hi thanks for the responses.
this is the fresh scan
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:12-08-2015
Ran by emir (administrator) on EMIR-HP (16-08-2015 19:43:16)
Running from C:\Users\emir\Desktop
Loaded Profiles: emir & DefaultAppPool (Available Profiles: emir & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(NETGEAR) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
() C:\Program Files\Serviio\bin\ServiioService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
() C:\Program Files\Serviio\bin\ServiioService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
() C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\Serviio\bin\ServiioConsole.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc.) C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Apple Inc.) C:\Program Files (x86)\AirPort\APAgent.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\SpotifyCrashService.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe
() C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\odscanui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\downloader.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Google Inc.) C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-01-04] (IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-11] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-30] (Synaptics Incorporated)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1603544 2015-06-30] (Bitdefender)
HKLM\...\Run: [IntelPAN] => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.)
HKLM-x32\...\Run: [Guard.Mail.ru.gui] => "C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe" /gui
HKLM-x32\...\Run: [AirPort Base Station Agent] => C:\Program Files (x86)\AirPort\APAgent.exe [771360 2009-11-11] (Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1679360 2012-02-28] (Wondershare)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [NETGEAR USB Control Center] => C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe [4139008 2012-09-20] ()
HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Spotify Web Helper] => C:\Users\emir\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2008632 2015-07-15] (Spotify Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Google Update] => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-16] (Google Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671904 2012-08-28] (DT Soft Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [NETGEARGenie] => C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [1044224 2013-04-07] ()
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-18] (Bitdefender)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Spotify] => C:\Users\emir\AppData\Roaming\Spotify\Spotify.exe [7334968 2015-07-15] (Spotify Ltd)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [GoogleChromeAutoLaunch_E9444CBBF542E6F567C8F4E0161A18BE] => C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe [813896 2015-07-25] (Google Inc.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Run: [Dropbox Update] => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-29] (Dropbox, Inc.)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2013-09-25]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-12-17]
ShortcutTarget: Dropbox.lnk -> C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Serviio.lnk [2012-05-16]
ShortcutTarget: Serviio.lnk -> C:\Program Files\Serviio\bin\ServiioConsole.exe ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-07-07] (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=en-TT&Src=WD8&Tid=000328B9&OHP=about%3Ablank&OSP=
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
SearchScopes: HKLM -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://uk.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000 -> {803438B4-7EDC-4A07-A51A-DEC8202C4727} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us3-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-07-28] (Bitdefender)
BHO: AVG Do Not Track -> {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} -> No File
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-23] (Oracle Corporation)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-08-25] (HP)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-23] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-07-28] (Bitdefender)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-23] (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-08-25] (HP)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-23] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-07-28] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-07-28] (Bitdefender)
Toolbar: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {A4110378-789B-455F-AE86-3A1BFC402853} hxxp://zone.msn.com/bingame/zpagames/zpa_shvl.cab55579.cab
DPF: HKLM-x32 {B8BE5E93-A60C-4D26-A2DC-220313175592} hxxp://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2011-06-21] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8ad8bb11-2ba2-4370-ac96-06bf30612d63}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9ff4345c-eb1b-4212-8598-1997e843e93c}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default
FF NewTab: about:blank
FF DefaultSearchEngine: Search Here
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-23] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-07] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-02] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\emir\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @talk.google.com/O1DPlugin -> C:\Users\emir\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @tools.google.com/Google Update;version=3 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2749324444-3110066803-3346981281-1000: @tools.google.com/Google Update;version=9 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\emir\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\emir\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\
[email protected] [2015-04-20]
FF Extension: Ghostery - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\
[email protected] [2013-08-17]
FF Extension: MEGA EXTENSION - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\
[email protected] [2013-02-20]
FF Extension: Show my Password - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2013-07-21]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\
[email protected] [2015-02-19]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff [2015-07-30]
FF HKLM\...\Thunderbird\Extensions: [
[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-07-30]
FF HKLM-x32\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files (x86)\AVG\AVG2012\Firefox4
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-09-25]
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-07-30]
FF HKLM-x32\...\Thunderbird\Extensions: [
[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Firefox\Extensions: [
[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\
[email protected] [not found]
FF Extension: No Name - C:\Users\emir\AppData\Roaming\Mozilla\Firefox\Profiles\uy0xg8ks.default\extensions\
[email protected] [not found]
Chrome:
=======
CHR Profile: C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-16]
CHR Extension: (Google Search) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-16]
CHR Extension: (Website Logon) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfaldikcoaplhepekpbngkepfcoiihef [2012-07-16]
CHR Extension: (Bitdefender Wallet) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih [2015-08-12]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Gmail) - C:\Users\emir\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-07-16]
CHR HKLM-x32\...\Chrome\Extension: [dfaldikcoaplhepekpbngkepfcoiihef] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx [2011-08-22]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [_01&ven_111d&dev_7605&subsys_103c3385] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx <not found>
StartMenuInternet: Google Chrome - C:\Users\emir\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [680112 2015-06-09] (Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2015-07-24] (Bitdefender)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 CLDTVHNService; C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe [75048 2009-09-17] ()
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-22] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-21] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2012-03-19] (Realsil Microelectronics Inc.) [File not signed]
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-07-23] (Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
S3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
S3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
U2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-07-30] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [232192 2013-04-07] (NETGEAR)
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
U2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-07-21] (Microsoft Corporation)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-11] (Microsoft Corporation)
R2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [359936 2014-03-20] () [File not signed]
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-30] (Synaptics Incorporated)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-23] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-23] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2015-04-22] (Bitdefender)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-21] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
R2 vsserv; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1540744 2015-07-27] (Bitdefender)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-30] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-07-30] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-05-28] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-05-29] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-05-28] (BitDefender)
U5 bdelam; C:\Windows\System32\Drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2014-12-15] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [115800 2015-05-21] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [79192 2013-07-30] (BitDefender)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-09-04] (DT Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-02-24] (BitDefender LLC)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-07-30] (Microsoft Corporation)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R3 NetgearUDSMBus; C:\Windows\system32\drivers\NetgearUDSMBus.sys [107296 2012-08-13] (Windows ® Codename Longhorn DDK provider)
R3 NetgearUDSTcpBus; C:\Windows\System32\Drivers\NetgearUDSTcpBus.sys [183584 2012-08-13] (Windows ® Codename Longhorn DDK provider)
R3 NetgearUDSTcpBus; C:\Windows\SysWow64\Drivers\NetgearUDSTcpBus.sys [153600 2012-06-15] (Windows ® Codename Longhorn DDK provider) [File not signed]
R2 NPF; C:\Windows\system32\drivers\npf.sys [35344 2013-09-25] (CACE Technologies, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
S3 SL4UsbNoSSL; C:\Windows\System32\Drivers\SL4UsbNoSSL.sys [50296 2012-05-02] (Cristalink Ltd)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-30] (Synaptics Incorporated)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-13] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 voxaldriver; C:\Windows\System32\DRIVERS\voxaldriverx64.sys [33488 2013-10-30] ()
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
R3 WsAudioDevice_383S(1); C:\Windows\system32\drivers\WsAudioDevice_383S(1).sys [29288 2013-01-08] (Wondershare)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: dosvc -> C:\Windows\system32\dosvc.dll (Microsoft Corporation)
NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)
NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVC: RetailDemo -> C:\Windows\system32\RDXService.dll (Microsoft Corporation)
NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-16 19:43 - 2015-08-16 19:43 - 00044447 _____ C:\Users\emir\Desktop\FRST.txt
2015-08-16 19:38 - 2015-08-16 19:38 - 00016148 _____ C:\WINDOWS\system32\EMIR-HP_emir_HistoryPrediction.bin
2015-08-16 19:35 - 2015-08-16 19:35 - 00000000 ____H C:\Users\emir\AppData\Local\BIT5C6A.tmp
2015-08-16 19:32 - 2015-08-16 19:34 - 00000000 ____D C:\Users\emir\Desktop\HostsXpert
2015-08-16 19:22 - 2015-08-16 19:20 - 00891392 _____ (Farbar) C:\Users\emir\Desktop\MiniToolBox.exe
2015-08-16 19:16 - 2015-08-16 19:33 - 00000000 _____ C:\Users\emir\AppData\Local\{08B44E72-5A23-43E8-8DDB-2090AE919D42}
2015-08-14 07:50 - 2015-08-14 07:47 - 00000762 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt
2015-08-14 06:01 - 2015-08-14 06:01 - 00000000 ___HD C:\$Windows.~WS
2015-08-13 13:19 - 2015-08-13 01:01 - 00899072 _____ (Farbar) C:\Users\emir\Desktop\FSS.exe
2015-08-13 11:13 - 2015-08-13 00:16 - 02173952 _____ (Farbar) C:\Users\emir\Desktop\FRST64.exe
2015-08-13 11:13 - 2015-08-12 23:07 - 02248704 _____ C:\Users\emir\Desktop\AdwCleaner.exe
2015-08-13 11:13 - 2015-08-12 22:58 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\emir\Desktop\mbam-setup-2.1.8.1057.exe
2015-08-13 01:06 - 2015-08-16 19:43 - 00000000 ____D C:\FRST
2015-08-13 00:55 - 2015-08-13 00:51 - 01063160 _____ (Bleeping Computer, LLC) C:\Users\emir\Desktop\rkill64.com
2015-08-13 00:52 - 2015-08-14 06:25 - 00000000 ____D C:\AdwCleaner
2015-08-13 00:47 - 2015-08-13 00:47 - 00003232 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForemir
2015-08-13 00:46 - 2015-08-13 00:59 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForemir.job
2015-08-12 23:00 - 2015-08-14 06:42 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-12 23:00 - 2015-08-14 06:42 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-12 23:00 - 2015-08-14 06:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-12 23:00 - 2015-08-14 06:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-12 23:00 - 2015-08-12 23:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-12 23:00 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-12 23:00 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-12 23:00 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-12 07:25 - 2015-08-12 07:25 - 00000000 _____ C:\WINDOWS\SysWOW64\shoAC1E.tmp
2015-08-11 14:23 - 2015-08-11 14:23 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Quotestream
2015-08-10 16:47 - 2015-08-10 16:47 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-08-04 22:25 - 2015-08-04 22:31 - 13545694 _____ C:\Users\emir\AppData\Local\package.nw.new
2015-07-31 10:34 - 2015-07-31 10:34 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-07-30 09:02 - 2015-08-12 07:37 - 00002372 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-07-30 09:02 - 2015-08-12 07:37 - 00000000 ___RD C:\Users\emir\OneDrive
2015-07-30 09:00 - 2015-07-30 09:00 - 00517374 _____ C:\ProgramData\1438260563.bdinstall.bin
2015-07-30 08:59 - 2015-08-12 16:18 - 00000682 ____H C:\bdr-cf01
2015-07-30 08:58 - 2015-07-30 08:58 - 00002274 _____ C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk
2015-07-30 08:58 - 2015-07-30 08:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2015-07-30 08:58 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2015-07-30 08:58 - 2013-07-30 18:41 - 00079192 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2015-07-30 08:57 - 2015-05-29 09:50 - 00271272 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2015-07-30 08:57 - 2015-05-28 14:21 - 00747120 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2015-07-30 08:57 - 2015-05-28 13:37 - 01369288 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2015-07-30 08:57 - 2014-12-15 18:04 - 00098768 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\bdfndisf6.sys
2015-07-30 08:56 - 2015-07-30 09:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Bitdefender
2015-07-30 08:56 - 2015-07-30 08:59 - 00253404 ____H C:\bdr-ld01
2015-07-30 08:56 - 2015-07-30 08:59 - 00009216 ____H C:\bdr-ld01.mbr
2015-07-30 08:56 - 2015-05-27 17:02 - 49626058 ____H C:\bdr-im01.gz
2015-07-30 08:56 - 2013-08-13 13:38 - 03271472 ____H C:\bdr-bz01
2015-07-30 08:50 - 2015-02-24 16:52 - 00160544 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2015-07-30 08:50 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2015-07-30 08:43 - 2015-07-14 19:37 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-30 08:43 - 2015-07-14 19:37 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-30 08:24 - 2015-07-30 08:24 - 13059896 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 13037568 _____ (Intel Corporation) C:\WINDOWS\system32\ig4icd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 12814752 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 11352688 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 11223896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 10820096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig4icd32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 09016320 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 05916080 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 05384176 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-07-30 08:24 - 2015-07-30 08:24 - 03520000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 03129856 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 01981696 _____ C:\WINDOWS\system32\iglhxa64.cpa
2015-07-30 08:24 - 2015-07-30 08:24 - 01067696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00963452 _____ C:\WINDOWS\SysWOW64\igcodeckrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00963452 _____ C:\WINDOWS\system32\igcodeckrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00957472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00584192 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00551424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00544552 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00539312 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00523184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00453552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00451584 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00449024 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00448000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00445952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00445952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00444416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00444416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00440832 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00439808 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00437760 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00437248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00418816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00411056 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00393216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00339456 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00294912 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2015-07-30 08:24 - 2015-07-30 08:24 - 00290224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00272928 _____ C:\WINDOWS\SysWOW64\igvpkrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00272928 _____ C:\WINDOWS\system32\igvpkrng600.bin
2015-07-30 08:24 - 2015-07-30 08:24 - 00266152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00231312 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00223664 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00210106 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00197040 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00194880 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00194245 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00183808 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00183216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2015-07-30 08:24 - 2015-07-30 08:24 - 00166170 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00163421 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00159008 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00151040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00149682 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00148042 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00147393 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00147288 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00146004 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00145491 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144645 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144260 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00144020 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00143932 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142882 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142877 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142717 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142289 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00142008 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00141838 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00141049 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137889 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137784 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00137141 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00135680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2015-07-30 08:24 - 2015-07-30 08:24 - 00132623 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00126300 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00124928 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4229.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00124650 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2015-07-30 08:24 - 2015-07-30 08:24 - 00119296 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00110080 _____ C:\WINDOWS\system32\igdde64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00102912 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00090112 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00072704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00059425 _____ C:\WINDOWS\system32\iglhxo64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059398 _____ C:\WINDOWS\system32\iglhxg64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059230 _____ C:\WINDOWS\system32\iglhxc64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00059104 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00058796 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00058109 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00041288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00033792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00018432 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00017082 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-07-30 08:24 - 2015-07-30 08:24 - 00001074 _____ C:\WINDOWS\system32\iglhxa64.vp
2015-07-30 08:19 - 2015-07-30 08:19 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-07-30 08:19 - 2015-07-30 08:19 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-07-30 08:19 - 2015-07-30 08:18 - 00042696 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-07-30 08:18 - 2015-07-30 08:18 - 01804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00764616 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00419528 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00269000 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00255688 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo31.dll
2015-07-30 08:18 - 2015-07-30 08:18 - 00042696 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-07-30 08:18 - 2015-07-30 08:18 - 00042184 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-07-30 08:17 - 2015-07-23 22:48 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-07-30 08:17 - 2015-07-22 00:07 - 16710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-07-30 08:17 - 2015-07-21 23:27 - 13024256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-07-30 08:17 - 2015-07-15 23:57 - 24591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-30 08:17 - 2015-07-15 23:39 - 19333632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-30 08:16 - 2015-07-26 00:48 - 22320576 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-07-30 04:28 - 2015-08-14 06:02 - 00000000 ___DC C:\WINDOWS\Panther
2015-07-30 04:27 - 2015-07-30 00:35 - 00000000 __SHD C:\Recovery
2015-07-30 04:18 - 2015-07-30 04:18 - 00000000 ____D C:\Windows.old
2015-07-30 04:17 - 2015-07-30 04:17 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files\MSBuild
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-07-30 04:14 - 2015-07-30 04:14 - 00000000 ____D C:\inetpub
2015-07-30 04:13 - 2015-06-17 22:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-07-30 04:13 - 2015-06-17 22:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-07-30 04:13 - 2015-06-17 22:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-07-30 04:13 - 2015-05-30 01:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-07-30 04:13 - 2015-05-30 01:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-07-30 04:13 - 2015-05-30 01:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-07-30 01:39 - 2015-07-26 01:15 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-07-30 01:39 - 2015-07-26 01:13 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-07-30 01:39 - 2015-07-26 00:28 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-07-30 01:39 - 2015-07-26 00:28 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-07-30 01:39 - 2015-07-26 00:20 - 20854232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-07-30 01:39 - 2015-07-25 23:47 - 11552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-07-30 01:39 - 2015-07-25 23:39 - 09885184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-07-30 01:39 - 2015-07-23 22:46 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-07-30 01:39 - 2015-07-23 22:31 - 02661376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-07-30 01:39 - 2015-07-23 22:31 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-07-30 01:39 - 2015-07-23 22:30 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-07-30 01:39 - 2015-07-23 22:26 - 18810368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-07-30 01:39 - 2015-07-22 01:22 - 02462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-07-30 01:39 - 2015-07-22 01:19 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-07-30 01:39 - 2015-07-22 01:13 - 01983328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-07-30 01:39 - 2015-07-22 00:13 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-07-30 01:39 - 2015-07-22 00:02 - 02150696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-07-30 01:39 - 2015-07-22 00:00 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-30 01:39 - 2015-07-21 23:55 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-07-30 01:39 - 2015-07-21 23:54 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-07-30 01:39 - 2015-07-21 23:53 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-07-30 01:39 - 2015-07-21 23:52 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-07-30 01:39 - 2015-07-21 23:51 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-07-30 01:39 - 2015-07-21 23:48 - 03589632 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-07-30 01:39 - 2015-07-21 23:48 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-07-30 01:39 - 2015-07-21 23:47 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-07-30 01:39 - 2015-07-21 23:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-07-30 01:39 - 2015-07-21 23:08 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-07-30 01:39 - 2015-07-21 23:05 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-07-30 01:39 - 2015-07-21 23:04 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-07-30 01:39 - 2015-07-19 00:11 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-07-30 01:39 - 2015-07-19 00:11 - 01561360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-07-30 01:39 - 2015-07-18 23:40 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-07-30 01:39 - 2015-07-18 23:19 - 02415616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-07-30 01:39 - 2015-07-18 23:12 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-07-30 01:39 - 2015-07-18 23:12 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-07-30 01:39 - 2015-07-18 22:53 - 01914880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-07-30 01:39 - 2015-07-18 04:46 - 01769568 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 04:43 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-07-30 01:39 - 2015-07-18 03:29 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 01:17 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-07-30 01:39 - 2015-07-18 01:14 - 01396576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-07-30 01:39 - 2015-07-17 23:52 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-07-30 01:39 - 2015-07-17 00:07 - 02116960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-07-30 01:39 - 2015-07-16 23:39 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-07-30 01:39 - 2015-07-16 22:48 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-07-30 01:39 - 2015-07-16 22:36 - 00858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-07-30 01:39 - 2015-07-16 22:34 - 01601024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-07-30 01:39 - 2015-07-16 22:31 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-30 01:39 - 2015-07-16 22:19 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-07-30 01:39 - 2015-07-16 22:00 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-07-30 01:39 - 2015-07-16 21:46 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-07-30 01:39 - 2015-07-16 01:43 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-07-30 01:39 - 2015-07-16 01:11 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-30 01:39 - 2015-07-16 00:55 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-30 01:39 - 2015-07-15 23:48 - 12502016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-30 01:39 - 2015-07-15 23:47 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-07-30 01:39 - 2015-07-15 23:44 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-30 01:39 - 2015-07-15 23:43 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-30 01:39 - 2015-07-15 23:27 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-30 01:39 - 2015-07-15 23:22 - 11260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-30 01:39 - 2015-07-14 22:41 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-07-30 01:39 - 2015-07-14 22:22 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-30 01:39 - 2015-07-14 22:10 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-07-30 01:39 - 2015-07-14 21:47 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-30 01:39 - 2015-07-14 21:34 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-07-30 01:39 - 2015-07-13 21:51 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-07-30 01:39 - 2015-07-13 21:31 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-07-30 01:39 - 2015-07-11 20:18 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-07-30 01:39 - 2015-07-10 21:17 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-07-30 01:39 - 2015-07-10 21:04 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-30 01:39 - 2015-07-10 21:03 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-07-30 01:39 - 2015-07-10 20:51 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-07-30 01:39 - 2015-07-10 20:41 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-30 01:39 - 2015-07-10 20:40 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-07-30 01:39 - 2015-07-10 11:51 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-07-30 01:39 - 2015-07-10 05:53 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-07-30 01:39 - 2015-07-10 05:31 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-30 01:38 - 2015-07-26 01:16 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-07-30 01:38 - 2015-07-26 01:16 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-07-30 01:38 - 2015-07-26 01:14 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-07-30 01:38 - 2015-07-26 01:14 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-07-30 01:38 - 2015-07-26 01:06 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-07-30 01:38 - 2015-07-25 23:49 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-30 01:38 - 2015-07-25 23:49 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-07-30 01:38 - 2015-07-25 23:47 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-07-30 01:38 - 2015-07-25 23:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-07-30 01:38 - 2015-07-25 23:40 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-07-30 01:38 - 2015-07-25 23:39 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-07-30 01:38 - 2015-07-25 23:39 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-07-30 01:38 - 2015-07-25 23:38 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-07-30 01:38 - 2015-07-25 23:35 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-07-30 01:38 - 2015-07-25 23:34 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-07-30 01:38 - 2015-07-25 23:30 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-07-30 01:38 - 2015-07-25 23:30 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-07-30 01:38 - 2015-07-25 23:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-07-30 01:38 - 2015-07-23 23:31 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-07-30 01:38 - 2015-07-23 23:30 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-07-30 01:38 - 2015-07-23 23:18 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-07-30 01:38 - 2015-07-23 23:17 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-07-30 01:38 - 2015-07-23 23:17 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-07-30 01:38 - 2015-07-23 23:17 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-07-30 01:38 - 2015-07-23 23:12 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-07-30 01:38 - 2015-07-23 23:11 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-07-30 01:38 - 2015-07-23 22:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-07-30 01:38 - 2015-07-23 22:52 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-07-30 01:38 - 2015-07-23 22:46 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-07-30 01:38 - 2015-07-23 22:46 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-07-30 01:38 - 2015-07-23 22:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-07-30 01:38 - 2015-07-23 22:40 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-07-30 01:38 - 2015-07-23 22:39 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-07-30 01:38 - 2015-07-23 22:36 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-07-30 01:38 - 2015-07-23 22:34 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-07-30 01:38 - 2015-07-23 22:30 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-07-30 01:38 - 2015-07-23 22:29 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-07-30 01:38 - 2015-07-23 22:25 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-07-30 01:38 - 2015-07-23 22:24 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-07-30 01:38 - 2015-07-23 22:24 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-07-30 01:38 - 2015-07-22 01:18 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-07-30 01:38 - 2015-07-22 01:17 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-07-30 01:38 - 2015-07-22 01:16 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-07-30 01:38 - 2015-07-22 01:15 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-07-30 01:38 - 2015-07-22 01:15 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-07-30 01:38 - 2015-07-22 01:14 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-07-30 01:38 - 2015-07-22 01:02 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-07-30 01:38 - 2015-07-22 00:21 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-07-30 01:38 - 2015-07-22 00:13 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-07-30 01:38 - 2015-07-22 00:02 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-07-30 01:38 - 2015-07-22 00:02 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-07-30 01:38 - 2015-07-22 00:01 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00643616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-30 01:38 - 2015-07-22 00:00 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-07-30 01:38 - 2015-07-22 00:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-07-30 01:38 - 2015-07-21 23:59 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:55 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-30 01:38 - 2015-07-21 23:53 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-07-30 01:38 - 2015-07-21 23:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-07-30 01:38 - 2015-07-21 23:49 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-07-30 01:38 - 2015-07-21 23:46 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-07-30 01:38 - 2015-07-21 23:21 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-07-30 01:38 - 2015-07-21 23:13 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-07-30 01:38 - 2015-07-21 23:13 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-30 01:38 - 2015-07-21 23:10 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-07-30 01:38 - 2015-07-21 23:07 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-07-30 01:38 - 2015-07-21 23:03 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-07-30 01:38 - 2015-07-21 22:50 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-07-30 01:38 - 2015-07-19 00:04 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-07-30 01:38 - 2015-07-18 23:54 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-07-30 01:38 - 2015-07-18 23:29 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-07-30 01:38 - 2015-07-18 23:29 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-07-30 01:38 - 2015-07-18 23:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-07-30 01:38 - 2015-07-18 23:22 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-07-30 01:38 - 2015-07-18 23:18 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-07-30 01:38 - 2015-07-18 23:11 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-07-30 01:38 - 2015-07-18 23:11 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-07-30 01:38 - 2015-07-18 23:02 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-07-30 01:38 - 2015-07-18 22:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-07-30 01:38 - 2015-07-18 04:48 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-07-30 01:38 - 2015-07-18 04:47 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-07-30 01:38 - 2015-07-18 04:22 - 00539216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-07-30 01:38 - 2015-07-18 03:48 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-30 01:38 - 2015-07-18 03:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-07-30 01:38 - 2015-07-18 03:39 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-07-30 01:38 - 2015-07-18 03:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-07-30 01:38 - 2015-07-18 03:33 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-07-30 01:38 - 2015-07-18 03:28 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-07-30 01:38 - 2015-07-18 03:28 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-30 01:38 - 2015-07-18 03:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-07-30 01:38 - 2015-07-18 01:18 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-07-30 01:38 - 2015-07-18 01:17 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-07-30 01:38 - 2015-07-18 01:15 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-07-30 01:38 - 2015-07-18 01:02 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-07-30 01:38 - 2015-07-18 00:54 - 00606392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-07-30 01:38 - 2015-07-18 00:17 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-07-30 01:38 - 2015-07-18 00:13 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-30 01:38 - 2015-07-18 00:09 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-07-30 01:38 - 2015-07-18 00:06 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-07-30 01:38 - 2015-07-18 00:01 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-07-30 01:38 - 2015-07-17 23:59 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-07-30 01:38 - 2015-07-17 23:59 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-07-30 01:38 - 2015-07-17 23:58 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-07-30 01:38 - 2015-07-17 23:57 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-07-30 01:38 - 2015-07-17 23:56 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-07-30 01:38 - 2015-07-17 23:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-07-30 01:38 - 2015-07-17 23:50 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-30 01:38 - 2015-07-17 23:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-07-30 01:38 - 2015-07-17 23:49 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-07-30 01:38 - 2015-07-17 23:49 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-07-30 01:38 - 2015-07-17 23:48 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-07-30 01:38 - 2015-07-17 23:48 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-07-30 01:38 - 2015-07-17 23:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-07-30 01:38 - 2015-07-17 00:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-07-30 01:38 - 2015-07-17 00:17 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-07-30 01:38 - 2015-07-17 00:14 - 02147592 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-07-30 01:38 - 2015-07-17 00:13 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-07-30 01:38 - 2015-07-17 00:12 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-07-30 01:38 - 2015-07-17 00:07 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-07-30 01:38 - 2015-07-17 00:05 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-07-30 01:38 - 2015-07-16 23:07 - 01867672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-07-30 01:38 - 2015-07-16 23:05 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-07-30 01:38 - 2015-07-16 23:03 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-07-30 01:38 - 2015-07-16 22:39 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-07-30 01:38 - 2015-07-16 22:39 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-07-30 01:38 - 2015-07-16 22:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-07-30 01:38 - 2015-07-16 22:33 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-07-30 01:38 - 2015-07-16 22:33 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-07-30 01:38 - 2015-07-16 22:32 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-07-30 01:38 - 2015-07-16 22:26 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-07-30 01:38 - 2015-07-16 22:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-07-30 01:38 - 2015-07-16 22:24 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-07-30 01:38 - 2015-07-16 22:21 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-07-30 01:38 - 2015-07-16 22:19 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-07-30 01:38 - 2015-07-16 22:19 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-07-30 01:38 - 2015-07-16 22:18 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-07-30 01:38 - 2015-07-16 22:16 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-07-30 01:38 - 2015-07-16 22:05 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-07-30 01:38 - 2015-07-16 22:05 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-07-30 01:38 - 2015-07-16 21:56 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-07-30 01:38 - 2015-07-16 21:53 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-07-30 01:38 - 2015-07-16 21:51 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-07-30 01:38 - 2015-07-16 21:50 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-07-30 01:38 - 2015-07-16 21:44 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-07-30 01:38 - 2015-07-16 01:39 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-07-30 01:38 - 2015-07-16 01:34 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-07-30 01:38 - 2015-07-16 00:09 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-07-30 01:38 - 2015-07-16 00:04 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-07-30 01:38 - 2015-07-16 00:03 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-07-30 01:38 - 2015-07-16 00:01 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-07-30 01:38 - 2015-07-15 23:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-07-30 01:38 - 2015-07-15 23:45 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-07-30 01:38 - 2015-07-15 23:41 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-07-30 01:38 - 2015-07-15 23:40 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-07-30 01:38 - 2015-07-15 23:39 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-07-30 01:38 - 2015-07-15 23:36 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-07-30 01:38 - 2015-07-15 23:35 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-07-30 01:38 - 2015-07-15 23:33 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-07-30 01:38 - 2015-07-15 23:32 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-07-30 01:38 - 2015-07-15 23:29 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-30 01:38 - 2015-07-15 23:19 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-07-30 01:38 - 2015-07-14 23:21 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-30 01:38 - 2015-07-14 22:49 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-30 01:38 - 2015-07-14 22:49 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-07-30 01:38 - 2015-07-14 22:16 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-07-30 01:38 - 2015-07-14 22:04 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-07-30 01:38 - 2015-07-14 21:59 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-07-30 01:38 - 2015-07-14 21:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-07-30 01:38 - 2015-07-14 21:43 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-07-30 01:38 - 2015-07-14 21:41 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-07-30 01:38 - 2015-07-14 21:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-07-30 01:38 - 2015-07-14 21:35 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-07-30 01:38 - 2015-07-14 21:34 - 01680896 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-07-30 01:38 - 2015-07-14 21:27 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-07-30 01:38 - 2015-07-13 23:13 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-07-30 01:38 - 2015-07-13 23:00 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-07-30 01:38 - 2015-07-13 22:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-07-30 01:38 - 2015-07-13 22:04 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-07-30 01:38 - 2015-07-13 21:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-07-30 01:38 - 2015-07-13 21:50 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-07-30 01:38 - 2015-07-13 21:49 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-07-30 01:38 - 2015-07-13 21:38 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-07-30 01:38 - 2015-07-13 21:31 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-07-30 01:38 - 2015-07-13 21:20 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-07-30 01:38 - 2015-07-12 20:01 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-07-30 01:38 - 2015-07-12 19:30 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-07-30 01:38 - 2015-07-11 20:38 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-07-30 01:38 - 2015-07-11 20:25 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-07-30 01:38 - 2015-07-11 19:46 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-07-30 01:38 - 2015-07-10 22:24 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-07-30 01:38 - 2015-07-10 21:28 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-07-30 01:38 - 2015-07-10 21:22 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-07-30 01:38 - 2015-07-10 21:21 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-07-30 01:38 - 2015-07-10 21:07 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-07-30 01:38 - 2015-07-10 21:05 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-07-30 01:38 - 2015-07-10 21:03 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-07-30 01:38 - 2015-07-10 21:03 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-30 01:38 - 2015-07-10 21:02 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-07-30 01:38 - 2015-07-10 21:01 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-30 01:38 - 2015-07-10 20:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-07-30 01:38 - 2015-07-10 20:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-07-30 01:38 - 2015-07-10 20:42 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-07-30 01:38 - 2015-07-10 20:41 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-07-30 01:38 - 2015-07-10 20:40 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-30 01:38 - 2015-07-10 20:40 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-30 01:38 - 2015-07-10 20:34 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-07-30 01:38 - 2015-07-10 11:47 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-07-30 01:38 - 2015-07-10 11:00 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-07-30 01:38 - 2015-07-10 10:52 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-07-30 01:38 - 2015-07-10 06:59 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-07-30 01:38 - 2015-07-10 06:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-07-30 01:38 - 2015-07-10 06:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-07-30 01:38 - 2015-07-10 06:05 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-07-30 01:38 - 2015-07-10 05:35 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-07-30 01:38 - 2015-07-10 05:29 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-07-30 01:38 - 2015-07-10 04:38 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-07-30 01:37 - 2015-07-30 01:37 - 00000000 ____D C:\Users\emir\AppData\Local\Sun
2015-07-30 01:31 - 2015-07-30 01:31 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-07-30 01:31 - 2015-07-30 01:31 - 00000000 ____D C:\Users\DefaultAppPool
2015-07-30 01:31 - 2015-07-30 00:49 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 01:31 - 2015-07-30 00:49 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\TuneUp Software
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-30 01:31 - 2015-07-10 07:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-30 01:26 - 2015-07-30 01:26 - 00001051 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
2015-07-30 01:26 - 2015-07-30 01:26 - 00000000 ____D C:\Users\emir\AppData\Local\NetworkTiles
2015-07-30 01:24 - 2015-07-30 01:24 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-07-30 01:21 - 2015-07-30 01:21 - 00000000 ____D C:\Users\emir\AppData\Local\Publishers
2015-07-30 01:18 - 2015-07-30 01:20 - 00000000 ____D C:\Users\emir\AppData\Local\Comms
2015-07-30 01:17 - 2015-08-13 01:40 - 00000000 ____D C:\Users\emir\AppData\Local\Packages
2015-07-30 01:17 - 2015-07-30 01:17 - 00000000 ____D C:\Users\emir\AppData\Local\TileDataLayer
2015-07-30 01:16 - 2015-07-30 01:16 - 00000258 __RSH C:\Users\emir\ntuser.pol
2015-07-30 01:16 - 2015-07-30 01:16 - 00000020 ___SH C:\Users\emir\ntuser.ini
2015-07-30 01:07 - 2015-07-30 01:07 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-07-30 00:56 - 2015-07-10 06:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-07-30 00:49 - 2015-07-30 00:49 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-07-30 00:49 - 2015-07-30 00:49 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2015-07-30 00:49 - 2015-07-30 00:49 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-07-30 00:40 - 2015-07-30 00:40 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-07-30 00:37 - 2015-08-14 07:10 - 00000000 ____D C:\Users\emir
2015-07-30 00:37 - 2015-07-30 01:17 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-30 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-30 00:36 - 2015-08-16 19:23 - 01006464 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-30 00:35 - 2015-07-30 00:36 - 00021209 _____ C:\WINDOWS\iis.log
2015-07-30 00:35 - 2015-07-30 00:35 - 00961296 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-07-30 00:32 - 2015-07-30 00:51 - 00000000 ____D C:\Program Files\IDT
2015-07-30 00:32 - 2015-07-30 00:32 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-07-30 00:32 - 2015-07-30 00:32 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2015-07-30 00:32 - 2012-01-04 00:37 - 06344704 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNGUI.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 05298688 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNHP.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 04444672 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 01987072 _____ (IDT, Inc.) C:\WINDOWS\system32\stapo64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 01819136 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2015-07-30 00:32 - 2012-01-04 00:37 - 01425408 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 01085440 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNX.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 00654336 ____N (IDT, Inc.) C:\WINDOWS\system32\stapi64.dll
2015-07-30 00:32 - 2012-01-04 00:37 - 00249344 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNJ.exe
2015-07-30 00:32 - 2012-01-04 00:37 - 00223744 _____ (IDT, Inc.) C:\WINDOWS\system32\HPToneCtrls64.dll
2015-07-30 00:32 - 2010-04-01 14:11 - 00162304 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAC64.dll
2015-07-30 00:32 - 2009-10-10 00:45 - 00442368 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTEC64.dll
2015-07-30 00:32 - 2009-03-03 01:58 - 00068608 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAR64.dll
2015-07-30 00:32 - 2009-03-03 01:47 - 00090624 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTCo64.dll
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 ____D C:\Program Files\Synaptics
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-07-30 00:31 - 2015-07-30 00:31 - 00000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-07-30 00:30 - 2015-07-30 00:30 - 00030382 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-07-30 00:29 - 2015-08-13 00:58 - 00167812 _____ C:\WINDOWS\PFRO.log
2015-07-29 23:48 - 2015-07-30 01:08 - 00006477 _____ C:\WINDOWS\comsetup.log
2015-07-29 23:23 - 2015-08-04 22:24 - 00000000 ___HD C:\$Windows.~BT
2015-07-29 23:09 - 2015-08-14 06:02 - 00380964 _____ C:\WINDOWS\diagerr.xml
2015-07-29 23:09 - 2015-08-14 06:02 - 00021180 _____ C:\WINDOWS\diagwrn.xml
2015-07-29 22:51 - 2015-07-29 22:51 - 00000000 ____D C:\Users\emir\AppData\Local\GWX
2015-07-29 17:26 - 2015-08-14 06:01 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64 (2).exe
2015-07-29 17:06 - 2015-07-29 17:06 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64 (1).exe
2015-07-29 17:00 - 2015-05-25 13:00 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-07-29 16:59 - 2015-07-09 13:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-07-29 16:57 - 2015-08-04 22:22 - 19646888 _____ (Microsoft Corporation) C:\Users\emir\Downloads\MediaCreationToolx64.exe
2015-07-29 16:50 - 2015-07-29 16:50 - 00000776 _____ C:\Users\emir\ReserveWindows10.cmd
2015-07-28 11:51 - 2015-08-04 12:30 - 00000000 ____D C:\Users\emir\AppData\Roaming\HpUpdate
2015-07-25 10:00 - 2015-07-30 00:51 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-07-24 10:44 - 2015-07-24 10:44 - 00000000 ____D C:\Users\emir\AppData\Local\{B8EE5CB0-E7FC-4939-9F1E-94E14C48F855}
2015-07-23 18:47 - 2015-08-12 07:24 - 00000000 ____D C:\Users\emir\AppData\Local\Popcorn-Time
2015-07-23 18:46 - 2015-07-30 00:51 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2015-07-23 18:45 - 2015-08-04 22:31 - 00000000 ____D C:\Users\emir\AppData\Local\Popcorn Time
2015-07-23 12:27 - 2015-07-23 12:27 - 00000000 _____ C:\WINDOWS\SysWOW64\REN4FF9.tmp
2015-07-20 18:18 - 2015-08-16 19:42 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-20 18:16 - 2015-07-20 18:16 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-07-20 18:16 - 2015-07-20 18:16 - 00001213 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-07-20 17:56 - 2015-07-30 01:07 - 00003608 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-emir-HP-emir
2015-07-20 17:54 - 2015-07-20 17:54 - 00000000 ____D C:\Users\emir\Documents\Adobe
2015-07-20 17:47 - 2015-07-20 17:47 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-07-20 17:46 - 2015-07-20 17:46 - 00001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2015-07-20 17:46 - 2015-07-20 17:46 - 00000000 ____D C:\Program Files\Adobe
2015-07-20 17:37 - 2015-07-20 17:46 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-07-20 17:31 - 2015-07-20 17:35 - 00000000 ____D C:\ProgramData\Package Cache
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-16 19:45 - 2012-06-16 19:41 - 00000000 ____D C:\Users\emir\AppData\Roaming\Spotify
2015-08-16 19:39 - 2013-07-03 11:10 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-16 19:39 - 2012-06-16 19:42 - 00000000 ____D C:\Users\emir\AppData\Local\Spotify
2015-08-16 19:38 - 2015-07-10 08:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-16 19:37 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-16 19:37 - 2015-07-10 08:20 - 00077295 _____ C:\WINDOWS\setupact.log
2015-08-16 19:37 - 2013-07-03 11:10 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-16 19:36 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-16 19:36 - 2015-07-10 05:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-16 19:36 - 2012-07-16 10:34 - 00000904 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job
2015-08-16 19:36 - 2012-07-16 10:34 - 00000852 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job
2015-08-16 19:20 - 2012-03-20 18:59 - 00000000 ____D C:\Users\emir\AppData\Local\Adobe
2015-08-16 19:20 - 2012-03-06 16:22 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A39AF485-2FF1-415D-B218-4ADC49AB0028}
2015-08-14 08:28 - 2015-07-10 08:20 - 04862024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-14 08:15 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-14 08:07 - 2012-08-15 22:31 - 00000000 ____D C:\Users\emir\AppData\Roaming\Skype
2015-08-14 08:04 - 2012-07-06 18:27 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-14 07:54 - 2015-06-29 13:28 - 00000914 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job
2015-08-14 07:11 - 2015-07-10 05:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-14 06:32 - 2013-09-25 11:11 - 00000000 ____D C:\Users\emir\AppData\Local\NETGEARGenie
2015-08-14 06:02 - 2015-07-10 08:20 - 00000863 _____ C:\WINDOWS\setuperr.log
2015-08-13 08:54 - 2015-06-29 13:28 - 00000862 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job
2015-08-13 02:24 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-13 01:32 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-13 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-08-13 00:41 - 2012-10-06 00:46 - 00000000 ____D C:\ProgramData\ICQ
2015-08-12 08:54 - 2012-09-10 13:02 - 00000000 ____D C:\Users\emir\AppData\Roaming\SoftGrid Client
2015-08-12 08:50 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-08-11 14:24 - 2012-03-20 15:51 - 00000000 ____D C:\Users\emir\Documents\qs
2015-08-11 14:23 - 2015-05-05 08:58 - 00002564 _____ C:\Users\emir\Desktop\Quotestream.lnk
2015-08-11 08:09 - 2012-06-08 13:08 - 00000000 ____D C:\Users\emir\AppData\Roaming\vlc
2015-08-09 23:15 - 2012-05-16 14:57 - 00000000 ____D C:\Users\emir\AppData\Roaming\tixati
2015-08-09 12:22 - 2012-05-24 23:05 - 00000000 ___RD C:\Users\emir\Dropbox
2015-08-08 08:32 - 2015-04-27 08:45 - 00000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-08-06 16:25 - 2015-04-20 14:41 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-08-06 16:25 - 2015-04-20 14:40 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-05 15:27 - 2012-03-07 15:10 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-08-02 14:33 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
2015-07-30 08:59 - 2014-03-10 14:23 - 00000000 ____D C:\ProgramData\Bitdefender
2015-07-30 08:50 - 2013-03-14 14:08 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2015-07-30 08:48 - 2012-05-24 23:04 - 00000000 ____D C:\Users\emir\AppData\Roaming\Dropbox
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-30 08:38 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-07-30 08:38 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-07-30 08:38 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-07-30 08:30 - 2013-03-14 14:34 - 00000000 ____D C:\Program Files\Bitdefender
2015-07-30 08:28 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-07-30 08:25 - 2011-09-23 11:48 - 00000000 ____D C:\Program Files (x86)\Intel
2015-07-30 08:18 - 2011-10-14 05:37 - 00614088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-07-30 04:28 - 2015-07-10 07:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-07-30 04:14 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-07-30 04:14 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-07-30 04:14 - 2015-07-10 07:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-07-30 04:14 - 2015-07-10 07:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-07-30 04:14 - 2015-07-10 07:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-07-30 04:14 - 2015-07-10 07:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-07-30 04:14 - 2015-07-10 07:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-07-30 04:14 - 2015-07-10 07:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-07-30 04:14 - 2015-07-10 07:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-07-30 04:14 - 2015-07-10 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-07-30 04:14 - 2015-07-10 07:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-07-30 01:28 - 2015-07-10 09:12 - 00000000 ____D C:\WINDOWS\OCR
2015-07-30 01:20 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-07-30 01:20 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-07-30 01:19 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-07-30 01:19 - 2012-07-17 13:34 - 00002047 _____ C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Uninstall .lnk
2015-07-30 01:16 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-07-30 01:08 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Registration
2015-07-30 01:07 - 2015-06-29 13:28 - 00003992 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA
2015-07-30 01:07 - 2015-06-29 13:28 - 00003596 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core
2015-07-30 01:07 - 2015-06-23 10:14 - 00003628 _____ C:\WINDOWS\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8
2015-07-30 01:07 - 2015-04-27 08:45 - 00003992 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-07-30 01:07 - 2014-12-29 07:51 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-07-30 01:07 - 2013-07-03 11:10 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-30 01:07 - 2013-07-03 11:10 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-30 01:07 - 2012-08-29 14:26 - 00002880 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-07-30 01:07 - 2012-07-16 10:34 - 00003982 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA
2015-07-30 01:07 - 2012-07-16 10:34 - 00003586 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core
2015-07-30 01:07 - 2012-07-06 18:27 - 00003878 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-07-30 01:07 - 2012-06-08 12:56 - 00003316 _____ C:\WINDOWS\System32\Tasks\Windows Codec Update Service
2015-07-30 01:07 - 2012-03-06 15:28 - 00003300 _____ C:\WINDOWS\System32\Tasks\SidebarExecute
2015-07-30 01:07 - 2011-09-23 12:02 - 00003258 _____ C:\WINDOWS\System32\Tasks\MirageAgent
2015-07-30 01:06 - 2015-07-10 07:04 - 00000000 __RSD C:\WINDOWS\Media
2015-07-30 01:06 - 2015-07-10 07:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-07-30 01:00 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-07-30 00:54 - 2009-07-13 23:20 - 00000000 ____D C:\Users\Default.migrated
2015-07-30 00:51 - 2015-07-15 11:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-07-30 00:51 - 2015-07-10 07:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:51 - 2015-07-08 11:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-07-30 00:51 - 2015-07-01 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-07-30 00:51 - 2015-05-27 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-07-30 00:51 - 2015-04-20 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-30 00:51 - 2015-04-04 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
2015-07-30 00:51 - 2015-01-19 19:29 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2015-07-30 00:51 - 2014-10-15 23:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMATPrep
2015-07-30 00:51 - 2014-09-14 18:01 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
2015-07-30 00:51 - 2014-03-22 11:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serviio
2015-07-30 00:51 - 2013-12-05 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-07-30 00:51 - 2013-10-30 17:39 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Voice Changer Software
2015-07-30 00:51 - 2013-10-30 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2015-07-30 00:51 - 2013-10-21 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DvrClient
2015-07-30 00:51 - 2013-10-21 13:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1 Step Remote Viewing
2015-07-30 00:51 - 2013-10-13 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-07-30 00:51 - 2013-07-22 11:07 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
2015-07-30 00:51 - 2013-07-22 11:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2015-07-30 00:51 - 2013-07-22 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-07-30 00:51 - 2013-07-21 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Passware
2015-07-30 00:51 - 2013-03-14 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-07-30 00:51 - 2013-03-14 04:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-07-30 00:51 - 2013-02-14 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-07-30 00:51 - 2013-01-31 18:53 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AirParrot
2015-07-30 00:51 - 2013-01-31 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixMeister
2015-07-30 00:51 - 2012-12-12 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Light-O-Rama
2015-07-30 00:51 - 2012-11-30 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DIRECTV2PC
2015-07-30 00:51 - 2012-11-30 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DIRECTV2PC Playback Advisor
2015-07-30 00:51 - 2012-10-06 00:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-07-30 00:51 - 2012-09-04 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-07-30 00:51 - 2012-08-29 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-07-30 00:51 - 2012-07-17 13:49 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-30 00:51 - 2012-07-17 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-30 00:51 - 2012-07-17 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities
2015-07-30 00:51 - 2012-07-16 10:34 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-30 00:51 - 2012-06-08 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-07-30 00:51 - 2012-06-08 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essentials Codec Pack
2015-07-30 00:51 - 2012-04-12 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
2015-07-30 00:51 - 2012-04-12 12:53 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2015-07-30 00:51 - 2012-03-08 16:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2015-07-30 00:51 - 2011-09-23 12:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2015-07-30 00:51 - 2011-09-23 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Energy Star
2015-07-30 00:51 - 2011-09-23 11:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-07-30 00:51 - 2011-06-21 15:41 - 00000000 ____D C:\WINDOWS\en
2015-07-30 00:51 - 2011-06-21 15:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-07-30 00:51 - 2011-06-21 15:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
2015-07-30 00:51 - 2011-06-21 15:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-07-30 00:51 - 2011-06-21 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
2015-07-30 00:51 - 2010-11-03 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Theft Protection
2015-07-30 00:51 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-07-30 00:49 - 2015-07-10 07:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-07-30 00:49 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:49 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-30 00:49 - 2015-07-10 05:05 - 00000000 __RHD C:\Users\Default
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-07-30 00:43 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-07-30 00:43 - 2011-09-23 11:50 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-07-30 00:43 - 2011-06-21 15:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-07-30 00:42 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\schemas
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Resources
2015-07-30 00:41 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-07-30 00:41 - 2015-04-20 03:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-07-30 00:41 - 2015-04-11 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJI Product
2015-07-30 00:41 - 2014-04-24 06:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnvSoft
2015-07-30 00:41 - 2014-04-24 06:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2015-07-30 00:41 - 2013-10-30 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Bee
2015-07-30 00:41 - 2013-10-21 15:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVR Soft
2015-07-30 00:41 - 2013-09-25 11:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR
2015-07-30 00:41 - 2013-07-26 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-07-30 00:41 - 2013-03-07 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2015-07-30 00:41 - 2012-09-10 13:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2015-07-30 00:41 - 2012-03-19 10:35 - 00000000 ____D C:\ProgramData\Intel
2015-07-30 00:41 - 2011-09-23 12:41 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-07-30 00:41 - 2011-09-23 12:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2015-07-30 00:41 - 2011-06-21 15:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio
2015-07-30 00:41 - 2011-06-21 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music and Media
2015-07-30 00:40 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-07-30 00:40 - 2015-07-10 07:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-07-30 00:40 - 2011-09-23 12:03 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2015-07-30 00:40 - 2011-09-23 11:53 - 00000000 ____D C:\Program Files\Intel
2015-07-30 00:40 - 2011-06-21 15:29 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-07-30 00:40 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-07-30 00:40 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-07-30 00:39 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-07-30 00:39 - 2009-07-13 23:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-07-30 00:38 - 2013-03-12 08:28 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Serato
2015-07-30 00:38 - 2012-06-08 13:47 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-07-30 00:38 - 2012-05-16 14:57 - 00000000 ____D C:\Users\emir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2015-07-30 00:35 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-07-29 23:55 - 2011-09-23 11:52 - 01566675 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-07-29 23:32 - 2009-07-14 00:45 - 00032064 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-29 23:32 - 2009-07-14 00:45 - 00032064 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-29 17:01 - 2012-10-06 00:52 - 00384512 ___SH C:\Users\emir\Thumbs.db
2015-07-28 20:54 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2015-07-28 11:52 - 2013-09-25 11:39 - 00000000 ____D C:\Program Files (x86)\HP
2015-07-28 11:50 - 2011-09-23 11:55 - 00000000 ____D C:\WINDOWS\Hewlett-Packard
2015-07-27 20:36 - 2012-03-08 16:17 - 00000000 ____D C:\Users\emir\AppData\Local\CrashDumps
2015-07-23 12:29 - 2013-09-25 10:46 - 00000000 ____D C:\ProgramData\Oracle
2015-07-23 12:27 - 2015-04-20 14:29 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-23 12:25 - 2015-07-08 11:45 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-07-23 12:25 - 2011-06-21 15:45 - 00000000 ____D C:\Program Files\Java
2015-07-20 18:48 - 2011-06-21 15:42 - 00000000 ____D C:\ProgramData\Adobe
2015-07-20 18:18 - 2012-03-06 16:23 - 00000000 ____D C:\Users\emir\AppData\Roaming\Adobe
2015-07-20 18:15 - 2013-05-13 12:07 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-07-20 17:54 - 2012-03-06 16:21 - 00063744 _____ C:\Users\emir\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-20 17:44 - 2012-03-06 15:41 - 00000000 ____D C:\Program Files (x86)\CMMBSecurities
==================== Files in the root of some directories =======
2013-10-30 17:24 - 2013-10-30 17:25 - 0001181 _____ () C:\Users\emir\AppData\Roaming\trace_FilterInstaller.txt
2013-10-30 17:24 - 2013-10-30 17:24 - 0000000 _____ () C:\Users\emir\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2015-08-16 19:35 - 2015-08-16 19:35 - 0000000 ____H () C:\Users\emir\AppData\Local\BIT5C6A.tmp
2015-08-04 22:25 - 2015-08-04 22:31 - 13545694 _____ () C:\Users\emir\AppData\Local\package.nw.new
2014-03-22 11:46 - 2014-03-22 11:46 - 0001485 _____ () C:\Users\emir\AppData\Local\recently-used.xbel
2015-08-16 19:16 - 2015-08-16 19:33 - 0000000 _____ () C:\Users\emir\AppData\Local\{08B44E72-5A23-43E8-8DDB-2090AE919D42}
2015-07-30 09:00 - 2015-07-30 09:00 - 0517374 _____ () C:\ProgramData\1438260563.bdinstall.bin
2013-09-25 11:38 - 2013-09-25 11:49 - 0000357 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\emir\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp_2bwht.dll
C:\Users\emir\AppData\Local\Temp\GUR1D96.exe
C:\Users\emir\AppData\Local\Temp\GUR85FA.exe
C:\Users\emir\AppData\Local\Temp\GURCF1D.exe
C:\Users\emir\AppData\Local\Temp\i4jdel0.exe
C:\Users\emir\AppData\Local\Temp\Quarantine.exe
C:\Users\emir\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-08-12 07:40
==================== End of log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version:12-08-2015
Ran by emir (2015-08-16 19:48:37)
Running from C:\Users\emir\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2749324444-3110066803-3346981281-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2749324444-3110066803-3346981281-503 - Limited - Disabled)
emir (S-1-5-21-2749324444-3110066803-3346981281-1000 - Administrator - Enabled) => C:\Users\emir
Guest (S-1-5-21-2749324444-3110066803-3346981281-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2749324444-3110066803-3346981281-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
1 Step Remote Viewing 1.0 (HKLM-x32\...\1 Step Remote Viewing_is1) (Version: - cwdLimited, Inc.)
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.1.3.121 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95 - WildTangent) Hidden
AirParrot (HKLM\...\{6C4958DF-4B1A-4290-947B-5F6AFDC74398}) (Version: 1.1.3 - Squirrels)
AirPort (HKLM-x32\...\{AA68AAAE-41F0-40B5-8896-5947F5FD6889}) (Version: 5.6.1.2 - Apple Inc.)
Any Video Converter 5.5.8 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ask Toolbar for Epson (HKLM-x32\...\{45504E32-5637-006A-76A7-A758B70C1D00}) (Version: 12.29.0.1883 - APN, LLC) <==== ATTENTION
Asterisk Key 10.0 (HKLM-x32\...\asterisk key) (Version: - )
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version: - Audacity Team)
AuthenTec TrueAPI (Version: 1.3.0.144 - AuthenTec, Inc.) Hidden
AV Voice Changer Software 7.0 (HKLM-x32\...\AV Voice Changer Software 7.0) (Version: 7.0.56 - AVSOFT Corp.)
AVG 2012 (Version: 12.0.1913 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2171 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2176 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2178 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2180 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2193 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2195 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2197 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2221 - AVG Technologies) Hidden
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bejeweled 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}) (Version: 7.0.610.0 - Microsoft Corporation)
Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.470.0 - Microsoft Corporation)
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 19.2.0.142 - Bitdefender)
Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Blasterball 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Blio (HKLM-x32\...\{9368DDD5-CE7F-4BD7-A83A-F00FABE338EC}) (Version: 2.2.6699 - K-NFB Reading Technology, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
C4400 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.22 - Piriform)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.1.3908 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0316 - DT Soft Ltd)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden
DIRECTV2PC Playback Advisor (HKLM-x32\...\InstallShield_{479F8C12-576B-4A58-AB78-4B70F7012AA8}) (Version: 1.0 - CyberLink Corp.)
DIRECTV2PC Playback Advisor (x32 Version: 1.0 - CyberLink Corp.) Hidden
DIRECTV2PC (HKLM-x32\...\InstallShield_{E9B10AA5-E5F6-4DEF-A435-FB20704AF1E8}) (Version: 2.0.7507 - CyberLink Corp.)
DIRECTV2PC (x32 Version: 2.0.7507 - CyberLink Corp.) Hidden
DJI driver version 2.02 (HKLM-x32\...\{EDFDE5EE-84C7-4936-804C-6563943E5754}_is1) (Version: 2.02 - DJI)
DJI Phantom 2 Vision Assistant version 3.8 (HKLM-x32\...\{EDCE7221-F31F-407A-B348-30D011ED3126}_is1) (Version: 3.8 - DJI)
DJI RC System Assistant version 1.2 (HKLM-x32\...\{2849F48E-8A08-4C43-AC8D-97A367F0DCB6}_is1) (Version: 1.2 - DJI)
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Download Navigator (HKLM-x32\...\{3A3A3B34-6EA2-4031-8580-D66D29533E89}) (Version: 3.4.0 - SEIKO EPSON CORPORATION)
Dropbox (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Dropbox) (Version: 3.6.9 - Dropbox, Inc.)
DVD Architect Studio 5.0 (HKLM-x32\...\{E3D1078F-9660-11E2-9E28-F04DA23A5C58}) (Version: 5.0.178 - Sony)
DvrClient (HKLM-x32\...\{3B25FE53-D528-42E7-83D8-226C8D81A276}) (Version: 1.2.43 - DVR Soft)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON NX430 Series Printer Uninstall (HKLM\...\EPSON NX430 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
Evernote v. 4.2.2 (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 4.2.2.3979 - Evernote Corp.)
Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden
FATE - The Traitor Soul (x32 Version: 2.2.0.95 - WildTangent) Hidden
FileZilla Client 3.5.3 (HKLM-x32\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)
Freemake Video Converter version 3.0.2 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 3.0.2 - Ellora Assets Corporation)
GEAR driver installer for AMD64 and Intel EM64T (HKLM\...\{50CBBEC7-1010-41C5-8718-A1A6FEDD9C3A}) (Version: 2.003.1 - GEAR Software, Inc.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
GMATPrep (HKLM-x32\...\GMATPrep 2.3.322) (Version: 2.3.322 - Graduate Management Admission Council (GMAC))
Google Chrome (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Google Chrome) (Version: 44.0.2403.125 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Guard.ICQ (HKLM-x32\...\Guard.Mail.ru) (Version: - Mail.ru) <==== ATTENTION
HandBrake 0.9.8 (HKLM-x32\...\HandBrake) (Version: 0.9.8 - )
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{5601F151-A69F-4E30-8C60-37928124CD07}) (Version: 4.1.9.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{795AADBF-58C2-42D0-B779-E730702A247E}) (Version: 4.0.45.1 - Hewlett-Packard Company)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Documentation (HKLM-x32\...\{3C5AB11A-2DDB-49E6-9FC0-CFD88A7DDFE4}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.4 - WildTangent)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Photosmart C4400 All-In-One Driver Software 13.0 Rel. 3 (HKLM\...\{8181C5B7-2FF5-4677-BA6A-8E2C3F5A7601}) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Power Manager (HKLM-x32\...\{E44578C7-4667-4124-8BC2-1161BCA54978}) (Version: 1.4.4 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{285F722C-0E45-47DE-B38E-5B3B10FA4A7C}) (Version: 2.5.2 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{210A03F5-B2ED-4947-B27E-516F50CBB292}) (Version: 8.6.4530.3651 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13231.3673 - Hewlett-Packard Company)
HP SimplePass 2011 (HKLM-x32\...\{4741965C-AFD0-4D00-81D1-1039F96D4DC3}) (Version: 5.3.0.273 - Hewlett-Packard)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Software Framework (HKLM-x32\...\{28FE073B-1230-4BF6-830C-7434FD0C0069}) (Version: 4.1.13.1 - Hewlett-Packard Company)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6381.0 - IDT)
Intel PROSet Wireless (x32 Version: - ) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Intel® Wireless Display (HKLM-x32\...\{5B46CEC7-DAD0-46A2-BCD6-B46A3CFD9B61}) (Version: 2.0.30.0 - Intel Corporation)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.15 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Light-O-Rama (HKLM-x32\...\{E744BFEA-E027-441E-83A2-36202F661E31}) (Version: 3.9.0 - Light-O-Rama)
Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5131.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MixMeister BPM Analyzer 1.0 (HKLM-x32\...\MixMeister BPM Analyzer_is1) (Version: - MixMeister Technology LLC)
MixMeister Studio Demo 7.4.4 (HKLM-x32\...\mmssetup_is1) (Version: - MixMeister Technology LLC)
MorphVOX Pro (HKLM-x32\...\{2D7CF073-6583-464A-84D4-F86DE59DCA42}) (Version: 4.4.8 - Screaming Bee)
Movie Studio Platinum 12.0 (64-bit) (HKLM\...\{6BE763B0-958D-11E2-A440-F04DA23A5C58}) (Version: 12.0.896 - Sony)
Movie Studio Platinum 13.0 (HKLM-x32\...\{C07796C0-7C69-11E3-8E39-F04DA23A5C58}) (Version: 13.0.878 - Sony)
Mozilla Firefox 35.0.1 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 en-GB)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.2.28.24.exe - NETGEAR Inc.)
NETGEAR USB Control Center (HKLM-x32\...\{4528B812-FF2C-4E3A-A9EA-1ECB483BF03A}) (Version: 1.32 - NETGEAR)
NirSoft Wireless Network Watcher (HKLM-x32\...\NirSoft Wireless Network Watcher) (Version: - )
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Opera Stable 31.0.1889.99 (HKLM-x32\...\Opera 31.0.1889.99) (Version: 31.0.1889.99 - Opera Software)
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: - )
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden
Popcorn Time (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Popcorn Time) (Version: - Popcorn Official)
PS_AIO_03_C4400_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Rane SL 4 (ver. 1.0.1f4) (HKLM\...\RaneAsioSL4_is1) (Version: - Rane Corporation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 2.0.0 - Hewlett-Packard) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.19.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller Pro 3.0.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.2 - VS Revo Group, Ltd.)
RoxioNow Player (HKLM-x32\...\{0EDEB615-1A60-425E-8306-0E10519C7B55}) (Version: 1.9.5.103 - RoxioNow)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Scratch Live 2.4.4 (18) (HKLM-x32\...\{5B4DA057-7C39-4CBF-BD5D-85ED16A8D8D2}) (Version: 2.4.4 - Serato Inc LP)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Serviio (HKLM\...\Serviio) (Version: - )
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Slingo Supreme (x32 Version: 2.2.0.95 - WildTangent) Hidden
SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sound Forge Audio Studio 10.0 (HKLM-x32\...\{75648F62-925B-11E2-B9EF-F04DA23A5C58}) (Version: 10.0.245 - Sony)
Spotify (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\Spotify) (Version: 1.0.9.133.gcedaee38 - Spotify AB)
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Validity WBF DDK (HKLM\...\{79174AF2-6CB1-42F5-981E-66DCA49391D0}) (Version: 4.3.205.0 - Validity Sensors, Inc.)
Video Player (x32 Version: 1.2.9 - DVR Soft) Hidden <==== ATTENTION
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voxal Voice Changer (HKLM-x32\...\Voxal) (Version: 1.02 - NCH Software)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.02 - NCH Software)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Wheel of Fortune 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games App (HP Games) (x32 Version: 4.0.5.2 - WildTangent) Hidden
Windows Driver Package - dji-innovations inc. (usbser) Ports (12/06/2012 5.1.2600.5512) (HKLM\...\F731C4A8B354FB9B7579C5D98402D2F988E8B95C) (Version: 12/06/2012 5.1.2600.5512 - dji-innovations inc.)
Windows Essentials Media Codec Pack 4.0 [64-Bit] (HKLM-x32\...\Windows Essentials Media Codec Pack) (Version: 4.0 - Media Codec)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinUtilities 10.52 Professional Edition (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043009}_is1) (Version: - YL Computing, Inc)
WinUtilities 10.53 Free Edition (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043010}_is1) (Version: - YL Computing, Inc)
WinX Video Converter 5.0.5 (HKLM-x32\...\WinX Video Converter_is1) (Version: - Digiarty Software, Inc.)
Wondershare Streaming Audio Recorder(Build 2.1.0.0) (HKLM-x32\...\Wondershare Streaming Audio Recorder_is1) (Version: 2.1.0.0 - Wondershare Software Co.,Ltd.)
XBMC (HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\XBMC) (Version: - Team XBMC)
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\emir\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_3\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\emir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\emir\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File
==================== Restore Points =========================
30-07-2015 01:16:11 Windows Modules Installer
06-08-2015 09:37:35 Windows Modules Installer
12-08-2015 15:09:40 Restore Operation
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-20 18:07 - 2015-08-16 19:34 - 00000698 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0275D93A-D882-4736-8466-FCB6DAFBEFC8} - System32\Tasks\AdobeAAMUpdater-1.0-emir-HP-emir => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-05-26] (Adobe Systems Incorporated)
Task: {05268B7A-C092-417D-AF77-850B6CEB3714} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {0A5B4BCA-EE91-4625-A26F-297854B55C53} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {1028D72F-FC26-4C34-805A-5B954664A6DC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {1641F54C-1E57-4902-AB65-EE2B65E5629D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {196BE614-78F7-481C-A42E-43AEC3EED51E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1CE49C2D-03A9-4B4A-8B43-D9C179787CE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-03] (Google Inc.)
Task: {1D3D099E-EE1E-4907-8BA2-BA8F12D11AA6} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2015-07-10] (Microsoft Corporation)
Task: {250A9329-6D88-40A6-BF48-54136EA1DA3D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {28BC07C0-53B8-442C-9D34-024A6CA91943} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {2A5CD751-53E1-4BFF-B188-73078BAD3D25} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2BB8E94A-3A93-4235-8FCC-F7CE212174A9} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {2C97A00A-1C5C-4318-B5CC-8A1A126B77F9} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
Task: {2D4EF3F4-3D70-4D6C-8633-1B25143A9672} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-03-08] (CyberLink)
Task: {3B8752B3-7480-4795-B07B-0B153EC99B54} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {3BE33C65-DB54-4F34-A1C4-7C94F25890F4} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {401100A2-E033-47E2-9287-73B17C9679EE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16] (Google Inc.)
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {41DD5B13-B8BE-4998-95BE-7621D0847066} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
Task: {4280E8D1-B944-444B-967B-594C7C1FA934} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4454A8D0-2E4E-4A02-BF67-48DF6A7BFAB4} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask
Task: {44B2738A-6589-40D9-917C-CFDCDFD38652} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {4CC9E10C-382E-4C29-BBEA-ABA4AA7499DF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {57210348-CDA2-4D9B-BF11-BACDAEC49A1C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {5E5515C1-7D87-4904-B9CE-FD29EB2ADB72} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync
Task: {5FFC0E3C-567A-42ED-9953-0BD4A4A9DFA3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-08-22] (Piriform Ltd)
Task: {611C823C-437B-46E7-9683-5312DFFCFD7B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {61CA2BAC-BBFB-4B56-82C3-562328E3A3CD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16] (Google Inc.)
Task: {644D9CE3-5AD2-4FF1-8C67-39B40B45B6BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {646C1C23-56B7-4644-B930-5D41B625D111} - System32\Tasks\Windows Codec Update Service => C:\Program Files (x86)\Essentials Codec Pack\WECPUpdate.exe [2012-02-03] (MediaCodec.Org)
Task: {65694927-9AF7-45F4-B789-AFC3D8226D93} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2015-04-26] (Apple Inc.)
Task: {659CE942-C08A-4E1D-B67D-03AF6B6FE207} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {66142C5A-900D-454B-B659-014A8074DC0B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {6723AF95-483F-4D31-9516-9E373745B4F5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {67554929-F1F6-4640-9980-0B1D78B8391A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {6AF87191-0F57-4EAC-BCCE-C7A6211552A8} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6BF15CFE-D373-43B0-A8E8-0CF992642924} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {6CF5CB0E-69CA-47EE-BB43-2F6925B97BF4} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe [2015-07-15] (Adobe Systems Incorporated)
Task: {6F67005E-BE57-44A3-83A2-D55E7EE56A7B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-03] (Google Inc.)
Task: {711EE2F9-A611-4773-AF8E-D4B278A6718D} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {744C9FEA-08B7-43E1-A729-0F94647D655C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {74805F74-CBCF-4AF6-9B2B-C71FA626ACC0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7A003965-A297-4DC6-B15B-852D798391E0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\Windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
Task: {820AFCAF-B2F6-4B4E-9CE5-A8415599B33F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {848DCC36-520C-4946-BF68-C7EFFEFA2F84} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
Task: {87463296-FC69-4AF1-A21E-150CCF414D09} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [2013-11-04] (Hewlett-Packard Company)
Task: {8D0F46DC-1185-4E2C-9C72-3509719AE6FF} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-07-14] (Microsoft Corporation)
Task: {912355CE-F23E-4CF5-90AD-BE579E854BF9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A364E297-00AD-490D-900E-22AC34598C71} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AAB70D87-C4CF-4BC6-88B3-B040DAF816E1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {AC29E64E-3271-47BA-B8F1-914523CF379B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update
Task: {B1258828-FED6-4126-B09B-4331F94B5231} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {B1AAFB89-66FD-4914-B58F-741C920FE777} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {B1D5776B-ADF4-4DE0-AD85-33CB7C600081} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {B9B36D41-C776-424E-9A13-5387E17A2CEB} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2015-07-10] (Microsoft Corporation)
Task: {BCF158EF-9EC8-4CC8-8918-E080A3C8B543} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {C2162702-FFEB-48C0-AA5F-2DA3A8887D61} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation
Task: {C2A4C5B9-1D68-436B-930E-8ABD9D603B6B} - System32\Tasks\HPCeeScheduleForemir => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C62DE5C8-7FD9-4914-BE63-7C53D0D6A3A3} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {C6C19158-11BC-4324-8FF4-E71639A82B3C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {C87C9005-D391-4C45-9068-270279ED75F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-15] (Adobe Systems Incorporated)
Task: {CD2C63FF-B388-4676-9EED-3DA3732FCBCF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D10F2DEF-0465-481C-BBE9-ACE604218CD1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {D2401052-A382-42DE-9C79-D1CF3563F654} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation
Task: {DAD3ADDF-9E69-4D7C-8581-B97E7643BFAA} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {DAF2BAE3-1C5B-4CB5-9F62-0911C031A15A} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2015-07-10] (Microsoft Corporation)
Task: {E16A76EE-E953-431A-A2CC-582E291031A7} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {E1AED1EB-4F6E-479A-8EF9-00CA8186566C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {E3297DC9-57A0-4E1A-88D8-D2C37A45B15A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {E62FAB8B-A5AC-4211-9C91-CACE8B601ABA} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
Task: {E63A817F-EC9E-4BBB-931C-C98E6B206848} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {E7D51BF4-AB91-4491-B257-96FCC2BCED77} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {E947AD4E-39B4-4AA1-B482-DDDC0844736F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E9CA85CE-ED3C-4DB6-96DE-3115E709C049} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {EA3F661E-B31C-44A9-B40C-E3D5D56149D4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2015-07-16] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job => C:\Users\emir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000Core.job => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2749324444-3110066803-3346981281-1000UA.job => C:\Users\emir\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForemir.job => 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
==================== Loaded Modules (Whitelisted) ==============
2015-07-30 01:38 - 2015-07-14 22:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-30 08:57 - 2015-04-22 16:55 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2015-07-30 08:57 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2015-07-30 08:58 - 2015-07-28 19:06 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2015-07-30 08:57 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2015-07-30 08:57 - 2015-07-21 15:39 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpbr.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 00743000 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpdsp.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 02795272 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpph.mdl
2015-07-30 08:57 - 2015-07-21 15:39 - 01414048 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttprbl.mdl
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2009-09-17 19:40 - 2009-09-17 19:40 - 00075048 ____N () C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
2015-07-30 01:38 - 2015-07-10 21:22 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2014-03-20 21:57 - 2014-03-20 21:57 - 00359936 _____ () C:\Program Files\Serviio\bin\ServiioService.exe
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-30 01:39 - 2015-07-18 01:19 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-06-13 14:17 - 2015-06-13 14:17 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-30 01:39 - 2015-07-23 22:25 - 06576640 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 07:00 - 2015-07-10 09:14 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-07-30 01:39 - 2015-07-23 22:23 - 01806848 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-07-30 01:39 - 2015-07-23 22:23 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-30 08:24 - 2015-07-30 08:24 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-04-07 07:38 - 2013-04-07 07:38 - 01044224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
2014-03-20 21:57 - 2014-03-20 21:57 - 00399360 _____ () C:\Program Files\Serviio\bin\ServiioConsole.exe
2012-09-20 17:57 - 2012-09-20 17:57 - 04139008 _____ () C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
2013-04-07 07:42 - 2013-04-07 07:42 - 00123136 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
2015-06-13 14:16 - 2015-06-13 14:16 - 31404192 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-05-15 16:27 - 2015-05-15 16:27 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00011362 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\mingwm10.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00043008 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libgcc_s_dw2-1.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 02537472 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtCore4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 09814016 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtGui4.dll
2013-06-04 21:22 - 2013-06-04 21:22 - 00481280 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\Genie.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00399360 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtXml4.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 01553920 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SvtNetworkTool.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 01140224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtNetwork4.dll
2013-05-09 23:12 - 2013-05-09 23:12 - 00229888 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Airprint.dll
2013-03-27 04:43 - 2013-03-27 04:43 - 01067520 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Internet.dll
2013-05-28 02:21 - 2013-05-28 02:21 - 04334592 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Map.dll
2013-03-27 04:52 - 2013-03-27 04:52 - 00500736 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_NetworkProblem.dll
2013-03-27 04:50 - 2013-03-27 04:50 - 00186368 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DragonNetTool.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 01198080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_ParentalControl.dll
2013-05-14 22:56 - 2013-05-14 22:56 - 08432128 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Resource.dll
2013-04-28 02:25 - 2013-04-28 02:25 - 01205760 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_RouterConfiguration.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 00088064 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QRCode.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 00641536 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Statistics.dll
2013-05-14 01:18 - 2013-05-14 01:18 - 00931840 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Ui.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00438272 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Wireless.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00083456 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qgif4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00083456 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qico4.dll
2013-02-19 02:46 - 2013-02-19 02:46 - 00287232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qjpeg4.dll
2013-03-27 04:42 - 2013-03-27 04:42 - 00137728 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnosePlugin.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00139264 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnoseDll.dll
2012-11-29 05:56 - 2012-11-29 05:56 - 03332720 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\drivers\libntgr_api.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00072192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SVTUtils.DLL
2013-03-26 22:58 - 2013-03-26 22:58 - 00074752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NetcardApi.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00136704 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\airprintdll.dll
2013-03-27 04:51 - 2013-03-27 04:51 - 00714240 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_Update.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00485376 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_WirelessExport.dll
2013-03-27 04:49 - 2013-03-27 04:49 - 00116224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupApiPlugin.dll
2013-03-26 22:58 - 2013-03-26 22:58 - 00066560 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupDll.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 41287224 _____ () C:\Users\emir\AppData\Roaming\Spotify\libcef.dll
2015-08-16 19:40 - 2015-08-16 19:40 - 00043008 _____ () c:\users\emir\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp_2bwht.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00750080 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00047616 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00865280 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 17:45 - 2015-03-19 03:15 - 00200704 _____ () C:\Users\emir\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2015-07-29 18:41 - 2015-07-25 04:46 - 01405768 _____ () C:\Users\emir\AppData\Local\Google\Chrome\Application\44.0.2403.125\libglesv2.dll
2015-07-29 18:41 - 2015-07-25 04:46 - 00081224 _____ () C:\Users\emir\AppData\Local\Google\Chrome\Application\44.0.2403.125\libegl.dll
2015-06-09 22:36 - 2015-06-09 22:36 - 36732592 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 01488440 _____ () C:\Users\emir\AppData\Roaming\Spotify\libglesv2.dll
2015-03-18 14:20 - 2015-07-15 16:22 - 00079928 _____ () C:\Users\emir\AppData\Roaming\Spotify\libegl.dll
2015-03-18 14:20 - 2015-03-18 14:20 - 09305656 _____ () C:\Users\emir\AppData\Roaming\Spotify\pdf.dll
2015-08-02 14:13 - 2015-08-02 14:13 - 00172544 _____ () C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1865c610e4f6355862bc377619741d44\IsdiInterop.ni.dll
2011-09-23 11:48 - 2011-05-20 11:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:0B4227B4
AlternateDataStreams: C:\Users\emir\Downloads\ariskkey.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\avc-free.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\AVSVideoEditor.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\bitdefender_tsecurity (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\bitdefender_tsecurity (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u21.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u25.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\chromeinstall-7u55.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\epson14860.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\gimp-2.8.10-setup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GMATPrep-2.3.322-Windows (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GMATPrep-2.3.322-Windows.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthPluginSetup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthPluginSetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\GoogleEarthSetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\guiminer-20121203.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_flashplayer11x32au_mssa_aaa_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_flashplayer13x32au_mssa_aaa_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\install_reader11_es_mssd_aih.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\iTunes64Setup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jdk-8u45-windows-x64.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jre-7u25-windows-i586.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jre-7u51-windows-i586.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jxpiinstall(2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\jxpiinstall(3).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\KernelPasswordUnmask.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64 (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64 (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\MediaCreationToolx64.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\mining_proxy.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\moviestudiope12.0.896_64bit.suite.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\moviestudiope13.0.878_32-bit.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\NETGEARGenie-install.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Opera_NI_stable.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\PokerStarsInstall (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\PS_AIO_03_C4400_NonNet_Full_Win_WW_130_140.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\serviio-1.4.1.2-win-setup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Shockwave_Installer_Slim (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Shockwave_Installer_Slim.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\sp43935.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\sp58226.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\SpotifySetup (1).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\SpotifySetup (2).exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\spybot-2.2.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\tixati-1.95-1.win32-install.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\Unconfirmed 22632.crdownload:BDU
AlternateDataStreams: C:\Users\emir\Downloads\vxlsetup.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\winx-free-video-converter.exe:BDU
AlternateDataStreams: C:\Users\emir\Downloads\wnetwatcher_setup.exe:BDU
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\...\123simsen.com -> www.123simsen.com
There are 7864 more restricted sites.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2749324444-3110066803-3346981281-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\emir\Desktop\shaina\rrgh40_516535ba3d28f.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{32129213-F27C-4BB2-9B3A-6BB5AB8E1F66}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{AEFC00DB-5E31-4AE3-BD74-08DC34357C12}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C2A294AD-C28B-4DE4-9C62-81AAFF8C99FC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{66CB07D9-2DB9-4C1C-B5B4-616A2544C3EB}] => (Allow) C:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{656C87C1-D1E2-4B22-9DC3-9CE955E65EC2}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{1EBC68CC-795D-4D39-B8D7-BD9B03FBB08F}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [UDP Query User{62F00302-736B-4612-A51A-2F8EBE6DC3E8}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{1868DC34-EBF9-46BE-A5AC-8F4541526FCF}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{9A42DB7A-2CE9-41FF-AE04-31969E32C8D3}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{9ED2E1C5-9394-440C-A8BA-9E50FD3EED26}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{52325B30-B189-45A2-B6B5-A0CEEF416527}C:\program files (x86)\netgear\usb control center\control center.exe] => (Block) C:\program files (x86)\netgear\usb control center\control center.exe
FirewallRules: [TCP Query User{F907D10E-0C25-4B7D-B349-50868DDC6B77}C:\program files (x86)\netgear\usb control center\control center.exe] => (Block) C:\program files (x86)\netgear\usb control center\control center.exe
FirewallRules: [{901C536D-7157-4A2E-92B5-EBA37DCA01B2}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{B186FADF-D33C-4F93-8710-B337CC074950}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{18F32B11-23D7-4D46-AE05-2C8FE120B791}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{EC153A95-5B8B-4CE5-90B2-D02B7CF5F3F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{F788BE79-62D7-491F-831F-63B24729613D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{AECBFC82-5307-4FD9-B772-F3F521B67F6C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{211C909D-CFDD-4126-8138-5DF52CC4BB98}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{6E9EFFE2-9385-4AA9-B5C7-8D37EBBBFC42}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{B03BAFD5-1A3F-4950-B27C-E344B833814F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{75053B87-21D6-4D33-9436-96B2601F0BA7}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{39DE4EB2-7C01-462C-A5BD-FF3E10FC7CF0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{498C11DC-7C24-453C-93F6-062B38EFC2EF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{E104BBB7-F1F1-4020-A421-48E9626DF30A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{DF5BAA9D-01FA-4D5F-8500-C6910478C946}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{EE2BF635-8E29-41D8-8ACA-8B0750B69A27}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{7B6B34AA-33DA-460A-8C48-09E3DAC830FA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{A38E66B5-816B-45D5-8880-73602DD60006}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{E654B050-A343-48C0-9B0B-4B78956FA302}] => (Allow) LPort=7423
FirewallRules: [{265CDFB2-56D5-4FF6-920B-E268D9BEFE65}] => (Allow) C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
FirewallRules: [{44AD9262-202E-48C5-A086-E7F5A4C14AE1}] => (Allow) C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe
FirewallRules: [{2A64486F-25BA-444D-BA5C-A217F6595856}] => (Allow) C:\Program Files (x86)\AirPort\APAgent.exe
FirewallRules: [{B0138C95-1F9C-448B-82D0-3958C3CB291C}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\Kernel\CLML\VDTVRec.exe
FirewallRules: [{77826DA6-B05C-4F82-BCC5-7D8F50FCCA0A}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\VDTV.exe
FirewallRules: [{7569C53E-0F72-4567-9996-D149A3D9F56D}] => (Allow) C:\Program Files (x86)\DirecTV\DirecTV\DIRECTV2PC.exe
FirewallRules: [UDP Query User{4EA6B76F-2999-4862-8B1F-327CB754ECB3}C:\users\emir\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\emir\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{7179C89C-9EC7-4403-90FA-A5B36321DC45}C:\users\emir\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\emir\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [{0C3891A4-736E-4DE9-A228-B3BDF192E3F1}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{85D789CC-431D-4F1A-A2B1-F3622247D744}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{2ADBD0EA-3E1A-438D-AFD6-FFA1FAB4AB58}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{B9EBA313-DDE9-4FBF-B3A3-D23E2743038C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{19FB0E38-63C4-4479-90D0-0AFF1576C20F}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{AF3D7B70-73FC-4DB3-94C7-A15B5ECB452C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{5A266551-3A64-4C4E-9DE9-8BDD6DFE298D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{057E1797-75ED-492A-A390-C910A1E20CED}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E2FEF8A5-DED5-4101-AE39-7DAA5A6DF601}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{27A76959-1D7A-4830-9413-D380FD6A9686}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{AECD8B6C-4BBF-47F6-9663-C6D49318C531}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{E6154C10-BA46-4A43-BAF6-2E3CD6B55750}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [{16215392-F824-49CD-86D9-FBBD52375A36}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{01B27C99-69BB-4350-90D2-7CDD4D668052}C:\users\emir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\emir\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{4DD4A5A6-2992-41B9-9BFF-BDDE8F0FFC66}C:\users\emir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\emir\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{DE304784-C630-4E3B-BA61-7FEEF1FFE0C0}C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{7CE6AAC0-E586-4A87-B7D4-CC42FC148F3F}C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\emir\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{E0D8F14E-2C7B-4372-8C87-5E1C4CB65FF5}] => (Allow) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{32737E34-4ECB-4D91-82A1-9A3B0C406637}] => (Allow) C:\Users\emir\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{C01E5C48-855C-47EA-A4C8-B422DD51973D}] => (Allow) C:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{92376824-DCB3-439E-9CD8-A928543D4475}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{7D265A73-A4C7-4D29-8A59-351A98C40D20}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [UDP Query User{46567092-BACC-4EF2-BD85-6D5F36A8896C}C:\program files (x86)\tixati\tixati.exe] => (Allow) C:\program files (x86)\tixati\tixati.exe
FirewallRules: [TCP Query User{CDA09C33-6342-4F09-96C6-6245E1829729}C:\program files (x86)\tixati\tixati.exe] => (Allow) C:\program files (x86)\tixati\tixati.exe
FirewallRules: [{EF38292B-E529-4196-BC28-393D6BE4221C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{AF3B971E-CF5B-460F-AC92-1F9883FEC837}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [UDP Query User{8BEABE2B-3C7B-4519-9C4D-A0189AC5CB3C}C:\program files (x86)\xbmc\xbmc.exe] => (Allow) C:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [TCP Query User{E0C91C1E-4C1B-448D-839E-54EAD535A66F}C:\program files (x86)\xbmc\xbmc.exe] => (Allow) C:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [{FE733C99-E551-4AF8-8E98-A45DEC91F510}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{10E49532-BFB2-402D-AE42-D9D84A13828B}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel Wireless Display\WiDiApp.exe
FirewallRules: [{E8E4F810-9E4B-4680-9169-7CC3E414DE06}] => (Allow) C:\Program Files (x86)\EasyBits For Kids\ezDesktop.exe
FirewallRules: [{E248442D-ACB2-4DE2-B52E-625F57627040}] => (Allow) C:\Windows\system32\ezSharedSvcHost.exe
FirewallRules: [{54E8B167-0B45-44C1-8DF3-9500776B81A0}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{D2EE4647-263B-4861-8645-C6F1E0EFCB42}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{A4434578-0F65-4073-9D0D-96CF7A796ADF}] => (Allow) LPort=1900
FirewallRules: [{3A027150-1368-4FE4-A8B8-9B6AF833E2C2}] => (Allow) LPort=2869
FirewallRules: [{D7776677-CD4C-465A-8017-7F99230EFD62}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{F81DB3FF-48CF-4B03-9E61-EA74B9BCE4E9}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\RoxioNow\RNow.exe
FirewallRules: [{77D7C794-AE1D-4E44-95B4-A6DFBA3D7E63}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\RoxioNow\RNow.exe
FirewallRules: [{9EDA278D-1263-47F1-AC93-0AE70F780010}] => (Allow) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowShell.exe
FirewallRules: [{F9C300F8-DF28-4FE0-AFFE-718F8E01D2AC}] => (Allow) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowShell.exe
FirewallRules: [TCP Query User{86966CDC-8149-4DA0-9918-B90A66B031B7}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{4E80A35D-6237-4F4C-B760-2F3030692F81}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{4DB57E7D-A4AB-4322-AAA0-39097F44925E}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{0F033E85-EB29-489C-89B8-7E2F44AB7EB9}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (08/16/2015 07:48:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: emir-HP)
Description: Package Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI was terminated because it took too long to suspend.
Error: (08/16/2015 07:48:35 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
Error: (08/16/2015 07:40:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
Error: (08/16/2015 07:40:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353 17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
Error: (08/16/2015 07:37:53 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (08/16/2015 07:35:14 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: emir-HP)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (08/16/2015 07:17:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
Error: (08/16/2015 07:17:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353 17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
Error: (08/14/2015 08:53:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13266
Error: (08/14/2015 08:53:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13266
System errors:
=============
Error: (08/16/2015 07:45:06 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The HP Support Assistant Service service hung on starting.
Error: (08/16/2015 07:37:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The MBAMService service failed to start due to the following error:
%%1053
Error: (08/16/2015 07:37:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the MBAMService service to connect.
Error: (08/16/2015 07:37:19 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error:
%%1058
Error: (08/16/2015 07:35:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Sync Host_Session2 service to connect.
Error: (08/16/2015 07:35:14 PM) (Source: DCOM) (EventID: 10010) (User: emir-HP)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
Error: (08/16/2015 07:35:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_Session2 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
Error: (08/14/2015 08:52:50 AM) (Source: DCOM) (EventID: 10010) (User: emir-HP)
Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca
Error: (08/14/2015 08:52:50 AM) (Source: DCOM) (EventID: 10010) (User: emir-HP)
Description: App.AppX9s1cz53zc86xn39kwrb02jyft9ecn62r.mca
Error: (08/14/2015 08:52:46 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
Microsoft Office:
=========================
Error: (08/16/2015 07:48:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: emir-HP)
Description: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI
Error: (08/16/2015 07:48:35 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The operation timed out
Error: (08/16/2015 07:40:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
Error: (08/16/2015 07:40:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353 17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
Error: (08/16/2015 07:37:53 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (08/16/2015 07:35:14 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: emir-HP)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927141
Error: (08/16/2015 07:17:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 4.1.168.192.in-addr.arpa. PTR emir-HP.local.
Error: (08/16/2015 07:17:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353 17 4.1.168.192.in-addr.arpa. PTR emir-HP-2.local.
Error: (08/14/2015 08:53:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13266
Error: (08/14/2015 08:53:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13266
CodeIntegrity:
===================================
Date: 2015-07-30 08:38:13.475
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 08:38:13.452
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 08:38:13.380
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 08:38:13.248
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 08:38:13.223
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 08:38:13.118
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 01:30:48.149
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 01:30:48.131
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 01:30:47.541
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-07-30 01:30:47.524
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel® Core i3-2330M CPU @ 2.20GHz
Percentage of memory in use: 56%
Total physical RAM: 4043.86 MB
Available physical RAM: 1760.94 MB
Total Virtual: 8139.86 MB
Available Virtual: 5558.09 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:581.59 GB) (Free:55.07 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:14.29 GB) (Free:1.57 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.04 GB) FAT32
Drive g: (Spanish 1 1.3) (CDROM) (Total:4.02 GB) (Free:0 GB) CDFS
Drive h: () (Removable) (Total:29.47 GB) (Free:25.01 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 7ADEB7CE)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=581.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
========================================================
Disk: 1 (Size: 29.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of log ============================