8-8ACA-8B0750B69A27}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{7B6B34AA-33DA-460A-8C48-09E3DAC830FA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{A38E66B5-816B-45D5-8880-73602DD60006}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{E654B050-A343-48C0-9B0B-4B78956FA302}] => (Allow) LPort=7423
FirewallRules: [{265CDFB2-56D5-4FF6-920B-E268D9BEFE65}] => (Allow) C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
FirewallRules: [{44AD9262-202E-48C5-A086-E7F5A4C14AE1}] => (Allow) C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
FirewallRules: [{2A64486F-25BA-444D-BA5C-A217F6595856}] => (Allow) C:\Program Files (x86)\AirPort\APAgent.exe
FirewallRules: [{B0138C95-1F9C-448B-82D0-3958C3CB291C}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\Kernel\CLML\VDTVRec.exe
FirewallRules: [{77826DA6-B05C-4F82-BCC5-7D8F50FCCA0A}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\VDTV.exe
FirewallRules: [{7569C53E-0F72-4567-9996-D149A3D9F56D}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\DIRECTV2PC™.exe
FirewallRules: [UDP Query User{4EA6B76F-2999-4862-8B1F-327CB754ECB3}C:\users\emir\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\emir\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{7179C89C-9EC7-4403-90FA-A5B36321DC45}C:\users\emir\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\emir\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [{0C3891A4-736E-4DE9-A228-B3BDF192E3F1}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{85D789CC-431D-4F1A-A2B1-F3622247D744}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{2ADBD0EA-3E1A-438D-AFD6-FFA1FAB4AB58}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{B9EBA313-DDE9-4FBF-B3A3-D23E2743038C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{19FB0E38-63C4-4479-90D0-0AFF1576C20F}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{AF3D7B70-73FC-4DB3-94C7-A15B5ECB452C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{5A266551-3A64-4C4E-9DE9-8BDD6DFE298D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{057E1797-75ED-492A-A390-C910A1E20CED}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E2FEF8A5-DED5-4101-AE39-7DAA5A6DF601}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{27A76959-1D7A-4830-9413-D380FD6A9686}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{AECD8B6C-4BBF-47F6-9663-C6D49318C531}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{E6154C10-BA46-4A43-BAF6-2E3CD6B55750}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [{16215392-F824-49CD-86D9-FBBD52375A36}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{01B27C99-69BB-4350-90D2-7CDD4D668052}C:\users\emir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\emir\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{4DD4A5A6-2992-41B9-9BFF-BDDE8F0FFC66}C:\users\emir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\emir\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{DE304784-C630-4E3B-BA61-7FEEF1FFE0C0}C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{7CE6AAC0-E586-4A87-B7D4-CC42FC148F3F}C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{E0D8F14E-2C7B-4372-8C87-5E1C4CB65FF5}] => (Allow) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{32737E34-4ECB-4D91-82A1-9A3B0C406637}] => (Allow) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{C01E5C48-855C-47EA-A4C8-B422DD51973D}] => (Allow) C:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{92376824-DCB3-439E-9CD8-A928543D4475}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{7D265A73-A4C7-4D29-8A59-351A98C40D20}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [UDP Query User{46567092-BACC-4EF2-BD85-6D5F36A8896C}C:\program files (x86)\tixati\tixati.exe] => (Allow) C:\program files (x86)\tixati\tixati.exe
FirewallRules: [TCP Query User{CDA09C33-6342-4F09-96C6-6245E1829729}C:\program files (x86)\tixati\tixati.exe] => (Allow) C:\program files (x86)\tixati\tixati.exe
FirewallRules: [{EF38292B-E529-4196-BC28-393D6BE4221C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{AF3B971E-CF5B-460F-AC92-1F9883FEC837}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [UDP Query User{8BEABE2B-3C7B-4519-9C4D-A0189AC5CB3C}C:\program files (x86)\xbmc\xbmc.exe] => (Allow) C:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [TCP Query User{E0C91C1E-4C1B-448D-839E-54EAD535A66F}C:\program files (x86)\xbmc\xbmc.exe] => (Allow) C:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [{FE733C99-E551-4AF8-8E98-A45DEC91F510}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{10E49532-BFB2-402D-AE42-D9D84A13828B}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel Wireless Display\WiDiApp.exe
FirewallRules: [{E8E4F810-9E4B-4680-9169-7CC3E414DE06}] => (Allow) C:\Program Files (x86)\EasyBits For Kids\ezDesktop.exe
FirewallRules: [{E248442D-ACB2-4DE2-B52E-625F57627040}] => (Allow) C:\Windows\system32\ezSharedSvcHost.exe
FirewallRules: [{54E8B167-0B45-44C1-8DF3-9500776B81A0}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{D2EE4647-263B-4861-8645-C6F1E0EFCB42}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{A4434578-0F65-4073-9D0D-96CF7A796ADF}] => (Allow) LPort=1900
FirewallRules: [{3A027150-1368-4FE4-A8B8-9B6AF833E2C2}] => (Allow) LPort=2869
FirewallRules: [{D7776677-CD4C-465A-8017-7F99230EFD62}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{F81DB3FF-48CF-4B03-9E61-EA74B9BCE4E9}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\RoxioNow\RNow.exe
FirewallRules: [{77D7C794-AE1D-4E44-95B4-A6DFBA3D7E63}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\RoxioNow\RNow.exe
FirewallRules: [{9EDA278D-1263-47F1-AC93-0AE70F780010}] => (Allow) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowShell.exe
FirewallRules: [{F9C300F8-DF28-4FE0-AFFE-718F8E01D2AC}] => (Allow) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowShell.exe
FirewallRules: [TCP Query User{86966CDC-8149-4DA0-9918-B90A66B031B7}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{4E80A35D-6237-4F4C-B760-2F3030692F81}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{4DB57E7D-A4AB-4322-AAA0-39097F44925E}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{0F033E85-EB29-489C-89B8-7E2F44AB7EB9}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (08/16/2015 07:48:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: emir-HP)
Description: Package Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI was terminated because it took too long to suspend.
 
