Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

VDJ Hidden in Files


  • Please log in to reply

#1
chosen072

chosen072

    Member

  • Member
  • PipPip
  • 90 posts

Hi!

I am a dj online and I use virtual dj. I was working for a club and was having issues with my software so the owner of the club offered to help me and download software that will work. I thought it was a legit copy because a username and password was placed in the software. Today, I decided  to upgrade my controller but I keep getting messages that I have a crack copy. So I erased that copy, and paid for a new copy of virtual dj but I still keep getting the same message. I'm not sure how to get this crack off of my computer. Can anyone help me?


  • 0

Advertisements


#2
chosen072

chosen072

    Member

  • Topic Starter
  • Member
  • PipPip
  • 90 posts
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06.06.2018 01
Ran by Robin (administrator) on ROBINSHP (13-06-2018 02:56:28)
Running from C:\Users\Robin\Desktop
Loaded Profiles: Robin (Available Profiles: Robin)
Platform: Windows 10 Home Version 1803 17134.81 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\Dragon Notes\Core\DACore.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(The Nielsen Company) C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(The Nielsen Company) C:\Program Files (x86)\NetRatingsNetSight\NetSight\nielsenonline.exe
(The Nielsen Company) C:\Program Files (x86)\NetRatingsNetSight\NetSight\nielsenonline.exe
() C:\Program Files\AMD\ATI.ACE\a4\AdaptiveSleepService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(The Nielsen Company) C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\NielsenOnline64.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Users\Robin\AppData\Local\Microsoft\OneDrive\18.091.0506.0006\FileCoAuth.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
() C:\Windows\System32\Windows.WARP.JITService.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.10.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18041.14611.0_x64__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8496344 2015-09-11] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-05-13] (AVAST Software)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [653576 2015-06-29] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [NielsenOnline] => C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe [203320 2018-04-24] (The Nielsen Company)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3643712 2018-06-04] (Dropbox, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-03] (Advanced Micro Devices, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1720584 2015-02-08] (CyberLink Corp.)
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [25638872 2018-04-23] (Google)
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\Run: [HP ENVY 4520 series (NET)] => C:\Program Files\HP\HP ENVY 4520 series\Bin\ScanToPCActivationApp.exe [3651080 2015-03-09] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\Run: [AvastBrowserAutoLaunch_E267703859BFD746DDF3F315EE157471] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1808264 2018-06-12] (AVAST Software)
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
Startup: C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-03-05]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: 127.0.0.1 live.virtualdj.com
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{6c826517-f281-4508-afcc-db7c9946062c}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c7831be3-3b63-46a4-807a-f3819464ee72}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{da12a8f3-e1c2-43cb-ad24-84976c56590e}: [DhcpNameServer] 192.168.123.254
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_mp3_17_19&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dus%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtB0B0BzzyDzy0F0F0A0E0AyEyC0BtN0D0Tzu0StCzyyDyDtN1L2XzutAtFtBzytFtAtFyByDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtA0D0CzztB0CzytGyBzztBtDtG0Ezy0D0AtGtB0CyB0CtGyByD0CtByDtCtA0E0Dzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CtA0C0FyE0BtCtG0F0F0FyBtGyEtAyCtAtG0B0FyEzztG0C0Fzzzz0CzytAzyyBtC0D0B2QtN0A0LzutB%26cr%3D1016777331%26a%3Dwbf_mp3_17_19%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT14/1
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_mp3_17_19&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dus%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtB0B0BzzyDzy0F0F0A0E0AyEyC0BtN0D0Tzu0StCzyyDyDtN1L2XzutAtFtBzytFtAtFyByDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtA0D0CzztB0CzytGyBzztBtDtG0Ezy0D0AtGtB0CyB0CtGyByD0CtByDtCtA0E0Dzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CtA0C0FyE0BtCtG0F0F0FyBtGyEtAyCtAtG0B0FyEzztG0C0Fzzzz0CzytAzyyBtC0D0B2QtN0A0LzutB%26cr%3D1016777331%26a%3Dwbf_mp3_17_19%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://js.redirect.hp.com/jumpstation?bd=all&c=143&locale=ww_ww&pf=cnnb&s=ieHPtab&tp=iehome
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_mp3_17_19&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtB0B0BzzyDzy0F0F0A0E0AyEyC0BtN0D0Tzu0StCzyyDyDtN1L2XzutAtFtBzytFtAtFyByDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtA0D0CzztB0CzytGyBzztBtDtG0Ezy0D0AtGtB0CyB0CtGyByD0CtByDtCtA0E0Dzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CtA0C0FyE0BtCtG0F0F0FyBtGyEtAyCtAtG0B0FyEzztG0C0Fzzzz0CzytAzyyBtC0D0B2QtN0A0LzutB%26cr%3D1016777331%26a%3Dwbf_mp3_17_19%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_mp3_17_19&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtB0B0BzzyDzy0F0F0A0E0AyEyC0BtN0D0Tzu0StCzyyDyDtN1L2XzutAtFtBzytFtAtFyByDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtA0D0CzztB0CzytGyBzztBtDtG0Ezy0D0AtGtB0CyB0CtGyByD0CtByDtCtA0E0Dzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CtA0C0FyE0BtCtG0F0F0FyBtGyEtAyCtAtG0B0FyEzztG0C0Fzzzz0CzytAzyyBtC0D0B2QtN0A0LzutB%26cr%3D1016777331%26a%3Dwbf_mp3_17_19%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {BFB3B7BA-FD5D-4ED3-925E-A8B5A4D0C79F} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_mp3_17_19&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtB0B0BzzyDzy0F0F0A0E0AyEyC0BtN0D0Tzu0StCzyyDyDtN1L2XzutAtFtBzytFtAtFyByDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtA0D0CzztB0CzytGyBzztBtDtG0Ezy0D0AtGtB0CyB0CtGyByD0CtByDtCtA0E0Dzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CtA0C0FyE0BtCtG0F0F0FyBtGyEtAyCtAtG0B0FyEzztG0C0Fzzzz0CzytAzyyBtC0D0B2QtN0A0LzutB%26cr%3D1016777331%26a%3Dwbf_mp3_17_19%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {BFB3B7BA-FD5D-4ED3-925E-A8B5A4D0C79F} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_mp3_17_19&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtB0B0BzzyDzy0F0F0A0E0AyEyC0BtN0D0Tzu0StCzyyDyDtN1L2XzutAtFtBzytFtAtFyByDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtA0D0CzztB0CzytGyBzztBtDtG0Ezy0D0AtGtB0CyB0CtGyByD0CtByDtCtA0E0Dzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CtA0C0FyE0BtCtG0F0F0FyBtGyEtAyCtAtG0B0FyEzztG0C0Fzzzz0CzytAzyyBtC0D0B2QtN0A0LzutB%26cr%3D1016777331%26a%3Dwbf_mp3_17_19%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2753159025-2017300708-4160777056-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2753159025-2017300708-4160777056-1002 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2753159025-2017300708-4160777056-1002 -> {BFB3B7BA-FD5D-4ED3-925E-A8B5A4D0C79F} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-2753159025-2017300708-4160777056-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-05-26] (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Nielsen NetSight -> {521D7A4F-CC4F-4873-8867-8C0818F1627B} -> C:\WINDOWS\system32\mscoree.dll [2018-04-11] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-09-23] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-03-25] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-23] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-05-26] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-05-26] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-05-26] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-05-26] (Microsoft Corporation)
 
