Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

seems computer infected great find [Solved]

Started by coro71 , Aug 19 2015 07:42 PM

greatfind

This topic is locked

#1
coro71

Posted 19 August 2015 - 07:42 PM

Member

Member
23 posts

Hi again, i dont remember when was the last time I posted an issue, but I can always rely on you guys to help us fixing our problems.

I noticed days ago this pop up ad from great find. I ran malwarebytes, it found it and when finished the files were deleted/quaranteened but when re-started computer this ad was still showing (even here in the forum!) anyway, any help is really appreciated, below is ftst and addition reports. thanks again

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:20-08-2015

Ran by COROPELI (administrator) on COROPELI-LACTOC (19-08-2015 21:30:25)

Running from C:\Users\COROPELI\Desktop

Loaded Profiles: COROPELI & DefaultAppPool (Available Profiles: COROPELI & Jenny Cucalon & lucia & Guest & DefaultAppPool)

Platform: Windows 10 Home (X64) Language: English (United States)

Internet Explorer Version 11 (Default browser: FF)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe

(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe

(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe

(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe

(Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe

(CinemaNow, Inc.) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

(Microsoft Corporation) C:\Windows\System32\mqsvc.exe

(NETGEAR) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe

(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(CyberLink) C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe

(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe

(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe

(NDS Technologies) C:\Users\COROPELI\AppData\Local\DIRECTV Player\PCShowServerPMWrapper.exe

() C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

(Microsoft Corporation) C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\OneDrive.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

(PKWARE, Inc.) C:\Program Files (x86)\PKWARE\PKZIPM\12.00.0018\PKTray.exe

() C:\Users\COROPELI\AppData\Local\DIRECTV Player\NDSPCShowServer.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

() C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe

(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

(DivX, LLC) C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe

(Microsoft Corporation) C:\Windows\System32\rundll32.exe

() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.803.16240.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-11-17] (IDT, Inc.)

HKLM\...\Run: [IntelWireless] => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray

HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-17] (Synaptics Incorporated)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)

HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [587320 2011-06-14] (Hewlett-Packard Development Company, L.P.)

HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448520 2015-06-24] (DivX, LLC)

HKLM-x32\...\Run: [AllShare Control] => C:\Program Files (x86)\Samsung\AllShare Control\AllShare Control

HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)

HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)

HKLM-x32\...\Run: [] => [X]

HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)

HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861640 2015-06-26] (DivX, LLC)

Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)

HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)

HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\Run: [Google Update] => C:\Users\COROPELI\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-24] (Google Inc.)

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\Run: [cdloader] => C:\Users\COROPELI\AppData\Roaming\mjusbsp\cdloader2.exe [51592 2014-07-04] (magicJack L.P.)

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\Run: [PCShowServer] => C:\Users\COROPELI\AppData\Local\DIRECTV Player\PCShowServerPMWrapper.exe [524976 2012-08-16] (NDS Technologies)

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\Run: [NETGEARGenie] => C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [1044224 2013-04-07] ()

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\Run: [OneDrive] => C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\OneDrive.exe [402632 2015-07-31] (Microsoft Corporation)

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\RunOnce: [Uninstall C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)

HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [43816 2015-04-26] (Apple Inc.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2014-09-17]

ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SecureZIP Attachments Status.lnk [2014-11-02]

ShortcutTarget: SecureZIP Attachments Status.lnk -> C:\Program Files (x86)\PKWARE\PKZIPM\12.00.0018\PKTray.exe (PKWARE, Inc.)

ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)

ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)

ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)

ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?ocid=UP74DHP&pc=UP74&dt=022613

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT/1

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/1me10IE10ENUS/WOL_WCP

HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

SearchScopes: HKLM -> DefaultScope {FB50EE60-FC4A-49EC-A984-86EB9696ABDD} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox

SearchScopes: HKLM -> {156D0F02-7341-4C20-BECE-C29E5950DC32} URL = hxxp://www.ask.com/web?q={searchterms}&l=dis&o=ushpl

SearchScopes: HKLM -> {CD35011E-C008-44A8-BDA7-734398B99D43} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF

SearchScopes: HKLM -> {F920F6D0-453B-44A4-9B91-D97D3A9404D0} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}

SearchScopes: HKLM -> {FB50EE60-FC4A-49EC-A984-86EB9696ABDD} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox

SearchScopes: HKLM-x32 -> DefaultScope value is missing

SearchScopes: HKLM-x32 -> {156D0F02-7341-4C20-BECE-C29E5950DC32} URL = hxxp://www.ask.com/web?q={searchterms}&l=dis&o=ushpl

SearchScopes: HKLM-x32 -> {CD35011E-C008-44A8-BDA7-734398B99D43} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF

SearchScopes: HKLM-x32 -> {F920F6D0-453B-44A4-9B91-D97D3A9404D0} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}

SearchScopes: HKLM-x32 -> {FB50EE60-FC4A-49EC-A984-86EB9696ABDD} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox

SearchScopes: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001 -> {156D0F02-7341-4C20-BECE-C29E5950DC32} URL = hxxp://www.ask.com/web?q={searchterms}&l=dis&o=ushpl

SearchScopes: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001 -> {CD35011E-C008-44A8-BDA7-734398B99D43} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF

SearchScopes: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001 -> {F920F6D0-453B-44A4-9B91-D97D3A9404D0} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}

SearchScopes: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001 -> {FB50EE60-FC4A-49EC-A984-86EB9696ABDD} URL =

BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll [2011-11-08] (Oracle Corporation)

BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.)

BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)

BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10] (Microsoft Corporation)

BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14] (Oracle Corporation)

BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.)

Toolbar: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File

DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://jpass11.bnymellon.com/dana-cached/sc/JuniperSetupClient.cab

Handler-x32: intu-help-qb3 - {c5e479ea-0a65-4b05-8c6c-2fc8cc682eb4} - c:\Program Files (x86)\Intuit\QuickBooks 2010\HelpAsyncPluggableProtocol.dll [2013-07-04] (Intuit, Inc.)

Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\WINDOWS\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)

Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-09-27] (Skype Technologies S.A.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{0dc6dfe5-d399-4bfb-8c75-62efa1e4884a}: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{4fce8cb6-91c1-4f4a-b6ad-3c02c1e2dc33}: [NameServer] 0.0.0.0

FireFox:

========

FF ProfilePath: C:\Users\COROPELI\AppData\Roaming\Mozilla\Firefox\Profiles\pi4hnzmj.default-1396992405681

FF DefaultSearchEngine.US: Google

FF Homepage: about:home

FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()

FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)

FF Plugin: @java.com/DTPlugin,version=10.2.1 -> C:\Windows\system32\npDeployJava1.dll [2011-11-08] (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\new_plugin\npjp2.dll [2011-11-08] (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.2.1 -> C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\new_plugin\npjp2.dll [2011-11-08] (Oracle Corporation)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ [2015-07-28] ()

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.)

FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()

FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)

FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2015-06-29] (DivX, LLC)

FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)

FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-04-14] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll [No File]

FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-04-14] (Oracle Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ [2015-07-28] ()

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: @hulu.com/Hulu Desktop -> C:\Users\COROPELI\AppData\Local\HuluDesktop\instances\0.9.14.1\nphdplg.dll [2010-08-12] (Hulu LLC)

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: @nds.com/PCShowPlugin -> C:\Users\COROPELI\AppData\Local\DIRECTV Player\npPCShowPlugin.dll No File

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: @nds.com/PlayerPlugin -> C:\Users\COROPELI\AppData\Local\DIRECTV Player\npPlayerPlugin.dll [2012-08-16] (NDS)

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\COROPELI\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: @talk.google.com/O1DPlugin -> C:\Users\COROPELI\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: @tools.google.com/Google Update;version=3 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: @tools.google.com/Google Update;version=9 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\COROPELI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-10-19] (Unity Technologies ApS)

FF Plugin HKU\S-1-5-21-3818685460-2404108218-3579297747-1001: NDS.com/PlayerPlugin -> C:\Users\COROPELI\AppData\Local\DIRECTV Player\npPlayerPlugin.dll [2012-08-16] (NDS)

FF user.js: detected! => C:\Users\COROPELI\AppData\Roaming\Mozilla\Firefox\Profiles\pi4hnzmj.default-1396992405681\user.js [2015-08-10]

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2014-12-07] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2014-12-07] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2014-12-07] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2014-12-07] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2014-12-07] (Apple Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\COROPELI\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)

FF Plugin ProgramFiles/Appdata: C:\Users\COROPELI\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)

FF Extension: Personas Plus - C:\Users\COROPELI\AppData\Roaming\Mozilla\Firefox\Profiles\pi4hnzmj.default-1396992405681\Extensions\[email protected] [2014-09-08]

FF Extension: Great Find - C:\Users\COROPELI\AppData\Roaming\Mozilla\Firefox\Profiles\pi4hnzmj.default-1396992405681\Extensions\{bad9042c-c888-4b64-b77b-ad4e4dbf6831}.xpi [2015-08-10]

FF Extension: Skype extension - C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2015-08-19]

FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext

FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-09-17]

FF HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:

=======

CHR Profile: C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Angry Birds) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-08-22]

CHR Extension: (Google Docs) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-06]

CHR Extension: (Google Drive) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-06]

CHR Extension: (YouTube) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-06]

CHR Extension: (Google Search) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-06]

CHR Extension: (Little Alchemy light) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlinaifoeodggjcfoonifcjppkklkdkd [2014-08-22]

CHR Extension: (Isoball 3) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlkcpgcnbhfhpdeooockfaincfkjjj [2014-08-27]

CHR Extension: (Pixlr Editor) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2014-08-17]

CHR Extension: (iPiccy Photo Editor) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\imokeandodnlammaoenbgcnbhigjbpjh [2014-08-18]

CHR Extension: (Blocks) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdnglanfhhkanekkdmakmbegnojgpmnm [2014-08-22]

CHR Extension: (FileThis) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbllbadpemgdidoajfihnijjpeljkofn [2014-09-17]

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-19]

CHR Extension: (Poppit!) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi [2014-08-22]

CHR Extension: (PBS Kids PLAY!) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkmpnidbgboeiebfgmoibgjhopampkj [2014-09-17]

CHR Extension: (Chrome Web Store Payments) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-06]

CHR Extension: (Bubble Popper) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\omaibhlkcnggjafmfnpikoiaeahpojbf [2014-08-22]

CHR Extension: (Gmail) - C:\Users\COROPELI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-06]

CHR HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\COROPELI\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-04-21]

CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2010-09-27]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)

S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)

S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)

R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-01] (Microsoft Corporation)

R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-01] (Microsoft Corporation)

S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)

S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)

S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)

S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)

S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)

R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]

R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]

R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89352 2014-09-15] (Hewlett-Packard Company)

S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-11] (Microsoft Corporation)

S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]

R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)

R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)

S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)

R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-01] (Microsoft Corporation)

R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]

R2 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [232192 2013-04-07] (NETGEAR)

S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)

R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)

R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]

R2 QBCFMonitorService; c:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2009-12-05] (Intuit) [File not signed]

S3 QBFCService; c:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [61440 2009-07-23] (Intuit Inc.) [File not signed]

S3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-11] (Microsoft Corporation)

S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-01] (Microsoft Corporation)

R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)

R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)

R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-17] (Synaptics Incorporated)

S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-01] (Microsoft Corporation)

S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-01] (Microsoft Corporation)

R3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-29] (Microsoft Corporation)

R3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)

S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-01] (Microsoft Corporation)

R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-01] (Microsoft Corporation)

S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)

R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)

R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)

S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)

S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S5 3ware; C:\Windows\System32\drivers\3ware.sys [107360 2015-07-10] (LSI)

R5 ACPI; C:\Windows\System32\drivers\ACPI.sys [565088 2015-08-01] (Microsoft Corporation)

R5 acpiex; C:\Windows\System32\Drivers\acpiex.sys [127840 2015-07-10] (Microsoft Corporation)

S5 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135456 2015-07-10] (PMC-Sierra)

S5 agp440; C:\Windows\System32\drivers\agp440.sys [63328 2015-07-10] (Microsoft Corporation)

R5 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [73976 2015-06-04] (Advanced Micro Devices, Inc.)

S5 amdsata; C:\Windows\System32\drivers\amdsata.sys [83296 2015-07-10] (Advanced Micro Devices)

S5 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2015-07-10] (AMD Technologies Inc.)

S5 amdxata; C:\Windows\System32\drivers\amdxata.sys [26976 2015-07-10] (Advanced Micro Devices)

S5 arcsas; C:\Windows\System32\drivers\arcsas.sys [131936 2015-07-10] (PMC-Sierra, Inc.)

S5 atapi; C:\Windows\System32\drivers\atapi.sys [28512 2015-07-10] (Microsoft Corporation)

S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)

S5 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2015-07-10] (Broadcom Corporation)

R5 CLFS; C:\Windows\System32\drivers\CLFS.sys [380768 2015-07-10] (Microsoft Corporation)

R5 CNG; C:\Windows\System32\Drivers\cng.sys [601344 2015-08-01] (Microsoft Corporation)

R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)

R5 disk; C:\Windows\System32\drivers\disk.sys [101216 2015-07-10] (Microsoft Corporation)

S5 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)

R5 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [88928 2015-07-10] (Microsoft Corporation)

S5 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [116576 2015-07-10] (Microsoft Corporation)

R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)

R5 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [83808 2015-07-10] (Microsoft Corporation)

R5 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [368992 2015-07-10] (Microsoft Corporation)

U5 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [31072 2015-07-10] (Microsoft Corporation)

R5 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [633184 2015-07-10] (Microsoft Corporation)

S5 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [66912 2015-07-10] (Microsoft Corporation)

S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)

R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)

R5 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30008 2011-05-13] (Hewlett-Packard Company)

S5 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2015-07-10] (Hewlett-Packard Company)

S5 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [29024 2015-07-10] (Microsoft Corporation)

R5 iaStor; C:\Windows\System32\drivers\iaStor.sys [540696 2010-04-13] (Intel Corporation)

S5 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [673120 2015-07-10] (Intel Corporation)

S5 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2015-07-10] (Intel Corporation)

S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)

S5 intelide; C:\Windows\System32\drivers\intelide.sys [19296 2015-07-10] (Microsoft Corporation)

S5 intelpep; C:\Windows\System32\drivers\intelpep.sys [43872 2015-07-10] (Microsoft Corporation)

S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)

S5 isapnp; C:\Windows\System32\drivers\isapnp.sys [22368 2015-07-10] (Microsoft Corporation)

R5 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [131424 2015-07-10] (Microsoft Corporation)

R5 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [158560 2015-07-10] (Microsoft Corporation)

S5 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108896 2015-07-10] (LSI Corporation)

S5 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [104800 2015-07-10] (LSI Corporation)

S5 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)

S5 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2015-07-10] (LSI Corporation)

R2 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [109272 2015-06-18] (Malwarebytes Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)

S5 megasas; C:\Windows\System32\drivers\megasas.sys [59744 2015-07-10] (Avago Technologies)

S5 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2015-07-10] (LSI Corporation, Inc.)

S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)

R5 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [102752 2015-08-04] (Microsoft Corporation)

R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-01] (Microsoft Corporation)

R5 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [19296 2015-07-10] (Microsoft Corporation)

R5 Mup; C:\Windows\System32\Drivers\mup.sys [118624 2015-07-10] (Microsoft Corporation)

S5 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2015-07-10] (Marvell Semiconductor, Inc.)

S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)

R5 NDIS; C:\Windows\System32\drivers\ndis.sys [1168736 2015-08-01] (Microsoft Corporation)

U5 NETw5s64; C:\Windows\System32\Drivers\NETw5s64.sys [7680512 2010-03-18] (Intel Corporation)

R2 NPF; C:\Windows\system32\drivers\npf.sys [35344 2013-06-23] (CACE Technologies, Inc.)

S5 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2015-07-10] (NVIDIA Corporation)

S5 nvstor; C:\Windows\System32\drivers\nvstor.sys [166240 2015-07-10] (NVIDIA Corporation)

S5 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [126304 2015-07-10] (Microsoft Corporation)

R5 partmgr; C:\Windows\System32\drivers\partmgr.sys [117088 2015-07-10] (Microsoft Corporation)

R5 pci; C:\Windows\System32\drivers\pci.sys [325984 2015-08-01] (Microsoft Corporation)

S5 pciide; C:\Windows\System32\drivers\pciide.sys [15712 2015-07-10] (Microsoft Corporation)

S5 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [118112 2015-07-10] (Microsoft Corporation)

R5 pcw; C:\Windows\System32\drivers\pcw.sys [51552 2015-07-10] (Microsoft Corporation)

R5 pdc; C:\Windows\System32\drivers\pdc.sys [98144 2015-07-10] (Microsoft Corporation)

S5 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58208 2015-07-10] (LSI Corporation)

S5 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [58720 2015-07-10] (Avago Technologies)

R5 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [237392 2015-08-05] (Microsoft Corporation)

S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd)

R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )

S5 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [109920 2015-07-10] (Microsoft Corporation)

S5 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2015-07-10] (Silicon Integrated Systems Corp.)

S5 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2015-07-10] (Silicon Integrated Systems)

R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-17] (Synaptics Incorporated)

R5 spaceport; C:\Windows\System32\drivers\spaceport.sys [474464 2015-07-10] (Microsoft Corporation)

S5 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2015-07-10] (Promise Technology, Inc.)

S5 storahci; C:\Windows\System32\drivers\storahci.sys [133984 2015-07-10] (Microsoft Corporation)

S5 storflt; C:\Windows\System32\drivers\vmstorfl.sys [45920 2015-07-10] (Microsoft Corporation)

R5 stornvme; C:\Windows\System32\drivers\stornvme.sys [80720 2015-08-11] (Microsoft Corporation)

R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)

S5 storufs; C:\Windows\System32\drivers\storufs.sys [40288 2015-07-10] (Microsoft Corporation)

S5 storvsc; C:\Windows\System32\drivers\storvsc.sys [36192 2015-07-10] (Microsoft Corporation)

R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)

R5 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2430816 2015-07-10] (Microsoft Corporation)

S5 uagp35; C:\Windows\System32\drivers\uagp35.sys [66400 2015-07-10] (Microsoft Corporation)

S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)

S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-01] (Microsoft Corporation)

S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()

S5 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [66912 2015-07-10] (Microsoft Corporation)

R5 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [42848 2015-07-10] (Microsoft Corporation)

S5 vmbus; C:\Windows\System32\drivers\vmbus.sys [125792 2015-07-10] (Microsoft Corporation)

R5 volmgr; C:\Windows\System32\drivers\volmgr.sys [81248 2015-07-10] (Microsoft Corporation)

R5 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [370016 2015-07-10] (Microsoft Corporation)

R5 volsnap; C:\Windows\System32\drivers\volsnap.sys [378720 2015-07-10] (Microsoft Corporation)

S5 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166752 2015-07-10] (VIA Technologies Inc.,Ltd)

S5 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2015-07-10] (VIA Corporation)

S5 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)

R5 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [892224 2015-07-10] (Microsoft Corporation)

R5 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)

R5 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [153440 2015-07-10] (Microsoft Corporation)

R5 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)

R5 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)

S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)

S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)

R5 Wof; C:\Windows\System32\Drivers\Wof.sys [200528 2015-08-05] (Microsoft Corporation)

S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)

S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)

U3 idsvc; no ImagePath

S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)

NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)

NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)

NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)

NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-19 21:30 - 2015-08-19 21:31 - 00045040 _____ C:\Users\COROPELI\Desktop\FRST.txt

2015-08-19 21:29 - 2015-08-19 21:29 - 00016148 _____ C:\WINDOWS\system32\COROPELI-LACTOC_COROPELI_HistoryPrediction.bin

2015-08-19 21:15 - 2015-08-19 21:15 - 00000000 ___HD C:\OneDriveTemp

2015-08-19 20:26 - 2015-08-19 21:30 - 00000000 ____D C:\FRST

2015-08-19 20:25 - 2015-08-19 20:26 - 02173952 _____ (Farbar) C:\Users\COROPELI\Desktop\FRST64.exe

2015-08-19 19:45 - 2015-08-19 19:45 - 00016148 _____ C:\WINDOWS\system32\COROPELI-LACTOC_Jenny Cucalon_HistoryPrediction.bin

2015-08-19 12:35 - 2015-08-19 21:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-08-19 11:00 - 2015-08-13 00:33 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-08-19 11:00 - 2015-08-13 00:23 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2015-08-19 11:00 - 2015-08-13 00:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll

2015-08-19 11:00 - 2015-08-13 00:17 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll

2015-08-19 11:00 - 2015-08-13 00:07 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-08-19 11:00 - 2015-08-11 06:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2015-08-19 11:00 - 2015-08-11 06:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll

2015-08-19 11:00 - 2015-08-11 06:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe

2015-08-19 11:00 - 2015-08-11 05:57 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-08-19 11:00 - 2015-08-11 05:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2015-08-19 11:00 - 2015-08-11 05:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2015-08-19 11:00 - 2015-08-11 05:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-08-19 11:00 - 2015-08-11 05:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2015-08-19 11:00 - 2015-08-11 05:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe

2015-08-19 11:00 - 2015-08-11 05:31 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-08-19 11:00 - 2015-08-11 05:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-08-19 11:00 - 2015-08-11 05:22 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-08-19 11:00 - 2015-08-11 05:20 - 02224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2015-08-19 11:00 - 2015-08-11 05:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-08-19 11:00 - 2015-08-11 05:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll

2015-08-19 11:00 - 2015-08-11 05:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll

2015-08-19 11:00 - 2015-08-11 05:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll

2015-08-19 11:00 - 2015-08-11 05:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2015-08-19 11:00 - 2015-08-11 05:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll

2015-08-19 11:00 - 2015-08-11 05:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-08-19 11:00 - 2015-08-11 05:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2015-08-19 11:00 - 2015-08-11 05:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll

2015-08-19 11:00 - 2015-08-11 05:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2015-08-19 11:00 - 2015-08-11 05:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll

2015-08-19 11:00 - 2015-08-11 05:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2015-08-19 11:00 - 2015-08-11 05:02 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-08-19 11:00 - 2015-08-11 05:02 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2015-08-19 11:00 - 2015-08-11 05:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2015-08-19 11:00 - 2015-08-11 04:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-08-19 11:00 - 2015-08-11 04:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-08-19 11:00 - 2015-08-11 04:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll

2015-08-19 11:00 - 2015-08-11 04:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2015-08-19 11:00 - 2015-08-11 04:45 - 18805760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-08-19 11:00 - 2015-08-11 04:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll

2015-08-19 11:00 - 2015-08-11 04:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2015-08-19 11:00 - 2015-08-11 04:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2015-08-19 11:00 - 2015-08-11 04:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2015-08-19 11:00 - 2015-08-11 04:40 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2015-08-19 10:59 - 2015-08-13 00:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2015-08-19 10:59 - 2015-08-12 23:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2015-08-19 10:59 - 2015-08-11 06:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-08-19 10:59 - 2015-08-11 06:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2015-08-19 10:59 - 2015-08-11 06:03 - 08021840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-08-19 10:59 - 2015-08-11 06:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys

2015-08-19 10:59 - 2015-08-11 06:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys

2015-08-19 10:59 - 2015-08-11 05:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll

2015-08-19 10:59 - 2015-08-11 05:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll

2015-08-19 10:59 - 2015-08-11 05:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll

2015-08-19 10:59 - 2015-08-11 05:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-08-19 10:59 - 2015-08-11 05:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll

2015-08-19 10:59 - 2015-08-11 05:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll

2015-08-19 10:59 - 2015-08-11 05:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll

2015-08-19 10:59 - 2015-08-11 05:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll

2015-08-19 10:59 - 2015-08-11 05:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe

2015-08-19 10:59 - 2015-08-11 05:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2015-08-19 10:59 - 2015-08-11 05:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll

2015-08-19 10:59 - 2015-08-11 05:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll

2015-08-19 10:59 - 2015-08-11 05:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2015-08-19 10:59 - 2015-08-11 05:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2015-08-19 10:59 - 2015-08-11 05:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe

2015-08-19 10:59 - 2015-08-11 05:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll

2015-08-19 10:59 - 2015-08-11 05:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll

2015-08-19 10:59 - 2015-08-11 05:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll

2015-08-19 10:59 - 2015-08-11 05:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll

2015-08-19 10:59 - 2015-08-11 05:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2015-08-19 10:59 - 2015-08-11 05:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll

2015-08-19 10:59 - 2015-08-11 05:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2015-08-19 10:59 - 2015-08-11 05:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll

2015-08-19 10:59 - 2015-08-11 04:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll

2015-08-19 10:59 - 2015-08-11 04:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll

2015-08-19 10:59 - 2015-08-11 04:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll

2015-08-19 10:59 - 2015-08-11 04:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll

2015-08-19 10:59 - 2015-08-11 04:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll

2015-08-19 10:59 - 2015-08-11 04:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll

2015-08-19 10:59 - 2015-08-11 04:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe

2015-08-19 10:59 - 2015-08-11 04:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll

2015-08-19 10:59 - 2015-08-11 04:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2015-08-19 10:59 - 2015-08-11 04:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2015-08-19 10:59 - 2015-08-11 04:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll

2015-08-19 10:59 - 2015-08-11 04:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2015-08-19 10:59 - 2015-08-11 04:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2015-08-19 10:59 - 2015-08-11 04:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2015-08-19 10:59 - 2015-08-11 04:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll

2015-08-18 22:22 - 2015-08-18 22:22 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\5DA20167.sys

2015-08-18 21:24 - 2015-08-18 21:24 - 00151552 _____ C:\Users\Jenny Cucalon\Downloads\Leeloesmuylindo.pps

2015-08-18 07:11 - 2015-08-18 07:11 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\48724895.sys

2015-08-18 06:22 - 2015-08-18 06:22 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\3239229F.sys

2015-08-18 00:05 - 2015-08-18 00:05 - 01458176 _____ C:\Users\Jenny Cucalon\Downloads\Calma_mi_paso_Senor.pps

2015-08-14 23:48 - 2015-08-14 23:48 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Roaming\HpUpdate

2015-08-12 09:57 - 2015-08-12 09:57 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7

2015-08-12 09:53 - 2015-08-12 09:53 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\Apple Computer

2015-08-12 09:48 - 2015-08-12 09:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

2015-08-11 20:44 - 2015-08-11 20:45 - 00001090 _____ C:\Users\COROPELI\Desktop\magicJack.lnk

2015-08-11 20:42 - 2015-08-11 20:42 - 00000000 ____D C:\WINDOWS\PCHEALTH

2015-08-11 17:06 - 2015-08-02 22:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2015-08-11 17:06 - 2015-08-02 22:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-08-11 17:06 - 2015-08-02 21:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2015-08-11 17:06 - 2015-08-02 21:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-08-11 17:06 - 2015-08-02 21:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-08-11 17:06 - 2015-08-02 21:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2015-08-11 17:06 - 2015-08-02 21:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-08-11 17:05 - 2015-08-08 03:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2015-08-11 17:05 - 2015-08-08 03:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-08-11 17:05 - 2015-08-08 03:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2015-08-11 17:05 - 2015-08-08 02:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-08-11 17:05 - 2015-08-08 02:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-08-11 17:05 - 2015-08-08 02:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2015-08-11 17:05 - 2015-08-08 02:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2015-08-11 17:05 - 2015-08-08 02:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-08-11 17:05 - 2015-08-08 02:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2015-08-11 17:05 - 2015-08-05 23:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys

2015-08-11 17:05 - 2015-08-05 23:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys

2015-08-11 17:05 - 2015-08-05 22:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys

2015-08-11 17:05 - 2015-08-05 00:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll

2015-08-11 17:05 - 2015-08-05 00:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

2015-08-11 17:05 - 2015-08-05 00:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll

2015-08-11 17:05 - 2015-08-04 23:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll

2015-08-11 17:05 - 2015-08-04 23:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-08-11 17:05 - 2015-08-04 23:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll

2015-08-11 17:05 - 2015-08-04 00:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys

2015-08-11 17:05 - 2015-08-04 00:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-08-11 17:05 - 2015-08-04 00:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-08-11 17:05 - 2015-08-03 23:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll

2015-08-11 17:05 - 2015-08-03 22:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll

2015-08-11 17:05 - 2015-08-03 22:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll

2015-08-11 17:05 - 2015-08-02 22:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll

2015-08-11 17:05 - 2015-08-02 22:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll

2015-08-11 17:05 - 2015-08-02 22:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys

2015-08-11 17:05 - 2015-08-02 22:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2015-08-11 17:05 - 2015-08-02 22:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2015-08-11 17:05 - 2015-08-02 22:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll

2015-08-11 17:05 - 2015-08-02 22:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys

2015-08-11 17:05 - 2015-08-02 22:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS

2015-08-11 17:05 - 2015-08-02 22:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys

2015-08-11 17:05 - 2015-08-02 22:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-08-11 17:05 - 2015-08-02 21:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-08-11 17:05 - 2015-08-02 21:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll

2015-08-11 17:05 - 2015-08-02 21:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll

2015-08-11 17:05 - 2015-08-02 21:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll

2015-08-11 17:05 - 2015-08-02 21:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll

2015-08-11 17:05 - 2015-08-02 21:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll

2015-08-11 17:05 - 2015-08-02 21:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll

2015-08-11 17:05 - 2015-08-02 21:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll

2015-08-11 17:05 - 2015-08-02 21:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll

2015-08-11 17:05 - 2015-08-02 21:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll

2015-08-11 17:05 - 2015-08-02 21:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll

2015-08-11 17:05 - 2015-08-02 21:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe

2015-08-11 17:05 - 2015-08-02 21:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe

2015-08-11 17:05 - 2015-08-02 21:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll

2015-08-11 17:05 - 2015-08-02 21:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll

2015-08-11 17:05 - 2015-08-02 21:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll

2015-08-11 17:05 - 2015-08-02 21:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2015-08-11 17:05 - 2015-08-02 21:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll

2015-08-11 17:05 - 2015-08-02 21:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll

2015-08-11 17:05 - 2015-08-02 21:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll

2015-08-11 17:05 - 2015-08-02 21:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll

2015-08-11 17:05 - 2015-08-02 21:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll

2015-08-11 17:05 - 2015-08-02 21:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll

2015-08-11 17:05 - 2015-08-02 21:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll

2015-08-11 17:05 - 2015-08-02 21:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll

2015-08-11 17:05 - 2015-08-02 21:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll

2015-08-11 17:05 - 2015-08-02 21:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe

2015-08-11 17:05 - 2015-08-02 21:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2015-08-11 17:05 - 2015-08-02 21:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll

2015-08-11 17:05 - 2015-08-02 21:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll

2015-08-11 17:05 - 2015-08-02 20:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll

2015-08-11 15:25 - 2015-08-11 15:25 - 00262144 _____ C:\WINDOWS\Minidump\081115-27875-01.dmp

2015-08-11 15:25 - 2015-08-11 15:25 - 00000000 ____D C:\WINDOWS\Minidump

2015-08-10 20:26 - 2015-08-10 20:26 - 00000000 ____D C:\Users\COROPELI\AppData\Roaming\RHEng

2015-08-10 20:17 - 2015-08-10 20:17 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\0BAE30A7.sys

2015-08-10 17:49 - 2015-08-10 17:49 - 00186509 _____ C:\Users\Jenny Cucalon\Downloads\Playa Indiatlantic, FL.zip

2015-08-09 22:57 - 2015-08-09 22:57 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\Apple

2015-08-07 09:58 - 2015-08-12 09:52 - 00002336 _____ C:\Users\Jenny Cucalon\Desktop\Google Chrome.lnk

2015-08-07 00:05 - 2015-08-07 00:05 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-08-06 13:52 - 2015-07-29 23:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-08-06 13:51 - 2015-07-30 02:24 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll

2015-08-06 13:51 - 2015-07-30 02:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-08-06 13:51 - 2015-07-30 02:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2015-08-06 13:51 - 2015-07-30 02:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll

2015-08-06 13:51 - 2015-07-30 02:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll

2015-08-06 13:51 - 2015-07-30 02:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll

2015-08-06 13:51 - 2015-07-30 02:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll

2015-08-06 13:51 - 2015-07-30 02:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll

2015-08-06 13:51 - 2015-07-30 02:09 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll

2015-08-06 13:51 - 2015-07-30 02:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2015-08-06 13:51 - 2015-07-30 02:05 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll

2015-08-06 13:51 - 2015-07-30 02:05 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-08-06 13:51 - 2015-07-30 02:04 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2015-08-06 13:51 - 2015-07-30 02:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2015-08-06 13:51 - 2015-07-30 01:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2015-08-06 13:51 - 2015-07-30 00:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll

2015-08-06 13:51 - 2015-07-30 00:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll

2015-08-06 13:51 - 2015-07-30 00:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2015-08-06 13:51 - 2015-07-30 00:25 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll

2015-08-06 13:51 - 2015-07-30 00:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2015-08-06 13:51 - 2015-07-30 00:24 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2015-08-06 13:51 - 2015-07-30 00:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-08-06 13:51 - 2015-07-30 00:24 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-08-06 13:51 - 2015-07-30 00:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll

2015-08-06 13:51 - 2015-07-30 00:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll

2015-08-06 13:51 - 2015-07-30 00:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll

2015-08-06 13:51 - 2015-07-30 00:21 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2015-08-06 13:51 - 2015-07-30 00:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-08-06 13:51 - 2015-07-30 00:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-08-06 13:51 - 2015-07-30 00:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe

2015-08-06 13:51 - 2015-07-30 00:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-08-06 13:51 - 2015-07-30 00:08 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-08-06 13:51 - 2015-07-30 00:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe

2015-08-06 13:51 - 2015-07-29 23:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-08-06 13:51 - 2015-07-29 23:52 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-08-06 13:51 - 2015-07-29 23:52 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll

2015-08-06 13:51 - 2015-07-29 23:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll

2015-08-06 13:51 - 2015-07-29 23:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-08-06 13:51 - 2015-07-29 23:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-08-06 13:51 - 2015-07-29 23:46 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2015-08-06 13:51 - 2015-07-29 23:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll

2015-08-06 13:51 - 2015-07-29 23:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys

2015-08-06 13:51 - 2015-07-29 23:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-08-06 13:51 - 2015-07-29 23:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2015-08-06 13:51 - 2015-07-29 23:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll

2015-08-06 13:51 - 2015-07-29 23:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys

2015-08-06 13:51 - 2015-07-29 23:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll

2015-08-06 13:51 - 2015-07-29 23:42 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll

2015-08-06 13:51 - 2015-07-29 23:41 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll

2015-08-06 13:51 - 2015-07-29 23:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll

2015-08-06 13:51 - 2015-07-29 23:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2015-08-06 13:51 - 2015-07-29 23:38 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll

2015-08-06 13:51 - 2015-07-29 23:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll

2015-08-06 13:51 - 2015-07-29 23:34 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll

2015-08-06 13:51 - 2015-07-29 23:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2015-08-06 13:51 - 2015-07-29 23:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-08-06 13:51 - 2015-07-29 23:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll

2015-08-06 13:51 - 2015-07-29 23:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-08-06 13:51 - 2015-07-29 23:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll

2015-08-06 13:51 - 2015-07-29 23:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll

2015-08-06 13:51 - 2015-07-29 23:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-08-06 13:51 - 2015-07-29 23:04 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll

2015-08-06 13:51 - 2015-07-29 22:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll

2015-08-06 13:51 - 2015-07-29 22:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2015-08-05 00:12 - 2015-08-05 00:12 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\54EA0FA1.sys

2015-08-04 23:06 - 2015-08-04 23:06 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\1E195D7C.sys

2015-08-03 15:09 - 2015-08-03 15:09 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\NetworkTiles

2015-08-02 15:38 - 2015-08-02 15:38 - 00016148 _____ C:\WINDOWS\system32\COROPELI-LACTOC_lucia_HistoryPrediction.bin

2015-08-02 15:37 - 2015-08-02 15:37 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\40156973.sys

2015-08-02 15:37 - 2015-08-02 15:37 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\204F693F.sys

2015-08-02 15:34 - 2015-08-02 15:38 - 00000000 ___RD C:\Users\lucia\OneDrive

2015-08-02 15:34 - 2015-08-02 15:34 - 00002383 _____ C:\Users\lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-08-02 15:32 - 2015-08-02 15:33 - 00000000 ____D C:\Users\lucia\AppData\Local\Comms

2015-08-02 15:31 - 2015-08-02 15:31 - 00000000 ____D C:\Users\lucia\AppData\Roaming\PKWARE

2015-08-02 15:31 - 2015-08-02 15:31 - 00000000 ____D C:\Users\lucia\AppData\Roaming\hpqLog

2015-08-02 15:31 - 2015-08-02 15:31 - 00000000 ____D C:\Users\lucia\AppData\Roaming\ATI

2015-08-02 15:31 - 2015-08-02 15:31 - 00000000 ____D C:\Users\lucia\AppData\Roaming\Apple Computer

2015-08-02 15:31 - 2015-08-02 15:31 - 00000000 ____D C:\Users\lucia\AppData\Local\Publishers

2015-08-02 15:31 - 2015-08-02 15:31 - 00000000 ____D C:\Users\lucia\AppData\Local\ATI

2015-08-02 15:30 - 2015-08-02 15:34 - 00000000 ____D C:\Users\lucia

2015-08-02 15:30 - 2015-08-02 15:31 - 00000000 ____D C:\Users\lucia\AppData\Local\Packages

2015-08-02 15:30 - 2015-08-02 15:30 - 00000020 ___SH C:\Users\lucia\ntuser.ini

2015-08-02 15:30 - 2015-08-02 15:30 - 00000000 ___RD C:\Users\lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-02 15:30 - 2015-08-02 15:30 - 00000000 ____D C:\Users\lucia\AppData\Roaming\Adobe

2015-08-02 15:30 - 2015-08-02 15:30 - 00000000 ____D C:\Users\lucia\AppData\Local\VirtualStore

2015-08-02 15:30 - 2015-08-02 15:30 - 00000000 ____D C:\Users\lucia\AppData\Local\TileDataLayer

2015-08-02 15:30 - 2015-07-31 22:10 - 00000000 ____D C:\Users\lucia\AppData\Roaming\Macromedia

2015-08-02 15:30 - 2015-07-31 22:10 - 00000000 ____D C:\Users\lucia\AppData\LocalGoogle

2015-08-02 15:30 - 2015-07-31 22:10 - 00000000 ____D C:\Users\lucia\AppData\Local\Microsoft Help

2015-08-02 15:30 - 2015-07-31 22:10 - 00000000 ____D C:\Users\lucia\AppData\Local\Google

2015-08-02 15:30 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-08-02 15:30 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-08-02 15:30 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-08-02 15:30 - 2015-07-10 07:04 - 00000000 ____D C:\Users\lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-08-02 15:30 - 2010-09-16 05:00 - 00001974 _____ C:\Users\lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hulu Desktop.lnk

2015-08-02 15:26 - 2015-08-02 15:26 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\Comms

2015-08-02 15:24 - 2015-08-02 15:25 - 00002407 _____ C:\Users\Jenny Cucalon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-08-02 15:24 - 2015-08-02 15:25 - 00000000 ___RD C:\Users\Jenny Cucalon\OneDrive

2015-08-02 15:24 - 2015-08-02 15:24 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\59295F63.sys

2015-08-02 15:22 - 2015-08-12 09:53 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Roaming\Apple Computer

2015-08-02 15:22 - 2015-08-10 17:49 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Roaming\PKWARE

2015-08-02 15:22 - 2015-08-02 15:46 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\MicrosoftEdge

2015-08-02 15:22 - 2015-08-02 15:22 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Roaming\hpqLog

2015-08-02 15:22 - 2015-08-02 15:22 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Roaming\ATI

2015-08-02 15:22 - 2015-08-02 15:22 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\ATI

2015-08-02 15:21 - 2015-08-02 16:11 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\Packages

2015-08-02 15:21 - 2015-08-02 15:21 - 00000020 ___SH C:\Users\Jenny Cucalon\ntuser.ini

2015-08-02 15:21 - 2015-08-02 15:21 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Roaming\Adobe

2015-08-02 15:21 - 2015-08-02 15:21 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\VirtualStore

2015-08-02 15:21 - 2015-08-02 15:21 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\TileDataLayer

2015-08-02 15:21 - 2015-08-02 15:21 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\Publishers

2015-08-02 15:20 - 2015-08-15 22:03 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\Google

2015-08-02 15:20 - 2015-08-11 22:54 - 00000000 ____D C:\Users\Jenny Cucalon

2015-08-02 15:20 - 2015-08-02 15:21 - 00000000 ___RD C:\Users\Jenny Cucalon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-02 15:20 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Roaming\Macromedia

2015-08-02 15:20 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\LocalGoogle

2015-08-02 15:20 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Local\Microsoft Help

2015-08-02 15:20 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\Jenny Cucalon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-08-02 15:20 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Jenny Cucalon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-08-02 15:20 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Jenny Cucalon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-08-02 15:20 - 2015-07-10 07:04 - 00000000 ____D C:\Users\Jenny Cucalon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-08-02 15:20 - 2010-09-16 05:00 - 00001974 _____ C:\Users\Jenny Cucalon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hulu Desktop.lnk

2015-08-01 14:50 - 2015-08-01 14:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud

2015-08-01 01:47 - 2015-07-31 23:12 - 00000000 ___DC C:\WINDOWS\Panther

2015-08-01 01:47 - 2015-07-31 21:55 - 00000000 __SHD C:\Recovery

2015-08-01 01:40 - 2015-08-01 01:41 - 00000000 ____D C:\Windows.old

2015-08-01 01:39 - 2015-08-01 01:39 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2015-08-01 01:39 - 2015-08-01 01:39 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2015-08-01 01:39 - 2015-08-01 01:39 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi

2015-08-01 01:39 - 2015-08-01 01:39 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys

2015-08-01 01:39 - 2015-08-01 01:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe

2015-08-01 01:39 - 2015-08-01 01:39 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe

2015-08-01 01:36 - 2015-08-01 01:36 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-08-01 01:29 - 2015-08-01 01:29 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices

2015-08-01 01:29 - 2015-08-01 01:29 - 00000000 ____D C:\WINDOWS\system32\msmq

2015-08-01 01:29 - 2015-08-01 01:29 - 00000000 ____D C:\WINDOWS\system32\BestPractices

2015-08-01 01:29 - 2015-08-01 01:29 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-08-01 01:29 - 2015-08-01 01:29 - 00000000 ____D C:\Program Files\MSBuild

2015-08-01 01:29 - 2015-08-01 01:29 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-08-01 01:29 - 2015-08-01 01:29 - 00000000 ____D C:\inetpub

2015-08-01 01:29 - 2015-07-31 22:13 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-08-01 01:29 - 2015-05-30 01:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-08-01 01:29 - 2015-05-30 01:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-08-01 01:29 - 2015-05-30 01:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-08-01 01:28 - 2015-06-17 22:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-08-01 01:28 - 2015-06-17 22:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-08-01 01:28 - 2015-06-17 22:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-07-31 23:48 - 2015-07-31 23:48 - 00000000 ___RD C:\Users\COROPELI\3D Objects

2015-07-31 23:30 - 2015-08-01 14:45 - 00000000 ____D C:\Users\COROPELI\AppData\Local\Comms

2015-07-31 23:26 - 2015-08-11 22:54 - 00000000 ____D C:\Users\DefaultAppPool

2015-07-31 23:26 - 2015-07-31 23:26 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini

2015-07-31 23:26 - 2015-07-31 22:10 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-07-31 23:26 - 2015-07-31 22:10 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia

2015-07-31 23:26 - 2015-07-31 22:10 - 00000000 ____D C:\Users\DefaultAppPool\AppData\LocalGoogle

2015-07-31 23:26 - 2015-07-31 22:10 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help

2015-07-31 23:26 - 2015-07-31 22:10 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Google

2015-07-31 23:26 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-07-31 23:26 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-07-31 23:26 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-07-31 23:26 - 2015-07-10 07:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-07-31 23:26 - 2010-09-16 05:00 - 00001974 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hulu Desktop.lnk

2015-07-31 23:25 - 2015-08-19 21:15 - 00000000 ___RD C:\Users\COROPELI\OneDrive

2015-07-31 23:25 - 2015-07-31 23:25 - 00002392 _____ C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-07-31 23:25 - 2015-07-31 23:25 - 00000000 ____D C:\Users\COROPELI\AppData\Local\NetworkTiles

2015-07-31 23:23 - 2015-07-31 23:23 - 00000000 ____D C:\Users\COROPELI\AppData\Local\MicrosoftEdge

2015-07-31 23:21 - 2015-07-31 23:21 - 00000000 ____D C:\ProgramData\ATI

2015-07-31 23:20 - 2015-07-31 23:20 - 00000000 ____D C:\ProgramData\Microsoft OneDrive

2015-07-31 23:14 - 2015-07-31 23:14 - 00000000 ____D C:\Users\COROPELI\AppData\Local\Publishers

2015-07-31 23:13 - 2015-08-02 15:18 - 00000000 ____D C:\Users\COROPELI\AppData\Local\Packages

2015-07-31 23:13 - 2015-07-31 23:13 - 00000020 ___SH C:\Users\COROPELI\ntuser.ini

2015-07-31 23:13 - 2015-07-31 23:13 - 00000000 ____D C:\Users\COROPELI\AppData\Local\TileDataLayer

2015-07-31 23:13 - 2015-06-04 02:07 - 00073976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys

2015-07-31 22:25 - 2015-07-31 22:25 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-07-31 22:17 - 2015-07-10 06:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-07-31 22:10 - 2015-07-31 22:10 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-07-31 22:10 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia

2015-07-31 22:10 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle

2015-07-31 22:10 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help

2015-07-31 22:10 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Default\AppData\Local\Google

2015-07-31 22:10 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia

2015-07-31 22:10 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle

2015-07-31 22:10 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help

2015-07-31 22:10 - 2015-07-31 22:10 - 00000000 ____D C:\Users\Default User\AppData\Local\Google

2015-07-31 22:00 - 2015-07-31 22:00 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines

2015-07-31 21:56 - 2015-08-11 20:53 - 00000000 ____D C:\Users\COROPELI

2015-07-31 21:56 - 2015-07-31 23:13 - 00000000 ___RD C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-07-31 21:56 - 2015-07-31 22:21 - 00000000 ____D C:\Users\Guest

2015-07-31 21:56 - 2015-07-31 21:57 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-07-31 21:56 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-07-31 21:56 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-07-31 21:56 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-07-31 21:56 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-07-31 21:56 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-07-31 21:56 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-07-31 21:56 - 2015-07-10 07:04 - 00000000 ____D C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-07-31 21:56 - 2015-07-10 07:04 - 00000000 ____D C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-07-31 21:55 - 2015-08-18 08:03 - 01009666 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-07-31 21:55 - 2015-07-31 21:55 - 00961296 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI

2015-07-31 21:55 - 2015-07-31 21:55 - 00021209 _____ C:\WINDOWS\iis.log

2015-07-31 21:53 - 2015-07-31 22:13 - 00000000 ____D C:\Program Files\IDT

2015-07-31 21:53 - 2015-07-31 22:00 - 00000000 ____D C:\Program Files (x86)\ATI Technologies

2015-07-31 21:53 - 2015-07-31 21:53 - 00000000 ____D C:\WINDOWS\system32\SRSLabs

2015-07-31 21:53 - 2015-07-31 21:53 - 00000000 ____D C:\ProgramData\Package Cache

2015-07-31 21:53 - 2015-07-31 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center

2015-07-31 21:53 - 2015-07-31 21:53 - 00000000 ____D C:\Program Files\ATI Technologies

2015-07-31 21:53 - 2010-11-17 23:23 - 12829184 _____ (IDT, Inc.) C:\WINDOWS\system32\idtcpl64.cpl

2015-07-31 21:53 - 2010-11-17 23:23 - 01952256 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll

2015-07-31 21:53 - 2010-11-17 23:23 - 00564224 _____ (IDT, Inc.) C:\WINDOWS\system32\idt64mp1.exe

2015-07-31 21:53 - 2010-11-17 23:23 - 00487424 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe

2015-07-31 21:53 - 2010-11-17 23:23 - 00442368 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTEC64.dll

2015-07-31 21:53 - 2010-11-17 23:23 - 00162304 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAC64.dll

2015-07-31 21:53 - 2010-11-17 23:23 - 00090624 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTCo64.dll

2015-07-31 21:53 - 2010-11-17 23:23 - 00068608 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAR64.dll

2015-07-31 21:52 - 2015-07-31 21:52 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf

2015-07-31 21:52 - 2015-07-31 21:52 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies

2015-07-31 21:52 - 2015-07-31 21:52 - 00000000 ____D C:\Program Files\AMD

2015-07-31 21:52 - 2015-07-31 21:52 - 00000000 ____D C:\Intel

2015-07-31 21:51 - 2015-07-31 21:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf

2015-07-31 21:51 - 2015-07-31 21:51 - 00000000 ____D C:\Program Files\Synaptics

2015-07-31 21:49 - 2015-07-31 21:50 - 00028742 _____ C:\WINDOWS\system32\NetSetupMig.log

2015-07-31 21:48 - 2015-08-19 21:10 - 00033654 _____ C:\WINDOWS\PFRO.log

2015-07-31 21:10 - 2015-07-31 22:26 - 00006684 _____ C:\WINDOWS\comsetup.log

2015-07-31 21:07 - 2015-07-31 22:26 - 00014259 _____ C:\WINDOWS\diagerr.xml

2015-07-31 21:07 - 2015-07-31 22:26 - 00013338 _____ C:\WINDOWS\diagwrn.xml

2015-07-26 21:28 - 2015-08-02 17:21 - 00012451 _____ C:\Users\COROPELI\Documents\pasajes.xlsx

2015-07-25 13:33 - 2015-07-25 13:34 - 00000000 ____D C:\Users\COROPELI\AppData\Local\{62B92763-0A6C-4E66-8812-771BBBDDE848}

2015-07-24 22:21 - 2015-07-24 22:21 - 00000000 ____D C:\Users\COROPELI\AppData\Local\{A9E48D47-A20E-4B85-88B5-EA42544ADEA5}

2015-07-21 17:07 - 2015-07-21 17:07 - 00000000 ____D C:\Users\COROPELI\Documents\HP Photosmart Projects

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-19 21:30 - 2010-10-19 20:21 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3818685460-2404108218-3579297747-1001UA.job

2015-08-19 21:28 - 2012-02-11 11:50 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-08-19 21:15 - 2012-02-11 11:50 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-08-19 21:14 - 2014-04-29 17:57 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-08-19 21:13 - 2015-07-10 08:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log

2015-08-19 21:12 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-08-19 21:10 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru

2015-08-19 21:10 - 2015-07-10 05:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI

2015-08-19 21:10 - 2012-06-13 20:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-08-19 21:08 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2015-08-19 21:08 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-08-19 20:39 - 2012-06-17 20:40 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-08-19 19:01 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-08-19 13:02 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-08-18 22:30 - 2010-10-19 20:21 - 00000868 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3818685460-2404108218-3579297747-1001Core.job

2015-08-18 07:59 - 2015-07-10 08:20 - 00024704 _____ C:\WINDOWS\setupact.log

2015-08-16 13:33 - 2013-06-23 19:32 - 00000000 ____D C:\Users\COROPELI\AppData\Local\NETGEARGenie

2015-08-16 13:31 - 2013-04-21 11:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive

2015-08-15 22:26 - 2013-05-01 19:29 - 00003248 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForCOROPELI

2015-08-15 22:26 - 2013-05-01 19:29 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForCOROPELI.job

2015-08-15 20:41 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\DesktopTileResources

2015-08-12 21:39 - 2015-07-15 11:39 - 09284296 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe

2015-08-12 21:39 - 2012-06-17 20:40 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-08-11 22:53 - 2015-07-10 08:20 - 00382968 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-08-11 22:50 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-11 22:50 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-11 22:50 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-08-11 22:47 - 2013-03-15 23:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2015-08-11 22:47 - 2013-03-15 23:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2015-08-11 21:00 - 2013-03-15 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-08-11 21:00 - 2011-03-22 22:04 - 00000000 ____D C:\ProgramData\Microsoft Help

2015-08-11 20:58 - 2013-07-24 00:20 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-08-11 20:49 - 2010-10-19 21:57 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2015-08-11 20:48 - 2012-08-02 21:02 - 00000000 ____D C:\Users\COROPELI\AppData\Roaming\mjusbsp

2015-08-11 20:45 - 2012-08-02 21:02 - 00001076 _____ C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\magicJack.lnk

2015-08-11 15:24 - 2014-03-27 10:25 - 690562601 _____ C:\WINDOWS\MEMORY.DMP

2015-08-11 12:54 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2015-08-10 20:27 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Provisioning

2015-08-10 20:26 - 2011-06-04 18:02 - 00000000 ____D C:\Program Files (x86)\DivX

2015-08-10 20:26 - 2011-06-04 18:01 - 00000000 ____D C:\ProgramData\DivX

2015-08-10 20:23 - 2012-08-02 21:01 - 00000000 ____D C:\Users\COROPELI\AppData\Local\magicJack

2015-08-10 20:22 - 2013-11-12 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX

2015-08-10 20:21 - 2011-06-04 18:03 - 00000000 ____D C:\Program Files\DivX

2015-08-08 11:38 - 2015-07-10 07:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2015-08-08 11:38 - 2015-07-10 07:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2015-08-02 11:05 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\restore

2015-08-01 14:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\appcompat

2015-08-01 01:47 - 2015-07-10 07:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-08-01 01:40 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe

2015-08-01 01:40 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-08-01 01:40 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-08-01 01:40 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-08-01 01:29 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv

2015-08-01 01:29 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv

2015-08-01 01:29 - 2015-07-10 07:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb

2015-08-01 01:29 - 2015-07-10 07:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb

2015-08-01 01:29 - 2015-07-10 07:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb

2015-08-01 01:29 - 2015-07-10 07:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb

2015-08-01 01:29 - 2015-07-10 07:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe

2015-08-01 01:29 - 2015-07-10 07:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll

2015-08-01 01:29 - 2015-07-10 07:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof

2015-08-01 01:29 - 2015-07-10 07:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys

2015-08-01 01:29 - 2015-07-10 07:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb

2015-08-01 01:29 - 2015-07-10 07:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb

2015-08-01 01:29 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb

2015-08-01 01:29 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe

2015-08-01 01:29 - 2015-07-10 07:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb

2015-08-01 01:29 - 2015-07-10 07:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe

2015-08-01 01:29 - 2015-07-10 07:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe

2015-08-01 01:29 - 2015-07-10 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll

2015-08-01 01:29 - 2015-07-10 07:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof

2015-07-31 23:53 - 2010-10-22 21:56 - 00000000 ____D C:\Users\COROPELI\Documents\lucy

2015-07-31 23:26 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-07-31 23:13 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-07-31 23:13 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-07-31 23:13 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-07-31 23:13 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-07-31 23:13 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache

2015-07-31 22:26 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Registration

2015-07-31 22:25 - 2015-07-10 07:04 - 00000000 __RSD C:\WINDOWS\Media

2015-07-31 22:25 - 2015-07-10 07:04 - 00000000 __RHD C:\Users\Public\Libraries

2015-07-31 22:25 - 2014-12-25 17:34 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2015-07-31 22:25 - 2014-12-04 20:37 - 00003534 _____ C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3818685460-2404108218-3579297747-1001

2015-07-31 22:25 - 2014-12-04 11:43 - 00003512 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3818685460-2404108218-3579297747-1001

2015-07-31 22:25 - 2014-12-03 16:56 - 00003406 _____ C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3818685460-2404108218-3579297747-1001

2015-07-31 22:25 - 2014-08-13 12:06 - 00003384 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3818685460-2404108218-3579297747-1001

2015-07-31 22:25 - 2014-04-02 20:20 - 00003382 _____ C:\WINDOWS\System32\Tasks\SidebarExecute

2015-07-31 22:25 - 2012-12-24 18:49 - 00003246 _____ C:\WINDOWS\System32\Tasks\{9CDFE273-A902-487B-94B7-0881348B2771}

2015-07-31 22:25 - 2012-02-11 12:17 - 00003294 _____ C:\WINDOWS\System32\Tasks\{8287FBCA-E796-40FF-A024-0727A085A8AA}

2015-07-31 22:25 - 2012-02-11 11:50 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2015-07-31 22:25 - 2012-02-11 11:50 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2015-07-31 22:25 - 2011-06-18 16:47 - 00003512 _____ C:\WINDOWS\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3818685460-2404108218-3579297747-1001

2015-07-31 22:25 - 2011-06-18 16:47 - 00003384 _____ C:\WINDOWS\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3818685460-2404108218-3579297747-1001

2015-07-31 22:25 - 2010-10-26 19:31 - 00003192 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe

2015-07-31 22:25 - 2010-10-23 11:25 - 00003344 _____ C:\WINDOWS\System32\Tasks\{0B5A6819-FC68-40CA-938F-4F79D5BE7AC3}

2015-07-31 22:25 - 2010-10-19 20:33 - 00002988 _____ C:\WINDOWS\System32\Tasks\{BDEE9D36-4BD6-4C3A-B788-49342F2B2478}

2015-07-31 22:25 - 2010-10-19 20:21 - 00004010 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3818685460-2404108218-3579297747-1001UA

2015-07-31 22:25 - 2010-10-19 20:21 - 00003614 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3818685460-2404108218-3579297747-1001Core

2015-07-31 22:25 - 2010-10-19 20:02 - 00003876 _____ C:\WINDOWS\System32\Tasks\RecoveryCDWin7

2015-07-31 22:25 - 2010-09-16 04:59 - 00003282 _____ C:\WINDOWS\System32\Tasks\MirageAgent

2015-07-31 22:20 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\spool

2015-07-31 22:13 - 2015-07-10 09:14 - 00000000 ____D C:\WINDOWS\ShellNew

2015-07-31 22:13 - 2015-07-10 07:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories

2015-07-31 22:13 - 2015-07-10 05:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-07-31 22:13 - 2015-04-19 16:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool

2015-07-31 22:13 - 2015-04-19 16:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite

2015-07-31 22:13 - 2015-03-01 12:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2015-07-31 22:13 - 2015-02-16 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\H&R Block 2014

2015-07-31 22:13 - 2014-12-07 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime

2015-07-31 22:13 - 2014-11-02 09:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecureZIP

2015-07-31 22:13 - 2014-04-29 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-07-31 22:13 - 2014-04-06 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-07-31 22:13 - 2014-02-08 10:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\H&R Block 2013

2015-07-31 22:13 - 2014-01-06 22:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth

2015-07-31 22:13 - 2013-10-28 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit

2015-07-31 22:13 - 2013-10-28 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2015-07-31 22:13 - 2013-06-24 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek

2015-07-31 22:13 - 2013-06-24 21:06 - 00000000 ____D C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetaGeek

2015-07-31 22:13 - 2012-02-11 12:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google SketchUp 8

2015-07-31 22:13 - 2011-08-20 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse

2015-07-31 22:13 - 2011-06-22 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Netflix

2015-07-31 22:13 - 2011-06-18 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © - by eRightSoft

2015-07-31 22:13 - 2011-05-09 19:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickBooks

2015-07-31 22:13 - 2011-03-22 22:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator

2015-07-31 22:13 - 2011-03-22 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2015-07-31 22:13 - 2011-02-09 20:42 - 00000000 ____D C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games

2015-07-31 22:13 - 2010-11-25 12:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft

2015-07-31 22:13 - 2010-10-25 22:57 - 00000000 ____D C:\WINDOWS\en

2015-07-31 22:13 - 2010-10-22 07:16 - 00000000 ____D C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-07-31 22:13 - 2010-10-22 07:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-07-31 22:13 - 2010-10-19 19:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eReaders

2015-07-31 22:13 - 2010-09-16 05:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Energy Star

2015-07-31 22:13 - 2010-07-20 10:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP

2015-07-31 22:13 - 2010-07-20 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite

2015-07-31 22:13 - 2010-07-20 09:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services

2015-07-31 22:13 - 2010-07-20 09:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recovery Manager

2015-07-31 22:13 - 2010-07-20 08:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live

2015-07-31 22:13 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-07-31 22:10 - 2015-07-10 07:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log

2015-07-31 22:10 - 2015-07-10 05:05 - 00000000 __RHD C:\Users\Default

2015-07-31 22:10 - 2009-07-13 23:20 - 00000000 ____D C:\Users\Default.migrated

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-07-31 22:02 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\IME

2015-07-31 22:02 - 2011-02-23 08:38 - 00000000 ____D C:\WINDOWS\system32\SPReview

2015-07-31 22:02 - 2011-02-23 08:19 - 00000000 ____D C:\WINDOWS\system32\EventProviders

2015-07-31 22:02 - 2010-07-20 09:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe

2015-07-31 22:01 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\schemas

2015-07-31 22:00 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files\Windows Sidebar

2015-07-31 22:00 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar

2015-07-31 22:00 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\IME

2015-07-31 22:00 - 2015-07-10 07:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-07-31 22:00 - 2014-09-10 16:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2015-07-31 22:00 - 2014-05-24 19:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung

2015-07-31 22:00 - 2011-09-14 07:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Juniper Networks

2015-07-31 22:00 - 2011-02-09 20:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxis

2015-07-31 22:00 - 2010-11-14 14:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlyTampa

2015-07-31 22:00 - 2010-09-16 05:34 - 00000000 ___RD C:\Users\Public\Recorded TV

2015-07-31 22:00 - 2010-09-16 05:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation

2015-07-31 22:00 - 2010-09-16 05:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio

2015-07-31 22:00 - 2010-09-16 04:46 - 00000000 ____D C:\Program Files\Intel

2015-07-31 22:00 - 2010-07-20 08:27 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard

2015-07-31 22:00 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\Microsoft Games

2015-07-31 22:00 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\DVD Maker

2015-07-31 21:59 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\Recovery

2015-07-31 21:59 - 2009-07-13 23:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy

2015-07-31 21:58 - 2010-11-14 14:06 - 00000000 ____D C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FlyTampa

2015-07-31 21:55 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-07-31 21:52 - 2010-10-19 20:17 - 00000000 ____D C:\AMD

2015-07-31 21:18 - 2010-09-16 04:45 - 01122660 _____ C:\WINDOWS\WindowsUpdate (1).log

2015-07-31 21:11 - 2009-07-14 00:45 - 00026192 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-07-31 21:11 - 2009-07-14 00:45 - 00026192 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-07-31 21:07 - 2015-07-10 09:39 - 00000000 ___HD C:\$Windows.~BT

2015-07-31 21:04 - 2010-11-06 18:56 - 00000000 ____D C:\Users\COROPELI\AppData\Local\CrashDumps

2015-07-26 20:57 - 2014-12-03 16:57 - 00000000 ____D C:\ProgramData\APN

2015-07-23 20:47 - 2014-10-16 21:47 - 00000000 ____D C:\Users\COROPELI\AppData\Roaming\HpUpdate

==================== Files in the root of some directories =======

2011-02-02 17:32 - 2011-02-02 17:32 - 0001854 _____ () C:\Users\COROPELI\AppData\Roaming\GhostObjGAFix.xml

2011-09-04 21:48 - 2012-01-20 17:56 - 0000462 _____ () C:\Users\COROPELI\AppData\Roaming\Rim.Desktop.Exception.log

2011-09-04 21:47 - 2014-04-06 16:28 - 0002021 _____ () C:\Users\COROPELI\AppData\Roaming\Rim.Desktop.HttpServerSetup.log

2011-09-04 21:48 - 2012-01-20 17:56 - 0000539 _____ () C:\Users\COROPELI\AppData\Roaming\Rim.DesktopHelper.Exception.log

2013-06-24 21:07 - 2013-06-24 21:07 - 0000037 ___SH () C:\Users\COROPELI\AppData\Local\70149b02515b3bb20dd492.47983420

2011-09-04 21:48 - 2013-07-25 20:38 - 0006656 _____ () C:\Users\COROPELI\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2011-07-26 16:28 - 2011-07-26 16:28 - 0004096 ____H () C:\Users\COROPELI\AppData\Local\keyfile3.drm

2010-10-26 06:54 - 2013-04-20 23:32 - 0007602 _____ () C:\Users\COROPELI\AppData\Local\resmon.resmoncfg

2014-08-05 10:58 - 2014-08-05 10:58 - 0000000 _____ () C:\Users\COROPELI\AppData\Local\{30EB5DF1-6A0F-4B6C-9896-2FBD39BB399C}

2010-10-19 20:34 - 2010-10-19 20:34 - 0000056 ____H () C:\ProgramData\ezsidmv.dat

2014-09-17 09:46 - 2014-09-29 08:51 - 0003652 _____ () C:\ProgramData\hpzinstall.log

2010-09-16 05:02 - 2010-09-16 05:02 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log

2010-07-20 10:17 - 2010-07-20 10:17 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log

2010-09-16 05:02 - 2010-09-16 05:02 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log

2010-07-20 10:11 - 2010-07-20 10:12 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log

2010-09-16 05:01 - 2010-09-16 05:01 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log

2010-09-16 05:02 - 2010-09-16 05:02 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log

2010-07-20 10:10 - 2010-07-20 10:11 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

2010-07-20 10:12 - 2010-07-20 10:17 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log

2010-09-16 05:02 - 2010-09-16 05:02 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log

Some files in TEMP:

====================

C:\Users\COROPELI\AppData\Local\Temp\DivXSetup.exe

C:\Users\Jenny Cucalon\AppData\Local\Temp\DivXSetup.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed

C:\WINDOWS\system32\wininit.exe => File is digitally signed

C:\WINDOWS\explorer.exe => File is digitally signed

C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed

C:\WINDOWS\system32\svchost.exe => File is digitally signed

C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed

C:\WINDOWS\system32\services.exe => File is digitally signed

C:\WINDOWS\system32\User32.dll => File is digitally signed

C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed

C:\WINDOWS\system32\userinit.exe => File is digitally signed

C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed

C:\WINDOWS\system32\rpcss.dll => File is digitally signed

C:\WINDOWS\system32\dnsapi.dll => File is digitally signed

C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed

C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-08-12 10:03

==================== End of log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version:20-08-2015

Ran by COROPELI (2015-08-19 21:33:01)

Running from C:\Users\COROPELI\Desktop

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3818685460-2404108218-3579297747-500 - Administrator - Disabled)

COROPELI (S-1-5-21-3818685460-2404108218-3579297747-1001 - Administrator - Enabled) => C:\Users\COROPELI

DefaultAccount (S-1-5-21-3818685460-2404108218-3579297747-503 - Limited - Disabled)

Guest (S-1-5-21-3818685460-2404108218-3579297747-501 - Limited - Disabled) => C:\Users\Guest

HomeGroupUser$ (S-1-5-21-3818685460-2404108218-3579297747-1002 - Limited - Enabled)

Jenny Cucalon (S-1-5-21-3818685460-2404108218-3579297747-1007 - Limited - Enabled) => C:\Users\Jenny Cucalon

lucia (S-1-5-21-3818685460-2404108218-3579297747-1008 - Limited - Enabled) => C:\Users\lucia

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden

Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)

Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)

Adobe Shockwave Player 11.5 (HKLM-x32\...\{9ECF7817-DB11-4FBA-9DF1-296A578D513A}) (Version: 11.5.7.609 - Adobe Systems, Inc)

Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)

aerosoft's - Lukla X - Mount Everest (HKLM-x32\...\{EF32F291-8B08-43EF-8BAA-58B9F8C9540F}) (Version: 1.00 - aerosoft)

AIO_Scan (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden

AllShare Control (HKLM-x32\...\{806DDB11-2D1E-4597-9C49-2FAB3FCD8096}) (Version: 1.5 - Samsung)

AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)

Apple Application Support (32-bit) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)

Apple Application Support (64-bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

ATI Catalyst Install Manager (HKLM\...\{FB07515A-48AC-9996-16EE-3A3DC8CF8D8E}) (Version: 3.0.790.0 - ATI Technologies, Inc.)

Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Bing Maps 3D (HKLM\...\{6ACE7F46-FACE-4125-AE86-672F4F2A6A28}) (Version: 4.0.903.16005 - Microsoft Corporation)

Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden

Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

ccc-core-static (x32 Version: 2010.0909.1412.23625 - ATI) Hidden

Chanalyzer 4 (HKLM-x32\...\{A9ACEB1B-6CBA-4558-B15C-FD8A4ACC3EA5}) (Version: 4.2.2.27 - MetaGeek, LLC)

Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

CinemaNow Media Manager (HKLM-x32\...\{6C122441-1861-4CD7-B1C5-A163A6984E12}) (Version: 1.9.1.105 - CinemaNow, Inc.)

Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden

CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.3003 - CyberLink Corp.)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden

DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden

Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden

DIRECTV Player (HKLM-x32\...\{C199DEA2-657E-46C2-9FDB-7C1C068B6B35}) (Version: 6.1 - DIRECTV)

DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.77 - DivX, LLC)

DJ_AIO_ProductContext (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden

DJ_AIO_Software (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden

DJ_AIO_Software_min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden

Dora's Carnival Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden

DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.1.4121 - Hewlett-Packard)

DVD Menu Pack for HP MediaSmart Video (x32 Version: 4.1.4121 - Hewlett-Packard) Hidden

Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)

Escape Rosecliff Island (x32 Version: 2.2.0.95 - WildTangent) Hidden

ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)

F4100 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden

F4100_Help (x32 Version: 90.0.222.000 - Hewlett-Packard) Hidden

FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden

Feedback Tool (HKLM-x32\...\{13A5E785-5197-4EAD-8EE3-D660271E49BC}) (Version: 1.2.0 - Microsoft Corporation)

Feedback Tool (HKLM-x32\...\{90024193-9F13-4877-89D5-A1CDF0CBBF28}) (Version: 1.1.0 - Microsoft Corporation)

Final Drive Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)

Google Drive (HKLM-x32\...\{12ADFB82-D5A3-43E4-B2F4-FCD9B690315B}) (Version: 1.24.9931.5480 - Google, Inc.)

Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)

Google SketchUp 8 (HKLM-x32\...\{47BBA5AA-CA6F-4A41-858D-A7A776F29A8B}) (Version: 3.0.11752 - Google, Inc.)

Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden

GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden

H&R Block Basic + Efile 2013 (HKLM-x32\...\{FDF789BA-0A3F-45B1-AFC3-FB424AFEB3D0}) (Version: 13.02.5801 - HRB Technology, LLC.)

H&R Block Deluxe + Efile 2014 (HKLM-x32\...\{C89CA854-CE87-4CC6-A79F-86E0D7FB0B32}) (Version: 14.04.6401 - HRB Technology, LLC.)

Heroes of Hellas 2 - Olympia (x32 Version: 2.2.0.95 - WildTangent) Hidden

HP 3D DriveGuard (HKLM\...\{299625B9-6C69-462C-9CEA-8E06D878B1C5}) (Version: 4.0.5.1 - Hewlett-Packard Company)

HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.4.10262.3295 - Hewlett-Packard)

HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)

HP Documentation (HKLM-x32\...\{132234A4-9362-4829-957F-FF11715F7815}) (Version: 1.1.1.0 - Hewlett-Packard)

HP DVB-T TV Tuner 8.0.64.43 (HKLM-x32\...\HP DVB-T TV Tuner) (Version: 8.0.64.43 - )

HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.1.3 - WildTangent)

HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)

HP MediaSmart CinemaNow 2.0 (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)

HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 4.1.4229 - Hewlett-Packard)

HP MediaSmart Movies and TV (HKLM\...\{4B4E2FA2-3B1E-4147-99DB-5033981D8C2F}) (Version: 1.0.0.10 - Hewlett-Packard)

HP MediaSmart Music (HKLM-x32\...\InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}) (Version: 4.1.4215 - Hewlett-Packard)

HP MediaSmart Photo (HKLM-x32\...\InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}) (Version: 4.1.4211 - Hewlett-Packard)

HP MediaSmart SmartMenu (HKLM\...\{731A1D36-BF17-4C76-B7E7-CC055AF8C54E}) (Version: 3.1.1.12 - Hewlett-Packard)

HP MediaSmart Video (HKLM-x32\...\InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}) (Version: 4.1.4214 - Hewlett-Packard)

HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3024 - Hewlett-Packard)

HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{78F1A88C-5322-4DF7-BDCF-9AB8F5F4041C}) (Version: 1.0.9.0 - Hewlett-Packard)

HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.4272 - HP Photo Creations Powered by RocketLife)

HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)

HP Power Manager (HKLM-x32\...\{872B1C80-38EC-4A31-A25C-980820593900}) (Version: 1.2.3 - Hewlett-Packard Company)

HP Quick Launch (HKLM-x32\...\{BB1C717E-376C-4AA1-8940-81BFC38D9778}) (Version: 2.4.4 - Hewlett-Packard Company)

HP Setup (HKLM-x32\...\{72D90DB3-A16A-4545-B555-868471101833}) (Version: 8.1.4186.3400 - Hewlett-Packard)

HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)

HP Software Framework (HKLM-x32\...\{6C302296-6129-4125-9FD6-2188ECD8814E}) (Version: 4.1.6.1 - Hewlett-Packard Company)

HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)

HP Support Solutions Framework (HKLM-x32\...\{44157EB3-D8D0-4BB1-B0F5-AD2C38814ED1}) (Version: 11.51.0027 - Hewlett-Packard Company)

HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)

HP Wireless Assistant (HKLM\...\{B5FC1E1B-E70D-45F1-8E40-A3C30698B323}) (Version: 4.0.9.0 - Hewlett-Packard Company)

HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden

HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden

HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden

HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden

HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden

Hulu Desktop (HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\HuluDesktop) (Version: 0.9.14 - Hulu LLC)

iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)

IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6292.0 - IDT)

inSSIDer 3 (HKLM-x32\...\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}) (Version: 3.0.7.48 - MetaGeek, LLC)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation)

Intel® Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.00.01.1002 - Intel Corporation)

Intel® Wireless Display (HKLM\...\{0D9917CE-1C77-4B58-A153-DCB5A854ED82}) (Version: 1.2.15.0 - Intel Corporation)

iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.)

Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)

Java™ 6 Update 20 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)

Java™ SE Development Kit 7 Update 2 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170020}) (Version: 1.7.0.20 - Oracle)

JavaFX 2.0.2 (64-bit) (HKLM\...\{1111706F-666A-4037-7777-202648764D10}) (Version: 2.0.2 - Oracle Corporation)

JavaFX 2.0.2 SDK (64-bit) (HKLM\...\{2222706F-666A-4037-7777-202648764D10}) (Version: 2.0.2 - Oracle Corporation)

JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)

Jewel Quest 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Juniper Networks Network Connect 6.5.0 (HKLM-x32\...\Juniper Network Connect 6.5.0) (Version: 6.5.0.14599 - Juniper Networks)

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2907 - CyberLink Corp.)

LabelPrint (x32 Version: 2.5.2907 - CyberLink Corp.) Hidden

LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.24.20150327 - LG Electronics)

LG United Mobile Drivers (HKLM-x32\...\{2D5218EB-6992-46E3-8ECE-76C79AB955CE}) (Version: 3.13.2.0 - LG Electronics)

magicJack (HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\magicJack) (Version: 4.1.7574.5297 - magicJack L.P.)

Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)

MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Microsoft Flight Simulator X Service Pack 2 (HKLM-x32\...\{4847BBB9-EADD-4C92-90BF-4223B0892FF6}) (Version: 10.0.61472.0 - Microsoft Game Studios)

Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)

Microsoft Office 2007 Primary Interop Assemblies (HKLM-x32\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)

Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)

Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)

Microsoft Visual Studio 2005 Tools for Office Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)

Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.1.4030 - Hewlett-Packard)

Movie Theme Pack for HP MediaSmart Video (x32 Version: 4.1.4030 - Hewlett-Packard) Hidden

Mozilla Firefox 40.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 en-US)) (Version: 40.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla)

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)

NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.2.28.24.exe - NETGEAR Inc.)

PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.2.0 - Frank Heindörfer, Philip Chinery)

Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden

PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)

PhotoNow! (x32 Version: 1.1.6904 - CyberLink Corp.) Hidden

Plants vs. Zombies (x32 Version: 2.2.0.95 - WildTangent) Hidden

Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden

Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden

Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden

PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3003 - CyberLink Corp.)

PowerDirector (x32 Version: 8.0.3003 - CyberLink Corp.) Hidden

PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden

QuickBooks (x32 Version: 20.0.4004.807 - Intuit Inc.) Hidden

QuickBooks Pro 2010 (HKLM-x32\...\{0700E22B-A422-40A5-BD20-04BF618CA0F9}) (Version: 20.0.4004.807 - Intuit Inc.)

QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)

Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)

Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)

Recovery Manager (x32 Version: 5.5.3023 - CyberLink Corp.) Hidden

SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.2360.0 - SAMSUNG Electronics Co., Ltd.)

Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden

SecureZIP for Windows 12.00.0018 (HKLM-x32\...\{1BF17EE7-6E06-4601-961C-01A481344D06}) (Version: 12.00.0018 - PKWARE, Inc)

Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)

SimCity 4 (HKLM-x32\...\{611BD998-34B9-4DDA-00AE-0CB4632E86FA}) (Version: - )

Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)

SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden

SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden

Spotify (HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\Spotify) (Version: 0.8.2.567.g655da453 - Spotify AB)

Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated)

Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden

TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden

Unity Web Player (HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS)

UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden

Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)

VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden

Virtual Families (x32 Version: 2.2.0.95 - WildTangent) Hidden

Virtual Villagers - The Secret City (x32 Version: 2.2.0.95 - WildTangent) Hidden

WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden

Wheel of Fortune 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)

Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)

Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)

WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )

Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\COROPELI\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay No File

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3818685460-2404108218-3579297747-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\COROPELI\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

==================== Restore Points =========================

11-08-2015 20:39:37 Windows Update

15-08-2015 21:33:09 Windows Update

19-08-2015 12:58:24 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2013-02-26 17:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)

Task: {00FB016A-7232-4B30-A0A0-7507AE645046} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION

Task: {07BA47BE-1AFF-4EF1-898B-618024B4A48B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {0A853533-94A6-4253-A66F-6B175C0DB379} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION

Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)

Task: {0D0A39BC-46A0-47E2-B50A-6DC15C1E0044} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe

Task: {106BD5A4-4D75-4F79-BEED-536871EC9D15} - System32\Tasks\{8287FBCA-E796-40FF-A024-0727A085A8AA} => pcalua.exe -a C:\Users\COROPELI\Desktop\Setup.exe -d C:\Users\COROPELI\Desktop

Task: {17D9B29F-9BC2-4A97-83AE-3BC01CE8D345} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3818685460-2404108218-3579297747-1001Core => C:\Users\COROPELI\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)

Task: {1952C7EE-6A62-4F76-A2FB-AA5807E13988} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION

Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)

Task: {1C174E9F-8DD8-4507-A224-3F98AE39155A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe

Task: {1CD2EEEA-8925-42C8-B3AC-CE6A6492B13A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe

Task: {1DE5A50F-B106-4ED2-8786-5B756CB111DF} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe

Task: {20586EE4-870C-4802-9BF5-359CB08CC12E} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe [2010-06-25] (CyberLink)

Task: {28EF6AA6-8B5A-4306-87D5-384CEE847430} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-24] ()

Task: {3E3C1AC9-34B7-4A6B-A422-CE699E2EC8A9} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3818685460-2404108218-3579297747-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe

Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW

Task: {403C565A-2020-4B21-BBA5-D3411CACD5A7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION

Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)

Task: {4EA2DB70-8464-4801-8462-6F7A3EA7019D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe

Task: {540EDA91-34B2-4F69-84E0-32FB8DC80170} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3818685460-2404108218-3579297747-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe

Task: {54AE2EF2-353D-4600-A7D9-F840727E7A20} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

Task: {5DDC1202-4879-4856-9405-DBD1607A3EE0} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3818685460-2404108218-3579297747-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe

Task: {6232065B-57FA-4EFB-94D2-0DA1725442DC} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation)

Task: {64907711-D2B1-4FE2-9D58-7D9B13BCF71E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION

Task: {65E5E819-9D77-425C-8BE3-359704B276B5} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe

Task: {6705B782-694B-4D11-A42A-A7C79E7F4ECA} - System32\Tasks\HPCeeScheduleForCOROPELI => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)

Task: {67D9DB33-5B2F-4F38-9BB8-6A6A61286196} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION

Task: {69145C73-7E75-466B-B0DB-4A8CF5BF1775} - System32\Tasks\{BDEE9D36-4BD6-4C3A-B788-49342F2B2478} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-12-11] (Skype Technologies S.A.)

Task: {6DDD897B-EB1C-467D-B17A-445A3861DDCC} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe

Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask

Task: {760A3701-3242-48A6-B262-647DA7F8EA10} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe

Task: {7665EE2A-05E3-43B8-85B7-2E96C95E746B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION

Task: {77763C82-C9A9-45CB-A437-657D14714020} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3818685460-2404108218-3579297747-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe

Task: {779AD408-B1FB-432E-B679-AA2DCA4580C6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe

Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance

Task: {7ADFCA87-DBD9-4F2F-9A8E-6B23AE55AD82} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)

Task: {7E151215-17C8-4D4D-B3A4-6568B7C1CC4F} - System32\Tasks\{9CDFE273-A902-487B-94B7-0881348B2771} => Chrome.exe http://ui.skype.com/...?LastError=1603

Task: {7E2D98AF-72AC-496A-8D74-BE969C1FC934} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe

Task: {7E405A1B-1092-45E7-8523-AB026EA7B407} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-26] (Google Inc.)

Task: {8042818D-359F-4808-A2D7-3F7C7FF4EFC2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)

Task: {80D68E8F-BF4A-445A-887B-0870F28CC334} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe

Task: {80F362AB-0605-4B58-8DEB-DA5798B5BBC6} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3818685460-2404108218-3579297747-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe

Task: {88DAF6E0-EC25-416B-931B-A09C1260A7B0} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe

Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-01] (Microsoft Corporation)

Task: {90A255E2-AD3F-41E0-8BBB-EA5D33D52832} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION

Task: {9AAF0C10-B28D-40CD-B6B9-1ECE424DB110} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe

Task: {9B93DAC0-1FFB-45F2-B72F-C024921B4A81} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe

Task: {9D8FB2A3-0A8E-4AD0-909E-5E72405254B2} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3818685460-2404108218-3579297747-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe

Task: {A0EBFDE3-13B4-4712-9114-9C2AF5B96B00} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe

Task: {A2940BFD-7F73-49E1-9DB4-C5DCBC70B2B6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe

Task: {A2D5DEE6-9BEC-41FB-8A5D-EF41498C0C15} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe

Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager

Task: {C2B0CF31-56B3-472B-995D-2566DD21DA5A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe

Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr

Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)

Task: {C76E1D8A-55CB-4398-A84C-05D20CFBC399} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe

Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)

Task: {CAA49566-2E9F-4913-99A3-9E9DDB6626D4} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe

Task: {D0375146-5DE9-43D1-86DE-982B846802EA} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe

Task: {D09BA710-A042-4966-880E-F1A3768BD84D} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe

Task: {D376AF8B-379E-47F6-9189-CAAD32E9EADE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe

Task: {D6492017-60C6-4002-A44A-BA75562827A2} - System32\Tasks\{0B5A6819-FC68-40CA-938F-4F79D5BE7AC3} => pcalua.exe -a "C:\Program Files (x86)\woains24\WOAI Installer.exe" -d "C:\Program Files (x86)\woains24"

Task: {DB6A7D3A-D964-4BCB-B6A4-CBAEC84FFE2E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe

Task: {DF125A07-B313-4E36-993F-C9C65F161874} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION

Task: {EC478632-3D5B-4047-B6D1-A6D1399D50B9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION

Task: {ED7619D1-43FE-4D75-AD17-0AD3DFA168EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-26] (Google Inc.)

Task: {EF51F2AC-7C5D-46E4-B9A1-705B94CAF4B3} - System32\Tasks\Microsoft\Microsoft Antimalware\MpIdleTask => c:\Program Files\Microsoft Security Client\MpCmdRun.exe

Task: {F000C9FB-ABB8-428E-A19A-B715E81AAE0C} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2015-04-26] (Apple Inc.)

Task: {F036E2E7-0E25-4884-8C70-932AD4D81A8D} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe

Task: {FD1DEBA5-FD40-4D88-AE7E-FCA5C5674ED4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3818685460-2404108218-3579297747-1001UA => C:\Users\COROPELI\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)

Task: {FF24DA4C-21F9-437E-83D6-608874C5D0DD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3818685460-2404108218-3579297747-1001Core.job => C:\Users\COROPELI\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3818685460-2404108218-3579297747-1001UA.job => C:\Users\COROPELI\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\HPCeeScheduleForCOROPELI.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (Whitelisted) ==============

2015-07-10 07:00 - 2015-07-10 07:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll

2011-03-22 22:42 - 2005-03-12 00:07 - 00087040 _____ () C:\WINDOWS\System32\pdfcmnnt.dll

2015-08-19 11:00 - 2015-08-11 05:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll

2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

2010-06-18 19:26 - 2010-06-18 19:26 - 00267832 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPCommon.XmlSerializers.dll

2015-08-06 13:51 - 2015-07-30 02:05 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll

2015-08-06 13:51 - 2015-07-30 02:05 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll

2010-10-22 07:15 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll

2015-08-11 17:05 - 2015-08-02 21:09 - 00928768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesBackgroundTasks.dll

2015-07-10 07:00 - 2015-07-10 09:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll

2015-08-11 17:05 - 2015-08-02 21:09 - 02028544 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll

2015-08-01 01:39 - 2015-08-01 01:39 - 00619008 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll

2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll

2015-07-10 06:59 - 2015-07-10 06:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll

2015-08-11 17:05 - 2015-08-02 21:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll

2015-08-11 17:05 - 2015-08-02 21:14 - 00882688 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll

2015-08-19 11:00 - 2015-08-11 04:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll

2015-08-11 17:05 - 2015-08-02 21:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

2015-07-10 07:00 - 2015-07-10 09:14 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll

2015-07-10 07:00 - 2015-07-10 07:00 - 01760768 _____ () C:\Windows\System32\speech_onecore\engines\tts\MSTTSEngine_OneCore.dll

2012-11-26 23:54 - 2012-11-26 23:54 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll

2013-04-07 07:38 - 2013-04-07 07:38 - 01044224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe

2012-08-16 14:35 - 2012-08-16 14:35 - 06485160 _____ () C:\Users\COROPELI\AppData\Local\DIRECTV Player\NDSPCShowServer.exe

2013-04-07 07:42 - 2013-04-07 07:42 - 00123136 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe

2015-08-05 12:58 - 2015-08-05 12:59 - 00007168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.803.16240.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

2015-08-05 12:58 - 2015-08-05 12:59 - 11284480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.803.16240.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll

2015-07-10 09:17 - 2015-07-10 09:17 - 07897088 _____ () C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.0_1.0.22929.0_x64__8wekyb3d8bbwe\SharedLibrary.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 00011362 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\mingwm10.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 00043008 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libgcc_s_dw2-1.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 09814016 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtGui4.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 02537472 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtCore4.dll

2013-06-04 21:22 - 2013-06-04 21:22 - 00481280 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\Genie.dll

2013-03-27 04:42 - 2013-03-27 04:42 - 01553920 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SvtNetworkTool.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 00399360 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtXml4.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 01140224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QtNetwork4.dll

2013-05-09 23:12 - 2013-05-09 23:12 - 00229888 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Airprint.dll

2013-03-27 04:43 - 2013-03-27 04:43 - 01067520 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Internet.dll

2013-05-28 02:21 - 2013-05-28 02:21 - 04334592 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Map.dll

2013-03-27 04:52 - 2013-03-27 04:52 - 00500736 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_NetworkProblem.dll

2013-03-27 04:50 - 2013-03-27 04:50 - 00186368 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DragonNetTool.dll

2013-03-27 04:51 - 2013-03-27 04:51 - 01198080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_ParentalControl.dll

2013-05-14 22:56 - 2013-05-14 22:56 - 08432128 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Resource.dll

2013-04-28 02:25 - 2013-04-28 02:25 - 01205760 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_RouterConfiguration.dll

2013-03-27 04:42 - 2013-03-27 04:42 - 00088064 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QRCode.dll

2013-03-27 04:51 - 2013-03-27 04:51 - 00641536 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Statistics.dll

2013-05-14 01:18 - 2013-05-14 01:18 - 00931840 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Ui.dll

2013-03-27 04:49 - 2013-03-27 04:49 - 00438272 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Wireless.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 00083456 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qgif4.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 00083456 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qico4.dll

2013-02-19 02:46 - 2013-02-19 02:46 - 00287232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qjpeg4.dll

2013-03-27 04:42 - 2013-03-27 04:42 - 00137728 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnosePlugin.dll

2013-03-26 22:58 - 2013-03-26 22:58 - 00139264 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnoseDll.dll

2012-11-29 05:56 - 2012-11-29 05:56 - 03332720 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\drivers\libntgr_api.dll

2013-03-26 22:58 - 2013-03-26 22:58 - 00072192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SVTUtils.DLL

2013-03-26 22:58 - 2013-03-26 22:58 - 00074752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NetcardApi.dll

2013-03-26 22:58 - 2013-03-26 22:58 - 00136704 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\airprintdll.dll

2013-03-27 04:51 - 2013-03-27 04:51 - 00714240 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_Update.dll

2013-03-27 04:49 - 2013-03-27 04:49 - 00485376 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_WirelessExport.dll

2013-03-27 04:49 - 2013-03-27 04:49 - 00116224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupApiPlugin.dll

2013-03-26 22:58 - 2013-03-26 22:58 - 00066560 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupDll.dll

2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

2012-08-16 14:36 - 2012-08-16 14:36 - 00273568 _____ () C:\Users\COROPELI\AppData\Local\DIRECTV Player\ndsLogStore.dll

2012-08-16 14:35 - 2012-08-16 14:35 - 02087072 _____ () C:\Users\COROPELI\AppData\Local\DIRECTV Player\DrmSingleton.dll

2012-08-16 14:35 - 2012-08-16 14:35 - 07117984 _____ () C:\Users\COROPELI\AppData\Local\DIRECTV Player\gsttspplugin.dll

2012-08-16 14:36 - 2012-08-16 14:36 - 00688296 _____ () C:\Users\COROPELI\AppData\Local\DIRECTV Player\libgstreamer-0.10.dll

2012-08-16 14:36 - 2012-08-16 14:36 - 01402520 _____ () C:\Users\COROPELI\AppData\Local\DIRECTV Player\libxml2-2.dll

2012-08-16 14:36 - 2012-08-16 14:36 - 00091272 _____ () C:\Users\COROPELI\AppData\Local\DIRECTV Player\z.dll

2015-08-11 17:30 - 2015-08-07 20:13 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libglesv2.dll

2015-08-11 17:30 - 2015-08-07 20:13 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libegl.dll

2015-08-11 17:30 - 2015-08-07 20:13 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3818685460-2404108218-3579297747-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\COROPELI\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper

DNS Servers: 192.168.1.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk => C:\Windows\pss\QuickBooks Update Agent.lnk.CommonStartup

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

MSCONFIG\startupreg: Bing Bar => "C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\mswinext.exe"

MSCONFIG\startupreg: Google Update => "C:\Users\COROPELI\AppData\Local\Google\Update\GoogleUpdate.exe" /c

MSCONFIG\startupreg: HP Quick Launch => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

MSCONFIG\startupreg: HPAdvisorDock => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe

MSCONFIG\startupreg: HPWirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden

MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

MSCONFIG\startupreg: IntelliPoint => "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"

MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

MSCONFIG\startupreg: SmartMenu => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background

MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139

FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe

FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe

FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe

FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe

FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808

FirewallRules: [{6A550AEC-5B61-405F-94CF-6BE6560C8D23}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

FirewallRules: [UDP Query User{A8F164C4-730E-4A42-882F-BB806CFD4E99}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [TCP Query User{FD2D4C15-3785-4259-A692-5FEB76FCFEFA}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [{73C60894-67D1-47A2-BC31-46C3D3EDBFA0}] => (Allow) C:\Program Files\iTunes\iTunes.exe

FirewallRules: [{3D202BFC-9919-4478-8C28-0C306CE69C0E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{25FDA1F9-AF9C-4A94-AA28-F11AB93D56F4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{A7A38456-7F5E-47AA-A1BE-5C2549485931}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS7A63\hppiw.exe

FirewallRules: [{7027B8EF-D912-41B7-AA9A-1B29C26ED66A}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS7A63\hppiw.exe

FirewallRules: [{A371FFB2-C293-419F-80A0-5BB0398B1254}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS755C\hppiw.exe

FirewallRules: [{45A7D3AA-9AEB-4C38-B532-139E38E3CCA9}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS755C\hppiw.exe

FirewallRules: [{19CB80C3-E138-40AE-841B-F12B39151D9D}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS6B7C\hppiw.exe

FirewallRules: [{27DB6E09-651A-46CF-8C1F-96B37DF9C76E}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS6B7C\hppiw.exe

FirewallRules: [{112977FC-0B67-47CB-A9E8-D08894053921}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS69FE\HPDiagnosticCoreUI.exe

FirewallRules: [{A0998D7C-5103-4F19-BA5B-38B6E21E5852}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS69FE\HPDiagnosticCoreUI.exe

FirewallRules: [{4CB252B6-83BD-45D8-A548-1AFA070D1BC3}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS64E7\hppiw.exe

FirewallRules: [{880E6BB2-E4D8-4B61-AF1F-50349B842412}] => (Allow) C:\Users\COROPELI\AppData\Local\Temp\7zS64E7\hppiw.exe

FirewallRules: [{D27620AA-B3A6-4FD4-AEF3-01BB3A3F50EE}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe

FirewallRules: [{CEC04F5C-0D79-44A7-97E9-9B7765F335A4}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe

FirewallRules: [{4799EFA0-1A82-4484-BD93-6E8012A432DF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe

FirewallRules: [{EF2410B2-0CFF-4DF5-A353-81D8B3C97EC8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe

FirewallRules: [{C9542790-B696-4193-A81C-8CF8533C2AD1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

FirewallRules: [{974410A8-6110-4D4C-A196-433E32E4CDC1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe

FirewallRules: [{B25CE3E9-B78A-4997-B4F4-88C8308CBF6D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe

FirewallRules: [{4EE2B291-AA2C-4733-B89C-A7A442101D0E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe

FirewallRules: [{13E8BB9F-6405-4A5C-A3E4-CFA794EE0399}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe

FirewallRules: [{B0BA1191-D2B2-493D-8576-99A34AFA8D2A}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe

FirewallRules: [{AB4F9757-DE22-469F-AA9F-4CB8081ECCE2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe

FirewallRules: [{A1559944-82A6-48C1-B214-203143BC5624}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe

FirewallRules: [{5969FBAA-6A91-4D2E-8BEA-842BDC54FD94}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe

FirewallRules: [{3E5B71E7-B3E8-4142-B2B6-13B7D246E931}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe

FirewallRules: [{52F8EA9C-9799-416D-BE1B-3217A342CDFC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe

FirewallRules: [{12C2CB52-3BC9-46FC-9E75-B19960F755CA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe

FirewallRules: [{35BB0350-7810-47A4-86AD-0725B8B31525}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe

FirewallRules: [{656BE183-934C-4035-8438-ABF9E082A815}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

FirewallRules: [{D085CFEE-1233-4D0F-BEFF-D0683D80D3FB}] => (Allow) LPort=1900

FirewallRules: [{B3EB576C-6411-44F0-8325-C9F8535366F4}] => (Allow) LPort=20102

FirewallRules: [{1A0D4C15-ECB2-429E-A7C7-44F3491456DD}] => (Allow) LPort=7878

FirewallRules: [{B8B349A1-E17F-4CB6-B728-450249C3A760}] => (Allow) C:\Program Files (x86)\Samsung\AllShare Control\AllShare Control PC.exe

FirewallRules: [{F4E68397-BF6A-45D6-A132-89FE95511CD5}] => (Allow) C:\Program Files (x86)\Samsung\AllShare Control\AllShare Control PC.exe

FirewallRules: [{864B616F-22AE-4AD4-BEDB-11A0145C729D}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe

FirewallRules: [{662C13B8-64DE-420F-A2E6-311DE250373C}] => (Allow) C:\Users\COROPELI\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe

FirewallRules: [{0DBA1FA1-CE4F-4CD6-B9B7-02940FDB71B2}] => (Allow) C:\Users\COROPELI\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe

FirewallRules: [{C97B94EE-FB88-467C-8299-5E9A20E985E7}] => (Block) C:\program files (x86)\netgear genie\bin\netgeargenie.exe

FirewallRules: [{7943D7D6-FE84-4CAE-8D1B-92A165ECAF9D}] => (Block) C:\program files (x86)\netgear genie\bin\netgeargenie.exe

FirewallRules: [UDP Query User{9C542379-5442-4050-9780-61A9F068ECB6}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe

FirewallRules: [TCP Query User{C6D77928-FD6B-45A0-A1F1-3C7C3901004C}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe

FirewallRules: [{EAB26BD9-B550-40A0-AAD7-08F80A16D344}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{6AF7A362-8476-4479-B8D2-21F401DA7B8F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{50E644DF-34DB-4726-B372-675F137B2039}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{8606F31E-E979-45F3-A99D-40483C8E51C7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [UDP Query User{8C957D6E-5BDA-429A-BD97-AEA3C6730970}C:\users\coropeli\appdata\roaming\mjusbsp\magicjack.exe] => (Allow) C:\users\coropeli\appdata\roaming\mjusbsp\magicjack.exe

FirewallRules: [TCP Query User{0B09833A-F74F-4361-829C-14C6289BFE16}C:\users\coropeli\appdata\roaming\mjusbsp\magicjack.exe] => (Allow) C:\users\coropeli\appdata\roaming\mjusbsp\magicjack.exe

FirewallRules: [UDP Query User{279528A3-76EC-4A75-8228-54AD088A90B3}C:\users\coropeli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\coropeli\appdata\roaming\spotify\spotify.exe

FirewallRules: [TCP Query User{7B463B73-6BF8-409A-8EAD-B2A40D2427A1}C:\users\coropeli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\coropeli\appdata\roaming\spotify\spotify.exe

FirewallRules: [UDP Query User{D44731B6-9C65-47DE-B6BC-0B81B160DDF9}C:\users\coropeli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\coropeli\appdata\roaming\spotify\spotify.exe

FirewallRules: [TCP Query User{960BB650-95BB-4584-BD5B-7188328DDB41}C:\users\coropeli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\coropeli\appdata\roaming\spotify\spotify.exe

FirewallRules: [{78774808-4863-4138-B51B-940C781EFE16}] => (Allow) C:\Users\COROPELI\AppData\Roaming\Dropbox\bin\Dropbox.exe

FirewallRules: [{6CC92960-3675-4A3E-8C0E-D0FDB74429DE}] => (Allow) C:\Users\COROPELI\AppData\Roaming\Dropbox\bin\Dropbox.exe

FirewallRules: [UDP Query User{BFE3FDDE-E928-4496-BF2E-1F00D165FDB4}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [TCP Query User{FC8505AD-F41A-4BE5-9A32-C2DA68A8CA52}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [{7F651E81-C78B-403B-B0CA-2882D660DE9A}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe

FirewallRules: [{B9D61849-129E-406E-8D30-82AD0CE212D2}] => (Allow) LPort=1900

FirewallRules: [{4651229C-6EF1-451A-982F-FD3F3C93737B}] => (Allow) LPort=2869

FirewallRules: [{C2080C35-F3D8-4195-BF4C-15905F013A36}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{42D2AB5E-524A-4A64-8D73-1BB310A43202}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

FirewallRules: [{BCEEE3C6-683C-47E6-9E9E-26B4376AD3CF}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel Wireless Display\WiDiApp.exe

FirewallRules: [{0ACB2914-FF98-4944-9938-1A34EA1FBB86}] => (Allow) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe

FirewallRules: [{A8E08284-3528-411B-911A-7A975BEAAE3D}] => (Allow) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe

FirewallRules: [{965588F6-BD71-418F-B3BE-DE7F38B44264}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:

==================

Error: (08/19/2015 09:30:06 PM) (Source: SideBySide) (EventID: 63) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (08/19/2015 09:23:40 PM) (Source: SideBySide) (EventID: 78) (User: )

Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest3.

A component version required by the application conflicts with another component version already active.

Conflicting components are:.

Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.

Error: (08/19/2015 09:16:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 10.1.168.192.in-addr.arpa. PTR COROPELI-LACTOC.local.

Error: (08/19/2015 09:16:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: mDNSCoreReceiveResponse: Received from 192.168.1.10:5353 25 10.1.168.192.in-addr.arpa. PTR COROPELI-LACTOC-2.local.

Error: (08/19/2015 09:04:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 10.1.168.192.in-addr.arpa. PTR COROPELI-LACTOC.local.

Error: (08/19/2015 09:04:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: mDNSCoreReceiveResponse: Received from 192.168.1.10:5353 25 10.1.168.192.in-addr.arpa. PTR COROPELI-LACTOC-2.local.

Error: (08/19/2015 09:03:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 10094

Error: (08/19/2015 09:03:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 10094

Error: (08/19/2015 09:03:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/19/2015 07:53:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 10.1.168.192.in-addr.arpa. PTR COROPELI-LACTOC.local.

System errors:

=============

Error: (08/19/2015 09:17:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)

Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/19/2015 09:12:17 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error:

%%1058

Error: (08/19/2015 09:10:19 PM) (Source: mbamchameleon) (EventID: 28674) (User: )

Description: Failed to parse a certificate.

Error: (08/19/2015 09:10:19 PM) (Source: mbamchameleon) (EventID: 28674) (User: )

Description: Failed to parse a certificate.

Error: (08/19/2015 09:10:19 PM) (Source: mbamchameleon) (EventID: 28674) (User: )

Description: Failed to parse a certificate.

Error: (08/19/2015 09:10:19 PM) (Source: mbamchameleon) (EventID: 28674) (User: )

Description: Failed to parse a certificate.

Error: (08/19/2015 09:10:19 PM) (Source: mbamchameleon) (EventID: 28674) (User: )

Description: Failed to parse a certificate.

Error: (08/19/2015 09:10:19 PM) (Source: mbamchameleon) (EventID: 28674) (User: )

Description: Failed to parse a certificate.

Error: (08/19/2015 09:10:19 PM) (Source: mbamchameleon) (EventID: 28674) (User: )

Description: Failed to parse a certificate.

Error: (08/19/2015 09:10:19 PM) (Source: mbamchameleon) (EventID: 28674) (User: )

Description: Failed to parse a certificate.

Microsoft Office:

=========================

CodeIntegrity:

===================================

Date: 2015-08-19 21:25:04.391

Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-08-18 22:21:53.409