Error: (08/16/2015 07:48:35 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
 
Error: (08/16/2015 07:40:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/16/2015 07:40:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/16/2015 07:37:53 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
 
Error: (08/16/2015 07:35:14 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: emir-HP)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (08/16/2015 07:17:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/16/2015 07:17:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/14/2015 08:53:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13266
 
Error: (08/14/2015 08:53:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13266
 
 
System errors:
=============
Error: (08/16/2015 07:45:06 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The HP Support Assistant Service service hung on starting.
 
Error: (08/16/2015 07:37:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMService service failed to start due to the following error: 
%%1053
 
Error: (08/16/2015 07:37:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the MBAMService service to connect.
 
Error: (08/16/2015 07:37:19 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: 
%%1058
 
Error: (08/16/2015 07:35:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Sync Host_Session2 service to connect.
 
Error: (08/16/2015 07:35:14 PM) (Source: DCOM) (EventID: 10010) (User: emir-HP)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
 
Error: (08/16/2015 07:35:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_Session2 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (08/14/2015 08:52:50 AM) (Source: DCOM) (EventID: 10010) (User: emir-HP)
Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca
 
Error: (08/14/2015 08:52:50 AM) (Source: DCOM) (EventID: 10010) (User: emir-HP)
Description: App.AppX9s1cz53zc86xn39kwrb02jyft9ecn62r.mca
 
Error: (08/14/2015 08:52:46 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
 
Microsoft Office:
=========================
Error: (08/16/2015 07:48:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: emir-HP)
Description: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI
 
Error: (08/16/2015 07:48:35 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
 
Error: (08/16/2015 07:40:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/16/2015 07:40:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/16/2015 07:37:53 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
 
Error: (08/16/2015 07:35:14 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: emir-HP)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927141
 
Error: (08/16/2015 07:17:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/16/2015 07:17:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/14/2015 08:53:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13266
 
Error: (08/14/2015 08:53:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13266
 
 
CodeIntegrity:
===================================
  Date: 2015-07-30 08:38:13.475
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.452
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.380
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.248
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.223
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.118
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:48.149
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:48.131
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:47.541
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:47.524
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i3-2330M CPU @ 2.20GHz
Percentage of memory in use: 56%
Total physical RAM: 4043.86 MB
Available physical RAM: 1760.94 MB
Total Virtual: 8139.86 MB
Available Virtual: 5558.09 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:581.59 GB) (Free:55.07 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:14.29 GB) (Free:1.57 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.04 GB) FAT32
Drive g: (Spanish 1 1.3) (CDROM) (Total:4.02 GB) (Free:0 GB) CDFS
Drive h: () (Removable) (Total:29.47 GB) (Free:25.01 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 7ADEB7CE)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=581.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
 
========================================================
Disk: 1 (Size: 29.5 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
==================== End of log ============================

  • 0

#5
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
When you try to connect does windows give an error message ?

Have you had connection at any time when windows 10 was installed ?

CAUTION : This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:
 

CreateRestorePoint:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
BHO: AVG Do Not Track -> {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} -> No File
Toolbar: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
FF DefaultSearchEngine: Search Here
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] [not found]
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: Reg Delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F
Reg: Reg Add "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F
RemoveProxy:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset c:\resetlog.txt
CMD: ipconfig /release
CMD: ipconfig /renew
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
EmptyTemp:
CMD: bitsadmin /reset /allusers


Save this as fixlist.txt, in the same location as FRST.exe
FRSTfix.JPG
Run FRST and press Fix
On completion a log will be generated please post that
  • 0

#6
emirr123

emirr123

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

hi   yes it has worked on windows 10 and i don''t get any error messages pop up.

chrome says connection timeout when trying to load a webpage

dropbox remains trying to connect

bitdefender tries to update but cant

 

my wifi connection shows that it is connected in the taskbar with internet connection

 

 

 

 

 

 

Fix result of Farbar Recovery Scan Tool (x64) Version:12-08-2015
Ran by emir (2015-08-17 09:55:47) Run:1
Running from C:\Users\emir\Desktop
Loaded Profiles: emir & DefaultAppPool (Available Profiles: emir & DefaultAppPool)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
CreateRestorePoint:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
BHO: AVG Do Not Track -> {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} -> No File
Toolbar: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
FF DefaultSearchEngine: Search Here
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] [not found]
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: Reg Delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F
Reg: Reg Add "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F
RemoveProxy:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset c:\resetlog.txt
CMD: ipconfig /release
CMD: ipconfig /renew
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
EmptyTemp:
CMD: bitsadmin /reset /allusers
*****************
 
Restore point was successfully created.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page => value removed successfully
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Local Page => value removed successfully
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Local Page => value removed successfully
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Software\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31332EEF-CB9F-458F-AFEB-D30E9A66B6BA}" => key removed successfully
"HKCR\CLSID\{31332EEF-CB9F-458F-AFEB-D30E9A66B6BA}" => key removed successfully
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value removed successfully
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => key not found. 
"HKCR\PROTOCOLS\Handler\linkscanner" => key removed successfully
"HKCR\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}" => key removed successfully
Firefox DefaultSearchEngine removed successfully
C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} not found.
C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] not found.
C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\[email protected] not found.
 
========= reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f =========
 
The operation completed successfully.
 
 
 
========= End of Reg: =========
 
 
========= reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f =========
 
The operation completed successfully.
 
 
 
========= End of Reg: =========
 
 
========= Reg Delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F =========
 
ERROR: The system was unable to find the specified registry key or value.
 
 
========= End of Reg: =========
 
 
========= Reg Add "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F =========
 
The operation completed successfully.
 
 
 
========= End of Reg: =========
 
 
========= RemoveProxy: =========
 
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
 
 
========= End of RemoveProxy: =========
 
 
=========  netsh advfirewall reset =========
 
Ok.
 
 
========= End of CMD: =========
 
 
=========  netsh advfirewall set allprofiles state ON =========
 
Ok.
 
 
========= End of CMD: =========
 
 
=========  ipconfig /flushdns =========
 
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========= End of CMD: =========
 
 
=========  netsh winsock reset catalog =========
 
 
Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.
 
 
========= End of CMD: =========
 
 
=========  netsh int ip reset c:\resetlog.txt =========
 
Resetting Global, OK!
Resetting Interface, OK!
Resetting Neighbor, OK!
Resetting Path, OK!
Resetting , failed.
Access is denied.
 
Resetting , OK!
Restart the computer to complete this action.
 
 
========= End of CMD: =========
 
 
=========  ipconfig /release =========
 
 
Windows IP Configuration
 
No operation can be performed on Ethernet while it has its media disconnected.
No operation can be performed on Local Area Connection* 3 while it has its media disconnected.
No operation can be performed on Bluetooth Network Connection while it has its media disconnected.
 
Tunnel adapter isatap.{8AD8BB11-2BA2-4370-AC96-06BF30612D63}:
 
   Media State . . . . . . . . . . . : Media unoperational
   Connection-specific DNS Suffix  . : 
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Wireless LAN adapter Local Area Connection* 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : 
   Link-local IPv6 Address . . . . . : fe80::1c4a:db68:988c:999e%8
   Default Gateway . . . . . . . . . : 
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:286c:1a08:3f57:fefb
   Link-local IPv6 Address . . . . . : fe80::286c:1a08:3f57:fefb%16
   Default Gateway . . . . . . . . . : ::
 
========= End of CMD: =========
 
 
=========  ipconfig /renew =========
 
 
Windows IP Configuration
 
No operation can be performed on Ethernet while it has its media disconnected.
No operation can be performed on Local Area Connection* 3 while it has its media disconnected.
No operation can be performed on Bluetooth Network Connection while it has its media disconnected.
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Wireless LAN adapter Local Area Connection* 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : 
   Link-local IPv6 Address . . . . . : fe80::1c4a:db68:988c:999e%8
   IPv4 Address. . . . . . . . . . . : 192.168.1.4
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.1
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:38ac:65c:3f57:fefb
   Link-local IPv6 Address . . . . . : fe80::38ac:65c:3f57:fefb%16
   Default Gateway . . . . . . . . . : ::
 
========= End of CMD: =========
 
 
=========  netsh int ipv4 reset =========
 
Resetting Interface, OK!
Resetting , failed.
Access is denied.
 
Restart the computer to complete this action.
 
 
========= End of CMD: =========
 
 
=========  netsh int ipv6 reset =========
 
Resetting Interface, OK!
Resetting Neighbor, OK!
Resetting Path, OK!
Resetting , failed.
Access is denied.
 
Resetting , OK!
Resetting , OK!
Restart the computer to complete this action.
 
 
========= End of CMD: =========
 
 
=========  bitsadmin /reset /allusers =========
 
 
BITSADMIN version 3.0 [ 7.8.10240 ]
BITS administration utility.
© Copyright 2000-2006 Microsoft Corp.
 
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
 
Unable to cancel {E1A03C80-F2FC-4DB2-9EBD-D93BE1EAE53C}.
Unable to cancel {8A4313D6-85A6-4A05-AEC1-6788B89D6D18}.
Unable to cancel {64743D76-873A-417C-9E9C-BD94746CF41B}.
Unable to cancel {98978BD2-F90A-48E2-B56C-0FF70A9CCBDD}.
Unable to cancel {51FE3914-8546-4219-A05D-1CBD6BC74F28}.
Unable to cancel {18F03574-9352-4A62-81BE-35802ED4236E}.
Unable to cancel {05374B62-51C6-45F4-8C5A-F5F31C2818F5}.
Unable to cancel {452A3432-45A9-4767-89A1-DC61FF38235A}.
Unable to cancel {A84EA05A-A96C-4E1A-BA9E-7D7366935871}.
Unable to cancel {A89DF32A-2776-4EF1-BFC6-EB88BD7A77BC}.
Unable to cancel {DB68CE72-1AD1-44FF-BD35-2BA43EAD7C53}.
{1E7C34A4-56F2-4400-99B2-FC24ED049520} canceled.
{9A0AB499-E3C6-482B-85B1-6EF44768DCE5} canceled.
{8CC77346-6E5F-492C-85E1-1902D78DD463} canceled.
{DAD04B49-B0BD-4E2B-A74C-9DF8164467DF} canceled.
{52600F33-AA84-4C37-ADBC-244206C8FFB0} canceled.
{06AA58B2-6914-48BC-844E-1CE0E4E0D2B3} canceled.
{4596AC3E-EF93-4E0B-AC99-11A5DEF99606} canceled.
7 out of 18 jobs canceled.
 
========= End of CMD: =========
 
EmptyTemp: => 806.5 MB temporary data Removed.
 
 
The system needed a reboot.. 
 
==== End of Fixlog 09:59:08 ====

  • 0

#7
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK that was the network reset and obviously was not a problem area

Please download MiniToolBox, save it to your desktop and run it.
minitoolbox.JPG
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of MTB.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
  • 0

#8
emirr123

emirr123

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts
MiniToolBox by Farbar  Version: 25-07-2015 01
Ran by emir (administrator) on 17-08-2015 at 10:58:10
Running from "C:\Users\emir\Desktop"
Microsoft Windows 10 Home  (X64)
Model: HP Pavilion dv6 Notebook PC Manufacturer: Hewlett-Packard
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
127.0.0.1 localhost
 
========================= IP Configuration: ================================
 
Intel® Centrino® Wireless-N 1030 Driver = Wi-Fi (Connected)
Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : emir-HP
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 10-1F-74-17-26-BF
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Local Area Connection* 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Hosted Network Virtual Adapter
   Physical Address. . . . . . . . . : AC-72-89-B6-B1-B1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 1030
   Physical Address. . . . . . . . . : AC-72-89-B6-B1-B0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1c4a:db68:988c:999e%8(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, August 17, 2015 10:07:00 AM
   Lease Expires . . . . . . . . . . : Tuesday, August 18, 2015 10:07:04 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 380400265
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-0E-63-4A-10-1F-74-17-26-BF
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : AC-72-89-B6-B1-B4
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{8AD8BB11-2BA2-4370-AC96-06BF30612D63}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:400b:807::1006
 173.194.206.101
 173.194.206.100
 173.194.206.102
 173.194.206.138
 173.194.206.139
 173.194.206.113
 
 
Pinging google.com [173.194.206.101] with 32 bytes of data:
Request timed out.
Request timed out.
 
Ping statistics for 173.194.206.101:
    Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
Server:  UnKnown
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 2001:4998:58:c02::a9
 98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Request timed out.
Request timed out.
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  9...10 1f 74 17 26 bf ......Realtek PCIe GBE Family Controller
 10...ac 72 89 b6 b1 b1 ......Microsoft Hosted Network Virtual Adapter
  8...ac 72 89 b6 b1 b0 ......Intel® Centrino® Wireless-N 1030
 15...ac 72 89 b6 b1 b4 ......Bluetooth Device (Personal Area Network)
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 16...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.4     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.4    281
      192.168.1.4  255.255.255.255         On-link       192.168.1.4    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.4    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.4    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.4    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  8    281 fe80::/64                On-link
  8    281 fe80::1c4a:db68:988c:999e/128
                                    On-link
  1    306 ff00::/8                 On-link
  8    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\napinsp.dll [54784] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [79872] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [67072] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [62976] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/17/2015 10:17:55 AM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
 
Error: (08/17/2015 10:14:07 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/17/2015 10:14:07 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/17/2015 10:07:13 AM) (Source: CVHSVC) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
 
Error: (08/17/2015 09:56:42 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/17/2015 09:56:42 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/17/2015 09:56:08 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (08/17/2015 09:55:49 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.
 
 
Operation:
   Gathering Writer Data
 
Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {d88b88f0-afad-4834-a6e7-fbd8fb2b4ab9}
 
Error: (08/17/2015 09:53:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 43332578
 
Error: (08/17/2015 09:53:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 43332578
 
 
System errors:
=============
Error: (08/17/2015 10:06:51 AM) (Source: Service Control Manager) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: 
%%1058
 
Error: (08/17/2015 10:02:19 AM) (Source: Service Control Manager) (User: )
Description: The Sync Host_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (08/16/2015 07:56:24 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.
 
A corruption was found in a file system index structure.  The file reference number is 0x100000000001a.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$R:$INDEX_ALLOCATION".
 
Error: (08/16/2015 07:56:14 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.
 
A corruption was found in a file system index structure.  The file reference number is 0x100000000001a.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$R:$INDEX_ALLOCATION".
 
Error: (08/16/2015 07:45:06 PM) (Source: Service Control Manager) (User: )
Description: The HP Support Assistant Service service hung on starting.
 
Error: (08/16/2015 07:37:51 PM) (Source: Service Control Manager) (User: )
Description: The MBAMService service failed to start due to the following error: 
%%1053
 
Error: (08/16/2015 07:37:51 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the MBAMService service to connect.
 
Error: (08/16/2015 07:37:19 PM) (Source: Service Control Manager) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: 
%%1058
 
Error: (08/16/2015 07:35:23 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Sync Host_Session2 service to connect.
 
Error: (08/16/2015 07:35:14 PM) (Source: DCOM) (User: emir-HP)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
 
 
Microsoft Office Sessions:
=========================
Error: (08/17/2015 10:17:55 AM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
 
Error: (08/17/2015 10:14:07 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/17/2015 10:14:07 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/17/2015 10:07:13 AM) (Source: CVHSVC)(User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
 
Error: (08/17/2015 09:56:42 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
 
Error: (08/17/2015 09:56:42 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353   17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
 
Error: (08/17/2015 09:56:08 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
 
Error: (08/17/2015 09:55:49 AM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.
 
 
Operation:
   Gathering Writer Data
 
Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {d88b88f0-afad-4834-a6e7-fbd8fb2b4ab9}
 
Error: (08/17/2015 09:53:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 43332578
 
Error: (08/17/2015 09:53:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 43332578
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-07-30 08:38:13.475
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.452
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.380
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.248
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.223
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 08:38:13.118
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:48.149
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:48.131
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:47.541
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-07-30 01:30:47.524
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
=========================== Installed Programs ============================
 
1 Step Remote Viewing 1.0 (HKLM-x32\...\1 Step Remote Viewing_is1) (Version:  - cwdLimited, Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{55D55008-E5F6-47D6-B16F-B2A40D4D145F}) (Version: 6.2.1 - Hewlett-Packard) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.1.3.121 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Agatha Christie - Peril at End House (HKLM-x32\...\WT089362) (Version: 2.2.0.95 - WildTangent) Hidden
AirParrot (HKLM\...\{6C4958DF-4B1A-4290-947B-5F6AFDC74398}) (Version: 1.1.3 - Squirrels)
AirPort (HKLM-x32\...\{AA68AAAE-41F0-40B5-8896-5947F5FD6889}) (Version: 5.6.1.2 - Apple Inc.)
Any Video Converter 5.5.8 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ask Toolbar for Epson (HKLM-x32\...\{45504E32-5637-006A-76A7-A758B70C1D00}) (Version: 12.29.0.1883 - APN, LLC)
Asterisk Key 10.0 (HKLM-x32\...\asterisk key) (Version:  - )
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version:  - Audacity Team)
AuthenTec TrueAPI (HKLM\...\{054EF02F-95D8-48F4-9EEB-2F9CE3072ED8}) (Version: 1.3.0.144 - AuthenTec, Inc.) Hidden
AV Voice Changer Software 7.0 (HKLM-x32\...\AV Voice Changer Software 7.0) (Version: 7.0.56 - AVSOFT Corp.)
AVG 2012 (HKLM\...\{22591D78-46F8-41E4-9E89-323B8C0A16AF}) (Version: 12.0.2193 - AVG Technologies) Hidden
AVG 2012 (HKLM\...\{49A4F76E-4285-4AEE-9D5D-9CCE5E86AA8F}) (Version: 12.0.2180 - AVG Technologies) Hidden
AVG 2012 (HKLM\...\{6B9CE44B-52D0-4B2F-BDFA-56FF4977A790}) (Version: 12.0.2195 - AVG Technologies) Hidden
AVG 2012 (HKLM\...\{74E52BA7-4698-4BE1-858C-8ED27E836570}) (Version: 12.0.2171 - AVG Technologies) Hidden
AVG 2012 (HKLM\...\{857B32C1-7C87-40B5-B2A5-D06F49B80002}) (Version: 12.0.2178 - AVG Technologies) Hidden
AVG 2012 (HKLM\...\{A108BD40-0A8C-4385-8874-74C4B6086CC3}) (Version: 12.0.2197 - AVG Technologies) Hidden
AVG 2012 (HKLM\...\{BF46C84D-1AC3-4CC3-A45C-EF6257B80984}) (Version: 12.0.2221 - AVG Technologies) Hidden
AVG 2012 (HKLM\...\{C43C57C2-092C-4BB2-9371-C7342EF0CBA5}) (Version: 12.0.2176 - AVG Technologies) Hidden
AVG 2012 (HKLM\...\{D050583D-5CEC-47B1-88AA-8B328CAA8621}) (Version: 12.0.1913 - AVG Technologies) Hidden
Bejeweled 2 Deluxe (HKLM-x32\...\WT089453) (Version: 2.2.0.95 - WildTangent) Hidden
Bejeweled 3 (HKLM-x32\...\WT089498) (Version: 2.2.0.95 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}) (Version: 7.0.610.0 - Microsoft Corporation)
Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.470.0 - Microsoft Corporation)
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 19.2.0.142 - Bitdefender)
Blackhawk Striker 2 (HKLM-x32\...\WT087328) (Version: 2.2.0.95 - WildTangent) Hidden
Blasterball 3 (HKLM-x32\...\WT089308) (Version: 2.2.0.95 - WildTangent) Hidden
Blio (HKLM-x32\...\{9368DDD5-CE7F-4BD7-A83A-F00FABE338EC}) (Version: 2.2.6699 - K-NFB Reading Technology, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bounce Symphony (HKLM-x32\...\WT087330) (Version: 2.2.0.95 - WildTangent) Hidden
BufferChm (HKLM-x32\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Build-a-lot 2 (HKLM-x32\...\WT087335) (Version: 2.2.0.95 - WildTangent) Hidden
C4400 (HKLM-x32\...\{B1E33614-25CC-4C2A-8CBA-88B51ABF67E0}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden
Cake Mania (HKLM-x32\...\WT089359) (Version: 2.2.0.95 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.22 - Piriform)
Chuzzle Deluxe (HKLM-x32\...\WT089454) (Version: 2.2.0.95 - WildTangent) Hidden
Copy (HKLM-x32\...\{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}) (Version: 130.0.428.000 - Hewlett-Packard) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.1.3908 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0316 - DT Soft Ltd)
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM-x32\...\{2FF8C687-DB7D-4adc-A5DC-57983EC25046}) (Version: 130.0.465.000 - Hewlett-Packard) Hidden
Diner Dash 2 Restaurant Rescue (HKLM-x32\...\WT087536) (Version: 2.2.0.95 - WildTangent) Hidden
DIRECTV2PC Playback Advisor (HKLM-x32\...\{479F8C12-576B-4A58-AB78-4B70F7012AA8}) (Version: 1.0 - CyberLink Corp.) Hidden
DIRECTV2PC Playback Advisor (HKLM-x32\...\InstallShield_{479F8C12-576B-4A58-AB78-4B70F7012AA8}) (Version: 1.0 - CyberLink Corp.)
DIRECTV2PC™ (HKLM-x32\...\{E9B10AA5-E5F6-4DEF-A435-FB20704AF1E8}) (Version: 2.0.7507 - CyberLink Corp.) Hidden
DIRECTV2PC™ (HKLM-x32\...\InstallShield_{E9B10AA5-E5F6-4DEF-A435-FB20704AF1E8}) (Version: 2.0.7507 - CyberLink Corp.)
DJI driver version 2.02 (HKLM-x32\...\{EDFDE5EE-84C7-4936-804C-6563943E5754}_is1) (Version: 2.02 - DJI)
DJI Phantom 2 Vision Assistant version 3.8 (HKLM-x32\...\{EDCE7221-F31F-407A-B348-30D011ED3126}_is1) (Version: 3.8 - DJI)
DJI RC System Assistant version 1.2 (HKLM-x32\...\{2849F48E-8A08-4C43-AC8D-97A367F0DCB6}_is1) (Version: 1.2 - DJI)
DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dora's World Adventure (HKLM-x32\...\WT087343) (Version: 2.2.0.95 - WildTangent) Hidden
Download Navigator (HKLM-x32\...\{3A3A3B34-6EA2-4031-8580-D66D29533E89}) (Version: 3.4.0 - SEIKO EPSON CORPORATION)
Dropbox (HKCU\...\Dropbox) (Version: 3.6.9 - Dropbox, Inc.)
DVD Architect Studio 5.0 (HKLM-x32\...\{E3D1078F-9660-11E2-9E28-F04DA23A5C58}) (Version: 5.0.178 - Sony)
DvrClient (HKLM-x32\...\{3B25FE53-D528-42E7-83D8-226C8D81A276}) (Version: 1.2.43 - DVR Soft)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version:  - )
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON NX430 Series Printer Uninstall (HKLM\...\EPSON NX430 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
Evernote v. 4.2.2 (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 4.2.2.3979 - Evernote Corp.)
Farm Frenzy (HKLM-x32\...\WT089328) (Version: 2.2.0.95 - WildTangent) Hidden
FATE - The Traitor Soul (HKLM-x32\...\WT089470) (Version: 2.2.0.95 - WildTangent) Hidden
FileZilla Client 3.5.3 (HKLM-x32\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)
Freemake Video Converter version 3.0.2 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 3.0.2 - Ellora Assets Corporation)
GEAR driver installer for AMD64 and Intel EM64T (HKLM\...\{50CBBEC7-1010-41C5-8718-A1A6FEDD9C3A}) (Version: 2.003.1 - GEAR Software, Inc.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
GMATPrep (HKLM-x32\...\GMATPrep 2.3.322) (Version: 2.3.322 - Graduate Management Admission Council (GMAC))
Google Chrome (HKCU\...\Google Chrome) (Version: 44.0.2403.125 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.28.1 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GPBaseService2 (HKLM-x32\...\{63FF21C9-A810-464F-B60A-3111747B1A6D}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Guard.ICQ (HKLM-x32\...\Guard.Mail.ru) (Version:  - Mail.ru)
HandBrake 0.9.8 (HKLM-x32\...\HandBrake) (Version: 0.9.8 - )
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{5601F151-A69F-4E30-8C60-37928124CD07}) (Version: 4.1.9.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{795AADBF-58C2-42D0-B779-E730702A247E}) (Version: 4.0.45.1 - Hewlett-Packard Company)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Documentation (HKLM-x32\...\{3C5AB11A-2DDB-49E6-9FC0-CFD88A7DDFE4}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.4 - WildTangent)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Photosmart C4400 All-In-One Driver Software 13.0 Rel. 3 (HKLM\...\{8181C5B7-2FF5-4677-BA6A-8E2C3F5A7601}) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Power Manager (HKLM-x32\...\{E44578C7-4667-4124-8BC2-1161BCA54978}) (Version: 1.4.4 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{285F722C-0E45-47DE-B38E-5B3B10FA4A7C}) (Version: 2.5.2 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{210A03F5-B2ED-4947-B27E-516F50CBB292}) (Version: 8.6.4530.3651 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13231.3673 - Hewlett-Packard Company)
HP SimplePass 2011 (HKLM-x32\...\{4741965C-AFD0-4D00-81D1-1039F96D4DC3}) (Version: 5.3.0.273 - Hewlett-Packard)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Software Framework (HKLM-x32\...\{28FE073B-1230-4BF6-830C-7434FD0C0069}) (Version: 4.1.13.1 - Hewlett-Packard Company)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (HKLM-x32\...\{681B698F-C997-42C3-B184-B489C6CA24C9}) (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (HKLM-x32\...\{D79113E7-274C-470B-BD46-01B10219DF6A}) (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM-x32\...\{C43326F5-F135-4551-8270-7F7ABA0462E1}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6381.0 - IDT)
Intel PROSet Wireless (HKLM-x32\...\ProInst) (Version:  - ) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Intel® Wireless Display (HKLM-x32\...\{5B46CEC7-DAD0-46A2-BCD6-B46A3CFD9B61}) (Version: 2.0.30.0 - Intel Corporation)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.15 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Light-O-Rama (HKLM-x32\...\{E744BFEA-E027-441E-83A2-36202F661E31}) (Version: 3.9.0 - Light-O-Rama)
Mah Jong Medley (HKLM-x32\...\WT087393) (Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5131.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MixMeister BPM Analyzer 1.0 (HKLM-x32\...\MixMeister BPM Analyzer_is1) (Version:  - MixMeister Technology LLC)
MixMeister Studio Demo 7.4.4 (HKLM-x32\...\mmssetup_is1) (Version:  - MixMeister Technology LLC)
MorphVOX Pro (HKLM-x32\...\{2D7CF073-6583-464A-84D4-F86DE59DCA42}) (Version: 4.4.8 - Screaming Bee)
Movie Studio Platinum 12.0 (64-bit) (HKLM\...\{6BE763B0-958D-11E2-A440-F04DA23A5C58}) (Version: 12.0.896 - Sony)
Movie Studio Platinum 13.0 (HKLM-x32\...\{C07796C0-7C69-11E3-8E39-F04DA23A5C58}) (Version: 13.0.878 - Sony)
Mozilla Firefox 35.0.1 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 en-GB)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Namco All-Stars PAC-MAN (HKLM-x32\...\WT089484) (Version: 2.2.0.95 - WildTangent) Hidden
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.2.28.24.exe  - NETGEAR Inc.)
NETGEAR USB Control Center   (HKLM-x32\...\{4528B812-FF2C-4E3A-A9EA-1ECB483BF03A}) (Version: 1.32 - NETGEAR)
NirSoft Wireless Network Watcher (HKLM-x32\...\NirSoft Wireless Network Watcher) (Version:  - )
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Opera Stable 31.0.1889.99 (HKLM-x32\...\Opera 31.0.1889.99) (Version: 31.0.1889.99 - Opera Software)
Penguins! (HKLM-x32\...\WT087394) (Version: 2.2.0.95 - WildTangent) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version:  - )
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (HKLM-x32\...\WT087395) (Version: 2.2.0.95 - WildTangent) Hidden
PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)
Polar Bowler (HKLM-x32\...\WT087396) (Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (HKLM-x32\...\WT087397) (Version: 2.2.0.95 - WildTangent) Hidden
Popcorn Time (HKCU\...\Popcorn Time) (Version:  - Popcorn Official)
PS_AIO_03_C4400_Software_Min (HKLM-x32\...\{7E5A8023-0E90-4503-A1EA-C9FC25680AF9}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Rane SL 4 (ver. 1.0.1f4) (HKLM\...\RaneAsioSL4_is1) (Version:  - Rane Corporation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
Recovery Manager (HKLM-x32\...\{DBCD5E64-7379-4648-9444-8A6558DCB614}) (Version: 2.0.0 - Hewlett-Packard) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation)
Revo Uninstaller Pro 3.0.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.2 - VS Revo Group, Ltd.)
RoxioNow Player (HKLM-x32\...\{0EDEB615-1A60-425E-8306-0E10519C7B55}) (Version: 1.9.5.103 - RoxioNow)
Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Scratch Live 2.4.4 (18) (HKLM-x32\...\{5B4DA057-7C39-4CBF-BD5D-85ED16A8D8D2}) (Version: 2.4.4 - Serato Inc LP)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Serviio (HKLM\...\Serviio) (Version:  - )
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Slingo Supreme (HKLM-x32\...\WT089457) (Version: 2.2.0.95 - WildTangent) Hidden
SmartWebPrinting (HKLM-x32\...\{DC635845-46D3-404B-BCB1-FC4A91091AFA}) (Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (HKLM-x32\...\{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sound Forge Audio Studio 10.0 (HKLM-x32\...\{75648F62-925B-11E2-B9EF-F04DA23A5C58}) (Version: 10.0.245 - Sony)
Spotify (HKCU\...\Spotify) (Version: 1.0.9.133.gcedaee38 - Spotify AB)
Status (HKLM-x32\...\{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}) (Version: 130.0.469.000 - Hewlett-Packard) Hidden
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated)
Toolbox (HKLM-x32\...\{6BBA26E9-AB03-4FE7-831A-3535584CA002}) (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (HKLM-x32\...\{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}) (Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (HKLM-x32\...\{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}) (Version: 11.0.0 - Hewlett-Packard) Hidden
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version:  - WildTangent) Hidden
Validity WBF DDK (HKLM\...\{79174AF2-6CB1-42F5-981E-66DCA49391D0}) (Version: 4.3.205.0 - Validity Sensors, Inc.)
Video Player (HKLM-x32\...\{D9D8601F-F720-49A3-9325-78556408CFB6}) (Version: 1.2.9 - DVR Soft) Hidden
Virtual Villagers 4 - The Tree of Life (HKLM-x32\...\WT089307) (Version: 2.2.0.95 - WildTangent) Hidden
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voxal Voice Changer (HKLM-x32\...\Voxal) (Version: 1.02 - NCH Software)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.02 - NCH Software)
WebReg (HKLM-x32\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Wheel of Fortune 2 (HKLM-x32\...\WT087415) (Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games App (HP Games) (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.0.5.2 - WildTangent) Hidden
Windows Driver Package - dji-innovations inc. (usbser) Ports  (12/06/2012 5.1.2600.5512) (HKLM\...\F731C4A8B354FB9B7579C5D98402D2F988E8B95C) (Version: 12/06/2012 5.1.2600.5512 - dji-innovations inc.)
Windows Essentials Media Codec Pack 4.0 [64-Bit] (HKLM-x32\...\Windows Essentials Media Codec Pack) (Version: 4.0 - Media Codec)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinUtilities 10.52 Professional Edition (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043009}_is1) (Version:  - YL Computing, Inc)
WinUtilities 10.53 Free Edition (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043010}_is1) (Version:  - YL Computing, Inc)
WinX Video Converter 5.0.5 (HKLM-x32\...\WinX Video Converter_is1) (Version:  - Digiarty Software, Inc.)
Wondershare Streaming Audio Recorder(Build 2.1.0.0) (HKLM-x32\...\Wondershare Streaming Audio Recorder_is1) (Version: 2.1.0.0 - Wondershare Software Co.,Ltd.)
XBMC (HKCU\...\XBMC) (Version:  - Team XBMC)
Zuma Deluxe (HKLM-x32\...\WT089455) (Version: 2.2.0.95 - WildTangent) Hidden
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 48%
Total physical RAM: 4043.86 MB
Available physical RAM: 2092.11 MB
Total Virtual: 8139.86 MB
Available Virtual: 5513.34 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:581.59 GB) (Free:55.91 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:14.29 GB) (Free:1.57 GB) NTFS
4 Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.04 GB) FAT32
5 Drive g: (Spanish 1 1.3) (CDROM) (Total:4.02 GB) (Free:0 GB) CDFS
6 Drive h: () (Removable) (Total:29.47 GB) (Free:25.01 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\EMIR-HP
 
Administrator            DefaultAccount           emir                     
Guest                    
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****

  • 0

#9
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK it appears to be a wireless problem.. If this is a laptop can you confirm that it is switched on.. What is the make and model of the computer ?
  • 0

#10
emirr123

emirr123

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts
Wireless is switched on and shows that it's connected to the network and Internet
It's an hp dv6 laptop
  • 0

Advertisements


#11
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Could you let me know if the steps on this page work
http://h30434.www3.h...ht/true#U606885
  • 0

#12
emirr123

emirr123

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

ok when i load up the mobility center step 2

i don't even see wireless network to continue step 3


  • 0

#13
emirr123

emirr123

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

keep in mind my wireless is working i can see other devices on the network through netgear genie


  • 0

#14
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Can netgear genie see your router though ?
  • 0

#15
emirr123

emirr123

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

yes it shows the router and everything connected to it

 but the genie shows no connection from the router to the internet.

 

but everything else uses that router including this laptop i'm using to communicate to you  and they all are able to browse the internet


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP