Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Help reading FRST output, please

Started by username24048 , Jun 27 2016 04:01 AM

FRST

Please log in to reply

#1
username24048

Posted 27 June 2016 - 04:01 AM

New Member

Member
2 posts

Hello,

My computer is running slowly. It frequently runs into excessive issues with the whole system freezing up when trying to open a new program. Sometimes just switching from one window to another will result in things "not responding" for 2-3 minutes (all the system animation and such for windows and menus are turned off). No idea where it may have come from, has been doing it for awhile and optimizing all the typical settings and running regular antivirus software hasn't helped.

If anyone has the time I would greatly appreciate any assistance.

Thank you!

************FRST.txt*****************************************************************************************************************************
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 02
Ran by Master (administrator) on MASTER-PC (27-06-2016 03:19:07)
Running from C:\Users\Master\Desktop
Loaded Profiles: Master (Available Profiles: UpdatusUser & Master)
Platform: Windows 10 Home Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.13.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [708952 2013-07-08] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2010-12-17] (Intel® Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6561384 2010-12-14] (Realtek Semiconductor)
HKLM\...\Run: [lxdumon.exe] => C:\Program Files (x86)\Lexmark 5600-6600 Series\lxdumon.exe [676520 2009-09-04] ()
HKLM\...\Run: [lxduamon] => C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduamon.exe [16040 2009-09-04] ()
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7405752 2016-06-14] (AVAST Software)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8722136 2016-06-01] (Piriform Ltd)
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [232960 2015-10-30] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155280 2015-07-23] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-06-14] (AVAST Software)
GroupPolicy: Restriction - Chrome <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3b0c440d-5033-47e3-8f96-f1d7bc6ff3ea}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e18a2c6d-ad50-4fcf-b88d-486594858918}: [DhcpNameServer] 24.116.1.157 24.116.1.157

Internet Explorer:
==================
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
SearchScopes: HKLM -> DefaultScope {2EB3345F-BF78-4F54-B6BC-5236EFFF0F87} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM -> {2EB3345F-BF78-4F54-B6BC-5236EFFF0F87} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {71F71695-DCC9-424B-8314-8664BF587C8B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {71F71695-DCC9-424B-8314-8664BF587C8B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002 -> DefaultScope {C3B06259-C259-4065-8A41-D3097D63D9B4} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002 -> {2EB3345F-BF78-4F54-B6BC-5236EFFF0F87} URL =
SearchScopes: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002 -> {71F71695-DCC9-424B-8314-8664BF587C8B} URL =
SearchScopes: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002 -> {C3B06259-C259-4065-8A41-D3097D63D9B4} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\Program Files\mcafee\msk\mskapbho64.dll [2010-05-03] ()
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110514073735.dll [2010-10-13] (McAfee, Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-06-14] (AVAST Software)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-14] (Sun Microsystems, Inc.)
BHO-x32: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\Program Files\mcafee\msk\mskapbho.dll [2010-05-03] ()
BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20110514073735.dll [2010-10-13] (McAfee, Inc.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-14] (AVAST Software)
BHO-x32: Lexmark Printable Web -> {D2C5E510-BE6D-42CC-9F61-E4F939078474} -> C:\Program Files\Lexmark Printable Web\bho.dll [2009-09-04] ()
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-14] (Sun Microsystems, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Master\AppData\Roaming\Mozilla\Firefox\Profiles\ykw3cqkm.default
FF DefaultSearchEngine.US: Google
FF Session Restore: -> is enabled.
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-05-14] (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll [2011-05-14] (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2010-11-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2010-11-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin HKU\S-1-5-21-2202564656-2552605091-3067513876-1002: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Master\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1411300-0-npoctoshape.dll [2014-11-30] (Octoshape ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\Master\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2016-02-04] (Octoshape ApS)
FF Extension: Add to Amazon Wish List Button - C:\Users\Master\AppData\Roaming\Mozilla\Firefox\Profiles\ykw3cqkm.default\extensions\[email protected] [2016-06-05]
FF Extension: Lazarus: Form Recovery - C:\Users\Master\AppData\Roaming\Mozilla\Firefox\Profiles\ykw3cqkm.default\Extensions\[email protected] [2016-04-27]
FF Extension: Adblock Plus - C:\Users\Master\AppData\Roaming\Mozilla\Firefox\Profiles\ykw3cqkm.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF Extension: web_clipper - C:\Users\Master\AppData\Roaming\Mozilla\Firefox\Profiles\ykw3cqkm.default\Extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800}.xpi [2016-04-27]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-14]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-06-14]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-08]
CHR Extension: (Google Docs) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-08]
CHR Extension: (Google Drive) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-08]
CHR Extension: (YouTube) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-08]
CHR Extension: (Google Search) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-08]
CHR Extension: (Google Sheets) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-08]
CHR Extension: (Google Docs Offline) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-14]
CHR Extension: (Avast Online Security) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-18]
CHR Extension: (Rating Program Extension) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\imbankdmoclhcdmdejkklikkpaidaeij [2016-02-20]
CHR Extension: (Google Hangouts) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2016-06-24]
CHR Extension: (Linkclump) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2016-06-24]
CHR Extension: (Lazarus: Form Recovery) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\loljledaigphbcpfhfmgopdkppkifgno [2016-06-24]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (LBTimer) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\nocdlcgkdeopogoldfeahdneobfaiggd [2016-06-14]
CHR Extension: (Gmail) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2016-06-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-06-14]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-06-14] (AVAST Software)
S2 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [901184 2010-12-14] (Intel Corporation) [File not signed]
S3 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1298496 2010-12-14] (Intel Corporation) [File not signed]
S2 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [974912 2010-12-14] (Intel Corporation) [File not signed]
S2 lxduCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\lxduserv.exe [29184 2009-10-16] (Lexmark International, Inc.)
S3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [220528 2010-08-30] (McAfee, Inc.)
S2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [355440 2010-03-10] (McAfee, Inc.)
S2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [355440 2010-03-10] (McAfee, Inc.)
S2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [355440 2010-03-10] (McAfee, Inc.)
S2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [355440 2010-03-10] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [509416 2010-10-07] (McAfee, Inc.)
S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [355440 2010-03-10] (McAfee, Inc.)
S2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [355440 2010-03-10] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [200056 2010-10-13] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [245352 2010-10-13] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [149032 2010-10-13] (McAfee, Inc.)
S2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [355440 2010-03-10] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-12-17] ()
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-06-14] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-06-14] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-06-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-06-14] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-06-14] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-06-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-06-14] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-06-14] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-06-14] (AVAST Software)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [62800 2010-10-13] (McAfee, Inc.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [121248 2010-10-13] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [190136 2010-10-13] (McAfee, Inc.)
U3 mfeavfk01; no ImagePath
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [441328 2010-10-13] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [529128 2010-10-13] (McAfee, Inc.)
R1 mfenlfk; C:\Windows\system32\DRIVERS\mfenlfk.sys [75032 2010-10-13] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [94864 2010-10-13] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [283360 2010-10-13] (McAfee, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; no ImagePath
U4 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-27 03:19 - 2016-06-27 03:19 - 00020211 _____ C:\Users\Master\Desktop\FRST.txt
2016-06-27 03:18 - 2016-06-27 03:19 - 00000000 ____D C:\FRST
2016-06-27 03:18 - 2016-06-27 03:18 - 00000000 ____D C:\Users\Master\Desktop\FRST-OlderVersion
2016-06-27 03:15 - 2016-06-27 03:18 - 02389504 _____ (Farbar) C:\Users\Master\Desktop\FRST64.exe
2016-06-27 03:14 - 2016-06-27 03:15 - 02388992 _____ (Farbar) C:\Users\Master\Downloads\FRST64(1).exe
2016-06-27 02:31 - 2016-06-27 02:31 - 00115219 _____ C:\Users\Master\Desktop\FRST_27-06-2016_02-31-36.txt
2016-06-27 02:31 - 2016-06-27 02:31 - 00042858 _____ C:\Users\Master\Desktop\Addition_27-06-2016_02-31-36.txt
2016-06-27 02:21 - 2016-06-27 02:31 - 00042858 _____ C:\Users\Master\Downloads\Addition.txt
2016-06-27 01:54 - 2016-06-27 02:31 - 00115219 _____ C:\Users\Master\Downloads\FRST.txt
2016-06-27 01:39 - 2016-06-27 01:39 - 00000000 ____D C:\Users\Master\Downloads\FRST-OlderVersion
2016-06-27 00:19 - 2016-06-27 01:39 - 02389504 _____ (Farbar) C:\Users\Master\Downloads\FRST64.exe
2016-06-26 19:18 - 2016-06-15 14:40 - 00484008 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-06-26 18:17 - 2016-06-26 18:17 - 00000000 ____D C:\Users\Master\AppData\Local\Comms
2016-06-26 17:38 - 2016-06-26 17:40 - 00002413 _____ C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-06-26 17:38 - 2016-06-26 17:40 - 00000000 ___RD C:\Users\Master\OneDrive
2016-06-26 16:59 - 2016-06-26 16:59 - 00000000 ____D C:\Users\Master\AppData\Local\ActiveSync
2016-06-26 16:58 - 2016-06-26 16:58 - 00000000 ____D C:\Users\Master\AppData\Local\Publishers
2016-06-26 16:57 - 2016-06-27 00:43 - 00000000 ____D C:\Users\Master\AppData\Local\Packages
2016-06-26 16:57 - 2016-06-26 16:57 - 00000000 ____D C:\Users\Master\AppData\Local\TileDataLayer
2016-06-26 16:56 - 2016-06-26 16:56 - 00000020 ___SH C:\Users\Master\ntuser.ini
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default\My Documents
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default\Documents\My Videos
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default\Documents\My Pictures
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default\Documents\My Music
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default User\Documents\My Videos
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default User\Documents\My Pictures
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default User\Documents\My Music
2016-06-26 16:05 - 2016-06-27 00:22 - 00000000 ___DC C:\WINDOWS\Panther
2016-06-26 16:02 - 2016-06-26 16:01 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-06-26 15:43 - 2016-06-26 15:44 - 00000000 ____D C:\Windows.old
2016-06-26 15:39 - 2016-06-26 15:39 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2016-06-26 15:18 - 2016-06-26 15:18 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-06-26 15:18 - 2016-06-26 15:18 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-06-26 15:18 - 2016-06-26 15:18 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-06-26 15:18 - 2016-06-26 15:18 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-26 15:18 - 2016-06-26 15:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-06-26 15:18 - 2016-06-26 15:18 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-06-26 15:18 - 2016-06-26 15:18 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-06-26 15:18 - 2016-06-26 15:18 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-06-26 15:18 - 2016-06-26 15:18 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-06-26 15:18 - 2016-06-26 15:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
2016-06-26 15:18 - 2016-06-26 15:18 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-06-26 15:17 - 2016-06-26 15:18 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 24605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 13385728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 04896256 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-06-26 15:17 - 2016-06-26 15:17 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-06-26 15:17 - 2016-06-26 15:17 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-06-26 15:17 - 2016-06-26 15:17 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-06-26 15:17 - 2016-06-26 15:17 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 04515264 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 02548944 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-26 15:16 - 2016-06-26 15:16 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2016-06-26 15:15 - 2016-06-26 21:32 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2016-06-26 15:15 - 2016-06-26 21:32 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2016-06-26 15:15 - 2016-06-26 15:15 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 02281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01339904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-06-26 15:15 - 2016-06-26 15:15 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-06-26 15:15 - 2016-06-26 15:15 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00131248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-06-26 15:15 - 2016-06-26 15:15 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-06-26 15:15 - 2016-06-26 15:15 - 00000000 ____D C:\Users\Default\Desktop\Play Games
2016-06-26 15:15 - 2016-06-26 15:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-06-26 15:15 - 2016-06-26 15:15 - 00000000 ____D C:\Users\Default User\Desktop\Play Games
2016-06-26 15:15 - 2016-06-26 15:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-06-26 15:14 - 2016-06-26 15:15 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 03590144 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 01372312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00649792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-06-26 15:14 - 2016-06-26 15:14 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00111064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 06973952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-06-26 15:13 - 2016-06-26 15:13 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-06-26 15:13 - 2016-06-26 15:13 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00211296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-06-26 15:13 - 2016-06-26 15:13 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-06-26 15:00 - 2016-06-26 15:00 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-06-26 14:51 - 2016-06-26 17:38 - 00000000 ____D C:\Users\Master
2016-06-26 14:51 - 2016-06-26 15:58 - 00000000 ____D C:\Users\UpdatusUser
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\UpdatusUser\My Documents
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\My Videos
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\My Pictures
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\My Music
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\Master\My Documents
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\Master\Documents\My Videos
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\Master\Documents\My Pictures
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\Master\Documents\My Music
2016-06-26 14:49 - 2016-06-26 23:56 - 01010622 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-26 14:49 - 2016-06-26 14:49 - 00965390 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-06-26 14:35 - 2016-06-26 14:35 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2016-06-26 14:34 - 2016-06-26 14:34 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2016-06-26 14:34 - 2016-06-26 14:34 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-06-26 14:34 - 2016-06-26 14:34 - 00000000 ____D C:\Program Files\Realtek
2016-06-26 14:34 - 2016-06-26 14:34 - 00000000 ____D C:\Program Files\DellTPad
2016-06-26 14:33 - 2015-07-22 19:10 - 06873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 03493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 01059984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 00937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-06-26 14:33 - 2015-07-22 19:10 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 00074896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-06-26 14:33 - 2015-07-21 22:29 - 05121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-06-26 14:31 - 2016-06-26 14:31 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-06-26 14:27 - 2016-06-26 15:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-06-26 14:27 - 2016-06-26 14:33 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-06-26 14:22 - 2016-06-26 14:22 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\WINDOWS\system32\msmq
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\Program Files\MSBuild
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\inetpub
2016-06-26 14:07 - 2015-10-23 19:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-06-26 14:07 - 2015-10-23 19:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-06-26 14:07 - 2015-10-23 19:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-06-26 14:06 - 2015-10-23 19:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-06-26 14:06 - 2015-10-23 19:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-06-26 14:06 - 2015-10-23 19:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-06-26 11:26 - 2016-06-26 16:11 - 00014259 _____ C:\WINDOWS\diagerr.xml
2016-06-26 11:26 - 2016-06-26 16:11 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2016-06-26 10:28 - 2016-06-26 15:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2016-06-25 15:30 - 2016-06-25 15:31 - 00000000 ____D C:\Users\Master\AppData\Local\Microsoft Games
2016-06-25 10:47 - 2016-06-25 10:47 - 00592711 _____ C:\Users\Master\Desktop\BooksearchUtility.pdf
2016-06-24 16:09 - 2016-06-24 16:09 - 00990299 _____ C:\Users\Master\Desktop\Directv Cobra benefits confirmation.pdf
2016-06-24 15:49 - 2016-06-24 15:49 - 00690722 _____ C:\Users\Master\Downloads\ImageUtility (2).pdf
2016-06-24 01:46 - 2016-06-24 02:18 - 00001432 _____ C:\Users\Master\Desktop\Firefox Tabs.txt
2016-06-22 17:37 - 2016-06-22 17:37 - 00597824 _____ C:\Users\Master\Downloads\NowRatingGuidelines.pdf
2016-06-22 15:16 - 2016-06-22 15:16 - 02457088 _____ C:\Users\Master\Downloads\classes_Document_1381771453.ppt
2016-06-22 13:24 - 2016-06-22 13:24 - 00690722 _____ C:\Users\Master\Downloads\ImageUtility (1).pdf
2016-06-22 13:13 - 2016-06-22 13:13 - 00690722 _____ C:\Users\Master\Downloads\ImageUtility.pdf
2016-06-22 00:17 - 2016-06-22 00:17 - 00000000 ____D C:\Users\Master\Documents\ProcAlyzer Dumps
2016-06-21 04:01 - 2009-06-10 15:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20160621-040147.backup
2016-06-21 03:45 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-06-21 03:45 - 2016-06-22 03:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-06-21 03:45 - 2016-06-21 03:49 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-06-21 03:45 - 2016-06-21 03:45 - 00001397 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-06-21 03:45 - 2016-06-21 03:45 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-06-21 03:45 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-06-21 03:40 - 2016-06-21 03:43 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Master\Downloads\spybot-2.4.exe
2016-06-21 03:21 - 2016-06-27 01:16 - 00000258 __RSH C:\ProgramData\ntuser.pol
2016-06-21 03:17 - 2016-06-27 00:27 - 00000000 ____D C:\Program Files (x86)\SpywareBlaster
2016-06-21 03:17 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2016-06-21 03:17 - 2009-03-24 13:52 - 00129872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTDFMT.DLL
2016-06-21 03:15 - 2016-06-21 03:16 - 04291320 _____ (BrightFort LLC ) C:\Users\Master\Downloads\spywareblastersetup55.exe
2016-06-21 03:14 - 2016-06-26 16:03 - 00002904 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-06-21 03:14 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-06-21 03:14 - 2016-06-21 03:14 - 00000000 ____D C:\Program Files\CCleaner
2016-06-21 03:13 - 2016-06-21 03:13 - 06893008 _____ (Piriform Ltd) C:\Users\Master\Downloads\ccsetup518.exe
2016-06-20 22:13 - 2016-06-20 22:13 - 00000000 ____D C:\ProgramData\App4rTemp
2016-06-20 21:55 - 2016-06-20 21:55 - 00000000 ____D C:\Users\Master\AppData\Local\CEF
2016-06-20 21:24 - 2016-06-26 16:02 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-06-20 14:34 - 2016-06-20 14:34 - 00000000 ____D C:\ProgramData\Lexmark 5600-6600 Series
2016-06-20 14:31 - 2016-06-20 14:31 - 00000000 ____D C:\Users\Master\AppData\Roaming\Lexmark Productivity Studio
2016-06-20 13:54 - 2009-10-16 16:07 - 00109056 _____ () C:\WINDOWS\system32\lxduvs.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01661952 _____ ( ) C:\WINDOWS\system32\lxduserv.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01338368 _____ ( ) C:\WINDOWS\system32\lxduusb1.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01291264 _____ ( ) C:\WINDOWS\system32\lxducomc.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01091584 _____ ( ) C:\WINDOWS\system32\lxduhbn3.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01039360 _____ ( ) C:\WINDOWS\system32\lxducoms.exe
2016-06-20 13:54 - 2009-10-16 16:06 - 00987648 _____ ( ) C:\WINDOWS\system32\lxdupmui.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 00897024 _____ ( ) C:\WINDOWS\system32\lxdulmpm.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 00610304 _____ ( ) C:\WINDOWS\system32\lxducfg.exe
2016-06-20 13:54 - 2009-10-16 16:06 - 00580608 _____ ( ) C:\WINDOWS\system32\lxducomm.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 00548352 _____ ( ) C:\WINDOWS\system32\lxduinpa.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 00521216 _____ ( ) C:\WINDOWS\system32\lxduih.exe
2016-06-20 13:54 - 2009-10-16 16:06 - 00513024 _____ ( ) C:\WINDOWS\system32\lxduiesc.dll
2016-06-20 13:54 - 2009-10-16 15:56 - 00300032 _____ () C:\WINDOWS\system32\lxdugrd.dll
2016-06-20 13:48 - 2016-06-20 13:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-06-20 13:47 - 2016-06-24 11:05 - 00000000 ____D C:\ProgramData\Lx_cats
2016-06-20 13:38 - 2016-06-26 16:03 - 00003328 _____ C:\WINDOWS\System32\Tasks\Installation App Launcher
2016-06-20 13:36 - 2016-06-20 13:36 - 00000000 ____D C:\Program Files\Lexmark Printable Web
2016-06-20 13:36 - 2016-06-20 13:36 - 00000000 ____D C:\Program Files (x86)\Lexmark Toolbar
2016-06-20 13:36 - 2009-08-19 11:16 - 00019112 _____ (Lexmark International, Inc.) C:\WINDOWS\system32\LXDUwupd.exe
2016-06-20 13:36 - 2009-04-27 23:57 - 00489472 _____ (Lexmark International, Inc.) C:\WINDOWS\system32\LXDUwupd.dll
2016-06-20 13:36 - 2006-12-05 22:19 - 00000044 _____ C:\WINDOWS\system32\lxdurwrd.ini
2016-06-20 13:32 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 5600-6600 Series
2016-06-20 13:32 - 2016-06-20 14:41 - 00176759 _____ C:\WINDOWS\system32\LexFiles.ulf
2016-06-20 13:32 - 2016-06-20 13:44 - 00000000 ____D C:\Program Files (x86)\Lexmark 5600-6600 Series
2016-06-20 13:32 - 2009-08-19 11:16 - 00594600 _____ ( ) C:\WINDOWS\SysWOW64\lxducoms.exe
2016-06-20 13:32 - 2009-08-19 11:16 - 00369320 _____ ( ) C:\WINDOWS\SysWOW64\lxducfg.exe
2016-06-20 13:32 - 2009-08-19 11:16 - 00328360 _____ ( ) C:\WINDOWS\SysWOW64\lxduih.exe
2016-06-20 13:32 - 2009-08-19 11:08 - 00001867 _____ C:\WINDOWS\SysWOW64\lxdu.loc
2016-06-20 13:32 - 2009-08-19 10:51 - 00335872 _____ () C:\WINDOWS\SysWOW64\lxducomx.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 01069056 _____ ( ) C:\WINDOWS\SysWOW64\lxduserv.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00860160 _____ ( ) C:\WINDOWS\SysWOW64\lxduusb1.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00761856 _____ ( ) C:\WINDOWS\SysWOW64\lxducomc.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00684032 _____ ( ) C:\WINDOWS\SysWOW64\lxduhbn3.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00651264 _____ ( ) C:\WINDOWS\SysWOW64\lxdupmui.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00577536 _____ ( ) C:\WINDOWS\SysWOW64\lxdulmpm.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00376832 _____ ( ) C:\WINDOWS\SysWOW64\lxducomm.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00364544 _____ ( ) C:\WINDOWS\SysWOW64\lxduinpa.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00339968 _____ ( ) C:\WINDOWS\SysWOW64\lxduiesc.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00126976 _____ (Lexmark International Inc.) C:\WINDOWS\SysWOW64\lxdulnks.dll
2016-06-20 13:32 - 2009-07-13 23:06 - 00147456 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxdujswr.dll
2016-06-20 13:32 - 2009-07-13 23:06 - 00106496 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxduinsr.dll
2016-06-20 13:32 - 2009-07-13 23:06 - 00036864 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxducur.dll
2016-06-20 13:32 - 2009-07-13 23:04 - 00200704 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxduinsb.dll
2016-06-20 13:32 - 2009-07-13 23:04 - 00090112 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxducub.dll
2016-06-20 13:32 - 2009-07-13 23:02 - 00176128 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxduins.dll
2016-06-20 13:32 - 2009-07-13 23:02 - 00077824 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxducu.dll
2016-06-20 13:32 - 2009-07-13 22:59 - 00544768 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxduutil.dll
2016-06-20 13:32 - 2009-05-20 21:26 - 00681984 _____ ( ) C:\WINDOWS\system32\LXDUhcp.dll
2016-06-20 13:32 - 2009-05-20 19:14 - 00594944 _____ C:\WINDOWS\system32\LXDUinst.dll
2016-06-20 13:32 - 2009-05-20 09:57 - 00389120 _____ C:\WINDOWS\SysWOW64\LXDUinst.dll
2016-06-20 13:32 - 2008-03-05 18:56 - 00983121 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lxdugf.dll
2016-06-20 13:23 - 2016-06-26 15:27 - 00000000 ____D C:\Program Files\Lexmark 5600-6600 Series
2016-06-20 13:22 - 2016-06-20 13:22 - 00000000 _____ C:\ProgramData\UpdaterLog.txt
2016-06-17 17:46 - 2016-06-17 17:46 - 00000000 ____D C:\Users\Master\Tracing
2016-06-16 22:09 - 2016-06-16 22:09 - 00000000 _____ C:\WINDOWS\SysWOW64\last.dump
2016-06-16 02:00 - 2016-06-16 02:01 - 00000000 ____D C:\Users\Master\Desktop\Monetize Instagram
2016-06-14 19:11 - 2016-05-27 07:06 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-06-14 19:06 - 2016-05-20 15:45 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-06-14 19:06 - 2016-05-20 15:07 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2016-06-14 19:06 - 2016-05-20 15:07 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2016-06-14 15:26 - 2016-06-18 04:11 - 00000000 ____D C:\Users\Master\AppData\Roaming\Skype
2016-06-14 06:00 - 2016-06-14 06:00 - 00000000 ____D C:\Users\Master\AppData\Roaming\Roxio Log Files
2016-06-14 05:39 - 2016-06-14 05:39 - 00000000 ____D C:\Users\Master\AppData\Local\ArcSoft
2016-06-14 02:34 - 2016-06-26 16:02 - 00004002 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1465893237
2016-06-14 02:34 - 2016-06-14 02:34 - 00000999 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-06-14 02:33 - 2016-06-14 02:33 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-06-14 02:28 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-06-14 02:28 - 2016-06-14 02:28 - 00000000 ____D C:\Users\Master\AppData\Roaming\AVAST Software
2016-06-14 02:27 - 2016-06-26 20:58 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-06-14 02:27 - 2016-06-26 16:39 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2016-06-14 02:27 - 2016-06-21 03:49 - 00000000 ____D C:\Program Files\Common Files\AV
2016-06-14 02:26 - 2016-06-14 02:26 - 00465792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-06-14 02:26 - 2016-06-14 02:26 - 00287528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00166432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-06-14 02:26 - 2016-06-14 02:25 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-06-14 02:25 - 2016-06-14 02:25 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-06-14 02:23 - 2016-06-14 02:33 - 00000000 ____D C:\Program Files\AVAST Software
2016-06-14 02:22 - 2016-06-14 02:33 - 00000000 ____D C:\ProgramData\AVAST Software
2016-06-14 02:12 - 2016-06-14 02:12 - 09668629 _____ C:\Users\Master\Downloads\General_Guidelines (1).pdf
2016-06-09 17:33 - 2016-06-12 15:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-06 14:58 - 2016-06-06 14:58 - 09727168 _____ C:\Users\Master\Downloads\General_Guidelines.pdf
2016-06-06 14:58 - 2016-06-06 14:58 - 02928544 _____ C:\Users\Master\Downloads\side-by-side.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-27 02:56 - 2015-11-08 21:25 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-27 02:53 - 2015-11-08 21:27 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-27 02:31 - 2015-10-30 01:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-27 02:15 - 2011-05-14 06:36 - 00000000 ____D C:\ProgramData\Temp
2016-06-27 00:48 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-27 00:42 - 2015-10-30 01:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-26 23:52 - 2015-11-08 21:25 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-26 23:48 - 2016-04-27 00:32 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-26 23:48 - 2011-05-14 07:58 - 00000000 ____D C:\ProgramData\NVIDIA
2016-06-26 23:46 - 2015-10-30 00:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-06-26 23:18 - 2011-05-14 06:24 - 00000000 ____D C:\ProgramData\Dell
2016-06-26 21:11 - 2015-10-30 01:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-26 20:19 - 2011-05-14 06:02 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2016-06-26 20:19 - 2011-05-14 06:02 - 00000000 ____D C:\WINDOWS\system32\NV
2016-06-26 20:03 - 2011-05-14 06:28 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-26 19:49 - 2011-05-14 06:54 - 00000000 ____D C:\Program Files\Dell Support Center
2016-06-26 19:44 - 2015-11-20 01:07 - 00000000 ____D C:\ProgramData\PCDr
2016-06-26 19:44 - 2011-05-14 06:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2016-06-26 16:58 - 2015-11-08 21:27 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-26 16:57 - 2016-04-27 00:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-26 16:39 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\rescache
2016-06-26 16:38 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-06-26 16:15 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-06-26 16:05 - 2015-10-30 01:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-06-26 16:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Registration
2016-06-26 16:03 - 2015-11-08 21:27 - 00003878 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-06-26 16:03 - 2015-11-08 21:25 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-26 16:02 - 2015-11-08 21:25 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-26 16:00 - 2015-10-30 01:24 - 00000000 __RSD C:\WINDOWS\Media
2016-06-26 15:59 - 2015-10-30 01:24 - 00000000 __RHD C:\Users\Public\Libraries
2016-06-26 15:27 - 2016-02-20 23:04 - 00000000 ____D C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2016-06-26 15:27 - 2015-11-09 04:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-06-26 15:27 - 2015-10-30 00:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-06-26 15:27 - 2011-05-14 06:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Webcam
2016-06-26 15:27 - 2011-05-14 06:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2016-06-26 15:27 - 2011-05-14 06:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-06-26 15:24 - 2016-04-27 00:20 - 00000000 ____D C:\Program Files\Windows Journal
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-06-26 15:20 - 2015-10-30 01:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-06-26 15:15 - 2009-07-13 21:20 - 00000000 ____D C:\Users\Default.migrated
2016-06-26 15:13 - 2016-04-27 00:34 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-06-26 15:05 - 2015-11-10 04:04 - 00000000 ____D C:\WINDOWS\system32\SPReview
2016-06-26 15:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-06-26 15:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-06-26 15:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-06-26 15:04 - 2015-11-10 04:04 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-06-26 15:04 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-06-26 15:04 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-06-26 15:04 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\IME
2016-06-26 15:02 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\schemas
2016-06-26 15:01 - 2011-05-14 07:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-26 15:00 - 2015-11-09 00:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2016-06-26 15:00 - 2015-10-30 01:24 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-06-26 15:00 - 2015-10-30 01:24 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-06-26 15:00 - 2015-10-30 01:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-06-26 15:00 - 2011-05-14 06:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2016-06-26 15:00 - 2009-07-13 23:32 - 00000000 ____D C:\Program Files\Microsoft Games
2016-06-26 15:00 - 2009-07-13 23:32 - 00000000 ____D C:\Program Files\DVD Maker
2016-06-26 14:57 - 2009-07-13 21:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-06-26 14:48 - 2015-10-30 00:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-06-26 14:34 - 2011-05-14 06:31 - 00000000 ____D C:\Temp
2016-06-26 14:33 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Help
2016-06-26 14:08 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-06-26 14:08 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\setup
2016-06-26 14:08 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-06-26 14:08 - 2015-10-30 01:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2016-06-26 14:08 - 2015-10-30 01:19 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2016-06-26 14:08 - 2015-10-30 01:19 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2016-06-26 14:08 - 2015-10-30 01:19 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2016-06-26 14:08 - 2015-10-30 01:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2016-06-26 14:08 - 2015-10-30 01:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2016-06-26 14:08 - 2015-10-30 01:18 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2016-06-26 14:08 - 2015-10-30 01:18 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2016-06-26 14:08 - 2015-10-30 01:18 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2016-06-26 14:08 - 2015-10-30 01:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2016-06-26 14:08 - 2015-10-30 01:18 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2016-06-26 14:08 - 2015-10-30 01:18 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2016-06-26 14:08 - 2015-10-30 01:18 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2016-06-26 14:08 - 2015-10-30 01:18 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2016-06-26 14:08 - 2015-10-30 01:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2016-06-26 11:31 - 2009-07-13 22:45 - 00014240 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-26 11:31 - 2009-07-13 22:45 - 00014240 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-26 11:27 - 2016-04-27 01:46 - 00000000 ___HD C:\$WINDOWS.~BT
2016-06-24 09:49 - 2016-03-19 22:46 - 00000000 ____D C:\Users\Master\Desktop\stuff lkjhlkjh
2016-06-24 01:09 - 2015-11-09 04:04 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-24 01:09 - 2015-11-09 04:04 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-21 06:08 - 2009-07-13 23:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-06-20 22:13 - 2015-11-08 21:05 - 00000000 ____D C:\Users\Master\AppData\Local\VirtualStore
2016-06-20 21:55 - 2015-11-08 21:27 - 00000000 ____D C:\Users\Master\AppData\Local\Adobe
2016-06-20 21:18 - 2011-05-14 06:28 - 00000000 ____D C:\ProgramData\Adobe
2016-06-19 04:22 - 2016-03-23 02:15 - 00000000 ____D C:\Users\Master\AppData\Local\FluxSoftware
2016-06-19 04:02 - 2011-05-14 06:33 - 00000000 ____D C:\ProgramData\Skype
2016-06-18 23:02 - 2011-05-14 06:59 - 00000000 ____D C:\ProgramData\Sonic
2016-06-18 23:02 - 2011-05-14 06:57 - 00000000 ____D C:\Program Files (x86)\Roxio
2016-06-18 23:00 - 2011-05-14 06:59 - 00000000 ____D C:\ProgramData\Roxio
2016-06-18 22:51 - 2015-11-08 21:07 - 00000000 ____D C:\Users\Master\AppData\Roaming\Roxio
2016-06-18 22:07 - 2016-02-28 01:07 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-06-18 21:18 - 2011-05-14 06:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-06-18 21:17 - 2011-05-14 06:30 - 00000000 ____D C:\Program Files (x86)\Dell
2016-06-18 21:16 - 2015-11-08 21:08 - 00000000 ____D C:\Users\Master\AppData\Local\Dell
2016-06-16 08:16 - 2015-11-09 00:44 - 00000000 ____D C:\Users\Master\AppData\Roaming\SoftGrid Client
2016-06-14 08:17 - 2011-05-14 06:51 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-06-14 05:47 - 2011-05-14 06:33 - 00000000 ____D C:\ProgramData\Cozi
2016-06-12 15:56 - 2015-11-08 21:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== Files in the root of some directories =======

2016-06-20 14:10 - 2016-06-26 21:34 - 0001293 _____ () C:\ProgramData\lxdu.log
2016-06-20 14:34 - 2016-06-20 21:10 - 0000370 _____ () C:\ProgramData\lxduDiagnostics.log
2016-06-20 13:22 - 2016-06-20 13:22 - 0000000 _____ () C:\ProgramData\UpdaterLog.txt

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-06-26 16:53

==================== End of FRST.txt ============================

****************************************Addition.txt******************************************************************************************

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-06-2016 02
Ran by Master (2016-06-27 03:19:43)
Running from C:\Users\Master\Desktop
Windows 10 Home Version 1511 (X64) (2016-06-26 22:38:20)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2202564656-2552605091-3067513876-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2202564656-2552605091-3067513876-503 - Limited - Disabled)
Guest (S-1-5-21-2202564656-2552605091-3067513876-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2202564656-2552605091-3067513876-1003 - Limited - Enabled)
Master (S-1-5-21-2202564656-2552605091-3067513876-1002 - Administrator - Enabled) => C:\Users\Master
UpdatusUser (S-1-5-21-2202564656-2552605091-3067513876-1000 - Limited - Enabled) => C:\Users\UpdatusUser
User1 (S-1-5-21-2202564656-2552605091-3067513876-1004 - Administrator - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: McAfee Anti-Virus and Anti-Spyware (Disabled - Out of date) {86355677-4064-3EA7-ABB3-1B136EB04637}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: McAfee Anti-Virus and Anti-Spyware (Disabled - Out of date) {3D54B793-665E-3129-9103-206115370C8A}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: McAfee Firewall (Disabled) {BE0ED752-0A0B-3FFF-80EC-B2269063014C}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{1C115E6B-88E0-4A31-BCA0-F89FDEA1F5FE}) (Version: 1.0.4295.850 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1200.101.218 - ALPS ELECTRIC CO., LTD.)
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.35 - Creative Technology Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Infinite HD™ App (HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\Octoshape Streaming Services) (Version: - Octoshape ApS)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2253 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{5A80B0BA-79AF-4B11-B851-CCB9F7977AC0}) (Version: 1.0.1.0489 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{290D4DB2-F1B4-4B8E-918D-D71EF29A001B}) (Version: 14.00.1000 - Intel Corporation)
Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Intel® Wireless Display (HKLM-x32\...\{F84906ED-BB54-4889-B131-FED9C9056FC8}) (Version: 2.0.27.0 - Intel Corporation)
Internet Explorer (x32 Version: 8 - Microsoft Corporation) Hidden
Java™ 6 Update 24 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416024FF}) (Version: 6.0.240 - Oracle)
Java™ 6 Update 24 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.240 - Oracle)
Lexmark 5600-6600 Series (HKLM\...\Lexmark 5600-6600 Series) (Version: - Lexmark International, Inc.)
Lexmark Printable Web (HKLM-x32\...\{D2C5E510-BE6D-42CC-9F61-E4F939078474}) (Version: 1.0.0.0 - )
McAfee SecurityCenter (HKLM-x32\...\MSC) (Version: 10.5.216 - McAfee, Inc.)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 47.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 en-US)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA 3D Vision Driver 265.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 265.94 - NVIDIA Corporation)
NVIDIA Graphics Driver 265.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 265.94 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.1.13.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.1.13.1 - NVIDIA Corporation)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.0.10 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6267 - Realtek Semiconductor Corp.)
SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Master\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00011D4A-58AC-4FB5-87DE-443EEFAC6BE3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {04C2B8D9-186D-42C4-9F09-29A966AD4E73} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {0C4B1A28-E662-4F32-828A-1BA0912860F7} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {10C02DE2-D5D8-490D-817C-8552CE833D9C} - System32\Tasks\SafeZone scheduled Autoupdate 1465893237 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software)
Task: {156DE26F-955B-45BA-8681-2378648D3D59} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2524E3B2-76DF-45C0-B103-623A10E5AC6D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2A27B9FB-1D57-4F80-8511-7FA5B0A951A4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {3D5FEB17-8B27-4ACF-AEB0-6916101A8651} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {4337E780-3BE0-4490-A9F8-343056477C24} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {47A738BB-7EEB-4085-8495-143B092FA3F9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {484658A3-587E-4B56-8F0D-3FC4E51CC7F3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {498F11CF-A38E-4AA3-97BC-F1C3D95F37AC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {4B972662-F70C-47B6-84B7-F50ECAB72B88} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-06-14] (AVAST Software)
Task: {4D8B1BA2-AE60-43A0-9C83-D75854E01267} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {4F514384-4D92-4891-9D6A-238A538D5DD5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {5707A550-699D-4505-8E49-A05E92E8E419} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {61F804D0-A663-4046-BA9E-19F0C6293EEC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {66AA225A-7817-4F03-98C0-6E1EF5B25EE2} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {67606E0D-F4EF-455B-838A-36E8FC819C53} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {69F85C69-7415-4F52-9ECC-0F26DD833E61} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {6CE8D7C4-9FE0-40AA-9818-5D38C8DDFA9F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {720E7334-A3C9-4F58-8363-D10657A55061} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {74130DDF-AA75-47B9-A02E-18AE965FDF52} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {77F28AE8-D267-4E66-A38F-B8F8300664A6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {78507FD8-9A47-4866-97BD-16CE8A44E4D1} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {78F2C289-D657-4B42-8402-15C53365E71C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {7C7F6124-C049-4573-A706-76D9EC4F870B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {7D4EAC2B-C31F-44D5-BE42-F09BA3A7E603} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {7E47F1B4-C69E-4755-9DB8-04FB6CA25F8D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {840E4311-66B4-4531-958C-62B3F6EBEEEF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {92DB1341-34BF-498B-ACFD-67FB8771B3CA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {9461CBB3-1B3B-4F8D-97D5-1B5641EC270D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {9524811E-3B4C-4EB7-B47A-A0C9F619F837} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {98AB2112-CFAF-4A4E-8C5E-C515BCCCC1B4} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {B65D80BB-3E83-4D2A-8F11-15F2B7923CA7} - System32\Tasks\Installation App Launcher => C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduamon.exe [2009-09-04] ()
Task: {B7E2C5C2-7966-4D23-A78F-421A69A7A616} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {B88BB0FB-7014-4B9D-91A5-88B1A4320C48} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B8B15E2B-69BE-462F-B679-24ABA9203B38} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {D13A96F2-8D17-452F-A3B2-EFC0506B6CC2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {D8D2E0E2-B79F-4123-AD93-9F72AC846683} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated)
Task: {D921B201-053C-4107-A26D-EBA0ED279F92} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {DDDF9D9D-9AC3-47BD-B564-C312BCD00EB2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {E2B3882D-4FF7-4DC2-8A74-2B1B199E3E65} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {EBCE6FEC-24B5-41AB-9476-E6D794834F7A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {F0D2BF86-F19B-4903-B825-E853246C6F7F} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {F1C93741-65ED-4A94-9488-5C705260574B} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {FD3BC01D-3A9F-4C16-B3BB-7D1F2C4783AC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-01] (Piriform Ltd)
Task: {FFE41A7D-757B-464F-8D99-9917A09EF65C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 01:18 - 2015-10-30 01:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-06-20 13:44 - 2009-10-16 16:07 - 00186880 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\lxdudrpp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-06-26 17:39 - 2016-06-26 17:39 - 00959168 _____ () C:\Users\Master\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2010-12-17 12:53 - 2010-12-17 12:53 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2016-04-27 00:22 - 2016-04-27 00:22 - 08395776 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.13.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2016-04-27 00:22 - 2016-04-27 00:22 - 02311680 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.13.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2016-06-14 02:25 - 2016-06-14 02:25 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-06-14 02:25 - 2016-06-14 02:25 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-26 16:14 - 2016-06-26 16:14 - 02948608 _____ () C:\Program Files\AVAST Software\Avast\defs\16062601\algo.dll
2016-06-14 02:25 - 2016-06-14 02:25 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll
2016-06-14 02:25 - 2016-06-14 02:25 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-06-21 03:45 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-06-21 03:45 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2010-11-16 07:51 - 2010-11-16 07:51 - 00176520 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2016-06-14 02:26 - 2016-06-14 02:26 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-06-21 03:45 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [125]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\1-2005-search.com -> www.1-2005-search.com

There are 12721 more sites.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 20:34 - 2016-06-21 04:01 - 00452730 ___RA C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1   www.007guard.com
127.0.0.1   007guard.com
127.0.0.1   008i.com
127.0.0.1   www.008k.com
127.0.0.1   008k.com
127.0.0.1   www.00hq.com
127.0.0.1   00hq.com
127.0.0.1   010402.com
127.0.0.1   www.032439.com
127.0.0.1   032439.com
127.0.0.1   www.0scan.com
127.0.0.1   0scan.com
127.0.0.1   1000gratisproben.com
127.0.0.1   www.1000gratisproben.com
127.0.0.1   1001namen.com
127.0.0.1   www.1001namen.com
127.0.0.1   100888290cs.com
127.0.0.1   www.100888290cs.com
127.0.0.1   www.100sexlinks.com
127.0.0.1   100sexlinks.com
127.0.0.1   10sek.com
127.0.0.1   www.10sek.com
127.0.0.1   www.1-2005-search.com
127.0.0.1   1-2005-search.com
127.0.0.1   123fporn.info
127.0.0.1   www.123fporn.info
127.0.0.1   www.123haustiereundmehr.com
127.0.0.1   123haustiereundmehr.com
127.0.0.1   123moviedownload.com
127.0.0.1   www.123moviedownload.com

There are 15534 more lines.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: BDESVC => 3
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: CertPropSvc => 3
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: MSiSCSI => 3
MSCONFIG\Services: Netlogon => 3
MSCONFIG\Services: RemoteRegistry => 3
MSCONFIG\Services: SCardSvr => 3
MSCONFIG\Services: SCPolicySvc => 3
MSCONFIG\Services: SessionEnv => 3
MSCONFIG\Services: TabletInputService => 3
MSCONFIG\Services: TermService => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: WPCSvc => 3
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: BTMTrayAgent => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dell DataSafe Online => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
MSCONFIG\startupreg: Dell Webcam Central => "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
MSCONFIG\startupreg: DellStage => "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj"
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: NVHotkey => rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
MSCONFIG\startupreg: Octoshape Streaming Services => "C:\Users\Master\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun
MSCONFIG\startupreg: QuickSet => c:\Program Files\Dell\QuickSet\QuickSet.exe
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
HKLM\...\StartupApproved\Run: => "lxduamon"
HKLM\...\StartupApproved\Run: => "lxdumon.exe"
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{B74F6359-1ABC-4639-94E1-A0AD55732907}] => (Allow) C:\Windows\SysWOW64\lxducoms.exe
FirewallRules: [{B9A2E7B3-7A5B-4C29-AFA8-096438F43581}] => (Allow) C:\Windows\system32\spool\DRIVERS\x64\3\lxdutime.exe
FirewallRules: [{51DE2E95-BFF4-4F2D-B506-516D4A102EE1}] => (Allow) C:\Windows\system32\spool\DRIVERS\x64\3\lxdupswx.exe
FirewallRules: [{78172885-3EF1-495B-97F8-180258E99417}] => (Allow) C:\Windows\system32\lxducoms.exe
FirewallRules: [{13ABD283-73F4-4AEF-9F0C-EB5D21F4F00B}] => (Allow) C:\WINDOWS\System32\lxducoms.exe
FirewallRules: [{B7693329-6E89-48CC-AF22-FB5B3F7702AE}] => (Allow) C:\WINDOWS\System32\lxducoms.exe
FirewallRules: [{96564263-F1E6-41F6-A786-D72C8D1D57B2}] => (Allow) C:\Program Files (x86)\Lexmark 5600-6600 Series\frun.exe
FirewallRules: [{D164F0E4-7820-4EEA-A359-6725096F1E8C}] => (Allow) C:\Program Files (x86)\Lexmark 5600-6600 Series\frun.exe
FirewallRules: [{DB2EC398-E6E8-4194-AD4D-E6BF87F126C9}] => (Allow) C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduamon.exe
FirewallRules: [{A9725CEA-3689-47C3-BE49-9936C45D4A28}] => (Allow) C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduamon.exe
FirewallRules: [{88B26CB9-CE16-4954-9909-7A181DBCD2B6}] => (Allow) C:\WINDOWS\SysWOW64\lxducoms.exe
FirewallRules: [{91E04B37-8739-4462-9A83-1DF0AD3B9021}] => (Allow) C:\WINDOWS\SysWOW64\lxducoms.exe
FirewallRules: [{697B0591-3C10-47B5-9448-A37CF1AD6518}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1EA34580-5EB5-4282-930F-DA689FB3213E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{65B7C095-512C-40FC-B6D2-76B36DC35E93}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{98D04B9F-EBD5-4963-893F-A9CA76EC6E2F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5C758C25-230E-416B-8ACE-D5275F94E6B6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D13F52F7-E463-45D1-B6CA-11C02F734527}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{A49B5A4B-456E-4FFD-8A9A-360067398537}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{AA80F533-E1A5-4E58-91FE-0521665CBF68}] => (Allow) c:\Program Files (x86)\Dell\VideoStage\VideoStage.exe
FirewallRules: [{3E8E19AA-CA15-49C9-A76E-FB250122F925}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel Wireless Display\WiDiApp.exe
FirewallRules: [{29AB5778-F258-4060-B290-80F2143260BF}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{C5E6ED27-0928-4385-AA90-9C939A350F95}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{85706D96-8902-43AE-91BB-B978BE77B7D8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

26-06-2016 21:48:02 Removed Dell DataSafe Local Backup

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (06/27/2016 02:06:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program WWAHost.exe version 10.0.10586.420 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 4bc

Start Time: 01d1d04ac458b246

Termination Time: 4294967295

Application Path: C:\Windows\System32\WWAHost.exe

Report Id: 0eaf5f7f-3c3e-11e6-aa30-14feb5ab9ee8

Faulting package full name: Microsoft.Windows.CloudExperienceHost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: App

Error: (06/27/2016 02:06:36 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MASTER-PC)
Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (06/27/2016 02:06:26 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: MASTER-PC)
Description: App Microsoft.Windows.CloudExperienceHost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy+App did not launch within its allotted time.

Error: (06/27/2016 12:23:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 47.0.0.5999, time stamp: 0x5753660e
Faulting module name: mozglue.dll, version: 47.0.0.5999, time stamp: 0x57535438
Exception code: 0x80000003
Fault offset: 0x0000f3ad
Faulting process id: 0x1030
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5

Error: (06/26/2016 11:52:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: wmiprvse.exe, version: 10.0.10586.0, time stamp: 0x5632d3b9
Faulting module name: TraceApi.dll, version: 14.0.1.3, time stamp: 0x4d0be3fc
Exception code: 0xc0000005
Fault offset: 0x0000000000073dae
Faulting process id: 0xb60
Faulting application start time: 0xwmiprvse.exe0
Faulting application path: wmiprvse.exe1
Faulting module path: wmiprvse.exe2
Report Id: wmiprvse.exe3
Faulting package full name: wmiprvse.exe4
Faulting package-relative application ID: wmiprvse.exe5

Error: (06/26/2016 11:49:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: daemonu.exe, version: 1.0.9.0, time stamp: 0x4cf3830f
Faulting module name: daemonu.exe, version: 1.0.9.0, time stamp: 0x4cf3830f
Exception code: 0xc000000d
Fault offset: 0x0004c866
Faulting process id: 0xd08
Faulting application start time: 0xdaemonu.exe0
Faulting application path: daemonu.exe1
Faulting module path: daemonu.exe2
Report Id: daemonu.exe3
Faulting package full name: daemonu.exe4
Faulting package-relative application ID: daemonu.exe5

Error: (06/26/2016 11:49:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: obexsrv.exe, version: 1.0.0.45, time stamp: 0x4d014f23
Faulting module name: obexsrv.exe, version: 1.0.0.45, time stamp: 0x4d014f23
Exception code: 0xc0000005
Fault offset: 0x0004f69f
Faulting process id: 0x970
Faulting application start time: 0xobexsrv.exe0
Faulting application path: obexsrv.exe1
Faulting module path: obexsrv.exe2
Report Id: obexsrv.exe3
Faulting package full name: obexsrv.exe4
Faulting package-relative application ID: obexsrv.exe5

Error: (06/26/2016 11:48:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 10.0.10586.0, time stamp: 0x5632d7b9
Faulting module name: TraceApi.dll, version: 14.0.1.3, time stamp: 0x4d0be3fc
Exception code: 0xc0000005
Fault offset: 0x0000000000073dae
Faulting process id: 0x74c
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (06/26/2016 11:41:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 47.0.0.5999, time stamp: 0x5753660e
Faulting module name: mozglue.dll, version: 47.0.0.5999, time stamp: 0x57535438
Exception code: 0x80000003
Fault offset: 0x0000f3ad
Faulting process id: 0x1be4
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5

Error: (06/26/2016 11:41:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program firefox.exe version 47.0.0.5999 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 16dc

Start Time: 01d1d034d3925a62

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: b9468d0f-3c29-11e6-aa2f-14feb5ab9ee8

Faulting package full name:

Faulting package-relative application ID:

System errors:
=============
Error: (06/27/2016 02:06:36 AM) (Source: DCOM) (EventID: 10010) (User: MASTER-PC)
Description: App.AppXe35aa078nkgkdbkbrk5tjm2xds5rwz5q.wwa

Error: (06/26/2016 11:55:28 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The McShield service hung on starting.

Error: (06/26/2016 11:52:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Network Agent service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (06/26/2016 11:52:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McNASvc service to connect.

Error: (06/26/2016 11:52:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee VirusScan Announcer service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (06/26/2016 11:52:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McNaiAnn service to connect.

Error: (06/26/2016 11:52:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Services service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (06/26/2016 11:52:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the mcmscsvc service to connect.

Error: (06/26/2016 11:50:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s).

Error: (06/26/2016 11:50:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Net.Pipe Listener Adapter service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.

CodeIntegrity:
===================================
Date: 2016-06-26 22:23:18.605
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-26 20:13:14.764
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:13.146
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:11.470
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:10.149
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:09.441
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:05.225
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:04.394
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:00.189
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:12:55.290
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel® Core™ i5-2410M CPU @ 2.30GHz
Percentage of memory in use: 30%
Total physical RAM: 6058.17 MB
Available physical RAM: 4203.38 MB
Total Virtual: 7711.17 MB
Available Virtual: 5757.69 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:581.42 GB) (Free:527.28 GB) NTFS
Drive d: (Lexmark 6600) (CDROM) (Total:0.45 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596.2 GB) (Disk ID: 07F2837E)
Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=581.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Edited by username24048, 27 June 2016 - 04:04 AM.

#2
RKinner

Posted 27 June 2016 - 09:01 PM

Malware Expert

Expert
24,624 posts

Clear the Java Cache by following the instructions on

http://www.java.com/...lugin_cache.xml

You do not have the latest Java.

First go into Control Panel, Add/Remove Software (XP) or Programs and Features (Vista/Win 7) and remove any old versions (which may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE, J2SE)

I see:

Java™ 6 Update 24 (64-bit)

Java™ 6 Update 24

Java has been very vulnerable to infection so unless you absolutely need it you should not reinstall it.

If you feel you must have Java:

Get the latest Java at:

http://www.java.com/en/

Save it to your PC then close all browsers and install it. Do not let it install the yahoo toolbar or other foistware.

Once installed, go into Control Panel, Java, Security and set the slider to the Highest then OK.

(If you also want the 64 bit version then use the 64 bit version of IE to get it.)

Uninstall:

McAfee SecurityCenter

Spybot - Search & Destroy

(Try and have Spybot remove any "Immunizations")

Download the McAfee Removal tool from http://us.mcafee.com...s/mcpr/mcpr.aspand save it. Right click on it and Run as admin.

Get DelDomain.inf from:

http://www.mvps.org/.../DelDomains.inf and then right click on it and

Install. Nothing obvious will happen.

Download : ADWCleaner to your desktop. Make sure you get the correct Download button. Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @BleepingComputer

NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close all programs, pause your anti-virus and run AdwCleaner (Vista or Win 7 => right click and Run As Administrator).

Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder.

Junkware-Removal-Tool

Please download Junkware Removal Tool to your desktop. Make sure you get the correct Download button. Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @Author's site

Pause your anti-virus. Close all browsers.

Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".

The tool will open and start scanning your system.

Please be patient as this can take a while to complete depending on your system's specifications.

On completion, a log (JRT.txt) is saved to your desktop and will automatically open.

Post the contents of JRT.txt into your next message.

Reboot and

Run FRST again as before. Make sure Addition.txt is checked and hit Scan. Post both logs.

#3
username24048

Posted 28 June 2016 - 06:01 PM

New Member

Topic Starter
Member
2 posts

Thank you for taking your time to help me, RKinner!

I took the steps you suggested and these are the results:

AdwCleaner
*************************************************************************************************************************************************************************************************************************

# AdwCleaner v5.200 - Logfile created 28/06/2016 at 17:15:23
# Updated 14/06/2016 by ToolsLib
# Database : 2016-06-26.1 [Server]
# Operating system : Windows 10 Home (X64)
# Username : User1 - MASTER-PC
# Running from : C:\Users\User1\Desktop\AdwCleaner.exe
# Option : Clean
# Support : https://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

***** [ Files ] *****

***** [ DLLs ] *****

***** [ WMI ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

[-] [C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com
[-] [C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com

*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [938 bytes] - [28/06/2016 17:15:23]
C:\AdwCleaner\AdwCleaner[S1].txt - [987 bytes] - [28/06/2016 17:13:13]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1082 bytes] ##########

JRT
*********************************************************************************************************************************************************************************************************************
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 10 Home x64
Ran by User1 (Administrator) on Tue 06/28/2016 at 17:27:07.98
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

File System: 1

Successfully deleted: C:\WINDOWS\wininit.ini (File)

Registry: 0

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 06/28/2016 at 17:29:42.65
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST
*********************************************************************************************************************************************************************************************************************
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2016
Ran by User1 (administrator) on MASTER-PC (28-06-2016 17:50:59)
Running from C:\Users\User1\Desktop
Loaded Profiles: Master & User1 (Available Profiles: UpdatusUser & Master & User1 & DefaultAppPool)
Platform: Windows 10 Home Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
Failed to access process -> wlanext.exe
(Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
Failed to access process -> devmonsrv.exe
Failed to access process -> obexsrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
Failed to access process -> daemonu.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6965.40901.0_x64__8wekyb3d8bbwe\HxTsr.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [708952 2013-07-08] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2010-12-17] (Intel® Corporation)
HKLM\...\Run: [lxdumon.exe] => C:\Program Files (x86)\Lexmark 5600-6600 Series\lxdumon.exe [676520 2009-09-04] ()
HKLM\...\Run: [lxduamon] => C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduamon.exe [16040 2009-09-04] ()
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7408312 2016-06-27] (AVAST Software)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8722136 2016-06-01] (Piriform Ltd)
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [232960 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-2202564656-2552605091-3067513876-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8722136 2016-06-01] (Piriform Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155280 2015-07-23] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-06-14] (AVAST Software)
GroupPolicy: Restriction - Chrome <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3b0c440d-5033-47e3-8f96-f1d7bc6ff3ea}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e18a2c6d-ad50-4fcf-b88d-486594858918}: [DhcpNameServer] 24.116.1.157 24.116.1.157

Internet Explorer:
==================
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
SearchScopes: HKLM -> DefaultScope {2EB3345F-BF78-4F54-B6BC-5236EFFF0F87} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM -> {2EB3345F-BF78-4F54-B6BC-5236EFFF0F87} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {71F71695-DCC9-424B-8314-8664BF587C8B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {71F71695-DCC9-424B-8314-8664BF587C8B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002 -> DefaultScope {C3B06259-C259-4065-8A41-D3097D63D9B4} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002 -> {2EB3345F-BF78-4F54-B6BC-5236EFFF0F87} URL =
SearchScopes: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002 -> {71F71695-DCC9-424B-8314-8664BF587C8B} URL =
SearchScopes: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002 -> {C3B06259-C259-4065-8A41-D3097D63D9B4} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: No Name -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-06-14] (AVAST Software)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => No File
BHO-x32: No Name -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-14] (AVAST Software)
BHO-x32: Lexmark Printable Web -> {D2C5E510-BE6D-42CC-9F61-E4F939078474} -> C:\Program Files\Lexmark Printable Web\bho.dll [2009-09-04] ()
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll => No File

FireFox:
========
FF ProfilePath: C:\Users\User1\AppData\Roaming\Mozilla\Firefox\Profiles\uy25ndsm.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2010-11-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2010-11-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin HKU\S-1-5-21-2202564656-2552605091-3067513876-1002: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Master\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1411300-0-npoctoshape.dll [2014-11-30] (Octoshape ApS)
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-14]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-06-14]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2016-06-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-06-14]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-06-14] (AVAST Software)
S2 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [901184 2010-12-14] (Intel Corporation) [File not signed]
S3 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1298496 2010-12-14] (Intel Corporation) [File not signed]
S2 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [974912 2010-12-14] (Intel Corporation) [File not signed]
S2 lxduCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\lxduserv.exe [29184 2009-10-16] (Lexmark International, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-12-17] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-05-22] (Realtek Semiconductor)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-06-14] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-06-14] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-06-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-06-14] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-06-14] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-06-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-06-14] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-06-14] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-06-14] (AVAST Software)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; no ImagePath
U4 wpcsvc; no ImagePath

========================== Drivers MD5 =======================

C:\Windows\System32\drivers\1394ohci.sys DF1C3D7E6C7929AD83BE22852B5B08CB
C:\Windows\System32\drivers\3ware.sys 2C5B3035B86770ADD2FE9BFBAF5B35A4
C:\Windows\System32\drivers\ACPI.sys 469441BAE3FF8A16826FC62C51EF5E18
C:\Windows\System32\Drivers\acpiex.sys 7EADED8087C392876521F7EBCE846EF4
C:\Windows\System32\drivers\acpipagr.sys C498887123327CDFD73A05E7A2780920
C:\Windows\System32\drivers\acpipmi.sys C8DBE6EFFCF014CAA010B9BDDAC833EC
C:\Windows\System32\drivers\acpitime.sys 17039DBEB3B7B9ADCDB4B4533AA9771F
C:\Windows\System32\drivers\ADP80XX.SYS F7D0CD345D2DA42E7042ABCD73662403
C:\Windows\system32\drivers\afd.sys 70148EFA9A562E7185B75BBE7D376BF7
C:\Windows\System32\drivers\agp440.sys 870F1A2C936F92B5D053DF7EC75B352F
C:\Windows\System32\DRIVERS\ahcache.sys 3DF7751D5DC6525E7DC6617FBB45054F
C:\Windows\System32\drivers\amdk8.sys B70F0F2F54B4A4DB6E9C830454752F5A
C:\Windows\System32\drivers\amdppm.sys 35E890482C9728DD5C552B85DA8A5AB2
C:\Windows\System32\drivers\amdsata.sys 5B30BCFE6E02E45D3EE268FF001BC5E0
C:\Windows\System32\drivers\amdsbs.sys F20B30F35A5C7888441B4DCA001ECF8E
C:\Windows\System32\drivers\amdxata.sys AFE838D7576C581D6483529621AB10CC
C:\Windows\system32\DRIVERS\Apfiltr.sys DA4AE4C68D135A210FB3E78CFF369EBD
C:\Windows\System32\drivers\appid.sys EDDB0D726DBECDFC1DBCC6DB464E5A13
C:\Windows\System32\drivers\arcsas.sys E3FE8F610B1CC12BC3B2E6BC43DC97E2
C:\Windows\system32\drivers\aswHwid.sys 1694434F5B9AB16772C7A8E2EF9134CA
C:\Windows\system32\drivers\aswKbd.sys 786E8BCDFF674068F3C950615FC2E71C
C:\Windows\system32\drivers\aswMonFlt.sys 33D0DD0471FDF449C81338863FC63978
C:\Windows\system32\drivers\aswRdr2.sys DF190688D993A3DB227BFB0BB40BD7D4
C:\Windows\System32\Drivers\aswRvrt.sys D873455DFA27680585AE238503917DF5
C:\Windows\system32\drivers\aswSnx.sys A371A06EC8F4830C263D3F5CA5A11B65
C:\Windows\system32\drivers\aswSP.sys 6B7F6CE19A16240EE9DE2C528897ED9C
C:\Windows\system32\drivers\aswStm.sys 3575F9226251DE48E065ED5C384A21EF
C:\Windows\System32\Drivers\aswVmm.sys BA4CDCD8C0395E91C38CD2C5CE3E7FA2
C:\Windows\System32\drivers\asyncmac.sys 5E00748A1AD246CAECBBB7553BED36CC
C:\Windows\System32\drivers\atapi.sys 492B99D2E3D5D7BFD5F0AE1BE7BD37DD
C:\Windows\System32\drivers\bxvbda.sys 6447BA6FA709514B6C803D159B4C7D1E
C:\Windows\System32\drivers\BasicDisplay.sys B4AC08B1D04D0CE085435E5CD0E663C5
C:\Windows\System32\drivers\BasicRender.sys 25B5BB369DEE2BAE4BF459C978FF9035
C:\Windows\System32\drivers\bcmfn.sys 3F5523DCEFE42B385659C5CB46A6B810
C:\Windows\System32\drivers\bcmfn2.sys 0B750A6A6D847E73CA48ADD7A0F5A393
C:\Windows\System32\Drivers\Beep.sys 5A88834AEE15D97695FAE0837B73B3E4
C:\Windows\System32\DRIVERS\bowser.sys DA2C6F7ACE392193C424FEA975C5BFFB
C:\Windows\System32\drivers\BthAvrcpTg.sys CAEC7BC11AF69A181AF7932E636E09E4
C:\Windows\system32\DRIVERS\BthEnum.sys 3C7DE7B7CAD633CD2DA07710BC17361C
C:\Windows\System32\drivers\bthhfenum.sys 5F2B4B32E986C058525D3BA2A475A16C
C:\Windows\System32\drivers\BthHFHid.sys 5406289E8AE2CB52FC408154E0A64BA7
C:\Windows\System32\drivers\bthmodem.sys A76F20CCCA31895A1DA78A875E50F946
C:\Windows\System32\drivers\bthpan.sys 09C3DB1B137B269A822F941D867A6BB6
C:\Windows\system32\DRIVERS\BTHport.sys FFB773E4AA55E4F5FBBB084B41D7A86F
C:\Windows\system32\DRIVERS\BTHUSB.sys BE265ABFB467BBAC8C73A55AD94F4216
C:\Windows\System32\drivers\buttonconverter.sys BF89BDBA5D3A0B4256D3F6FC8D31880D
C:\Windows\System32\drivers\capimg.sys C24C27FDF93B85A4EFCF25F830253AA2
C:\Windows\System32\DRIVERS\cdfs.sys 7F9C7226D743B232907ED2537B8A574F
C:\Windows\System32\drivers\cdrom.sys 82D97776BF982AA143BDC7DFB5054EA8
C:\Windows\System32\drivers\circlass.sys 0505C1D991D0F9D47F3353BB98597C7E
C:\Windows\System32\drivers\CLFS.sys 8B4B39C507ABA09AAFE8E3932D1B392C
C:\Windows\System32\drivers\CmBatt.sys 95832B049E2833B9F5189823CDF946C7
C:\Windows\System32\Drivers\cng.sys 3F7C80D9F16B94367646CBF8B8C052F4
C:\Windows\System32\DRIVERS\cnghwassist.sys 58D640BC2294C71BDE0953F12D4B432F
C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys 14F9883588398A1BDE49C75098C75DE6
C:\Windows\System32\drivers\condrv.sys 02B8E49148DE5E0A2F6FDF28CE94A6AC
C:\Windows\System32\DRIVERS\CtClsFlt.sys FBE228ABEAB2BE13B9C3A3A112D4D8DC
C:\Windows\System32\drivers\dam.sys 2619DC483579DB9FE804044C1ADFFD1A
C:\Windows\System32\Drivers\dfsc.sys 935823F79CBEDB91637B63D37E3A5A36
C:\Windows\System32\drivers\disk.sys 4904B152E4942BF700F2D73228B4D477
C:\Windows\System32\drivers\dmvsc.sys 0197AE4B9790A4E73751CACFAA480126
C:\Windows\system32\DRIVERS\drmkaud.sys 25FA06D3B49D6ADF8E874FFCDCD76B50
C:\Windows\System32\drivers\dxgkrnl.sys 8B83335B6A86F39785FC7C9DE5F5B29F
C:\Windows\System32\drivers\evbda.sys 491275B864B704B54EC08168344E0F38
C:\Windows\System32\drivers\EhStorClass.sys CEF108FCE06892CFA5F1B49527D4BF49
C:\Windows\System32\drivers\EhStorTcgDrv.sys 5B1EAAE3001A7A320C106FC3859F4111
C:\Windows\System32\drivers\errdev.sys 7A2705148A4BB3CA255F81624338B461
C:\Windows\System32\Drivers\exfat.sys DFE8A33FBCF6F38182631A4D6097B92D
C:\Windows\System32\Drivers\fastfat.sys C330883C06E2D4CE4F6982F048265D37
C:\Windows\System32\drivers\fdc.sys 9D299AE86D671488926126A84DF77BFD
C:\Windows\System32\drivers\filecrypt.sys 8F2523C9D8F1448FF2156452AF60FA00
C:\Windows\System32\drivers\fileinfo.sys 92ECCFA58C8195B8EA33ED942469D4E6
C:\Windows\System32\drivers\filetrace.sys 87C51FDD50C17882BA93E28BBABB9847
C:\Windows\System32\drivers\flpydisk.sys E99261DD76D1C9E05AF575939CAE5AC5
C:\Windows\System32\drivers\fltmgr.sys 25D7A58625E1453E40D36825DE74E4F1
C:\Windows\System32\drivers\FsDepends.sys B4175E8BE60B099686FF55CA7D692316
C:\Windows\System32\Drivers\Fs_Rec.sys CC71372CEB811A72F1DC99089C5CBF53
C:\Windows\System32\DRIVERS\fvevol.sys 50DFE05C698E9B0A63D95E3D669A105C
C:\Windows\System32\drivers\gagp30kx.sys B9981A4CB9F728B3312A3885BFAA7204
C:\Windows\System32\drivers\vmgencounter.sys 77555B11B264991DDC26872FFCF1AB97
C:\Windows\System32\drivers\genericusbfn.sys F3AC9652D88BF87BA6596CBEA28CE10F
C:\Windows\System32\Drivers\msgpioclx.sys F802FBABF0C4DF1BAA733187B2E476F5
C:\Windows\System32\drivers\gpuenergydrv.sys D011B0ADB15F4815310CE1BF4780B33E
C:\Windows\system32\DRIVERS\HdAudio.sys 0F93EBE9071A6BB1548BF0F816EEA24B
C:\Windows\System32\drivers\HDAudBus.sys 84BC034B6BB763733C1949B7B9BAF976
C:\Windows\System32\drivers\HidBatt.sys 6B8CB114B8E64C0636EB49F7B914D1FC
C:\Windows\System32\drivers\hidbth.sys D1AD197CCDAAC0CB4819DA1D6EB17BAE
C:\Windows\System32\drivers\hidi2c.sys 64909DECCFCC6FB5D9A5BAFDCCB31FEE
C:\Windows\System32\drivers\hidinterrupt.sys F510F7B7BF61DEAAC04E65C3B65E8D59
C:\Windows\System32\drivers\hidir.sys 90F3ED42D423C942BA5EA54E2FFE7AC7
C:\Windows\System32\drivers\hidusb.sys 128DEDDD61915DBA4D451D91D21F0513
C:\Windows\System32\drivers\HpSAMD.sys FF442DCDCE1F6E9FAA9C8AD0CD1D199B
C:\Windows\System32\drivers\HTTP.sys 63C3F74DC398A1C1A77E39DFB9C312CA
C:\Windows\System32\drivers\hwpolicy.sys CBA5E88A0F0475B7F49653BB72150BEF
C:\Windows\System32\drivers\hyperkbd.sys D668FAB4B0397B426EE3D41683B9A1C0
C:\Windows\system32\DRIVERS\HyperVideo.sys 40115A0F8E7FF9E786EBBD1D33D39AD7
C:\Windows\System32\drivers\i8042prt.sys 53FDD9E69189E546DE4740F8C4D8AB2F
C:\Windows\System32\drivers\iai2c.sys 9A2A2F3C69B9A30B6E78536F6D258BAD
C:\Windows\System32\drivers\iaLPSS2i_I2C.sys 59A20F5AD9F4AE54098154359519408E
C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 16A10CCEDCF5AC4CAAE43DC9FC40392F
C:\Windows\System32\drivers\iaLPSSi_I2C.sys EB82A11613326691508D9ED9A4FE29E7
C:\Windows\System32\drivers\iaStor.sys D469B77687E12FE43E344806740B624D
C:\Windows\System32\drivers\iaStorAV.sys 6B0029A0253098CCE28EACCFDB9E7208
C:\Windows\System32\drivers\iaStorV.sys 9652E1E35A92D8C75710C17A63B15796
C:\Windows\System32\drivers\ibbus.sys FFADF691F7BF727AF5C863454A372723
C:\Windows\system32\DRIVERS\ibtfltcoex.sys 33120C561E918A18DD48DEFEEEC0885D
C:\Windows\system32\DRIVERS\igdkmd64.sys 79AE3CC82CA1563A4B392207997ACE7C
C:\Windows\system32\DRIVERS\Impcd.sys DD587A55390ED2295BCE6D36AD567DA9
C:\Windows\system32\drivers\RTKVHD64.sys 3A2D6740F51BE48C0FD01AD907329DEE
C:\Windows\System32\drivers\intelide.sys ECDB27420D3A98424666904525A8562A
C:\Windows\System32\drivers\intelpep.sys 8FF1978643EFD219C5BA49690191D701
C:\Windows\System32\drivers\intelppm.sys B61B60F36E1C8022FA8166ABF0F66B07
C:\Windows\System32\drivers\ioqos.sys CA0D42029AFFC4514D295E1EF823D02D
C:\Windows\System32\DRIVERS\ipfltdrv.sys 6E3F9D95235DFC9417384080A216F310
C:\Windows\System32\drivers\IPMIDrv.sys 4F527ECB5EAB47D8EAF34A469666C469
C:\Windows\System32\drivers\ipnat.sys 9E5E8F2A1996F23B7E9687846AA81B01
C:\Windows\System32\drivers\irenum.sys C317EB660138BC9CBFE37CCDE56351AE
C:\Windows\System32\drivers\isapnp.sys 531994A6D9399D9B74BE12B5BB58A81E
C:\Windows\System32\drivers\msiscsi.sys 68D5354A4A9692EEC24664C60F47D4A2
C:\Windows\System32\drivers\kbdclass.sys 701D7DB13B0815E7076EF4CB4CE981F8
C:\Windows\System32\drivers\kbdhid.sys 884EBBDDBF5968003B40185BD96FF0E6
C:\Windows\System32\drivers\kdnic.sys 6B3A0C7902811E6372643447E41F7048
C:\Windows\System32\Drivers\ksecdd.sys 982C795DE20CED7AEDD2E7899B5D9BC1
C:\Windows\System32\Drivers\ksecpkg.sys 425CFD45BDF5B9F8B790BEB20E0A8721
C:\Windows\system32\drivers\ksthunk.sys E9BB0023D730701BB5D9839B44F5E6B5
C:\Windows\System32\drivers\lltdio.sys EC34EED89C34B27C292166B725AC7A7B
C:\Windows\System32\drivers\lsi_sas.sys 961F28D879D345BFA50AF51285C90F2E
C:\Windows\System32\drivers\lsi_sas2i.sys 6BFB8D1B3407518BE06B6F81F92FA0F5
C:\Windows\System32\drivers\lsi_sas3i.sys BE0E47988D78F731DEC2C0CB03E765CB
C:\Windows\System32\drivers\lsi_sss.sys F99BF02BE9219986817BF094981EEB18
C:\Windows\system32\drivers\luafv.sys 2FCF837196082864F66CFD9CAB256275
C:\Windows\System32\drivers\megasas.sys 2ED29B635F35E31A1C0D3DDB7DD2AD03
C:\Windows\System32\drivers\megasr.sys 22E3CB85870879CBAE13C5095A8B12E3
C:\Windows\System32\drivers\HECIx64.sys A6518DCC42F7A6E999BB3BEA8FD87567
C:\Windows\System32\drivers\mlx4_bus.sys D41920FBFFF2BBCBBC69A5B383AD022E
C:\Windows\system32\drivers\mmcss.sys 64BD0C87064EA20C2D3DC4199F9C239C
C:\Windows\System32\drivers\modem.sys 8D4B46FA84A3A3702EDADD37FAC6EDBA
C:\Windows\System32\drivers\monitor.sys 78FEC1BDB168370F131BFBFEA0A04E9D
C:\Windows\System32\drivers\mouclass.sys D1CC0833CFBC4222A95CAA5D0C8C78FF
C:\Windows\System32\drivers\mouhid.sys C2E05EC6B80BCF5AE362DA873E1BCE64
C:\Windows\System32\drivers\mountmgr.sys D5B7668A8F6C67C51FA5C6C513396D6C
C:\Windows\System32\drivers\mpsdrv.sys 5FBCB85D127BE21E3A9DAF11A13C00EA
C:\Windows\System32\drivers\mqac.sys 2B9A1FF2450BAF7A795941BE471F16EF
C:\Windows\system32\drivers\mrxdav.sys BF6CA7EA5ECD6CF72D3D76652A9B8280
C:\Windows\System32\DRIVERS\mrxsmb.sys 0B3B0C1D86050355676640488FA897D3
C:\Windows\System32\DRIVERS\mrxsmb10.sys 1A490555FD330CA2764D89191177C867
C:\Windows\System32\DRIVERS\mrxsmb20.sys 0F47A6C09F0A7FB5513D322A2B9BE4EC
C:\Windows\System32\drivers\bridge.sys A4411C522D41707D5BCA817A5BB9E30B
C:\Windows\System32\Drivers\Msfs.sys D123343DDB02E372B02BF2C4293F835F
C:\Windows\System32\drivers\msgpiowin32.sys B3358F380BA3F29F56BE0F7734C24D5F
C:\Windows\System32\drivers\mshidkmdf.sys B2044D5D125F249680508EC0B2AAEFAC
C:\Windows\System32\drivers\mshidumdf.sys 36ABE7FC80BED4FE44754AE5CFB51432
C:\Windows\System32\drivers\msisadrv.sys 59307FEAFC9E72EEEC56B7FD7D294F4C
C:\Windows\system32\DRIVERS\MSKSSRV.sys E9457EDFEBC774199F907395C6D09CA2
C:\Windows\System32\drivers\mslldp.sys C85D79735641D27C5821C35ECDDC2334
C:\Windows\system32\DRIVERS\MSPCLOCK.sys EF75184B64356850D0F04D049C253526
C:\Windows\system32\DRIVERS\MSPQM.sys 543933D166C618E7588EA77707EC1683
C:\Windows\System32\Drivers\MsRPC.sys 182711E9DDF70121A20EBB61B2DFB9E8
C:\Windows\System32\drivers\mssmbios.sys E887FFDD6734C496407E9219225CB6FF
C:\Windows\system32\DRIVERS\MSTEE.sys 83A2AB75951000D681FABDB80C07AEFC
C:\Windows\System32\drivers\MTConfig.sys 4FA0483896FC16583851EFB733FCB083
C:\Windows\System32\Drivers\mup.sys 60F88248608315E13391C2F1C3B4473F
C:\Windows\System32\drivers\mvumis.sys 218705233D02776AE4D19CC37D985C1B
C:\Windows\System32\DRIVERS\nwifi.sys AA4CD20708B7E0412A5316D7E2875103
C:\Windows\System32\drivers\ndfltr.sys B57CE307DA101C739885B7CC0678077F
C:\Windows\System32\drivers\ndis.sys E582DA849A58524E645545FB68B6625D
C:\Windows\System32\drivers\ndiscap.sys 202260E7CDD731A32AF62ABD1ABEE008
C:\Windows\System32\drivers\NdisImPlatform.sys A1D473D0CF10561F29B58EA7C5412A92
C:\Windows\System32\DRIVERS\ndistapi.sys 1A0AE283B8DE6BB76412A0F8213D45AC
C:\Windows\System32\drivers\ndisuio.sys A74EE2D2C0BFF5EC3A6185791868C4CA
C:\Windows\System32\drivers\NdisVirtualBus.sys 32A9BD1342640D48AD85C8B3E812B984
C:\Windows\System32\drivers\ndiswan.sys 6A6A8CF5EE61801375A38EBB871D4057
C:\Windows\System32\DRIVERS\ndiswan.sys 6A6A8CF5EE61801375A38EBB871D4057
C:\Windows\System32\DRIVERS\NDProxy.sys 50AEF8EF0064A91ABB08D858D039C9DE
C:\Windows\System32\drivers\Ndu.sys 883A36E2FF7FA3E1281CB575579FE3AF
C:\Windows\System32\drivers\netbios.sys 026618ECF6C4BEBDCB7885D42EC0DBE4
C:\Windows\System32\DRIVERS\netbt.sys C03E926B0E7D66D68994067231DC3246
C:\Windows\System32\drivers\netvsc.sys 2BB62723C835F75F0C7C9E6A736881FB
C:\Windows\System32\drivers\Netwsw00.sys 272BB8C52BE106B5CC69171AF1D281D4
C:\Windows\System32\Drivers\Npfs.sys 465DC580170CD844206D7E3EF1DBF2A1
C:\Windows\System32\drivers\npsvctrig.sys 29395C214D2CD4C81F73166AB988A797
C:\Windows\System32\drivers\nsiproxy.sys 2871225495F832A8C8A7DD1A17EDB3DC
C:\Windows\System32\Drivers\NTFS.sys 19BD8A88AAC580592668B070AC0727D9
C:\Windows\System32\Drivers\Null.sys 6DBD703320484C37CEA9E4E2D266A8CE
C:\Windows\system32\DRIVERS\nvlddmkm.sys DF0BB2C179476D312B7BC0056CEC50A6
C:\Windows\System32\DRIVERS\nvpciflt.sys 2328DC3622412EE112868645DA013075
C:\Windows\System32\drivers\nvraid.sys 604D27CC38CC23493F218D0BB834B3FF
C:\Windows\System32\drivers\nvstor.sys 8B50D897657AB4A15FD9E251BBF7D107
C:\Windows\System32\drivers\nv_agp.sys 31F990B2B6B91E9D7A667405CE12FCB1
C:\Windows\System32\drivers\parport.sys 7D0FC96264C0F8F2C1321E33E8EB646C
C:\Windows\System32\drivers\partmgr.sys D330D74B5F99309B5CCA30AE41C57CDE
C:\Windows\System32\drivers\pci.sys CF78AF126B00C1B0A6FF45BD838E8EFE
C:\Windows\System32\drivers\pciide.sys 2B4D98DF0CA57FB9536DBC80D2449D1F
C:\Windows\System32\drivers\pcmcia.sys F4D5793BF2E58AF15C6CF2FEEF9E73EB
C:\Windows\System32\drivers\pcw.sys 22A53744CEEADFFFD33BA010FAD95229
C:\Windows\System32\drivers\pdc.sys 67B9684B8272D5EBD1CCBB1DBD425EC8
C:\Windows\System32\drivers\peauth.sys E2F8376F9731D12A009C522036C6073A
C:\Windows\System32\drivers\percsas2i.sys 1398A85E59698067CBBE1D66A9C13ADF
C:\Windows\System32\drivers\percsas3i.sys 35F7C7AD709D909D618D9EDF987FC3ED
C:\Windows\System32\drivers\raspptp.sys 5BA6B9AD03B81546BA64E488C4EF9D17
C:\Windows\System32\drivers\processr.sys 21AECFF3EB5748CBE12538A2500EFDE5
C:\Windows\System32\drivers\pacer.sys 596FB6C5A72F34B7566930985E543806
C:\Windows\System32\Drivers\PxHlpa64.sys 87B04878A6D59D6C79251DC960C674C1
C:\Windows\system32\drivers\qwavedrv.sys CFBA9C976CBF6796E5DC39EF59984021
C:\Windows\System32\DRIVERS\rasacd.sys 7B2AD8C55217B514C14281AB97B4E21D
C:\Windows\System32\drivers\AgileVpn.sys E15A9CE1E2E7D1C8DF97A4FC1FFE6289
C:\Windows\System32\drivers\rasl2tp.sys E3C82823B22463BC38AA4F8ADA852624
C:\Windows\System32\drivers\raspppoe.sys 3369023EB5790A75BA7DABA14B75D922
C:\Windows\System32\drivers\rassstp.sys 1E32A8CD65C4AD0A827CFEB13034DA29
C:\Windows\System32\DRIVERS\rdbss.sys 2B648363E4C5E34B469C58596F377DD9
C:\Windows\System32\drivers\rdpbus.sys D0221C13960E274CC539D72D5A842ED0
C:\Windows\System32\drivers\rdpdr.sys 1DC2CC74B51E4DC4CD5A20C1021E4010
C:\Windows\System32\drivers\rdpvideominiport.sys 177DF954D0DEC0465A380C75F6E7F65F
C:\Windows\System32\drivers\rdyboost.sys 5D1680871054D2B0B8A971BC8AB3B837
C:\Windows\System32\Drivers\ReFSv1.sys 341E6830DA70F65730300DAB4CB0B490
C:\Windows\System32\drivers\rfcomm.sys AEEF76F938188EBF27DF70C1806877F2
C:\Windows\System32\drivers\rspndr.sys 0AC5FCDC29ED97ECDEF1276425EE2059
C:\Windows\System32\drivers\rt640x64.sys FBEFF38DE03450E03E6CD9E8E37A8C74
C:\Windows\System32\drivers\vms3cap.sys 044890BB0D6CF1E23C1087234D320509
C:\Windows\System32\drivers\sbp2port.sys 530F797129776AA7E81994783A97E2AD
C:\Windows\System32\DRIVERS\scfilter.sys 9B6B1D4DB35A3D9BEAF023BC95E1F49D
C:\Windows\System32\drivers\sdbus.sys B24408471C1BCB17FC44F5B47EA8DEA3
C:\Windows\System32\drivers\sdstor.sys DE6D7DC78D956928F59F7415A0F41E13
C:\Windows\System32\drivers\SerCx.sys 67585C295FF2D221679E376B68893B35
C:\Windows\System32\drivers\SerCx2.sys B8C4852CBCAAC1374C08EC7445443824
C:\Windows\System32\drivers\serenum.sys D3A103944A8FCD78FD48B2B19092790C
C:\Windows\System32\drivers\serial.sys 249A563C48DFD9E42A37587653E003BB
C:\Windows\System32\drivers\sermouse.sys 0F5B43074AE731D2C6F061241C9D84A6
C:\Windows\System32\drivers\sfloppy.sys D9FE59276BD56A9643C32D5FACE2F251
C:\Windows\System32\DRIVERS\Sftfslh.sys 21AB491BBCC8C1B26FDC402A374AB196
C:\Windows\System32\DRIVERS\Sftplaylh.sys 3B8D43FEEFF7A187534DDDFD675FE123
C:\Windows\System32\DRIVERS\Sftredirlh.sys F1D1B1DC7A8765A09D7640FBF8D20970
C:\Windows\System32\DRIVERS\Sftvollh.sys B3B9ADE7F8C4AF0C20E712E040588543
C:\Windows\System32\drivers\SiSRaid2.sys ABBE803FE0BDAE0E5BE74DDEFBE62F23
C:\Windows\System32\drivers\sisraid4.sys 6043DF55CFE3C7ACF477645FA64DEA98
C:\Windows\System32\drivers\spaceport.sys 1A6CB30F0EFC1632E6F1B852CA892583
C:\Windows\System32\drivers\SpbCx.sys E1C158F6C00359278727A2CEE5D2ED71
C:\Windows\System32\DRIVERS\srv.sys BE88248427A6AA548A904FD867667F70
C:\Windows\System32\DRIVERS\srv2.sys 2568B86F6A50D254324CB89022CA9EFC
C:\Windows\System32\DRIVERS\srvnet.sys 6E520D6B16EA8AE23D1F81C1194F00C8
C:\Windows\System32\drivers\stexstor.sys CCDA497C880AD16D87EDFAEFCFB2EDF5
C:\Windows\System32\drivers\storahci.sys BF8EA6FC3358C2F69678E3E94F764F84
C:\Windows\System32\drivers\vmstorfl.sys 32FF460DA8C1F370F5C08B7654899B73
C:\Windows\System32\drivers\stornvme.sys CC21DB3EF619B9480FE31A4EFE92CBEB
C:\Windows\System32\drivers\storqosflt.sys 390B8A75768E2689586539C224520895
C:\Windows\System32\drivers\storufs.sys 770A92D9D3A0BF61C97C3AFCB36847D9
C:\Windows\System32\drivers\storvsc.sys 736A2418E3E7F3DB3CF6EB0A55D1D581
C:\Windows\System32\drivers\swenum.sys BD98B0225BCD49E8A62F4F8EE1D1F613
C:\Windows\System32\drivers\Synth3dVsc.sys CAE4B27B469C583131EA5AAE622F5D76
C:\Windows\System32\drivers\tcpip.sys 083A727D784009F9CCFB120C7841B7AF
C:\Windows\System32\drivers\tcpip.sys 083A727D784009F9CCFB120C7841B7AF
C:\Windows\System32\drivers\tcpipreg.sys 17F37EC9042D84561C550620643D9A85
C:\Windows\system32\DRIVERS\tdx.sys 91D3F2A6253EF83EFBD7903028F58C4D
C:\Windows\System32\drivers\terminpt.sys E730D0EB1B84EBC98423FC8D285EDBC0
C:\Windows\System32\drivers\tpm.sys 87B9ABB965F7AF987D52791F0DD1663D
C:\Windows\System32\drivers\TsUsbFlt.sys 48E828C66AB016E48F2CB4DD585315FD
C:\Windows\System32\drivers\TsUsbGD.sys 267C76EE60736EA5A1811A53FA02AABE
C:\Windows\System32\drivers\tunnel.sys 8CE72F094B822AD5EE9C3A3AFC0C16B6
C:\Windows\System32\DRIVERS\TurboB.sys FD24F98D2898BE093FE926604BE7DB99
C:\Windows\System32\drivers\uagp35.sys 42C546414F80BD6C0137FC3A106F8A69
C:\Windows\System32\drivers\uaspstor.sys 1686DBC81748B096232B15F16C302985
C:\Windows\System32\Drivers\UcmCx.sys 82D3B1F4D80057826AA649D78147DE36
C:\Windows\System32\drivers\UcmUcsi.sys 1C95F7CE37D9EFB90EBE987A9712356C
C:\Windows\System32\drivers\ucx01000.sys AED081772091C98173905E2DF28C223B
C:\Windows\System32\drivers\udecx.sys DCA34A111C29E4578DF2B8CEA3C7CDBD
C:\Windows\System32\DRIVERS\udfs.sys 718A956AE00CE086F381044AB66CC29C
C:\Windows\System32\drivers\UEFI.sys BA760F8E66428BA9FF1E8BFBC6248136
C:\Windows\System32\drivers\ufx01000.sys 05DD22294A4F3F89E52351C7721E6D2C
C:\Windows\System32\drivers\UfxChipidea.sys 2B1DABA97DDF5365FC66EE7DEDD86A13
C:\Windows\System32\drivers\ufxsynopsys.sys 2A87EA182EA333D79AA0B03833EA67F2
C:\Windows\System32\drivers\uliagpkx.sys 6DE78C04BF32ECA7AF3064F53687C9A5
C:\Windows\System32\drivers\umbus.sys 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4
C:\Windows\System32\drivers\umpass.sys 11680607944A719EF20E0E740785712A
C:\Windows\System32\drivers\urschipidea.sys 2410A0C20D21A25E6C01979FA886BE90
C:\Windows\System32\drivers\urscx01000.sys 6E59CE43B6BA5AA1ADCF36A4DBBB92BB
C:\Windows\System32\drivers\urssynopsys.sys E8A59FA109A22FC07E44BDFCC9727DBD
C:\Windows\System32\drivers\usbccgp.sys D8A44550ECE102B6443F5D54DCE7DAB3
C:\Windows\System32\drivers\usbcir.sys 66B3D22DAB5312FF238ABF5C6D9F8FAB
C:\Windows\System32\drivers\usbehci.sys 3E4F20DB902D2E2914F3FF3DB9772200
C:\Windows\System32\drivers\usbhub.sys 41F7F00D76904416EF1F9EFA1A4C37A2
C:\Windows\System32\drivers\UsbHub3.sys E7463CE8579A0418A98BE9BE42C647D7
C:\Windows\System32\drivers\usbohci.sys DAB35CCA86F5FBE77D870A40089BC4A1
C:\Windows\System32\drivers\usbprint.sys 21162F65C7756AAECAEBED9E67D0A5FE
C:\Windows\System32\drivers\usbser.sys 4AAD6547953D373A1EB5B2DF583D868B
C:\Windows\System32\drivers\USBSTOR.SYS 8949F77132A4F8F3BA17C6727099F002
C:\Windows\System32\drivers\usbuhci.sys 8B3E458A8851F9A3B2109B1680EE1159
C:\Windows\System32\Drivers\usbvideo.sys 4B13B61CBB9CC3CB373C60B930D648F5
C:\Windows\System32\drivers\USBXHCI.SYS 9E9D58F5E1702955B2F4D62996F80E8E
C:\Windows\System32\drivers\vdrvroot.sys E1BE37312785A71862516F66B3FD24CE
C:\Windows\System32\drivers\VerifierExt.sys E42C0F2850735FF9D908B9DB581E6314
C:\Windows\System32\drivers\vhdmp.sys EC15FD6A28757793E2DA394CD94ABD52
C:\Windows\System32\drivers\vhf.sys D0C9632C350F46786643A069251BC249
C:\Windows\System32\drivers\vmbus.sys E886CB75DA2B6EB35469EF10135624C7
C:\Windows\System32\drivers\VMBusHID.sys 46D2EC27820EC0F798F85821E53C2942
C:\Windows\System32\drivers\volmgr.sys B9265F47E7A354BAAA0AF5CBA3F8F7CE
C:\Windows\System32\drivers\volmgrx.sys BEE9C8B72AB752B794F69C2B9B3678AA
C:\Windows\System32\drivers\volsnap.sys E1F91A727A04C9F8199D04FF3BBBF63C
C:\Windows\System32\drivers\vpci.sys F7B1B1101271E31F43CC76E890704F51
C:\Windows\System32\drivers\vsmraid.sys D48ED0A08BD2FD25A833E6AC99623091
C:\Windows\System32\drivers\vstxraid.sys 6990D4AFDF545669D4E6C232F26DE1FB
C:\Windows\System32\drivers\vwifibus.sys 1EE11F0508C58EF081F4176E66D6970B
C:\Windows\System32\drivers\vwififlt.sys 938E4EF58E42D252B742B0E243011B90
C:\Windows\System32\drivers\vwifimp.sys 3BE5AAC930447FD18D4A8255A2FEC95C
C:\Windows\System32\drivers\wacompen.sys 00C27B64C758C111E5D78A70DE6CA2B6
C:\Windows\System32\DRIVERS\wanarp.sys 8CB53620B2C2F0641DD7563EA0FDF491
C:\Windows\System32\DRIVERS\wanarp.sys 8CB53620B2C2F0641DD7563EA0FDF491
C:\Windows\system32\drivers\WdBoot.sys 069D3D6E20AD753B34FCE856F0436869
C:\Windows\System32\drivers\Wdf01000.sys 6CC727E94CD84E9720FDCDA8089CABCC
C:\Windows\system32\drivers\WdFilter.sys E3E97151A1D1E87BB2D5371F66C5F169
C:\Windows\System32\DRIVERS\wdiwifi.sys 2BC2E99623119521EEF7910A11D0FDE0
C:\Windows\System32\drivers\WDKMD.sys 94DC2BF6CBAAA95E369C3756D3115A76
C:\Windows\System32\Drivers\WdNisDrv.sys 07B043160399AF4009054E2EA3464BF4
C:\Windows\System32\drivers\wfplwfs.sys C11272713719922DE5711094333BD166
C:\Windows\System32\DRIVERS\wimfltr.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys EF536C54AB9281FDC4E83B07279FCFC4
C:\Windows\System32\drivers\WindowsTrustedRT.sys D8966A76408107224C6013993135DD78
C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 8B102A7B6CE326FD4208CC7C2D183343
C:\Windows\System32\drivers\winmad.sys 4A53441C1C4D2878BEF27E381138BB2D
C:\Windows\System32\drivers\WinUSB.SYS 260907CE034FE327AC99BDA4153AB22F
C:\Windows\System32\drivers\winverbs.sys 40A3E8D729F458B2C9A8BD9380FF83D5
C:\Windows\System32\drivers\wmiacpi.sys 8F010BF65238F3F822D22BA12831796E
C:\Windows\System32\Drivers\Wof.sys 2A9650FCC696DB28E45EA8B33B99B8E6
C:\Windows\System32\DRIVERS\wpcfltr.sys 22C52D7EE7C7D0E02C8EFD8CAE8E3A71
C:\Windows\System32\drivers\WpdUpFltr.sys 1C08E424CBDD5065BB7266F8C048C1B1
C:\Windows\system32\drivers\ws2ifsl.sys 638B43D39A3D0B47024555CF1095E6F1
C:\Windows\System32\drivers\WudfPf.sys A928F25CB62232F413EE655352856E10
C:\Windows\System32\drivers\WUDFRd.sys A932391623D5CEC4EF4A2A17D3CEBFCD
C:\Windows\System32\drivers\xboxgip.sys F279536122B83FD0D8E158AA753E1B7C
C:\Windows\System32\drivers\xinputhid.sys DA0807D87A62D076C29C4E30F1E84F46

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-28 17:50 - 2016-06-28 17:50 - 00039904 _____ C:\Users\User1\Desktop\FRST.txt
2016-06-28 17:50 - 2016-06-28 17:50 - 00000000 ____D C:\Users\User1\Desktop\FRST-OlderVersion
2016-06-28 17:29 - 2016-06-28 17:29 - 00000609 _____ C:\Users\User1\Desktop\JRT.txt
2016-06-28 17:25 - 2016-06-28 17:26 - 01610816 _____ (Malwarebytes) C:\Users\User1\Desktop\JRT.exe
2016-06-28 17:23 - 2016-06-28 17:23 - 00001161 _____ C:\Users\User1\Desktop\AdwCleaner[C1].txt
2016-06-28 17:09 - 2016-06-28 17:09 - 00000797 _____ C:\Users\User1\Desktop\Downloads - Shortcut.lnk
2016-06-28 17:08 - 2016-06-28 17:08 - 03703360 _____ C:\Users\User1\Desktop\AdwCleaner.exe
2016-06-28 17:01 - 2016-06-28 17:15 - 00000000 ____D C:\AdwCleaner
2016-06-28 16:58 - 2016-06-28 16:59 - 03703360 _____ C:\Users\Master\Desktop\AdwCleaner.exe
2016-06-28 16:49 - 2016-06-28 16:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2016-06-28 16:48 - 2016-06-28 16:48 - 00000000 ____D C:\Program Files\Realtek
2016-06-28 16:47 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-06-28 16:47 - 2015-06-18 17:59 - 02862488 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-06-28 16:47 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-06-28 16:47 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-06-28 16:47 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-06-28 16:47 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-06-28 16:47 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-06-28 16:47 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-06-28 16:47 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-06-28 16:47 - 2015-05-05 14:01 - 01948928 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO264.dll
2016-06-28 16:47 - 2015-05-05 14:01 - 01716480 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO232.dll
2016-06-28 16:47 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCORES64.dat
2016-06-28 16:47 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-06-28 16:47 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2016-06-28 16:47 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-06-28 16:47 - 2013-01-11 16:27 - 00628504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBTHX64.dll
2016-06-28 16:47 - 2013-01-11 16:27 - 00563992 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBTHX32.dll
2016-06-28 16:47 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll
2016-06-28 16:47 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll
2016-06-28 16:47 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-06-28 16:47 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll
2016-06-28 16:47 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-06-28 16:47 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-06-28 16:47 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-06-28 16:47 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-06-28 16:47 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-06-28 16:47 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-06-28 16:47 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-06-28 16:47 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-06-28 16:47 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-06-28 16:47 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-06-28 16:47 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-06-28 16:47 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll
2016-06-28 16:46 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-06-28 16:46 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-06-28 16:46 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-06-28 16:46 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-06-28 16:46 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-06-28 16:46 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-06-28 16:46 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-06-28 16:46 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-06-28 16:44 - 2015-05-27 17:38 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2016-06-28 16:04 - 2016-06-28 16:04 - 00000798 _____ C:\Users\Master\Desktop\Downloads - Shortcut.lnk
2016-06-28 15:28 - 2016-06-21 04:01 - 00452730 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20160628-152829.backup
2016-06-28 15:17 - 2016-06-28 15:17 - 00000000 ____D C:\Users\Master\AppData\LocalLow\Sun
2016-06-28 14:00 - 2016-06-28 14:00 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-06-28 13:56 - 2016-06-28 16:49 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-06-28 13:49 - 2016-06-28 13:53 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Master\Desktop\0005-Win7_Win8_Win81_Win10_R279.exe
2016-06-27 20:27 - 2016-06-27 20:27 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-06-27 19:27 - 2016-06-27 19:46 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-27 19:24 - 2016-06-27 19:26 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-27 11:11 - 2016-06-28 17:50 - 02389504 _____ (Farbar) C:\Users\User1\Desktop\FRST64.exe
2016-06-27 11:09 - 2016-06-27 11:09 - 00000000 ____D C:\Users\User1\AppData\Roaming\Macromedia
2016-06-27 11:09 - 2016-06-27 11:09 - 00000000 ____D C:\Users\User1\AppData\Local\Macromedia
2016-06-27 11:05 - 2016-06-27 11:14 - 00000000 ____D C:\Users\User1\AppData\Local\Mozilla
2016-06-27 11:05 - 2016-06-27 11:05 - 00000000 ____D C:\Users\User1\AppData\Roaming\Mozilla
2016-06-27 10:39 - 2016-06-27 10:39 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-06-27 10:39 - 2016-06-27 10:39 - 00000000 _SHDL C:\Users\DefaultAppPool\My Documents
2016-06-27 10:39 - 2016-06-27 10:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Videos
2016-06-27 10:39 - 2016-06-27 10:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Pictures
2016-06-27 10:39 - 2016-06-27 10:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Music
2016-06-27 10:39 - 2016-06-27 10:39 - 00000000 ____D C:\Users\DefaultAppPool
2016-06-27 10:39 - 2016-06-26 21:32 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\SoftThinks
2016-06-27 10:39 - 2016-06-26 15:15 - 00000000 ____D C:\Users\DefaultAppPool\Desktop\Play Games
2016-06-27 10:39 - 2016-06-26 15:15 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2016-06-27 09:57 - 2016-06-27 09:58 - 00002410 _____ C:\Users\User1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-06-27 09:57 - 2016-06-27 09:58 - 00000000 ___RD C:\Users\User1\OneDrive
2016-06-27 09:56 - 2016-06-27 09:56 - 00000000 ____D C:\Users\User1\AppData\Local\Comms
2016-06-27 09:53 - 2016-06-27 09:53 - 00000000 ____D C:\Users\User1\AppData\Roaming\AVAST Software
2016-06-27 09:53 - 2016-06-27 09:53 - 00000000 ____D C:\Users\User1\AppData\Local\ActiveSync
2016-06-27 09:52 - 2016-06-27 09:52 - 00000000 ____D C:\Users\User1\AppData\Local\Publishers
2016-06-27 09:51 - 2016-06-28 17:06 - 00000000 ____D C:\Users\User1\AppData\Local\Packages
2016-06-27 09:51 - 2016-06-27 09:51 - 00000020 ___SH C:\Users\User1\ntuser.ini
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 _SHDL C:\Users\User1\My Documents
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 _SHDL C:\Users\User1\Documents\My Videos
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 _SHDL C:\Users\User1\Documents\My Pictures
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 _SHDL C:\Users\User1\Documents\My Music
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 ____D C:\Users\User1\AppData\Roaming\Intel
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 ____D C:\Users\User1\AppData\Roaming\Adobe
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 ____D C:\Users\User1\AppData\Local\VirtualStore
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 ____D C:\Users\User1\AppData\Local\TileDataLayer
2016-06-27 09:51 - 2016-06-27 09:51 - 00000000 ____D C:\Users\User1\AppData\Local\Google
2016-06-27 09:50 - 2016-06-27 09:57 - 00000000 ____D C:\Users\User1
2016-06-27 09:50 - 2016-06-26 21:32 - 00000000 ____D C:\Users\User1\AppData\Local\SoftThinks
2016-06-27 09:50 - 2016-06-26 15:15 - 00000000 ____D C:\Users\User1\AppData\Roaming\Media Center Programs
2016-06-27 09:14 - 2016-06-27 09:14 - 00194168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-27 03:18 - 2016-06-28 17:50 - 00000000 ____D C:\FRST
2016-06-26 19:18 - 2016-06-15 14:40 - 00484008 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-06-26 18:17 - 2016-06-26 18:17 - 00000000 ____D C:\Users\Master\AppData\Local\Comms
2016-06-26 17:38 - 2016-06-26 17:40 - 00002413 _____ C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-06-26 17:38 - 2016-06-26 17:40 - 00000000 ___RD C:\Users\Master\OneDrive
2016-06-26 16:59 - 2016-06-26 16:59 - 00000000 ____D C:\Users\Master\AppData\Local\ActiveSync
2016-06-26 16:58 - 2016-06-26 16:58 - 00000000 ____D C:\Users\Master\AppData\Local\Publishers
2016-06-26 16:57 - 2016-06-27 19:51 - 00000000 ____D C:\Users\Master\AppData\Local\Packages
2016-06-26 16:57 - 2016-06-26 16:57 - 00000000 ____D C:\Users\Master\AppData\Local\TileDataLayer
2016-06-26 16:56 - 2016-06-26 16:56 - 00000020 ___SH C:\Users\Master\ntuser.ini
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default\My Documents
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default\Documents\My Videos
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default\Documents\My Pictures
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default\Documents\My Music
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default User\Documents\My Videos
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default User\Documents\My Pictures
2016-06-26 16:23 - 2016-06-26 16:23 - 00000000 _SHDL C:\Users\Default User\Documents\My Music
2016-06-26 16:05 - 2016-06-27 00:22 - 00000000 ___DC C:\WINDOWS\Panther
2016-06-26 16:02 - 2016-06-26 16:01 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-06-26 15:43 - 2016-06-26 15:44 - 00000000 ____D C:\Windows.old
2016-06-26 15:39 - 2016-06-26 15:39 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2016-06-26 15:18 - 2016-06-26 15:18 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-06-26 15:18 - 2016-06-26 15:18 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-06-26 15:18 - 2016-06-26 15:18 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-06-26 15:18 - 2016-06-26 15:18 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-26 15:18 - 2016-06-26 15:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-06-26 15:18 - 2016-06-26 15:18 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-06-26 15:18 - 2016-06-26 15:18 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-06-26 15:18 - 2016-06-26 15:18 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-06-26 15:18 - 2016-06-26 15:18 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-06-26 15:18 - 2016-06-26 15:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
2016-06-26 15:18 - 2016-06-26 15:18 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-06-26 15:17 - 2016-06-26 15:18 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 24605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 13385728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 04896256 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-06-26 15:17 - 2016-06-26 15:17 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-06-26 15:17 - 2016-06-26 15:17 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-06-26 15:17 - 2016-06-26 15:17 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-06-26 15:17 - 2016-06-26 15:17 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 04515264 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 02548944 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-26 15:16 - 2016-06-26 15:16 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-06-26 15:16 - 2016-06-26 15:16 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-06-26 15:16 - 2016-06-26 15:16 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2016-06-26 15:15 - 2016-06-26 21:32 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2016-06-26 15:15 - 2016-06-26 21:32 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2016-06-26 15:15 - 2016-06-26 15:15 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 02281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01339904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-06-26 15:15 - 2016-06-26 15:15 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-06-26 15:15 - 2016-06-26 15:15 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00131248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-06-26 15:15 - 2016-06-26 15:15 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-26 15:15 - 2016-06-26 15:15 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-26 15:15 - 2016-06-26 15:15 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-06-26 15:15 - 2016-06-26 15:15 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-06-26 15:15 - 2016-06-26 15:15 - 00000000 ____D C:\Users\Default\Desktop\Play Games
2016-06-26 15:15 - 2016-06-26 15:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-06-26 15:15 - 2016-06-26 15:15 - 00000000 ____D C:\Users\Default User\Desktop\Play Games
2016-06-26 15:15 - 2016-06-26 15:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-06-26 15:14 - 2016-06-26 15:15 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 03590144 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 01372312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00649792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-06-26 15:14 - 2016-06-26 15:14 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00111064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-06-26 15:14 - 2016-06-26 15:14 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 06973952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-06-26 15:13 - 2016-06-26 15:13 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-06-26 15:13 - 2016-06-26 15:13 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00211296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-06-26 15:13 - 2016-06-26 15:13 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-06-26 15:13 - 2016-06-26 15:13 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-06-26 15:13 - 2016-06-26 15:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-06-26 15:13 - 2016-06-26 15:13 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-06-26 15:00 - 2016-06-26 15:00 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-06-26 14:51 - 2016-06-28 11:57 - 00000000 ____D C:\Users\Master
2016-06-26 14:51 - 2016-06-26 15:58 - 00000000 ____D C:\Users\UpdatusUser
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\UpdatusUser\My Documents
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\My Videos
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\My Pictures
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\My Music
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\Master\My Documents
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\Master\Documents\My Videos
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\Master\Documents\My Pictures
2016-06-26 14:51 - 2016-06-26 14:51 - 00000000 _SHDL C:\Users\Master\Documents\My Music
2016-06-26 14:49 - 2016-06-27 18:36 - 01010622 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-26 14:49 - 2016-06-26 14:49 - 00965390 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-06-26 14:35 - 2016-06-26 14:35 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2016-06-26 14:34 - 2016-06-28 16:48 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-06-26 14:34 - 2016-06-26 14:34 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2016-06-26 14:34 - 2016-06-26 14:34 - 00000000 ____D C:\Program Files\DellTPad
2016-06-26 14:33 - 2015-07-22 19:10 - 06873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 03493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 01059984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 00937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-06-26 14:33 - 2015-07-22 19:10 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 00074896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-06-26 14:33 - 2015-07-21 22:29 - 05121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-06-26 14:31 - 2016-06-26 14:31 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-06-26 14:27 - 2016-06-26 15:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-06-26 14:27 - 2016-06-26 14:33 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-06-26 14:22 - 2016-06-26 14:22 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\WINDOWS\system32\msmq
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\Program Files\MSBuild
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-06-26 14:08 - 2016-06-26 14:08 - 00000000 ____D C:\inetpub
2016-06-26 14:07 - 2015-10-23 19:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-06-26 14:07 - 2015-10-23 19:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-06-26 14:07 - 2015-10-23 19:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-06-26 14:06 - 2015-10-23 19:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-06-26 14:06 - 2015-10-23 19:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-06-26 14:06 - 2015-10-23 19:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-06-26 11:26 - 2016-06-26 16:11 - 00014259 _____ C:\WINDOWS\diagerr.xml
2016-06-26 11:26 - 2016-06-26 16:11 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2016-06-25 15:30 - 2016-06-25 15:31 - 00000000 ____D C:\Users\Master\AppData\Local\Microsoft Games
2016-06-22 00:17 - 2016-06-22 00:17 - 00000000 ____D C:\Users\Master\Documents\ProcAlyzer Dumps
2016-06-21 04:01 - 2009-06-10 15:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20160621-040147.backup
2016-06-21 03:45 - 2016-06-28 15:35 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-06-21 03:45 - 2016-06-28 15:29 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-06-21 03:45 - 2016-06-21 03:45 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-06-21 03:21 - 2016-06-27 10:05 - 00000258 __RSH C:\ProgramData\ntuser.pol
2016-06-21 03:17 - 2016-06-27 10:05 - 00000000 ____D C:\Program Files (x86)\SpywareBlaster
2016-06-21 03:17 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2016-06-21 03:17 - 2009-03-24 13:52 - 00129872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTDFMT.DLL
2016-06-21 03:14 - 2016-06-27 10:04 - 00002858 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-06-21 03:14 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-06-21 03:14 - 2016-06-21 03:14 - 00000000 ____D C:\Program Files\CCleaner
2016-06-20 22:13 - 2016-06-20 22:13 - 00000000 ____D C:\ProgramData\App4rTemp
2016-06-20 21:55 - 2016-06-20 21:55 - 00000000 ____D C:\Users\Master\AppData\Local\CEF
2016-06-20 21:24 - 2016-06-26 16:02 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-06-20 14:34 - 2016-06-20 14:34 - 00000000 ____D C:\ProgramData\Lexmark 5600-6600 Series
2016-06-20 14:31 - 2016-06-20 14:31 - 00000000 ____D C:\Users\Master\AppData\Roaming\Lexmark Productivity Studio
2016-06-20 13:54 - 2009-10-16 16:07 - 00109056 _____ () C:\WINDOWS\system32\lxduvs.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01661952 _____ ( ) C:\WINDOWS\system32\lxduserv.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01338368 _____ ( ) C:\WINDOWS\system32\lxduusb1.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01291264 _____ ( ) C:\WINDOWS\system32\lxducomc.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01091584 _____ ( ) C:\WINDOWS\system32\lxduhbn3.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 01039360 _____ ( ) C:\WINDOWS\system32\lxducoms.exe
2016-06-20 13:54 - 2009-10-16 16:06 - 00987648 _____ ( ) C:\WINDOWS\system32\lxdupmui.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 00897024 _____ ( ) C:\WINDOWS\system32\lxdulmpm.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 00610304 _____ ( ) C:\WINDOWS\system32\lxducfg.exe
2016-06-20 13:54 - 2009-10-16 16:06 - 00580608 _____ ( ) C:\WINDOWS\system32\lxducomm.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 00548352 _____ ( ) C:\WINDOWS\system32\lxduinpa.dll
2016-06-20 13:54 - 2009-10-16 16:06 - 00521216 _____ ( ) C:\WINDOWS\system32\lxduih.exe
2016-06-20 13:54 - 2009-10-16 16:06 - 00513024 _____ ( ) C:\WINDOWS\system32\lxduiesc.dll
2016-06-20 13:54 - 2009-10-16 15:56 - 00300032 _____ () C:\WINDOWS\system32\lxdugrd.dll
2016-06-20 13:48 - 2016-06-20 13:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-06-20 13:47 - 2016-06-24 11:05 - 00000000 ____D C:\ProgramData\Lx_cats
2016-06-20 13:38 - 2016-06-26 16:03 - 00003328 _____ C:\WINDOWS\System32\Tasks\Installation App Launcher
2016-06-20 13:36 - 2016-06-20 13:36 - 00000000 ____D C:\Program Files\Lexmark Printable Web
2016-06-20 13:36 - 2016-06-20 13:36 - 00000000 ____D C:\Program Files (x86)\Lexmark Toolbar
2016-06-20 13:36 - 2009-08-19 11:16 - 00019112 _____ (Lexmark International, Inc.) C:\WINDOWS\system32\LXDUwupd.exe
2016-06-20 13:36 - 2009-04-27 23:57 - 00489472 _____ (Lexmark International, Inc.) C:\WINDOWS\system32\LXDUwupd.dll
2016-06-20 13:36 - 2006-12-05 22:19 - 00000044 _____ C:\WINDOWS\system32\lxdurwrd.ini
2016-06-20 13:32 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 5600-6600 Series
2016-06-20 13:32 - 2016-06-20 14:41 - 00176759 _____ C:\WINDOWS\system32\LexFiles.ulf
2016-06-20 13:32 - 2016-06-20 13:44 - 00000000 ____D C:\Program Files (x86)\Lexmark 5600-6600 Series
2016-06-20 13:32 - 2009-08-19 11:16 - 00594600 _____ ( ) C:\WINDOWS\SysWOW64\lxducoms.exe
2016-06-20 13:32 - 2009-08-19 11:16 - 00369320 _____ ( ) C:\WINDOWS\SysWOW64\lxducfg.exe
2016-06-20 13:32 - 2009-08-19 11:16 - 00328360 _____ ( ) C:\WINDOWS\SysWOW64\lxduih.exe
2016-06-20 13:32 - 2009-08-19 11:08 - 00001867 _____ C:\WINDOWS\SysWOW64\lxdu.loc
2016-06-20 13:32 - 2009-08-19 10:51 - 00335872 _____ () C:\WINDOWS\SysWOW64\lxducomx.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 01069056 _____ ( ) C:\WINDOWS\SysWOW64\lxduserv.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00860160 _____ ( ) C:\WINDOWS\SysWOW64\lxduusb1.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00761856 _____ ( ) C:\WINDOWS\SysWOW64\lxducomc.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00684032 _____ ( ) C:\WINDOWS\SysWOW64\lxduhbn3.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00651264 _____ ( ) C:\WINDOWS\SysWOW64\lxdupmui.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00577536 _____ ( ) C:\WINDOWS\SysWOW64\lxdulmpm.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00376832 _____ ( ) C:\WINDOWS\SysWOW64\lxducomm.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00364544 _____ ( ) C:\WINDOWS\SysWOW64\lxduinpa.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00339968 _____ ( ) C:\WINDOWS\SysWOW64\lxduiesc.dll
2016-06-20 13:32 - 2009-08-19 10:50 - 00126976 _____ (Lexmark International Inc.) C:\WINDOWS\SysWOW64\lxdulnks.dll
2016-06-20 13:32 - 2009-07-13 23:06 - 00147456 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxdujswr.dll
2016-06-20 13:32 - 2009-07-13 23:06 - 00106496 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxduinsr.dll
2016-06-20 13:32 - 2009-07-13 23:06 - 00036864 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxducur.dll
2016-06-20 13:32 - 2009-07-13 23:04 - 00200704 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxduinsb.dll
2016-06-20 13:32 - 2009-07-13 23:04 - 00090112 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxducub.dll
2016-06-20 13:32 - 2009-07-13 23:02 - 00176128 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxduins.dll
2016-06-20 13:32 - 2009-07-13 23:02 - 00077824 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxducu.dll
2016-06-20 13:32 - 2009-07-13 22:59 - 00544768 _____ (Lexmark International, Inc.) C:\WINDOWS\SysWOW64\lxduutil.dll
2016-06-20 13:32 - 2009-05-20 21:26 - 00681984 _____ ( ) C:\WINDOWS\system32\LXDUhcp.dll
2016-06-20 13:32 - 2009-05-20 19:14 - 00594944 _____ C:\WINDOWS\system32\LXDUinst.dll
2016-06-20 13:32 - 2009-05-20 09:57 - 00389120 _____ C:\WINDOWS\SysWOW64\LXDUinst.dll
2016-06-20 13:32 - 2008-03-05 18:56 - 00983121 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lxdugf.dll
2016-06-20 13:23 - 2016-06-26 15:27 - 00000000 ____D C:\Program Files\Lexmark 5600-6600 Series
2016-06-20 13:22 - 2016-06-20 13:22 - 00000000 _____ C:\ProgramData\UpdaterLog.txt
2016-06-17 17:46 - 2016-06-17 17:46 - 00000000 ____D C:\Users\Master\Tracing
2016-06-16 22:09 - 2016-06-16 22:09 - 00000000 _____ C:\WINDOWS\SysWOW64\last.dump
2016-06-16 02:00 - 2016-06-16 02:01 - 00000000 ____D C:\Users\Master\Desktop\Monetize Instagram
2016-06-14 19:11 - 2016-05-27 07:06 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-06-14 19:06 - 2016-05-20 15:45 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-06-14 19:06 - 2016-05-20 15:07 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2016-06-14 19:06 - 2016-05-20 15:07 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2016-06-14 15:26 - 2016-06-18 04:11 - 00000000 ____D C:\Users\Master\AppData\Roaming\Skype
2016-06-14 06:00 - 2016-06-14 06:00 - 00000000 ____D C:\Users\Master\AppData\Roaming\Roxio Log Files
2016-06-14 05:39 - 2016-06-14 05:39 - 00000000 ____D C:\Users\Master\AppData\Local\ArcSoft
2016-06-14 02:34 - 2016-06-26 16:02 - 00004002 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1465893237
2016-06-14 02:34 - 2016-06-14 02:34 - 00000999 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-06-14 02:33 - 2016-06-14 02:33 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-06-14 02:28 - 2016-06-26 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-06-14 02:28 - 2016-06-14 02:28 - 00000000 ____D C:\Users\Master\AppData\Roaming\AVAST Software
2016-06-14 02:27 - 2016-06-28 17:36 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-06-14 02:27 - 2016-06-26 16:39 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2016-06-14 02:26 - 2016-06-14 02:26 - 00465792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-06-14 02:26 - 2016-06-14 02:26 - 00287528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00166432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-06-14 02:26 - 2016-06-14 02:26 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-06-14 02:26 - 2016-06-14 02:25 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-06-14 02:25 - 2016-06-14 02:25 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-06-14 02:23 - 2016-06-14 02:33 - 00000000 ____D C:\Program Files\AVAST Software
2016-06-14 02:22 - 2016-06-14 02:33 - 00000000 ____D C:\ProgramData\AVAST Software
2016-06-09 17:33 - 2016-06-28 15:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-04-27 01:46 - 2016-06-26 11:27 - 00000000 ___HD C:\$WINDOWS.~BT
2016-04-27 00:40 - 2016-04-27 00:40 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-04-27 00:39 - 2016-06-27 09:52 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-04-27 00:34 - 2016-06-26 15:13 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-04-27 00:33 - 2016-04-27 00:33 - 00000000 ____D C:\ProgramData\USOShared
2016-04-27 00:32 - 2016-06-28 17:47 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-27 00:28 - 2016-04-27 00:29 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-04-27 00:21 - 2015-10-30 01:19 - 00031816 _____ C:\WINDOWS\Core.xml
2016-04-27 00:20 - 2016-06-26 15:24 - 00000000 ____D C:\Program Files\Windows Journal
2016-04-27 00:20 - 2016-04-27 00:20 - 00000000 ____D C:\WINDOWS\ShellNew
2016-04-27 00:11 - 2016-04-27 00:11 - 00000000 ____D C:\WINDOWS\SKB
2016-04-27 00:11 - 2016-04-27 00:11 - 00000000 ____D C:\WINDOWS\OCR
2016-04-27 00:10 - 2016-04-27 00:10 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 08705672 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 07533568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 06952088 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 04827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-04-27 00:10 - 2016-04-27 00:10 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-04-27 00:10 - 2016-04-27 00:10 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02606824 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-04-27 00:10 - 2016-04-27 00:10 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-04-27 00:10 - 2016-04-27 00:10 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01613664 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01270072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 01224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01017032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 01009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 00884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00848168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00820704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00786696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 00785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00671472 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00640472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00563552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00558592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-04-27 00:10 - 2016-04-27 00:10 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00499432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00476728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00440152 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00431240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00430944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00420928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00408120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-04-27 00:10 - 2016-04-27 00:10 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00376536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-04-27 00:10 - 2016-04-27 00:10 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00287712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00260608 _____ C:\WINDOWS\system32\MTFServer.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassam.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00245840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-04-27 00:10 - 2016-04-27 00:10 - 00234504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00208176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassam.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00202472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimCfg.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2016-04-27 00:10 - 2016-04-27 00:10 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00141560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimAuth.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00127840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-04-27 00:10 - 2016-04-27 00:10 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2016-04-27 00:10 - 2016-04-27 00:10 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00119320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00100160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-04-27 00:10 - 2016-04-27 00:10 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00085320 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00081112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ztrace_maps.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2016-04-27 00:10 - 2016-04-27 00:10 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ztrace_maps.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-04-27 00:10 - 2016-04-27 00:10 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscoreext.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\system32\0409
2016-04-27 00:06 - 2016-04-27 00:06 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-04-13 03:00 - 2016-04-13 03:02 - 00000000 ____D C:\e35822387aa81e4f2942444b
2016-04-01 20:52 - 2016-04-01 20:52 - 00077808 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ibtfltcoex.sys

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-28 17:53 - 2015-11-08 21:27 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-28 17:49 - 2015-11-08 21:25 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-28 17:47 - 2011-05-14 07:58 - 00000000 ____D C:\ProgramData\NVIDIA
2016-06-28 17:46 - 2015-10-30 00:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-28 17:35 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-28 17:26 - 2015-10-30 01:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-28 16:59 - 2016-03-19 22:46 - 00000000 ____D C:\Users\Master\Desktop\stuff lkjhlkjh
2016-06-28 16:56 - 2015-11-08 21:25 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-28 16:48 - 2015-10-30 01:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-28 16:46 - 2011-05-14 06:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-06-27 19:50 - 2015-10-30 01:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-27 18:24 - 2015-11-09 00:44 - 00000000 ____D C:\Users\Master\AppData\Roaming\SoftGrid Client
2016-06-27 10:05 - 2011-05-14 06:36 - 00000000 ____D C:\ProgramData\Temp
2016-06-26 23:18 - 2011-05-14 06:24 - 00000000 ____D C:\ProgramData\Dell
2016-06-26 20:19 - 2011-05-14 06:02 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2016-06-26 20:19 - 2011-05-14 06:02 - 00000000 ____D C:\WINDOWS\system32\NV
2016-06-26 20:03 - 2011-05-14 06:28 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-26 19:49 - 2011-05-14 06:54 - 00000000 ____D C:\Program Files\Dell Support Center
2016-06-26 19:44 - 2015-11-20 01:07 - 00000000 ____D C:\ProgramData\PCDr
2016-06-26 19:44 - 2011-05-14 06:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2016-06-26 16:58 - 2015-11-08 21:27 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-26 16:39 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\rescache
2016-06-26 16:38 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-06-26 16:15 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-06-26 16:05 - 2015-10-30 01:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-06-26 16:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Registration
2016-06-26 16:03 - 2015-11-08 21:27 - 00003878 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-06-26 16:03 - 2015-11-08 21:25 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-26 16:02 - 2015-11-08 21:25 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-26 16:00 - 2015-10-30 01:24 - 00000000 __RSD C:\WINDOWS\Media
2016-06-26 15:59 - 2015-10-30 01:24 - 00000000 __RHD C:\Users\Public\Libraries
2016-06-26 15:27 - 2016-02-20 23:04 - 00000000 ____D C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2016-06-26 15:27 - 2015-11-09 04:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-06-26 15:27 - 2015-10-30 00:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-06-26 15:27 - 2011-05-14 06:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Webcam
2016-06-26 15:27 - 2011-05-14 06:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2016-06-26 15:27 - 2011-05-14 06:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-06-26 15:24 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-06-26 15:20 - 2015-10-30 01:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-06-26 15:15 - 2009-07-13 21:20 - 00000000 ____D C:\Users\Default.migrated
2016-06-26 15:05 - 2015-11-10 04:04 - 00000000 ____D C:\WINDOWS\system32\SPReview
2016-06-26 15:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-06-26 15:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-06-26 15:05 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-06-26 15:04 - 2015-11-10 04:04 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-06-26 15:04 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-06-26 15:04 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-06-26 15:04 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\IME
2016-06-26 15:02 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\schemas
2016-06-26 15:01 - 2011-05-14 07:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-26 15:00 - 2015-11-09 00:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2016-06-26 15:00 - 2015-10-30 01:24 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-06-26 15:00 - 2015-10-30 01:24 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-06-26 15:00 - 2015-10-30 01:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-06-26 15:00 - 2011-05-14 06:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2016-06-26 15:00 - 2009-07-13 23:32 - 00000000 ____D C:\Program Files\Microsoft Games
2016-06-26 15:00 - 2009-07-13 23:32 - 00000000 ____D C:\Program Files\DVD Maker
2016-06-26 14:57 - 2009-07-13 21:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-06-26 14:48 - 2015-10-30 00:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-06-26 14:34 - 2011-05-14 06:31 - 00000000 ____D C:\Temp
2016-06-26 14:33 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\Help
2016-06-26 14:08 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-06-26 14:08 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\setup
2016-06-26 14:08 - 2015-10-30 01:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-06-26 14:08 - 2015-10-30 01:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2016-06-26 14:08 - 2015-10-30 01:19 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2016-06-26 14:08 - 2015-10-30 01:19 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2016-06-26 14:08 - 2015-10-30 01:19 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2016-06-26 14:08 - 2015-10-30 01:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2016-06-26 14:08 - 2015-10-30 01:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2016-06-26 14:08 - 2015-10-30 01:19 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2016-06-26 14:08 - 2015-10-30 01:18 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2016-06-26 14:08 - 2015-10-30 01:18 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2016-06-26 14:08 - 2015-10-30 01:18 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2016-06-26 14:08 - 2015-10-30 01:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2016-06-26 14:08 - 2015-10-30 01:18 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2016-06-26 14:08 - 2015-10-30 01:18 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2016-06-26 14:08 - 2015-10-30 01:18 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2016-06-26 14:08 - 2015-10-30 01:18 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2016-06-26 14:08 - 2015-10-30 01:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2016-06-26 14:08 - 2015-10-30 01:18 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2016-06-26 11:31 - 2009-07-13 22:45 - 00014240 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-26 11:31 - 2009-07-13 22:45 - 00014240 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-24 01:09 - 2015-11-09 04:04 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-24 01:09 - 2015-11-09 04:04 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-21 06:08 - 2009-07-13 23:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-06-20 22:13 - 2015-11-08 21:05 - 00000000 ____D C:\Users\Master\AppData\Local\VirtualStore
2016-06-20 21:55 - 2015-11-08 21:27 - 00000000 ____D C:\Users\Master\AppData\Local\Adobe
2016-06-20 21:18 - 2011-05-14 06:28 - 00000000 ____D C:\ProgramData\Adobe
2016-06-19 04:22 - 2016-03-23 02:15 - 00000000 ____D C:\Users\Master\AppData\Local\FluxSoftware
2016-06-19 04:02 - 2011-05-14 06:33 - 00000000 ____D C:\ProgramData\Skype
2016-06-18 23:02 - 2011-05-14 06:59 - 00000000 ____D C:\ProgramData\Sonic
2016-06-18 23:02 - 2011-05-14 06:57 - 00000000 ____D C:\Program Files (x86)\Roxio
2016-06-18 23:00 - 2011-05-14 06:59 - 00000000 ____D C:\ProgramData\Roxio
2016-06-18 22:51 - 2015-11-08 21:07 - 00000000 ____D C:\Users\Master\AppData\Roaming\Roxio
2016-06-18 22:07 - 2016-02-28 01:07 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-06-18 21:17 - 2011-05-14 06:30 - 00000000 ____D C:\Program Files (x86)\Dell
2016-06-18 21:16 - 2015-11-08 21:08 - 00000000 ____D C:\Users\Master\AppData\Local\Dell
2016-06-14 12:33 - 2015-10-30 01:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-06-14 12:33 - 2015-10-30 01:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-14 08:17 - 2011-05-14 06:51 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-06-14 05:47 - 2011-05-14 06:33 - 00000000 ____D C:\ProgramData\Cozi
2016-06-12 15:56 - 2015-11-08 21:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== Files in the root of some directories =======

2016-06-20 14:10 - 2016-06-26 21:34 - 0001293 _____ () C:\ProgramData\lxdu.log
2016-06-20 14:34 - 2016-06-20 21:10 - 0000370 _____ () C:\ProgramData\lxduDiagnostics.log
2016-06-20 13:22 - 2016-06-20 13:22 - 0000000 _____ () C:\ProgramData\UpdaterLog.txt

Some files in TEMP:
====================
C:\Users\User1\AppData\Local\Temp\libeay32.dll
C:\Users\User1\AppData\Local\Temp\msvcr120.dll
C:\Users\User1\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume2
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {fe2d3b81-3be6-11e6-8dad-8d5132652533}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Windows Boot Loader
-------------------
identifier              {0e06cd20-7e36-11e0-a044-14feb5ab9ee8}
device                  ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{0e06cd21-7e36-11e0-a044-14feb5ab9ee8}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{0e06cd21-7e36-11e0-a044-14feb5ab9ee8}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Windows Setup
-------------
identifier              {cbd971bf-b7b8-4885-951a-fa03044f5d71}
device                  ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{b534eb1f-3bc5-11e6-ab41-bc77376bea08}
path                    \windows\system32\winload.exe
description             Windows Rollback
locale                  en-US
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{b534eb1f-3bc5-11e6-ab41-bc77376bea08}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {f16740b1-3be9-11e6-8dad-8d5132652533}
device                  ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{f16740b2-3be9-11e6-8dad-8d5132652533}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride Recovery
osdevice                ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{f16740b2-3be9-11e6-8dad-8d5132652533}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \WINDOWS\system32\winload.exe
description             Windows 10
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {f16740b1-3be9-11e6-8dad-8d5132652533}
recoveryenabled         Yes
allowedinmemorysettings 0x15000075
osdevice                partition=C:
systemroot              \WINDOWS
resumeobject            {fe2d3b81-3be6-11e6-8dad-8d5132652533}
nx                      OptIn
bootmenupolicy          Standard

Resume from Hibernate
---------------------
identifier              {0e06cd1e-7e36-11e0-a044-14feb5ab9ee8}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
debugoptionenabled      No

Resume from Hibernate
---------------------
identifier              {fe2d3b81-3be6-11e6-8dad-8d5132652533}
device                  partition=C:
path                    \WINDOWS\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {f16740b1-3be9-11e6-8dad-8d5132652533}
recoveryenabled         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes

EMS Settings
------------
identifier              {emssettings}
bootems                 No

Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

RAM Defects
-----------
identifier              {badmemory}

Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}

Device options
--------------
identifier              {0e06cd21-7e36-11e0-a044-14feb5ab9ee8}
description             Ramdisk Options
ramdisksdidevice        partition=\Device\HarddiskVolume2
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

Device options
--------------
identifier              {b534eb1f-3bc5-11e6-ab41-bc77376bea08}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Device options
--------------
identifier              {f16740b2-3be9-11e6-8dad-8d5132652533}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume2
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

LastRegBack: 2016-06-26 16:53

==================== End of FRST.txt ============================

Addition

***********************************************************************************************************************************************************************************************************************
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2016
Ran by User1 (2016-06-28 17:53:17)
Running from C:\Users\User1\Desktop
Windows 10 Home Version 1511 (X64) (2016-06-26 22:38:20)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2202564656-2552605091-3067513876-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2202564656-2552605091-3067513876-503 - Limited - Disabled)
Guest (S-1-5-21-2202564656-2552605091-3067513876-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2202564656-2552605091-3067513876-1003 - Limited - Enabled)
Master (S-1-5-21-2202564656-2552605091-3067513876-1002 - Limited - Enabled) => C:\Users\Master
UpdatusUser (S-1-5-21-2202564656-2552605091-3067513876-1000 - Limited - Enabled) => C:\Users\UpdatusUser
User1 (S-1-5-21-2202564656-2552605091-3067513876-1004 - Administrator - Enabled) => C:\Users\User1

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{1C115E6B-88E0-4A31-BCA0-F89FDEA1F5FE}) (Version: 1.0.4295.850 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1200.101.218 - ALPS ELECTRIC CO., LTD.)
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.35 - Creative Technology Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Infinite HD™ App (HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\Octoshape Streaming Services) (Version: - Octoshape ApS)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2253 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{5A80B0BA-79AF-4B11-B851-CCB9F7977AC0}) (Version: 1.0.1.0489 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{290D4DB2-F1B4-4B8E-918D-D71EF29A001B}) (Version: 14.00.1000 - Intel Corporation)
Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Intel® Wireless Display (HKLM-x32\...\{F84906ED-BB54-4889-B131-FED9C9056FC8}) (Version: 2.0.27.0 - Intel Corporation)
Internet Explorer (x32 Version: 8 - Microsoft Corporation) Hidden
Lexmark 5600-6600 Series (HKLM\...\Lexmark 5600-6600 Series) (Version: - Lexmark International, Inc.)
Lexmark Printable Web (HKLM-x32\...\{D2C5E510-BE6D-42CC-9F61-E4F939078474}) (Version: 1.0.0.0 - )
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 47.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 en-US)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA 3D Vision Driver 265.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 265.94 - NVIDIA Corporation)
NVIDIA Graphics Driver 265.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 265.94 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.1.13.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.1.13.1 - NVIDIA Corporation)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.0.10 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden
SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Master\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2202564656-2552605091-3067513876-1004_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\User1\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00011D4A-58AC-4FB5-87DE-443EEFAC6BE3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {04C2B8D9-186D-42C4-9F09-29A966AD4E73} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {0C4B1A28-E662-4F32-828A-1BA0912860F7} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {10C02DE2-D5D8-490D-817C-8552CE833D9C} - System32\Tasks\SafeZone scheduled Autoupdate 1465893237 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software)
Task: {156DE26F-955B-45BA-8681-2378648D3D59} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2524E3B2-76DF-45C0-B103-623A10E5AC6D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2A27B9FB-1D57-4F80-8511-7FA5B0A951A4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {3D5FEB17-8B27-4ACF-AEB0-6916101A8651} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {4337E780-3BE0-4490-A9F8-343056477C24} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {47A738BB-7EEB-4085-8495-143B092FA3F9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {484658A3-587E-4B56-8F0D-3FC4E51CC7F3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {498F11CF-A38E-4AA3-97BC-F1C3D95F37AC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {4B972662-F70C-47B6-84B7-F50ECAB72B88} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-06-14] (AVAST Software)
Task: {4D8B1BA2-AE60-43A0-9C83-D75854E01267} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {4F514384-4D92-4891-9D6A-238A538D5DD5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {5707A550-699D-4505-8E49-A05E92E8E419} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {61F804D0-A663-4046-BA9E-19F0C6293EEC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {67606E0D-F4EF-455B-838A-36E8FC819C53} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {69F85C69-7415-4F52-9ECC-0F26DD833E61} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {6CE8D7C4-9FE0-40AA-9818-5D38C8DDFA9F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {720E7334-A3C9-4F58-8363-D10657A55061} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {74130DDF-AA75-47B9-A02E-18AE965FDF52} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {78F2C289-D657-4B42-8402-15C53365E71C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {7C7F6124-C049-4573-A706-76D9EC4F870B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {7D4EAC2B-C31F-44D5-BE42-F09BA3A7E603} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {7E47F1B4-C69E-4755-9DB8-04FB6CA25F8D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {840E4311-66B4-4531-958C-62B3F6EBEEEF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {92DB1341-34BF-498B-ACFD-67FB8771B3CA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {9461CBB3-1B3B-4F8D-97D5-1B5641EC270D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {9524811E-3B4C-4EB7-B47A-A0C9F619F837} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {98AB2112-CFAF-4A4E-8C5E-C515BCCCC1B4} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {B65D80BB-3E83-4D2A-8F11-15F2B7923CA7} - System32\Tasks\Installation App Launcher => C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduamon.exe [2009-09-04] ()
Task: {B7E2C5C2-7966-4D23-A78F-421A69A7A616} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {B88BB0FB-7014-4B9D-91A5-88B1A4320C48} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B8B15E2B-69BE-462F-B679-24ABA9203B38} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {D13A96F2-8D17-452F-A3B2-EFC0506B6CC2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {D8D2E0E2-B79F-4123-AD93-9F72AC846683} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated)
Task: {D921B201-053C-4107-A26D-EBA0ED279F92} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {DDDF9D9D-9AC3-47BD-B564-C312BCD00EB2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {E2B3882D-4FF7-4DC2-8A74-2B1B199E3E65} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {EBCE6FEC-24B5-41AB-9476-E6D794834F7A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {F0D2BF86-F19B-4903-B825-E853246C6F7F} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {F1C93741-65ED-4A94-9488-5C705260574B} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {FD3BC01D-3A9F-4C16-B3BB-7D1F2C4783AC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-01] (Piriform Ltd)
Task: {FFE41A7D-757B-464F-8D99-9917A09EF65C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 01:18 - 2015-10-30 01:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-06-26 14:33 - 2015-07-22 19:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-06-20 13:44 - 2009-10-16 16:07 - 00186880 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\lxdudrpp.dll
2015-10-30 01:18 - 2015-10-30 01:18 - 00218456 _____ () c:\windows\system32\WerEtw.dll
2010-12-17 12:53 - 2010-12-17 12:53 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-06-26 15:14 - 2016-06-26 15:14 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-06-26 17:39 - 2016-06-26 17:39 - 00959168 _____ () C:\Users\Master\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-06-26 15:18 - 2016-06-26 15:18 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-06-26 15:17 - 2016-06-26 15:17 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-06-26 15:16 - 2016-06-26 15:16 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2010-12-17 12:53 - 2010-12-17 12:53 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 03081568 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2016-04-27 00:10 - 2016-04-27 00:10 - 02394976 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll
2016-06-27 09:58 - 2016-06-27 09:58 - 00959168 _____ () C:\Users\User1\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-06-28 17:12 - 2016-06-28 17:12 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-06-14 02:25 - 2016-06-14 02:25 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-06-14 02:25 - 2016-06-14 02:25 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-28 11:44 - 2016-06-28 11:44 - 02944512 _____ () C:\Program Files\AVAST Software\Avast\defs\16062801\algo.dll
2016-06-14 02:25 - 2016-06-14 02:25 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll
2016-06-14 02:25 - 2016-06-14 02:25 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-06-14 02:26 - 2016-06-14 02:26 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-06-28 17:12 - 2016-06-28 17:12 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-06-28 17:12 - 2016-06-28 17:12 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-06-27 09:58 - 2016-06-27 09:58 - 00679624 _____ () C:\Users\User1\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2010-11-16 07:51 - 2010-11-16 07:51 - 00176520 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [125]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\101hotteens.com -> 101hotteens.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\101lottery.com -> 101lottery.com
IE restricted site: HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\110hobart.com -> 110hobart.com

There are 4802 more sites.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 20:34 - 2016-06-28 15:28 - 00000938 ____R C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-2202564656-2552605091-3067513876-1004\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: BDESVC => 3
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: CertPropSvc => 3
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: MSiSCSI => 3
MSCONFIG\Services: Netlogon => 3
MSCONFIG\Services: RemoteRegistry => 3
MSCONFIG\Services: SCardSvr => 3
MSCONFIG\Services: SCPolicySvc => 3
MSCONFIG\Services: SessionEnv => 3
MSCONFIG\Services: TabletInputService => 3
MSCONFIG\Services: TermService => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: WPCSvc => 3
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: BTMTrayAgent => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dell DataSafe Online => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
MSCONFIG\startupreg: Dell Webcam Central => "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
MSCONFIG\startupreg: DellStage => "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj"
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: NVHotkey => rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
MSCONFIG\startupreg: Octoshape Streaming Services => "C:\Users\Master\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun
MSCONFIG\startupreg: QuickSet => c:\Program Files\Dell\QuickSet\QuickSet.exe
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
HKLM\...\StartupApproved\Run: => "lxduamon"
HKLM\...\StartupApproved\Run: => "lxdumon.exe"
HKU\S-1-5-21-2202564656-2552605091-3067513876-1002\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{B74F6359-1ABC-4639-94E1-A0AD55732907}] => (Allow) C:\Windows\SysWOW64\lxducoms.exe
FirewallRules: [{B9A2E7B3-7A5B-4C29-AFA8-096438F43581}] => (Allow) C:\Windows\system32\spool\DRIVERS\x64\3\lxdutime.exe
FirewallRules: [{51DE2E95-BFF4-4F2D-B506-516D4A102EE1}] => (Allow) C:\Windows\system32\spool\DRIVERS\x64\3\lxdupswx.exe
FirewallRules: [{78172885-3EF1-495B-97F8-180258E99417}] => (Allow) C:\Windows\system32\lxducoms.exe
FirewallRules: [{13ABD283-73F4-4AEF-9F0C-EB5D21F4F00B}] => (Allow) C:\WINDOWS\System32\lxducoms.exe
FirewallRules: [{B7693329-6E89-48CC-AF22-FB5B3F7702AE}] => (Allow) C:\WINDOWS\System32\lxducoms.exe
FirewallRules: [{96564263-F1E6-41F6-A786-D72C8D1D57B2}] => (Allow) C:\Program Files (x86)\Lexmark 5600-6600 Series\frun.exe
FirewallRules: [{D164F0E4-7820-4EEA-A359-6725096F1E8C}] => (Allow) C:\Program Files (x86)\Lexmark 5600-6600 Series\frun.exe
FirewallRules: [{DB2EC398-E6E8-4194-AD4D-E6BF87F126C9}] => (Allow) C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduamon.exe
FirewallRules: [{A9725CEA-3689-47C3-BE49-9936C45D4A28}] => (Allow) C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduamon.exe
FirewallRules: [{88B26CB9-CE16-4954-9909-7A181DBCD2B6}] => (Allow) C:\WINDOWS\SysWOW64\lxducoms.exe
FirewallRules: [{91E04B37-8739-4462-9A83-1DF0AD3B9021}] => (Allow) C:\WINDOWS\SysWOW64\lxducoms.exe
FirewallRules: [{697B0591-3C10-47B5-9448-A37CF1AD6518}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1EA34580-5EB5-4282-930F-DA689FB3213E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{65B7C095-512C-40FC-B6D2-76B36DC35E93}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{98D04B9F-EBD5-4963-893F-A9CA76EC6E2F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5C758C25-230E-416B-8ACE-D5275F94E6B6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D13F52F7-E463-45D1-B6CA-11C02F734527}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{A49B5A4B-456E-4FFD-8A9A-360067398537}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{AA80F533-E1A5-4E58-91FE-0521665CBF68}] => (Allow) c:\Program Files (x86)\Dell\VideoStage\VideoStage.exe
FirewallRules: [{3E8E19AA-CA15-49C9-A76E-FB250122F925}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel Wireless Display\WiDiApp.exe
FirewallRules: [{29AB5778-F258-4060-B290-80F2143260BF}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{C5E6ED27-0928-4385-AA90-9C939A350F95}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{85706D96-8902-43AE-91BB-B978BE77B7D8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

==================== Restore Points =========================

27-06-2016 19:15:54 Windows Update
28-06-2016 17:27:11 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (06/28/2016 05:54:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.10586.0, time stamp: 0x5632d8f0
Faulting module name: ntdll.dll, version: 10.0.10586.306, time stamp: 0x571af2eb
Exception code: 0xc0000409
Fault offset: 0x00000000000a9ba0
Faulting process id: 0x1c64
Faulting application start time: 0xbackgroundTaskHost.exe0
Faulting application path: backgroundTaskHost.exe1
Faulting module path: backgroundTaskHost.exe2
Report Id: backgroundTaskHost.exe3
Faulting package full name: backgroundTaskHost.exe4
Faulting package-relative application ID: backgroundTaskHost.exe5

Error: (06/28/2016 05:47:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Master-PC)
Description: Activation of app Microsoft.WindowsMaps_8wekyb3d8bbwe!App failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (06/28/2016 05:47:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: daemonu.exe, version: 1.0.9.0, time stamp: 0x4cf3830f
Faulting module name: daemonu.exe, version: 1.0.9.0, time stamp: 0x4cf3830f
Exception code: 0xc000000d
Fault offset: 0x0004c866
Faulting process id: 0x4d4
Faulting application start time: 0xdaemonu.exe0
Faulting application path: daemonu.exe1
Faulting module path: daemonu.exe2
Report Id: daemonu.exe3
Faulting package full name: daemonu.exe4
Faulting package-relative application ID: daemonu.exe5

Error: (06/28/2016 05:47:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: obexsrv.exe, version: 1.0.0.45, time stamp: 0x4d014f23
Faulting module name: obexsrv.exe, version: 1.0.0.45, time stamp: 0x4d014f23
Exception code: 0xc0000005
Fault offset: 0x0004f69f
Faulting process id: 0xaa4
Faulting application start time: 0xobexsrv.exe0
Faulting application path: obexsrv.exe1
Faulting module path: obexsrv.exe2
Report Id: obexsrv.exe3
Faulting package full name: obexsrv.exe4
Faulting package-relative application ID: obexsrv.exe5

Error: (06/28/2016 05:47:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: devmonsrv.exe, version: 1.0.0.45, time stamp: 0x4d014f90
Faulting module name: devmonsrv.exe, version: 1.0.0.45, time stamp: 0x4d014f90
Exception code: 0xc0000005
Fault offset: 0x0003e31d
Faulting process id: 0x934
Faulting application start time: 0xdevmonsrv.exe0
Faulting application path: devmonsrv.exe1
Faulting module path: devmonsrv.exe2
Report Id: devmonsrv.exe3
Faulting package full name: devmonsrv.exe4
Faulting package-relative application ID: devmonsrv.exe5

Error: (06/28/2016 05:47:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 10.0.10586.0, time stamp: 0x5632d7b9
Faulting module name: TraceApi.dll, version: 14.0.1.3, time stamp: 0x4d0be3fc
Exception code: 0xc0000005
Fault offset: 0x0000000000073dae
Faulting process id: 0x754
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (06/28/2016 05:44:32 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Master-PC)
Description: Activation of app Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App failed with error: -2147024891 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (06/28/2016 05:37:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Master-PC)
Description: Activation of app Microsoft.WindowsMaps_8wekyb3d8bbwe!App failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (06/28/2016 05:36:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: wmiprvse.exe, version: 10.0.10586.0, time stamp: 0x5632d3b9
Faulting module name: TraceApi.dll, version: 14.0.1.3, time stamp: 0x4d0be3fc
Exception code: 0xc0000005
Fault offset: 0x0000000000073dae
Faulting process id: 0x2124
Faulting application start time: 0xwmiprvse.exe0
Faulting application path: wmiprvse.exe1
Faulting module path: wmiprvse.exe2
Report Id: wmiprvse.exe3
Faulting package full name: wmiprvse.exe4
Faulting package-relative application ID: wmiprvse.exe5

Error: (06/28/2016 05:36:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: wmiprvse.exe, version: 10.0.10586.0, time stamp: 0x5632d3b9
Faulting module name: TraceApi.dll, version: 14.0.1.3, time stamp: 0x4d0be3fc
Exception code: 0xc0000005
Fault offset: 0x0000000000073dae
Faulting process id: 0x26b4
Faulting application start time: 0xwmiprvse.exe0
Faulting application path: wmiprvse.exe1
Faulting module path: wmiprvse.exe2
Report Id: wmiprvse.exe3
Faulting package full name: wmiprvse.exe4
Faulting package-relative application ID: wmiprvse.exe5

System errors:
=============
Error: (06/28/2016 05:53:58 PM) (Source: DCOM) (EventID: 10016) (User: Master-PC)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}Master-PCMasterS-1-5-21-2202564656-2552605091-3067513876-1002LocalHost (Using LRPC)UnavailableUnavailable

Error: (06/28/2016 05:53:52 PM) (Source: DCOM) (EventID: 10016) (User: Master-PC)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}Master-PCMasterS-1-5-21-2202564656-2552605091-3067513876-1002LocalHost (Using LRPC)UnavailableUnavailable

Error: (06/28/2016 05:53:13 PM) (Source: DCOM) (EventID: 10016) (User: Master-PC)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}Master-PCMasterS-1-5-21-2202564656-2552605091-3067513876-1002LocalHost (Using LRPC)UnavailableUnavailable

Error: (06/28/2016 05:53:01 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Downloaded Maps Manager service hung on starting.

Error: (06/28/2016 05:48:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s).

Error: (06/28/2016 05:47:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Bluetooth OBEX Service service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (06/28/2016 05:47:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Bluetooth OBEX Service service to connect.

Error: (06/28/2016 05:47:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Bluetooth Device Monitor service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (06/28/2016 05:47:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Bluetooth Device Monitor service to connect.

Error: (06/28/2016 05:47:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The lxduCATSCustConnectService service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.

CodeIntegrity:
===================================
Date: 2016-06-28 09:36:21.017
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-26 22:23:18.605
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-26 20:13:14.764
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:13.146
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:11.470
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:10.149
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:09.441
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:05.225
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:04.394
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-26 20:13:00.189
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel® Core™ i5-2410M CPU @ 2.30GHz
Percentage of memory in use: 27%
Total physical RAM: 6058.17 MB
Available physical RAM: 4392.7 MB
Total Virtual: 7711.17 MB
Available Virtual: 5948.91 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:581.42 GB) (Free:525.27 GB) NTFS
Drive d: (Lexmark 6600) (CDROM) (Total:0.45 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596.2 GB) (Disk ID: 07F2837E)
Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=581.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

#4
RKinner

Posted 28 June 2016 - 07:58 PM

Malware Expert

Expert
24,624 posts

Go in to msconfig and make sure everything is checked under Startup and Services tabs. OK and reboot.

If something is unchecked in msconfig it can't be uninstalled or updated.

Then you need to update Intel® PROSet/Wireless Software for Bluetooth You can get a new driver for Win 10 here:

https://downloadcent...0?product=72252

I would also uninstall Lexmark 5600-6600 Series and update it with the latest driver.

http://support.lexma...serlocale=EN_US

Lexmark says there is only limited support for your printer on WIndows 10

Products with limited support

These products were developed before Lexmark had knowledge of the re-designed Windows 10 printing system, but will support basic printing features. Microsoft may choose, at its own discretion, to completely discontinue printing support for these products in future Windows 10 operating system updates.

Use existing Windows 8, 8.1 print drivers for the following inkjet models:

...

Lexmark X6675/X6650/X6690 (5600-6600 Series)

Lexmark X5650/X5690 (5600-6600 Series)

I would also try to update this driver: NVIDIA Graphics Driver 265.94

The 265.94 is a windows 7 driver. Check with your PC maker's website and see if there is a video driver for win 10 or win 8.1 that you can use. If not perhaps you can find one on http://www.nvidia.co...aspx?lang=en-us

Sometimes Windows Updates will offer them under Optional Updates that you have to manually select.

Once you have updated as much as you can then:

Run FRST again as before. Make sure Addition.txt is checked and hit Scan. Post both logs.

Back to Virus, Spyware, Malware Removal · Next Unread Topic →

Also tagged with one or more of these keywords: FRST

Security → Virus, Spyware, Malware Removal → Help w/FRST logs...NEWBIE [Closed] Started by stephspomer , 28 Sep 2021 farbar, frst, virus, malware and 2 more...	7 replies 3,045 views	DR M 04 Oct 2021
Security → Virus, Spyware, Malware Removal → Infected System, unable to open any antivirus website or update my McA Started by virk_ps , 04 Jul 2019 Malware, infected system, FRST and 1 more...	2 replies 5,197 views	iMacg3 05 Jul 2019
frst Security → Virus, Spyware, Malware Removal → I've been owned [Solved] Started by slrlcx , 06 May 2019 frst 1 2 3	Hot 35 replies 22,899 views	iMacg3 10 May 2019
FRST Security → Virus, Spyware, Malware Removal → SFC [Solved] Started by front360 , 21 Dec 2018 FRST	4 replies 5,527 views	iMacg3 22 Jan 2019
Security → Computer Won't Boot - Malware Related → fixlist for FRST please? Started by Burrito132 , 18 Jun 2018 frst, fixlist, pagefault	3 replies 8,838 views	RKinner 19 Jun 2018