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-03-09] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: (HP SimplePass) - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2015-06-11] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_113.dll [2018-06-08] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_113.dll [2018-06-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-23] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-03-06] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-05] ()
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2753159025-2017300708-4160777056-1002: @zoom.us/ZoomVideoPlugin -> C:\Users\Robin\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-06-10] (Zoom Video Communications, Inc.)
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://homepage-web.com/?s=hp&m=home
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default [2018-06-13]
CHR Extension: (Slides) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (Sales from Instagram & Pinterest Webi...) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajogigccljepoobehcfmafaebbhpfapg [2016-11-26]
CHR Extension: (Docs) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Google Drive) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Chalene Johnson Instagram) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdepehnfgoaamodjilaifbdmddhnlhhn [2016-11-26]
CHR Extension: (YouTube) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Honey) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2018-05-18]
CHR Extension: (Chalene Johnson's 30Day Push Goal Cha...) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpfjjigapfaiojlpbgllkaldfhlldanf [2016-11-26]
CHR Extension: (Nielsen NetSight) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpgmmbefnahabhcchpfkobeindpppflc [2018-03-28]
CHR Extension: (Google Search) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (Sheets) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Google Docs Offline) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Pinterest Save Button) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2018-05-31]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-05-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-22]
CHR Extension: (Gmail) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-22]
CHR Extension: (Chrome Media Router) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-28]
CHR Profile: C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-10-18]
CHR Extension: (Docs) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-18]
CHR Extension: (Google Drive) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-21]
CHR Extension: (YouTube) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-21]
CHR Extension: (Nielsen NetSight) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bpgmmbefnahabhcchpfkobeindpppflc [2017-10-18]
CHR Extension: (Google Search) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-21]
CHR Extension: (Google Docs Offline) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-17]
CHR Extension: (Avast Online Security) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-05-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-18]
CHR Extension: (Gmail) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-21]
CHR Extension: (Chrome Media Router) - C:\Users\Robin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-18]
CHR HKLM\...\Chrome\Extension: [bpgmmbefnahabhcchpfkobeindpppflc] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bpgmmbefnahabhcchpfkobeindpppflc] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdaptiveSleepService; C:\Program Files\AMD\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2018-01-31] ()
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-04-13] (Adobe Systems) [File not signed]
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-03] (Advanced Micro Devices, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7620096 2018-05-13] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-16] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [317280 2018-05-13] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-16] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8652976 2018-05-24] (Microsoft Corporation)
R2 DACoreService; C:\Program Files (x86)\Nuance\Dragon Notes\Core\DACore.exe [411024 2013-02-01] (Nuance Communications, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-18] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-18] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2018-06-04] (Dropbox, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2013-03-19] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3784704 2013-03-19] (Firebird Project) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-11-15] (Macrovision Europe Ltd.) [File not signed]
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-27] (WildTangent)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332656 2018-05-02] (HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-23] (HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [602888 2015-06-29] (Hewlett-Packard Development Company, L.P.)
S3 Intel® TA SAM; C:\Program Files (x86)\Intel Corporation\Intel® Technology Access\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2012-07-31] (Hewlett-Packard) [File not signed]
R2 NielsenUpdate; C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe [3170360 2018-04-24] (The Nielsen Company)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [103424 2015-01-30] (Softex Inc.) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2012-07-31] (Hewlett-Packard) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-09-11] (Realtek Semiconductor)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-11] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [53760 2017-12-18] (HP)
R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [17640 2013-10-24] (Advanced Micro Devices, INC.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [36608 2013-12-14] (Advanced Micro Devices, Inc.)
R1 amdpsp; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices, Inc. )
R3 AppObserver; C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\appobserver64.sys [23696 2018-01-11] (The Nielsen Company)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [196640 2018-05-13] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [227504 2018-03-06] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199440 2018-03-06] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343752 2018-03-06] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57680 2018-03-06] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [234560 2018-05-13] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46968 2018-05-13] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [159120 2018-05-13] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111360 2018-05-13] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [85968 2018-05-13] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027720 2018-05-13] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460520 2018-05-13] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [205976 2018-05-13] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381552 2018-05-13] (AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [111112 2017-11-21] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [39936 2017-12-18] (HP)
S3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Hewlett-Packard.)
S3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Hewlett-Packard.)
S1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [50448 2015-07-28] (Intel Corporation)
R3 NetTap630; C:\WINDOWS\system32\DRIVERS\nettap630.sys [67832 2015-05-19] (Intel Corporation)
R1 nnfwdk; C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\nnfwdk64.sys [34960 2018-01-11] (The Nielsen Company)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-09-11] (Realtek )
R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [6804480 2017-05-03] (Realtek Semiconductor Corporation )
R3 SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [53848 2017-08-18] (Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [31472 2014-04-22] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-11] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34960 2018-02-02] (HP)
U3 aspnet_state; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-06-13 02:56 - 2018-06-13 02:57 - 000038257 _____ C:\Users\Robin\Desktop\FRST.txt
2018-06-13 02:52 - 2018-06-13 02:55 - 000078265 _____ C:\Users\Robin\Downloads\Addition.txt
2018-06-13 02:46 - 2018-06-13 02:55 - 000110772 _____ C:\Users\Robin\Downloads\FRST.txt
2018-06-13 02:43 - 2018-06-13 02:56 - 000000000 ____D C:\FRST
2018-06-13 02:43 - 2018-06-13 02:43 - 002413056 _____ (Farbar) C:\Users\Robin\Desktop\FRST64.exe
2018-06-11 22:52 - 2018-06-11 22:52 - 000000000 ___HD C:\OneDriveTemp
2018-06-11 22:14 - 2018-06-11 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2018-06-11 22:14 - 2018-06-11 22:14 - 000000000 ____D C:\Program Files\VS Revo Group
2018-06-11 21:44 - 2018-06-11 21:44 - 000000000 ____D C:\Users\Robin\AppData\Local\TeamViewer
2018-06-11 18:48 - 2018-06-11 19:10 - 000000000 ____D C:\Users\Robin\Desktop\Pictures - Copy
2018-06-11 17:50 - 2018-06-11 17:55 - 000000000 ____D C:\Users\Robin\Desktop\All my crap from my desktop
2018-06-11 15:49 - 2018-06-11 15:49 - 000003274 _____ C:\WINDOWS\System32\Tasks\Adobe Uninstaller
2018-06-11 15:33 - 2018-06-11 15:33 - 000000000 ____D C:\Users\Robin\AppData\Local\VirtualDJ
2018-06-09 23:27 - 2018-06-09 20:23 - 000000000 ____D C:\Windows.old
2018-06-09 21:01 - 2018-05-13 18:38 - 000376536 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-06-09 20:31 - 2018-06-09 20:31 - 000000000 ____D C:\ProgramData\ATI
2018-06-09 20:30 - 2018-06-09 20:30 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-06-09 20:29 - 2018-06-09 20:29 - 000001417 _____ C:\Users\Robin\Desktop\Microsoft Edge.lnk
2018-06-09 20:23 - 2018-06-09 20:23 - 000000020 ___SH C:\Users\Robin\ntuser.ini
2018-06-09 20:20 - 2018-06-12 22:05 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-06-09 20:20 - 2018-06-12 20:51 - 000003242 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForRobin
2018-06-09 20:20 - 2018-06-11 23:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-06-09 20:20 - 2018-06-11 22:51 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2753159025-2017300708-4160777056-1002
2018-06-09 20:20 - 2018-06-09 20:22 - 000003752 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-06-09 20:20 - 2018-06-09 20:22 - 000003296 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{7338D141-0474-4A0A-BC2E-50615520E95C}
2018-06-09 20:20 - 2018-06-09 20:22 - 000003278 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-06-09 20:20 - 2018-06-09 20:22 - 000003246 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-2753159025-2017300708-4160777056-1002
2018-06-09 20:20 - 2018-06-09 20:22 - 000003150 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-2753159025-2017300708-4160777056-1002
2018-06-09 20:20 - 2018-06-09 20:22 - 000003094 _____ C:\WINDOWS\System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d
2018-06-09 20:20 - 2018-06-09 20:22 - 000003042 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2018-06-09 20:20 - 2018-06-09 20:22 - 000003042 _____ C:\WINDOWS\System32\Tasks\HP AR Program Upload - 999ae5568efc417f9c61f126da666c8f8bf53117988f4a2d96f959ed3ccf4131
2018-06-09 20:20 - 2018-06-09 20:22 - 000003042 _____ C:\WINDOWS\System32\Tasks\HP AR Program Upload - 5a6fa1a8b62940a780e7398c5ed2c81f47ee262a6d5b43a69c61e2cbbe1a46e3
2018-06-09 20:20 - 2018-06-09 20:22 - 000003042 _____ C:\WINDOWS\System32\Tasks\HP AR Program Upload - 4bda6c21b31943b784d8e1df8ed6bea0ff261f7daaea441e85cf9dfd9dc2bed4
2018-06-09 20:20 - 2018-06-09 20:22 - 000003042 _____ C:\WINDOWS\System32\Tasks\HP AR Program Upload - 325c509a823d448ca32da45dd3748d728de49aaeef9448fdbf6c06f0d9cd294b
2018-06-09 20:20 - 2018-06-09 20:22 - 000003042 _____ C:\WINDOWS\System32\Tasks\HP AR Program Upload - 20c5d15b844f4d9da6da6535029e19dac254a20984f0498ca29d57b7d3e78513
2018-06-09 20:20 - 2018-06-09 20:22 - 000002940 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2753159025-2017300708-4160777056-1002
2018-06-09 20:20 - 2018-06-09 20:22 - 000002808 _____ C:\WINDOWS\System32\Tasks\[email protected]
2018-06-09 20:20 - 2018-06-09 20:22 - 000002762 _____ C:\WINDOWS\System32\Tasks\[email protected]
2018-06-09 20:20 - 2018-06-09 20:22 - 000002656 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP ENVY 4520 series
2018-06-09 20:20 - 2018-06-09 20:22 - 000002320 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2753159025-2017300708-4160777056-500
2018-06-09 20:20 - 2018-06-09 20:21 - 000003438 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2018-06-09 20:20 - 2018-06-09 20:21 - 000003386 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA
2018-06-09 20:20 - 2018-06-09 20:21 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-06-09 20:20 - 2018-06-09 20:21 - 000003214 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2018-06-09 20:20 - 2018-06-09 20:21 - 000003162 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore
2018-06-09 20:20 - 2018-06-09 20:21 - 000003042 _____ C:\WINDOWS\System32\Tasks\HP AR Program Upload - f6c3ac8551544faea0b46a0ddd46f874862067f8233f4547bf6f7d099eb87f73
2018-06-09 20:20 - 2018-06-09 20:21 - 000003042 _____ C:\WINDOWS\System32\Tasks\HP AR Program Upload - 11b0b85c5466419bbde2b379b1322acd7819bb11b23c4240b874023e3dd0cbd7
2018-06-09 20:20 - 2018-06-09 20:21 - 000002256 _____ C:\WINDOWS\System32\Tasks\{8F59114B-D9CC-4B5F-8C41-D1C8DEACA0AF}
2018-06-09 20:20 - 2018-06-09 20:21 - 000002244 _____ C:\WINDOWS\System32\Tasks\Start OPBHOBrokerDesktop
2018-06-09 20:20 - 2018-06-09 20:20 - 000003122 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-06-09 20:20 - 2018-06-09 20:20 - 000002728 _____ C:\WINDOWS\System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon
2018-06-09 20:20 - 2018-06-09 20:20 - 000002680 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2018-06-09 20:20 - 2018-06-09 20:20 - 000002530 _____ C:\WINDOWS\System32\Tasks\YCMServiceAgent
2018-06-09 20:20 - 2018-06-09 20:20 - 000002306 _____ C:\WINDOWS\System32\Tasks\Start SimplePass
2018-06-09 20:20 - 2018-06-09 20:20 - 000002232 _____ C:\WINDOWS\System32\Tasks\Start OPBHOBroker
2018-06-09 20:20 - 2018-06-09 20:20 - 000002202 _____ C:\WINDOWS\System32\Tasks\StartCN
2018-06-09 20:20 - 2018-06-09 20:20 - 000002116 _____ C:\WINDOWS\System32\Tasks\StartDVR
2018-06-09 20:20 - 2018-06-09 20:20 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2018-06-09 20:20 - 2018-06-09 20:20 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2018-06-09 20:20 - 2018-06-09 20:20 - 000000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2018-06-09 20:20 - 2018-06-09 20:20 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-06-09 20:20 - 2018-06-09 20:20 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2018-06-09 20:20 - 2014-12-03 13:08 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4044784026-2165238601-4233362694-500
2018-06-09 20:20 - 2014-05-21 08:20 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4206391316-1653793809-3633523533-500
2018-06-09 20:20 - 2014-04-02 05:35 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1725350855-1927001909-1276192757-500
2018-06-09 20:16 - 2018-06-09 20:20 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2018-06-09 20:16 - 2018-06-09 20:20 - 000007623 _____ C:\WINDOWS\diagerr.xml
2018-06-09 19:57 - 2018-06-11 13:11 - 000793700 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-06-09 19:45 - 2018-06-09 19:45 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-06-09 19:39 - 2018-06-11 22:51 - 000002413 _____ C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-06-09 19:39 - 2018-06-09 20:23 - 000000000 ____D C:\Users\Robin
2018-06-09 19:39 - 2018-06-09 19:58 - 000000000 ____D C:\Users\Robin\Documents\hp.system.package.metadata
2018-06-09 19:39 - 2018-06-09 19:40 - 000000000 ____D C:\Users\Robin\AppData\Local\Google
2018-06-09 19:39 - 2016-08-12 04:46 - 000000000 ____D C:\Users\Robin\Documents\hp.applications.package.appdata
2018-06-09 19:39 - 2016-08-12 04:46 - 000000000 ____D C:\Users\Robin\AppData\Roaming\ATI
2018-06-09 19:39 - 2016-08-12 04:46 - 000000000 ____D C:\Users\Robin\AppData\Local\Microsoft Help
2018-06-09 19:39 - 2016-08-12 04:46 - 000000000 ____D C:\Users\Robin\AppData\Local\ATI
2018-06-09 19:38 - 2018-06-09 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2018-06-09 19:37 - 2018-06-09 19:37 - 000000000 ____D C:\ProgramData\SRS Labs
2018-06-09 19:35 - 2018-06-09 19:35 - 000000000 ____D C:\ProgramData\USOShared
2018-06-09 19:34 - 2018-04-11 19:33 - 002752000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-06-09 19:29 - 2018-06-13 02:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-06-09 19:29 - 2018-06-09 19:51 - 002402864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-06-09 11:29 - 2018-05-13 18:39 - 000205976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-06-09 11:29 - 2018-05-13 18:38 - 000460520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-06-09 11:29 - 2018-05-13 18:38 - 000381552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-06-09 11:29 - 2018-05-13 18:38 - 000196640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-06-09 11:29 - 2018-05-13 18:38 - 000159120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-06-09 11:29 - 2018-05-13 18:38 - 000111360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-06-09 11:29 - 2018-05-13 18:38 - 000085968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-06-09 11:29 - 2018-05-13 18:38 - 000046968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-06-09 11:29 - 2018-05-13 18:37 - 001027720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-06-09 11:29 - 2018-03-06 19:22 - 000343752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2018-06-09 11:29 - 2018-03-06 19:22 - 000227504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2018-06-09 11:29 - 2018-03-06 19:22 - 000199440 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2018-06-09 11:29 - 2018-03-06 19:22 - 000057680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2018-06-09 11:29 - 2017-11-19 10:48 - 000455384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys.151110305060903
2018-06-09 11:29 - 2017-09-04 10:06 - 000041832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2018-06-09 11:29 - 2017-07-23 08:39 - 000146664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys.150081362914003
2018-06-09 11:29 - 2017-03-12 08:12 - 000547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.148932084204604
2018-06-09 11:29 - 2016-07-04 06:21 - 000473592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.146762779328102
2018-06-09 11:25 - 2018-06-09 23:27 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-06-09 11:15 - 2018-06-09 11:24 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-06-09 10:58 - 2018-06-09 10:58 - 019399168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 013570560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 006816848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 006527568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 005782528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 004787960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 004563968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 004402768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 004336128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 002564984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 002536056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 002371392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001947808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001148800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001097648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001034096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001017088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001017056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 001012408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000988128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000861608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000861096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000713368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000457144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000416120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSHEIF.dll
2018-06-09 10:58 - 2018-06-09 10:58 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSHEIF.dll
2018-06-09 10:57 - 2018-06-09 10:58 - 022001664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 025844224 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 023862784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 022709248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 020383712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 013873152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 012712960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 011903488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 009159064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-06-09 10:57 - 2018-06-09 10:57 - 008623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 007582720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 007519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 006661120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 006567904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 006044104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 004867072 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 004372480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 003733312 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 003440640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 003389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002961408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002900480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002841312 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002753040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002699776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002486984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002422168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-06-09 10:57 - 2018-06-09 10:57 - 002366976 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002170368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-06-09 10:57 - 2018-06-09 10:57 - 002016256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-06-09 10:57 - 2018-06-09 10:57 - 001817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001665920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001649760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001636352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001634808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001490144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001462288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001456616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-06-09 10:57 - 2018-06-09 10:57 - 001454024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001426328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-06-09 10:57 - 2018-06-09 10:57 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001191168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001140576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-06-09 10:57 - 2018-06-09 10:57 - 001108992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001034624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-06-09 10:57 - 2018-06-09 10:57 - 001011968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000983008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-06-09 10:57 - 2018-06-09 10:57 - 000976384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-06-09 10:57 - 2018-06-09 10:57 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2018-06-09 10:57 - 2018-06-09 10:57 - 000944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2018-06-09 10:57 - 2018-06-09 10:57 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000860160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000849408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000786168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-06-09 10:57 - 2018-06-09 10:57 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000653208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000613144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-06-09 10:57 - 2018-06-09 10:57 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000560488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000308408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000286200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-06-09 10:57 - 2018-06-09 10:57 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000101288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000088472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2018-06-09 10:57 - 2018-06-09 10:57 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000077040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-06-09 10:57 - 2018-06-09 10:57 - 000018716 _____ C:\WINDOWS\SysWOW64\srms-apr.dat
2018-06-09 10:57 - 2018-06-09 10:57 - 000018716 _____ C:\WINDOWS\system32\srms-apr.dat
2018-06-09 10:56 - 2018-06-09 10:57 - 021389360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 016592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 007436632 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 005951488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 004706816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 004070400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 003655168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 003283400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 003086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 002896896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 002836376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 002178136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001953280 _____ C:\WINDOWS\system32\rdpnano.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001767936 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001585664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001565592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001534976 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 001210880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001209792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001174424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 001160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001063320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-06-09 10:56 - 2018-06-09 10:56 - 001033728 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 000941056 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000885848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000792984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 000788216 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000776880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000759192 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000748504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000735560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000722288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 000707480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000665320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs4.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000606448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000604568 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs3.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000567176 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 000567144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000474624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs2.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000473496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs1.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000434584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 000413080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000382872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 000347704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000272288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000269224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win81.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000193936 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000170904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win8rtm.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000134552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000131232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000130456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppHostRegistrationVerifier.exe
2018-06-09 10:56 - 2018-06-09 10:56 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000105368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-06-09 10:56 - 2018-06-09 10:56 - 000094104 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000089984 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-06-09 10:56 - 2018-06-09 10:56 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2018-06-09 10:34 - 2018-06-09 10:34 - 004492288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-06-09 10:34 - 2018-06-09 10:34 - 003398144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-06-09 10:34 - 2018-06-09 10:34 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-06-09 10:34 - 2018-06-09 10:34 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-06-09 10:34 - 2018-06-09 10:34 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-06-09 10:34 - 2018-06-09 10:34 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-06-09 10:34 - 2018-06-09 10:34 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-06-09 10:34 - 2018-06-09 10:34 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2018-06-09 09:03 - 2018-06-09 09:03 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-06-08 23:29 - 2018-06-09 23:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serato
2018-06-08 23:29 - 2018-06-08 23:29 - 000002579 _____ C:\Users\Public\Desktop\Serato DJ Lite .lnk
2018-06-08 23:29 - 2018-06-08 23:29 - 000000000 ____D C:\Program Files\Serato
2018-06-08 21:36 - 2018-06-08 21:36 - 000000000 ____D C:\Users\Robin\AppData\Local\Serato
2018-06-08 21:16 - 2018-06-09 20:24 - 000000000 ___DC C:\WINDOWS\Panther
2018-06-08 20:59 - 2018-05-29 14:41 - 000000000 ____D C:\Users\Robin\Downloads\__MACOSX
2018-06-08 20:28 - 2018-06-09 23:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-06-04 06:18 - 2018-06-04 06:18 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2018-06-04 06:18 - 2018-06-04 06:18 - 000050232 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2018-06-04 06:18 - 2018-06-04 06:18 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2018-06-04 06:18 - 2018-06-04 06:18 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2018-05-28 14:18 - 2018-05-28 14:18 - 001855082 _____ C:\Users\Robin\Desktop\Sexually Charged Flyers.psd
2018-05-16 15:50 - 2018-06-12 22:56 - 000002505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-05-16 15:50 - 2018-06-12 22:56 - 000002470 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2018-05-16 15:49 - 2018-05-16 15:49 - 000000000 ____D C:\Users\Robin\AppData\Local\AVAST Software
2018-05-16 15:49 - 2018-05-16 15:49 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2018-05-16 04:26 - 2018-05-16 04:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-06-13 02:26 - 2015-03-04 20:35 - 000000000 ___RD C:\Users\Robin\OneDrive
2018-06-13 02:00 - 2015-04-13 17:27 - 000000000 ____D C:\Users\Robin\AppData\Local\Adobe
2018-06-13 01:53 - 2016-03-10 02:25 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore
2018-06-13 01:53 - 2015-03-10 23:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-06-13 01:46 - 2017-10-10 17:12 - 133315992 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-06-13 01:46 - 2015-03-10 23:58 - 133315992 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-06-13 01:40 - 2018-04-11 19:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-06-12 22:36 - 2016-02-19 18:03 - 000000000 ____D C:\Program Files (x86)\InqScribe
2018-06-12 22:31 - 2016-05-15 07:41 - 000000000 ___RD C:\Users\Robin\Google Drive
2018-06-12 22:10 - 2018-04-11 19:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-06-12 20:51 - 2017-11-23 15:57 - 000000350 _____ C:\WINDOWS\Tasks\HPCeeScheduleForRobin.job
2018-06-12 15:18 - 2018-04-11 19:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-06-12 15:18 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-06-12 14:07 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-06-11 23:30 - 2015-03-04 20:30 - 000000000 ____D C:\Users\Robin\Documents\Youcam
2018-06-11 23:21 - 2018-04-11 19:36 - 000000000 ____D C:\WINDOWS\INF
2018-06-11 23:12 - 2018-04-11 17:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-06-11 23:12 - 2017-06-20 11:17 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2018-06-11 21:43 - 2015-09-16 01:31 - 000000000 ____D C:\Users\Robin\AppData\Roaming\TeamViewer
2018-06-11 17:58 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-06-11 15:49 - 2015-10-20 21:30 - 000000000 ____D C:\Users\Robin\AppData\Local\pinger.com
2018-06-11 15:49 - 2014-05-21 08:06 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2018-06-11 10:24 - 2015-04-04 11:20 - 000000000 ____D C:\ProgramData\firebird
2018-06-11 10:13 - 2015-04-04 11:20 - 000000000 ____D C:\Users\Robin\AppData\Local\SpacialAudio
2018-06-10 13:05 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\appcompat
2018-06-09 23:28 - 2018-04-11 19:38 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-06-09 23:28 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-06-09 23:28 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-06-09 23:28 - 2017-09-29 09:46 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-06-09 23:28 - 2014-05-21 08:08 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2018-06-09 23:27 - 2018-04-22 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2018-06-09 23:27 - 2018-04-11 19:41 - 000000000 ____D C:\WINDOWS\Setup
2018-06-09 23:27 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\spool
2018-06-09 23:27 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-06-09 23:27 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-06-09 23:27 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2018-06-09 23:27 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\InputMethod
2018-06-09 23:27 - 2018-04-11 19:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-06-09 23:27 - 2017-06-20 11:17 - 000000000 ____D C:\Program Files\AMD
2018-06-09 23:27 - 2017-05-23 18:13 - 000000000 ____D C:\Program Files\UNP
2018-06-09 23:27 - 2017-05-09 19:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2018-06-09 23:27 - 2017-04-27 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard
2018-06-09 23:27 - 2017-03-15 16:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-06-09 23:27 - 2016-09-18 16:40 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2018-06-09 23:27 - 2016-06-23 01:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Screen Capture Studio 7
2018-06-09 23:27 - 2016-06-19 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2018-06-09 23:27 - 2016-05-15 07:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2018-06-09 23:27 - 2016-02-19 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2018-06-09 23:27 - 2016-01-21 06:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
2018-06-09 23:27 - 2016-01-19 01:00 - 000000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2018-06-09 23:27 - 2016-01-19 01:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2018-06-09 23:27 - 2015-12-06 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2018-06-09 23:27 - 2015-11-15 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-06-09 23:27 - 2015-10-30 05:07 - 000000000 ____D C:\WINDOWS\ShellNew
2018-06-09 23:27 - 2015-09-07 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firebird 2.5 (Win32)
2018-06-09 23:27 - 2015-08-13 21:51 - 000000000 ____D C:\Program Files (x86)\HP
2018-06-09 23:27 - 2015-03-09 17:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2018-06-09 23:27 - 2015-03-05 17:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2018-06-09 23:27 - 2015-03-05 17:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-06-09 23:27 - 2015-03-05 01:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-06-09 23:27 - 2014-12-03 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon Notes
2018-06-09 23:27 - 2014-12-03 12:02 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2018-06-09 23:27 - 2014-05-21 08:12 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2018-06-09 23:27 - 2014-05-21 08:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2018-06-09 23:27 - 2014-05-21 08:02 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2018-06-09 23:27 - 2014-05-21 07:59 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2018-06-09 23:27 - 2013-08-22 11:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2018-06-09 23:27 - 2013-08-22 11:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2018-06-09 23:27 - 2013-08-22 11:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2018-06-09 21:04 - 2016-08-27 13:01 - 000001986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2018-06-09 21:04 - 2016-08-27 13:01 - 000001974 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2018-06-09 20:47 - 2018-02-08 22:40 - 000000000 ____D C:\Users\Robin\AppData\Local\Packages
2018-06-09 20:25 - 2016-08-12 14:02 - 000000000 ____D C:\Users\Robin\AppData\Local\ConnectedDevicesPlatform
2018-06-09 20:25 - 2015-09-16 01:49 - 000000000 ___RD C:\Users\Robin\3D Objects
2018-06-09 20:25 - 2015-03-04 20:16 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-06-09 20:22 - 2018-04-11 17:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-06-09 20:15 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\Registration
2018-06-09 20:07 - 2018-04-11 19:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-06-09 20:06 - 2015-08-03 04:26 - 000022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-06-09 19:57 - 2015-05-22 06:22 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-09 19:57 - 2015-05-22 06:22 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-06-09 19:49 - 2017-06-10 10:06 - 000000000 ____D C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2018-06-09 19:49 - 2016-11-26 09:01 - 000000000 ____D C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2018-06-09 19:49 - 2015-12-13 14:31 - 000000000 ____D C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2018-06-09 19:49 - 2015-09-19 22:05 - 000000000 ____D C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ
2018-06-09 19:49 - 2015-09-07 21:11 - 000000000 ____D C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SAM Broadcaster
2018-06-09 19:37 - 2017-06-20 11:18 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2018-06-09 19:37 - 2017-06-20 11:17 - 000015176 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2018-06-09 19:37 - 2017-06-20 11:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2018-06-09 19:36 - 2017-06-20 11:16 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-06-09 19:36 - 2015-08-03 03:48 - 000000000 ____D C:\AMD
2018-06-09 19:35 - 2018-04-11 19:38 - 000000000 ____D C:\ProgramData\USOPrivate
2018-06-09 12:10 - 2018-04-11 19:38 - 000000000 __RHD C:\Users\Public\Libraries
2018-06-09 11:30 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2018-06-09 11:30 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2018-06-09 11:30 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2018-06-09 11:30 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2018-06-09 11:30 - 2017-06-20 11:16 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2018-06-09 11:30 - 2015-11-15 12:14 - 000000000 ____D C:\WINDOWS\SysWOW64\spool
2018-06-09 11:29 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2018-06-09 11:29 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2018-06-09 11:29 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\et-EE
2018-06-09 11:29 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\en-GB
2018-06-09 11:26 - 2015-03-13 10:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2018-06-09 11:25 - 2017-06-20 11:17 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2018-06-09 11:25 - 2017-06-20 11:16 - 000000000 ____D C:\Program Files\Synaptics
2018-06-09 11:25 - 2017-06-20 11:16 - 000000000 ____D C:\Program Files\Realtek
2018-06-09 11:25 - 2015-12-16 06:21 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-06-09 11:25 - 2015-12-16 06:21 - 000000000 ____D C:\Program Files\MSBuild
2018-06-09 11:25 - 2015-03-05 17:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-06-09 11:03 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-06-09 11:03 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-06-09 11:03 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-06-09 11:02 - 2018-04-12 05:19 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\ta-in
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\si-lk
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\setup
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\am-et
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\Provisioning
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-06-09 11:02 - 2018-04-11 19:38 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-06-09 10:35 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2018-06-09 10:35 - 2018-04-11 19:38 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-06-09 04:19 - 2016-01-21 22:16 - 000000648 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2753159025-2017300708-4160777056-1002.job
2018-06-09 04:19 - 2016-01-21 22:16 - 000000552 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2753159025-2017300708-4160777056-1002.job
2018-06-08 23:48 - 2017-07-09 19:16 - 000000000 ____D C:\Users\Robin\AppData\Local\GoToMeeting
2018-06-08 23:29 - 2015-08-03 03:49 - 000000000 ____D C:\ProgramData\Package Cache
2018-06-08 21:55 - 2015-08-15 09:56 - 000000000 ____D C:\Users\Robin\AppData\Local\ElevatedDiagnostics
2018-06-08 20:32 - 2016-01-18 17:39 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-06-08 20:16 - 2018-03-17 18:06 - 021339648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2018-06-05 19:29 - 2018-04-11 19:41 - 000835056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-06-05 19:29 - 2018-04-11 19:41 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-06-01 18:04 - 2015-03-04 21:13 - 000000000 ____D C:\Users\Robin\AppData\Local\Firestorm
2018-05-29 14:40 - 2016-04-04 05:31 - 000000000 ____D C:\Users\Robin\Desktop\__MACOSX
2018-05-26 09:13 - 2014-05-21 08:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-05-23 18:13 - 2016-01-18 17:39 - 000000924 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2018-05-23 18:13 - 2016-01-18 17:39 - 000000920 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
 
==================== Files in the root of some directories =======
 
2016-09-18 16:37 - 2016-09-18 16:37 - 000000033 _____ () C:\Users\Robin\AppData\Roaming\AdobeWLCMCache.dat
2015-04-10 20:50 - 2015-04-10 20:50 - 008723608 _____ () C:\Users\Robin\AppData\Local\0796D59C_stp.CIS
2015-04-10 20:50 - 2015-04-10 20:50 - 000000382 _____ () C:\Users\Robin\AppData\Local\0796D59C_stp.CIS.part
2015-04-10 20:50 - 2015-04-10 20:50 - 000385602 _____ () C:\Users\Robin\AppData\Local\5D515C96_stp.CIS
2015-04-10 20:50 - 2015-04-10 20:50 - 000000220 _____ () C:\Users\Robin\AppData\Local\5D515C96_stp.CIS.part
2015-04-10 20:50 - 2015-04-10 20:50 - 000193794 _____ () C:\Users\Robin\AppData\Local\61DC9A44_stp.CIS
2015-04-10 20:50 - 2015-04-10 20:50 - 000000290 _____ () C:\Users\Robin\AppData\Local\61DC9A44_stp.CIS.part
2017-04-17 15:45 - 2017-04-17 15:45 - 000000000 _____ () C:\Users\Robin\AppData\Local\{27406989-54DB-43EC-A698-498FAFA64778}
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2018-06-09 19:29
 
==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06.06.2018 01
Ran by Robin (13-06-2018 02:58:52)
Running from C:\Users\Robin\Desktop
Windows 10 Home Version 1803 17134.81 (X64) (2018-06-10 00:23:37)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2753159025-2017300708-4160777056-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2753159025-2017300708-4160777056-503 - Limited - Disabled)
Guest (S-1-5-21-2753159025-2017300708-4160777056-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2753159025-2017300708-4160777056-1004 - Limited - Enabled)
Robin (S-1-5-21-2753159025-2017300708-4160777056-1002 - Administrator - Enabled) => C:\Users\Robin
WDAGUtilityAccount (S-1-5-21-2753159025-2017300708-4160777056-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
4 Elements II (HKLM-x32\...\WTA-e01dfcdb-82c7-4de4-84af-50b95684e785) (Version: 2.2.0.98 - WildTangent) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{3138F992-045B-4F55-825C-53B231E647CA}) (Version: 13.2.1 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
Adobe Audition 3.0 (HKLM-x32\...\Adobe Audition 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Audition 3.0 Vista Compatibility (HKLM\...\{75d2897c-87aa-4a06-8710-3ebda9f02de0}.sdb) (Version:  - )
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Adobe Illustrator CC 2015.3 (HKLM-x32\...\ILST_20_1_0) (Version: 20.1.0 - Adobe Systems Incorporated)
Adobe InDesign CC 2015 (HKLM-x32\...\{DBFD0312-6E55-1014-8952-E78D43BC0147}) (Version: 11.4.1.102 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.6.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015.5 (HKLM-x32\...\PHSP_17_0_1) (Version: 17.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.2.1 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.4.2338 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 66.2.567.182 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
Azkend 2: The World Beneath (HKLM-x32\...\WTA-8ad6986c-7bf9-4e92-b0a5-b9d301150ee9) (Version: 2.2.0.98 - WildTangent) Hidden
Barn Yarn Collector's Edition (HKLM-x32\...\WTA-3aee5d7b-6d36-4ee9-a50f-e9d1dbb77116) (Version: 3.0.2.48 - WildTangent) Hidden
Bejeweled 3 (HKLM-x32\...\WTA-f99ce6d2-3569-4e96-9b47-071749474d1f) (Version: 2.2.0.98 - WildTangent) Hidden
Blender (HKLM\...\{D593042C-8739-488D-93B8-E6B202013E57}) (Version: 2.76.1 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build-a-lot Mysteries (HKLM-x32\...\WTA-aab4eac7-6e0e-45a4-b8a4-448ecd95c884) (Version: 3.0.2.51 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (HKLM-x32\...\WTA-4023dfeb-333f-4f7d-b61c-00fbca27ff7b) (Version: 3.0.2.48 - WildTangent) Hidden
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Curse at Twilight (HKLM-x32\...\WTA-fa77f421-ae30-4b0e-8385-bfc89737b9ef) (Version: 3.0.2.51 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.9.4928 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4.4824 - CyberLink Corp.)
CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.6.5104 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.9.5009 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.6.3906 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.6.5011 - CyberLink Corp.)
Delicious - Emily's Wonder Wedding Premium Edition (HKLM-x32\...\WTA-4b7b7ea9-fae7-4d10-9085-a36a21951b46) (Version: 3.0.2.48 - WildTangent) Hidden
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Dragon Notes en-US (HKLM-x32\...\{C438C1D0-A46C-4BFA-AFCD-11261DE9CCE0}) (Version: 01.00.100.011 - Nuance Communications Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 51.4.66 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.75.1 - Dropbox, Inc.) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Epson E-Web Print (HKLM-x32\...\{E904F572-D7DB-43C1-929F-043F267FC77D}) (Version: 1.22.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WF-2540 Series Printer Uninstall (HKLM\...\EPSON WF-2540 Series) (Version:  - SEIKO EPSON Corporation)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Evernote v. 5.9.9 (HKLM-x32\...\{CC4235DA-F2CA-11E5-8B13-005056951CAD}) (Version: 5.9.9.9915 - Evernote Corp.)
Farm Frenzy (HKLM-x32\...\WTA-b0ba20f6-4333-44e4-a1d0-d77f41079ca3) (Version: 2.2.0.98 - WildTangent) Hidden
Firebird 2.5.2.26540 (Win32) (HKLM-x32\...\FBDBServer_2_5_is1) (Version: 2.5.2.26540 - Firebird Project)
Firestorm-Release (HKLM-x32\...\Firestorm-Release) (Version: 5.0.1.52150 - The Phoenix Firestorm Project, Inc.)
Fishdom 3: Collector's Edition (HKLM-x32\...\WTA-136e4689-6842-4349-8a58-a6fa8ec7372c) (Version: 3.0.2.38 - WildTangent) Hidden
Fort Defense (HKLM-x32\...\WTA-c729c8c9-9540-4821-801f-e636249bbf75) (Version: 3.0.2.51 - WildTangent) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.181 - Google Inc.)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
GoToMeeting 8.29.1.8953 (HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\GoToMeeting) (Version: 8.29.1.8953 - LogMeIn, Inc.)
Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-cc2ef966-2fb5-4b1c-b341-ec28ff41245b) (Version: 2.2.0.110 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP CoolSense (HKLM-x32\...\{ADE2F6A7-E7BD-4955-BD66-30903B223DDF}) (Version: 2.20.41 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{082B1425-0F24-43FA-9B64-E8F617B0AD3B}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Dropbox Plugin (HKLM-x32\...\{23617173-F935-4C17-A323-EB1207F3ED49}) (Version: 36.0.31.53050 - Hewlett-Packard Co.)
HP ENVY 4520 series Basic Device Software (HKLM\...\{AA543771-C534-4954-831A-9862C626796F}) (Version: 36.0.72.54013 - Hewlett-Packard Co.)
HP ENVY 4520 series Help (HKLM-x32\...\{201E58BD-2A1D-4C4D-BD6F-ADA7669FE3AE}) (Version: 36.0.0 - Hewlett Packard)
HP Google Drive Plugin (HKLM-x32\...\{AFF80405-E56A-48E7-98FC-8E46E261949F}) (Version: 36.0.31.53050 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7493.4758 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.39 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.6.18.11 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.9.18.3 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{8B4EE87E-6D40-4C91-B5E8-0DC77DC412F1}) (Version: 1.4.1 - Hewlett-Packard Company)
HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Utility Center (HKLM\...\{B7B82520-8ECE-4743-BFD7-93B16C64B277}) (Version: 2.4.2 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Inst5675 (HKLM\...\{2DE6247C-7077-451B-8BA7-FFD1A2ABBB47}) (Version: 8.01.39 - Softex Inc.) Hidden
Inst5676 (HKLM\...\{878F6913-7421-4713-97F7-0A736EE2A188}) (Version: 8.01.39 - Softex Inc.) Hidden
Intel® Technology Access Software Asset Manager (HKLM-x32\...\{C1C74874-4E6F-49B8-BBCD-D43E277D8D28}) (Version: 3.4.1942 - Intel Corporation) Hidden
Intel® Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Jewel Match 3 (HKLM-x32\...\WTA-3c44bdc3-1528-40d1-94d3-ea6c1d51741c) (Version: 2.2.0.98 - WildTangent) Hidden
Joining Hands 2 (HKLM-x32\...\WTA-38b32009-0923-4cd0-8a74-a4b1e326ac4b) (Version: 3.0.2.51 - WildTangent) Hidden
King Oddball (HKLM-x32\...\WTA-69bfbffb-3bfe-4ec8-a0c1-337ae04673f1) (Version: 3.0.2.48 - WildTangent) Hidden
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Lost in Reefs 2 (HKLM-x32\...\WTA-41e77988-21e5-4731-a4bd-3dd3c3909157) (Version: 3.0.2.51 - WildTangent) Hidden
LUXOR Evolved (HKLM-x32\...\WTA-ed49fe39-4fca-4b76-b1a1-eb3ce65d07b9) (Version: 2.2.0.98 - WildTangent) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.9330.2087 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\OneDriveSetup.exe) (Version: 18.091.0506.0006 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movavi Screen Capture Studio 7 (HKLM-x32\...\Movavi Screen Capture Studio 7) (Version: 7.3.0 - Movavi)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
Mystery P.I. - Curious Case of Counterfeit Cove (HKLM-x32\...\WTA-d9916635-7930-4f14-bade-96ae5a416f2e) (Version: 2.2.0.98 - WildTangent) Hidden
Nielsen Online (HKLM-x32\...\NetSight) (Version: 7.6.0.1062 - Nielsen)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
OEM Application Profile (HKLM-x32\...\{315F1A48-D883-B234-7C79-15873574ACC1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9330.2087 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9330.2087 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9330.2087 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.9330.2087 - Microsoft Corporation) Hidden
[email protected] (HKLM-x32\...\{4CFAC858-CB6F-4F5B-9BD9-4DAE8747F0E3}) (Version: 3.0.8.11 - Valassis)
PDF Settings (HKLM-x32\...\{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Peggle Nights (HKLM-x32\...\WTA-9dc83679-f056-4c1d-8103-3d45a5bc6688) (Version: 2.2.0.98 - WildTangent) Hidden
Penguins! (HKLM-x32\...\WTA-4b09f9e1-0eb7-4fd3-9eb0-c4f3d973fa94) (Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-c8dd05d8-a187-4c2f-b240-405b6d9e4351) (Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (HKLM-x32\...\WTA-c2875ef8-0162-4eba-a20a-6166c7fe35c2) (Version: 3.0.2.59 - WildTangent) Hidden
Product Improvement Study for HP ENVY 4520 series (HKLM\...\{B722B235-7C2E-46B0-8DA8-69B01FE5E886}) (Version: 36.0.72.54013 - Hewlett-Packard Co.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.59 - REALTEK Semiconductor Corp.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
Roads of Rome 3 (HKLM-x32\...\WTA-07c3178c-e1a3-49d8-9836-184cec89d45d) (Version: 2.2.0.98 - WildTangent) Hidden
SAM Broadcaster 2016.5 (HKLM-x32\...\SAM3) (Version: 2016.5 - Spacial Audio Solutions, LLC)
Serato DJ Lite  (HKLM\...\{C7D41FDC-88A7-4B54-9885-A1C1B27BCCED}) (Version: 1.0.3.3285 - Serato Limited) Hidden
Serato DJ Lite  (HKLM-x32\...\{0dede848-d0e5-4598-9d3a-d4331715eb73}) (Version: 1.0.3.3285 - Serato Limited)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{E1BAD1BA-C0E8-4018-9281-E7D2C6B07474}) (Version: 4.3.6 - SEIKO EPSON CORPORATION)
Solitaire Mystery Four Seasons (HKLM-x32\...\WTA-ecb43f77-04e6-4790-b31c-cddc216e76da) (Version: 3.0.2.51 - WildTangent) Hidden
Sparkle 2 (HKLM-x32\...\WTA-2ff01dee-bb07-4eb5-881d-85aaaae051f5) (Version: 3.0.2.51 - WildTangent) Hidden
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Tales of Lagoona (HKLM-x32\...\WTA-184bfac0-0302-4e02-960e-fb4550ef7171) (Version: 2.2.0.110 - WildTangent) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{AC0D130B-8809-4125-811F-667893B90644}) (Version: 2.11.0.0 - Microsoft Corporation)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version:  - WildTangent) Hidden
Vacation Quest™ - Australia (HKLM-x32\...\WTA-86bd29e4-e2d7-4e92-b423-5fa8d40340b0) (Version: 3.0.2.32 - WildTangent) Hidden
Viking Saga (HKLM-x32\...\WTA-2646afc0-170c-4b17-9008-36026694754f) (Version: 3.0.2.48 - WildTangent) Hidden
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App for HP (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.0.11.2 - WildTangent) Hidden
Youda Jewel Shop (HKLM-x32\...\WTA-46a22cf0-a96e-4ae4-9834-f1cd8fb43eed) (Version: 3.0.2.51 - WildTangent) Hidden
Zoom (HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\ZoomUMX) (Version: 4.0 - Zoom Video Communications, Inc.)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2753159025-2017300708-4160777056-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-AE0B88DD7563}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-2753159025-2017300708-4160777056-1002_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Robin\AppData\Local\GoToMeeting\7297\G2MOutlookAddin64.dll => No File
CustomCLSID: HKU\S-1-5-21-2753159025-2017300708-4160777056-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-13] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-13] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-13] (AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-20] (Cyberlink)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-20] (Cyberlink)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-13] (AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-03] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.22.0.dll [2018-06-04] (Dropbox, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-05-13] (AVAST Software)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {07B63F70-AAAA-4E8B-8564-4DD301A9628A} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-05-16] (AVAST Software)
Task: {0A993158-54BE-4C77-A3B9-1BAC69CC0546} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {0DC83871-5EB2-475D-93C4-D2E9B9342374} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {13BB9E68-7E4A-4BEF-876E-7DE284B77907} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-22] (Google Inc.)
Task: {190D7BEF-77DA-4C91-B8F0-31E4DEED809B} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-23] ()
Task: {1E69DE5E-5FD4-4702-8A23-CCC516B1F5D7} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2015-01-30] (Hewlett-Packard)
Task: {21CE4F46-982E-4215-B9E0-6683290D68A2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {25191817-8BD7-47E0-9610-18C97922893F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {2E2D1EB8-51B1-4B94-B186-2D2E2DCF2CEF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-05-26] (Microsoft Corporation)
Task: {2F2CA86A-0B87-41E4-9085-D8DBEDCE270E} - System32\Tasks\HP AR Program Upload - f6c3ac8551544faea0b46a0ddd46f874862067f8233f4547bf6f7d099eb87f73 => C:\Program Files\HP\HP ENVY 4520 series\bin\HPRewards.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {329F5A26-A3D4-411D-9F0C-A5238490ABCA} - System32\Tasks\HP AR Program Upload - 11b0b85c5466419bbde2b379b1322acd7819bb11b23c4240b874023e3dd0cbd7 => C:\Program Files\HP\HP ENVY 4520 series\bin\HPRewards.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {34393AB8-C8FF-41D5-9AF3-4C22DF877E4A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {3529F6ED-22BC-438B-A12F-A7CB921C8B24} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3BF52E37-6E94-41AB-AB7F-83449DB06235} - System32\Tasks\{8F59114B-D9CC-4B5F-8C41-D1C8DEACA0AF} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files\ByteFence\ByteFence.exe" -c /uninstall
Task: {3C2B3769-8EA3-4001-872B-56C3085A5B56} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-18] (Dropbox, Inc.)
Task: {483732B7-B5C4-49ED-91AA-7C53FA5D64A0} - System32\Tasks\HP AR Program Upload - 4bda6c21b31943b784d8e1df8ed6bea0ff261f7daaea441e85cf9dfd9dc2bed4 => C:\Program Files\HP\HP ENVY 4520 series\bin\HPRewards.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {49782F0E-5222-47A5-9970-DE38911EE1FA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-05-26] (Microsoft Corporation)
Task: {5512258E-61E9-435C-9B31-0014CF9DF9E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-22] (Google Inc.)
Task: {5A358176-F2A6-443F-B8A9-07D22B25F1A1} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {60982EE8-E3A9-4D9E-8DA0-08A49FFD11A9} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2015-02-11] (CyberLink Corp.)
Task: {61D8AD0E-E359-44C6-91ED-500BBD944B0E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {652A9567-B5DE-4312-9230-E14F2A9EE1CB} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2018-01-31] (Advanced Micro Devices, Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {6728F619-750E-4F7F-AAE5-E843ADF81C71} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_113_Plugin.exe [2018-06-08] (Adobe Systems Incorporated)
Task: {6AD6B2F3-B7AA-4BA4-9D27-4DA20D5C525D} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {6FB0DDC8-603F-43D0-9ECA-D3CF7A3FC7E4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {720F38C5-F578-4FF9-AA09-1AE0998F8541} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-05-02] (HP Inc.)
Task: {8023E128-EC66-4A9F-83C6-9532A3FAC6BE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {863BBE2F-4834-4CA1-BD13-44DC22C0A339} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {86DF7BB5-BECC-4E01-A5DA-CC1083A0D7D8} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-06-08] (AVAST Software)
Task: {880BDAF8-623A-4434-9AB1-AF5D40DDB898} - System32\Tasks\HPCustParticipation HP ENVY 4520 series => C:\Program Files\HP\HP ENVY 4520 series\Bin\HPCustPartic.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {8A9DFA9F-3D9D-4768-8457-44672D5D15F8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {8E0D09EC-65BE-4C1C-87CD-6A4208049B9C} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2016-10-25] (Adobe Systems Incorporated)
Task: {945EB6AF-B636-42D8-892C-C2D53115BCB7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-05-24] (Microsoft Corporation)
Task: {9B1780A4-EBAC-4608-B151-919EF71D9238} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-05-26] (Microsoft Corporation)
Task: {9F57B59D-0A61-4EEF-8D8B-C59CE2FDDBF2} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon => C:\Program Files (x86)\Intel Corporation\Intel® Technology Access\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2016-08-12] (Intel Corporation)
Task: {A2D69D4D-3F22-440A-94CA-DDD5051BDC70} - \SweetLabs App Platform -> No File <==== ATTENTION
Task: {A77320EA-B556-4E5E-A53F-B13B90C05251} - System32\Tasks\G2MUploadTask-S-1-5-21-2753159025-2017300708-4160777056-1002 => C:\Users\Robin\AppData\Local\GoToMeeting\8953\g2mupload.exe [2018-06-08] (LogMeIn, Inc.)
Task: {AB09E5AC-57D4-490E-8DA3-B45F3B966F07} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {ABB5F9C3-A998-46CB-A686-54D53B6749D7} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [2018-01-31] (Advanced Micro Devices, Inc.)
Task: {AD791BAE-0DD7-40D3-897A-FBC4023E940B} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2015-01-30] (Hewlett-Packard)
Task: {ADF46AC5-09B4-4132-8666-A869A49387A9} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-05-16] (AVAST Software)
Task: {B28C9202-D211-4253-8EBA-5D872753FD5E} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d => C:\Program Files (x86)\Intel Corporation\Intel® Technology Access\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2016-08-12] (Intel Corporation)
Task: {B88C90E8-01E8-4BDD-B5EE-C6065E78723A} - System32\Tasks\HP AR Program Upload - 5a6fa1a8b62940a780e7398c5ed2c81f47ee262a6d5b43a69c61e2cbbe1a46e3 => C:\Program Files\HP\HP ENVY 4520 series\bin\HPRewards.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {BA628EB8-0E7C-499C-B459-9044AF17A15C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-05-11] (HP Inc.)
Task: {BE35DE9A-D6FB-42D4-862E-20DAAB64D4CB} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2014-05-19] (Hewlett-Packard Development Company, L.P.)
Task: {C2FDCC74-854D-41BE-BDC8-464A0473DBBB} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-05-26] (Microsoft Corporation)
Task: {C5B23604-5B38-4A74-8DEF-40CF67695B5B} - System32\Tasks\G2MUpdateTask-S-1-5-21-2753159025-2017300708-4160777056-1002 => C:\Users\Robin\AppData\Local\GoToMeeting\8953\g2mupdate.exe [2018-06-08] (LogMeIn, Inc.)
Task: {C5DDF2F1-8112-464D-86D5-16D1BF074F5D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C628889E-2F48-45D1-B961-EE4ACFE8073A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-18] (Dropbox, Inc.)
Task: {C8ABF569-B8F3-4FF2-8014-4FBF766DC1CB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-05-13] (AVAST Software)
Task: {CBFAD9E2-6B86-43B9-93E8-582132B7F188} - System32\Tasks\HP AR Program Upload - 325c509a823d448ca32da45dd3748d728de49aaeef9448fdbf6c06f0d9cd294b => C:\Program Files\HP\HP ENVY 4520 series\bin\HPRewards.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {CD968F34-8A3D-4157-9A67-A08B514D7B4B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {CE2CD2A2-5D81-48D8-B27A-62D42F169D92} - System32\Tasks\HPCeeScheduleForRobin => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {CFAF9695-3B27-4E56-8257-5D861D5D359E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {D141C392-E918-4B08-BC88-BB6021AD4148} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2015-01-30] (Hewlett-Packard)
Task: {D2ABBA2D-9233-45CC-83C5-BB523E4BC137} - System32\Tasks\HP AR Program Upload - 20c5d15b844f4d9da6da6535029e19dac254a20984f0498ca29d57b7d3e78513 => C:\Program Files\HP\HP ENVY 4520 series\bin\HPRewards.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
Task: {D57BEE42-6934-4EE2-B35A-9844234908D9} - \WPD\SqmUpload_S-1-5-21-2753159025-2017300708-4160777056-1002 -> No File <==== ATTENTION
Task: {D7CF0FF6-4B8F-4610-980D-01A69A86958B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {D9B15550-238C-441C-BE40-E0ADD838128B} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {DC99E214-1EC9-4B91-BB6F-715A4FA466D6} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-06-08] (Adobe Systems Incorporated)
Task: {DD6FC6C8-CF2C-4303-B549-B7C861070DB2} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E3E3C155-62AD-4AFE-8CFE-E74D76A206F0} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {EAB5ACD4-9C50-4C28-ADF4-9D090A05242D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-05-24] (Microsoft Corporation)
Task: {EAB68F55-9E7F-46A4-8D9D-470ED79DC944} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {EEEA0753-A188-4417-BD1A-3276515DB0AC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {EF16C395-D7CD-4EE7-BBBA-ED14724A7544} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {F5D37C55-48FF-4E35-BDAB-63988D199AFC} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {FFA3EDD4-9999-420C-B889-53D129B40001} - System32\Tasks\HP AR Program Upload - 999ae5568efc417f9c61f126da666c8f8bf53117988f4a2d96f959ed3ccf4131 => C:\Program Files\HP\HP ENVY 4520 series\bin\HPRewards.exe [2015-03-09] (Hewlett-Packard Development Company, LP)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2753159025-2017300708-4160777056-1002.job => C:\Users\Robin\AppData\Local\GoToMeeting\8953\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2753159025-2017300708-4160777056-1002.job => C:\Users\Robin\AppData\Local\GoToMeeting\8953\g2mupload.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForRobin.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
Shortcut: C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
Shortcut: C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SAM Broadcaster\Help\Help Center.lnk -> hxxp://spacial.com/help-center?filter=sam-broadcaste
 
ShortcutWithArgument: C:\Users\Robin\Desktop\Chalene Johnson Instagram.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=bdepehnfgoaamodjilaifbdmddhnlhhn
ShortcutWithArgument: C:\Users\Robin\Desktop\Chalene Johnson's 30Day Push Goal Cha.._.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=bpfjjigapfaiojlpbgllkaldfhlldanf
ShortcutWithArgument: C:\Users\Robin\Desktop\Robin - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Robin\Desktop\Sales from Instagram & Pinterest Webi.._.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=ajogigccljepoobehcfmafaebbhpfapg
ShortcutWithArgument: C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Chalene Johnson Instagram.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=bdepehnfgoaamodjilaifbdmddhnlhhn
ShortcutWithArgument: C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Chalene Johnson's 30Day Push Goal Cha.._.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=bpfjjigapfaiojlpbgllkaldfhlldanf
ShortcutWithArgument: C:\Users\Robin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sales from Instagram & Pinterest Webi.._.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=ajogigccljepoobehcfmafaebbhpfapg
ShortcutWithArgument: C:\Users\Robin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AmazonShopping.lnk -> C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe () -> hxxp://www.amazon.com/gp/bit/amazonbookmark.html?tag=hp2-desktop-us-20&partner=HP
 
==================== Loaded Modules (Whitelisted) ==============
 
2018-04-11 19:34 - 2018-04-11 19:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2015-01-30 19:07 - 2015-01-30 19:07 - 002169344 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2015-01-30 19:05 - 2015-01-30 19:05 - 000021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2015-01-30 19:05 - 2015-01-30 19:05 - 000035840 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2015-01-30 19:05 - 2015-01-30 19:05 - 000055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2015-01-30 19:16 - 2015-01-30 19:16 - 000431696 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2015-01-30 19:16 - 2015-01-30 19:16 - 000746064 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-08-03 16:59 - 2015-08-03 16:59 - 000127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 000491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2018-04-11 19:34 - 2018-04-11 19:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 19:34 - 2018-04-11 19:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2010-10-20 16:23 - 2010-10-20 16:23 - 008801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\office.odf
2018-04-11 19:34 - 2018-04-11 19:34 - 001310208 _____ () c:\windows\system32\FaceProcessor.dll
2018-04-11 19:34 - 2018-04-11 19:34 - 000542888 _____ () c:\windows\system32\FaceProcessorCore.dll
2018-04-11 19:34 - 2018-04-11 19:34 - 001348664 _____ () c:\windows\system32\FaceTrackerInternal.dll
2018-01-31 19:08 - 2018-01-31 19:08 - 000155016 _____ () C:\Program Files\AMD\ATI.ACE\A4\AdaptiveSleepService.exe
2018-04-11 19:35 - 2018-04-12 05:19 - 002184704 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-01-30 19:09 - 2015-01-30 19:09 - 000065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-08-03 16:59 - 2015-08-03 16:59 - 000102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2018-01-31 18:50 - 2018-01-31 18:50 - 000017408 _____ () C:\Program Files\AMD\ATI.ACE\a4\AS4.NativeProxy.dll
2018-04-11 19:34 - 2018-04-11 19:34 - 000031232 _____ () C:\WINDOWS\system32\Windows.WARP.JITService.exe
2018-05-19 23:50 - 2018-05-19 23:51 - 000084992 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.10.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-05-08 16:42 - 2018-05-08 16:42 - 001873120 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.10.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-05-31 16:00 - 2018-05-31 16:01 - 027118080 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18041.14611.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-05-22 20:20 - 2018-05-22 20:20 - 000306176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18041.14611.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-05-22 20:20 - 2018-05-22 20:20 - 006748672 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18041.14611.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 18:47 - 2017-09-26 18:48 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18041.14611.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-05-22 20:20 - 2018-05-22 20:20 - 009358848 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18041.14611.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-05-22 20:18 - 2018-05-22 20:18 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-05-22 20:18 - 2018-05-22 20:18 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-05-22 20:18 - 2018-05-22 20:18 - 022374400 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-05-22 20:18 - 2018-05-22 20:18 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\skypert.dll
2018-05-22 20:18 - 2018-05-22 20:18 - 000654848 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-06-08 21:01 - 2018-06-08 21:06 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-06-08 21:01 - 2018-06-08 21:06 - 067232256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-03 19:50 - 2017-10-03 19:51 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-05-26 09:17 - 2018-05-26 09:18 - 004214784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-05-26 09:17 - 2018-05-26 09:18 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-04-25 15:41 - 2018-04-25 15:44 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-05-26 09:17 - 2018-05-26 09:18 - 000035840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-04-24 17:07 - 2018-04-24 17:10 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-06-08 21:01 - 2018-06-08 21:07 - 014851072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-05-26 09:17 - 2018-05-26 09:18 - 004058624 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-06-08 21:01 - 2018-06-08 21:05 - 003266048 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-05-26 09:17 - 2018-05-26 09:18 - 001393664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2018-05-26 09:17 - 2018-05-26 09:18 - 004218080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-05-26 09:17 - 2018-05-26 09:18 - 000872448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-05-26 09:17 - 2018-05-26 09:18 - 000103424 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\BendRealityNode.dll
2018-04-24 17:07 - 2018-04-24 17:10 - 000043008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2018-04-24 17:07 - 2018-04-24 17:10 - 000482816 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Lumia.VideoTk.dll
2017-11-12 09:29 - 2017-11-12 09:31 - 001007104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\IPP_UWP.dll
2018-04-24 17:07 - 2018-04-24 17:10 - 000399360 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\VideoFrameExtractor.Native.dll
2018-06-08 21:01 - 2018-06-08 21:07 - 000165376 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\SKU.dll
2018-05-17 20:05 - 2018-05-14 23:13 - 004443992 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libglesv2.dll
2018-05-17 20:05 - 2018-05-14 23:13 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libegl.dll
2014-12-03 12:16 - 2013-02-01 15:16 - 000387984 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\fl_core.dll
2014-12-03 12:16 - 2013-02-01 15:16 - 001165712 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\vocon3200_asr.dll
2014-12-03 12:16 - 2013-02-01 15:16 - 000229264 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\sdxg.dll
2014-12-03 12:16 - 2013-02-01 15:16 - 000199056 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\vocon3200_base.dll
2014-12-03 12:16 - 2013-02-01 15:16 - 001132944 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\vocon3200_pron.dll
2014-12-03 12:16 - 2013-02-01 15:16 - 000035216 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\vocon3200_platform.dll
2014-12-03 12:16 - 2013-02-01 15:15 - 000027136 _____ () C:\Program Files (x86)\Nuance\Dragon Notes\Core\WASAPIResamplingStreamCOMServer.dll
2018-06-08 20:28 - 2018-06-04 06:18 - 001107272 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2018-06-08 20:28 - 2018-06-04 06:18 - 002079048 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2018-06-08 20:28 - 2018-06-04 06:20 - 000021328 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000022384 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000135656 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 001881448 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000023400 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000111576 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll
2018-06-08 20:28 - 2018-06-04 06:18 - 000103392 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000065880 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000079688 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000399832 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll
2018-06-08 20:28 - 2018-06-04 06:18 - 000024544 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000043496 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000021472 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000124896 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000114664 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000392024 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000024552 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000175584 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000024544 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000026080 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000048616 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000057824 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000023904 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000023392 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000069992 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 003865936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000088904 _____ () C:\Program Files (x86)\Dropbox\Client\sip.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 001800528 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 001960272 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000155480 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000521552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000051032 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000043352 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000130896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000220504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000205144 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000060896 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000056160 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000024040 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000024424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000023400 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000022376 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000023400 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000028016 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000348128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000101712 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000024432 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000026464 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2018-06-08 20:28 - 2018-06-04 06:19 - 000034152 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:18 - 000293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2018-06-08 20:28 - 2018-06-04 06:21 - 000023400 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000181064 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2018-06-08 20:28 - 2018-06-04 06:21 - 000031584 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:19 - 000024384 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2018-06-08 20:28 - 2018-06-04 06:19 - 001638208 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2018-06-08 20:28 - 2018-06-04 06:21 - 000090472 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:21 - 000026984 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000546640 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd
2018-06-08 20:28 - 2018-06-04 06:20 - 000359760 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\Temp:10894A2E [310]
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\sharepoint.com -> hxxps://mygcuedu6961-files.sharepoint.com
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 09:25 - 2017-08-17 19:43 - 000000854 _____ C:\WINDOWS\system32\Drivers\etc\hosts
 
127.0.0.1 live.virtualdj.com
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Robin\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\backgrounddefault.jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "SynTPEnh"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AvastUI.exe"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "BCSSync"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "LWS"
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk"
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\StartupApproved\Run: => "Power2GoExpress8"
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_F4AAF779939494B008FEE98AC5BB7F41"
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-2753159025-2017300708-4160777056-1002\...\StartupApproved\Run: => "HP ENVY 4520 series (NET)"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{9728ADD2-21B7-4BE9-BAB4-F06A83521E6B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{818CDAF2-51CB-43E6-A632-87D564DB5336}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{50901F89-9C12-4887-977D-825D8E74B79E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{4514DCF0-8BA3-43CE-9689-42B9635390D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{4EC8E400-C9AA-4851-A5F5-CA0C5DF11580}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{F1193012-E754-4711-96CC-36D67A2DBD3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{952D5799-6BCF-46DD-BEC4-A27FA6803D5A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{98B1D6B6-37FF-4B4F-830B-08ACD41EEC1B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{55280F4B-B159-467D-AAF8-11CDAD2105B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{573B303F-3048-4570-95AC-A790A05E369E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.82.454.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{530A487F-86B6-46B2-A202-61E83F91AD86}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{F70BBE63-60F1-4BDC-AA3A-4B636AB07895}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{55846AB5-3D4D-4572-8716-BCA949F9E05A}] => (Allow) C:\Users\Robin\AppData\Local\Temp\7zS6971\HPDiagnosticCoreUI.exe
FirewallRules: [{EC6790B5-A707-43E6-8EEF-E4C26A1AAB34}] => (Allow) C:\Users\Robin\AppData\Local\Temp\7zS6971\HPDiagnosticCoreUI.exe
FirewallRules: [UDP Query User{ECE343B8-9A0B-499F-BFD4-807E59EBC7FD}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [TCP Query User{457CAB4C-3E44-4D92-9BC3-5C02821AFB5B}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{5415CC9D-C226-4E1D-9F82-297BF7810859}C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [TCP Query User{FEAA09A7-11A6-4CEF-8CBD-C5B93B44E4DC}C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [UDP Query User{64B536A4-7CEF-43A3-8403-61815EC86803}C:\users\robin\desktop\sambc\sambc.exe] => (Allow) C:\users\robin\desktop\sambc\sambc.exe
FirewallRules: [TCP Query User{A7E5ECB1-9D48-42E5-9FB7-3ABB4F2C2664}C:\users\robin\desktop\sambc\sambc.exe] => (Allow) C:\users\robin\desktop\sambc\sambc.exe
FirewallRules: [UDP Query User{E653D19E-D0F2-4B37-9CEB-1967F4BC6506}C:\users\robin\desktop\sambc\sambc.exe] => (Allow) C:\users\robin\desktop\sambc\sambc.exe
FirewallRules: [TCP Query User{A47DF443-D0A8-474A-A27D-A844EC688829}C:\users\robin\desktop\sambc\sambc.exe] => (Allow) C:\users\robin\desktop\sambc\sambc.exe
FirewallRules: [UDP Query User{08D3B6DC-BE0F-4E60-BD43-673A76567659}C:\users\robin\desktop\sams do not del this or move\sambc.exe] => (Allow) C:\users\robin\desktop\sams do not del this or move\sambc.exe
FirewallRules: [TCP Query User{406D62B5-629A-4355-B8EA-380238C97C99}C:\users\robin\desktop\sams do not del this or move\sambc.exe] => (Allow) C:\users\robin\desktop\sams do not del this or move\sambc.exe
FirewallRules: [{6F3F40AF-EC09-4E14-8B4C-44DDF5D90701}] => (Allow) C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
FirewallRules: [{2DDD3582-A160-4B40-B1D0-39E9D5B6297F}] => (Allow) C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
FirewallRules: [UDP Query User{C4DD91B7-1AA9-4C2F-BFFD-2EF80AD3C2E5}C:\users\robin\desktop\sams do not del this or move\sambc.exe] => (Allow) C:\users\robin\desktop\sams do not del this or move\sambc.exe
FirewallRules: [TCP Query User{1CDD62A5-AEE7-47DE-8F45-9C6F15E2F75F}C:\users\robin\desktop\sams do not del this or move\sambc.exe] => (Allow) C:\users\robin\desktop\sams do not del this or move\sambc.exe
FirewallRules: [{D688802F-8180-4ED8-A4AA-9284FA4E0400}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{394FC7A5-E953-49EA-BDFA-E888CD6E7931}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{8558779B-64A5-492C-9F7E-DDF30D2ABAD9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3C2D11C4-4065-4553-83AA-59FCAC18EBD3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A1C74738-2956-4D06-9A63-F6CCD7BAFF84}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [TCP Query User{15DCC3B5-28D3-46CB-9EF4-03D38FF97AA0}C:\program files (x86)\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files (x86)\spacialaudio\sambc\sambc.exe
FirewallRules: [UDP Query User{00A8C7EF-7640-4530-9AF3-8462ADB97CE9}C:\program files (x86)\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files (x86)\spacialaudio\sambc\sambc.exe
FirewallRules: [TCP Query User{542D8F54-8A80-4855-8ADB-07CA40EC2EC8}C:\program files (x86)\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files (x86)\spacialaudio\sambc\sambc.exe
FirewallRules: [UDP Query User{8DB699AF-3A24-431E-ADFA-BA9556CBC94C}C:\program files (x86)\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files (x86)\spacialaudio\sambc\sambc.exe
FirewallRules: [TCP Query User{A282FD5C-3028-4E56-83D9-0BBAFCE8AA49}C:\program files (x86)\firestorm-release\slvoice.exe] => (Allow) C:\program files (x86)\firestorm-release\slvoice.exe
FirewallRules: [UDP Query User{8BC91CF2-19A8-4DC3-AC88-98B93FC6A286}C:\program files (x86)\firestorm-release\slvoice.exe] => (Allow) C:\program files (x86)\firestorm-release\slvoice.exe
FirewallRules: [TCP Query User{87E64187-3C55-411F-ACFA-DF1F80CB2A82}C:\program files (x86)\firestorm-release\slvoice.exe] => (Block) C:\program files (x86)\firestorm-release\slvoice.exe
FirewallRules: [UDP Query User{2EE64AC9-9885-49CE-B9D2-8CDE6E5D2871}C:\program files (x86)\firestorm-release\slvoice.exe] => (Block) C:\program files (x86)\firestorm-release\slvoice.exe
FirewallRules: [TCP Query User{C4040B9A-9067-4004-B310-E88E25BB8FFE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{71F06ECE-15BB-49E0-AEF1-A38BC9E8AD92}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{1AD18C11-5304-4A7D-B852-8619BD32105B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{10C470AF-133B-4FD5-AD59-BF182DE48811}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{8DF0000B-A806-4FD5-B52C-C52CD8A86A5A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{C08AF446-3110-4CF8-BE6D-BC68CB91CDBA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [TCP Query User{1AC1BBD7-9E3C-4C6F-9EC8-E901DC67EE1D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{A29CA961-D7DB-40F5-A8C2-D4BAFE4D7A34}] => (Allow) LPort=8317
FirewallRules: [{42DBAE6F-989B-4A87-ACA9-DC9D93843BD8}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{E5F80922-EA31-4ABB-A526-3D8655EF68C1}] => (Allow) C:\Program Files\HP\HP ENVY 4520 series\Bin\DeviceSetup.exe
FirewallRules: [{FF0CF3C3-BE89-4B41-A677-5E432E00F8C7}] => (Allow) LPort=5357
FirewallRules: [{F25E0A5B-E153-406A-B62E-55798DB81CC7}] => (Allow) C:\Program Files\HP\HP ENVY 4520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{4285C81E-3DFE-4B3C-90F3-6A138852B334}] => (Allow) C:\Users\Robin\AppData\Roaming\Zoom\bin\Zoom.exe
FirewallRules: [{1F9660AB-4211-412D-AC79-1AA4ACE4DD5A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{38E934E4-63CC-4E06-A71C-E9438462E18D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6EEFCF33-4E1C-456A-ADA5-2EEA8E94BFFC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{66207CFE-BCA1-4877-B0CD-AEDA11E6D0AD}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
 
==================== Restore Points =========================
 
12-06-2018 21:14:47 Scheduled Checkpoint
12-06-2018 22:33:43 Removed VirtualDJ 8
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (06/12/2018 10:10:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname RobinsHP.local already in use; will try RobinsHP-2.local instead
 
Error: (06/12/2018 10:10:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 RobinsHP.local. Addr 10.0.0.21
 
Error: (06/12/2018 10:10:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 10.0.0.21:5353   16 RobinsHP.local. AAAA 2601:098B:4402:C3F1:0000:0000:0000:B7F3
 
Error: (06/12/2018 10:10:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing:   16 RobinsHP.local. AAAA FE80:0000:0000:0000:A0DB:4A77:EBAA:A011
 
Error: (06/12/2018 10:10:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 10.0.0.21:5353   16 RobinsHP.local. AAAA 2601:098B:4402:C3F1:0000:0000:0000:B7F3
 
Error: (06/12/2018 10:10:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing:   16 RobinsHP.local. AAAA 2601:098B:4402:C3F1:2092:A6B6:BED3:765C
 
Error: (06/12/2018 10:10:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 10.0.0.21:5353   16 RobinsHP.local. AAAA 2601:098B:4402:C3F1:0000:0000:0000:B7F3
 
Error: (06/12/2018 10:10:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing:   16 RobinsHP.local. AAAA 2601:098B:4402:C3F1:A0DB:4A77:EBAA:A011
 
 
System errors:
=============
Error: (06/13/2018 02:23:11 AM) (Source: DCOM) (EventID: 10016) (User: ROBINSHP)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user RobinsHP\Robin SID (S-1-5-21-2753159025-2017300708-4160777056-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/12/2018 11:25:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/12/2018 07:08:35 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/12/2018 06:23:21 PM) (Source: volsnap) (EventID: 35) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage failed to grow.
 
Error: (06/12/2018 06:07:11 PM) (Source: DCOM) (EventID: 10016) (User: ROBINSHP)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 and APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 to the user RobinsHP\Robin SID (S-1-5-21-2753159025-2017300708-4160777056-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/12/2018 04:40:09 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/12/2018 01:31:58 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/11/2018 11:28:24 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
 
CodeIntegrity:
===================================
 
Date: 2018-06-13 02:55:24.073
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\n64hooks.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 02:50:24.079
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\n64hooks.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 02:45:24.068
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\n64hooks.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 02:40:24.094
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\n64hooks.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 02:35:24.119
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\n64hooks.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 02:30:24.066
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\n64hooks.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 02:25:24.203
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\n64hooks.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 02:20:24.073
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\NetRatingsNetSight\NetSight\meter8\n64hooks.dll that did not meet the Microsoft signing level requirements.
 
==================== Memory info =========================== 
 
Processor: AMD A8-6410 APU with AMD Radeon R5 Graphics 
Percentage of memory in use: 70%
Total physical RAM: 5055.44 MB
Available physical RAM: 1481.74 MB
Total Virtual: 6591.44 MB
Available Virtual: 1931.12 MB
 
==================== Drives ================================
 
Drive c: (Windows) (Fixed) (Total:907.86 GB) (Free:0.82 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:21.67 GB) (Free:2.13 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive g: (HP Portable Drive) (Fixed) (Total:465.76 GB) (Free:165.6 GB) NTFS
 
\\?\Volume{51e6846e-de86-4739-8aba-7e2e40b28dd6}\ (WINRE) (Fixed) (Total:0.63 GB) (Free:0.38 GB) NTFS
\\?\Volume{32efd33c-c485-41c0-afec-3c25b4508fce}\ () (Fixed) (Total:0.96 GB) (Free:0.4 GB) NTFS
\\?\Volume{1c41e9de-08e5-44a1-b8e9-8561b675d048}\ () (Fixed) (Total:0.25 GB) (Free:0.14 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: F63D68C9)
 
Partition: GPT.
 
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: 00020D0D)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt ============================

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP