Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:28-06-2015 01
Ran by User (administrator) on DELL on 30-06-2015 22:58:10
Running from C:\Users\User\Desktop
Loaded Profiles: User (Available Profiles: User)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(XTab system) C:\Program Files (x86)\XTab\ProtectService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Airtel NetXpert\bin\sprtsvc.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Airtel NetXpert\bin\tgsrvc.exe
(Microsoft Corporation) C:\Users\User\AppData\Roaming\Microsoft\SystemCertificates\VSSVC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20905_x64__8wekyb3d8bbwe\livecomm.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(SearchProtect) C:\Program Files (x86)\XTab\CmdShell.exe
(XTab system) C:\Program Files (x86)\XTab\HPNotify.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(SoftPerfect Research) C:\Program Files\NetWorx\networx.exe
(WordWeb Software) C:\Program Files (x86)\WordWeb\wweb32.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Airtel NetXpert\bin\sprtcmd.exe
() C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\nacl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\nacl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NetWorx] => C:\Program Files\NetWorx\networx.exe [6592208 2014-11-25] (SoftPerfect Research)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3015408 2013-03-06] (Synaptics Incorporated)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [393480 2015-03-19] ()
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-04-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-04-30] (Adobe Systems Inc.)
HKLM-x32\...\Run: [netxpert] => C:\Program Files (x86)\Airtel NetXpert\bin\sprtcmd.exe [206120 2011-06-03] (SupportSoft, Inc.)
HKLM-x32\...\Run: [SmartWeb] => C:\Users\User\AppData\Local\SmartWeb\SmartWebHelper.exe
HKLM-x32\...\Run: [BaiduSdTray] => "C:\Program Files (x86)\Baidu\BaiduSd\\BaiduSdTray.exe" -stmd=3
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-10-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Run: [BambooCore] => C:\Program Files (x86)\Bamboo Dock\BambooCore.exe [646744 2012-10-16] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [TaskbarNoNotification] 1
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\Run: [WordWeb] => C:\Program Files (x86)\WordWeb\wweb32.exe [77056 2013-05-17] (WordWeb Software)
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\Run: [f.lux] => C:\Users\User\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272840 2014-03-31] (Microsoft Corporation)
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [21969480 2015-05-19] (Google)
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\Run: [Dropbox Update] => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-19] (Dropbox, Inc.)
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\Run: [GoogleChromeAutoLaunch_BCEA24321E5E4F1401136BBEDFB545FE] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-06-20] (Google Inc.)
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\CurrentVersion\Windows: [Load] C:\ProgramData\msboivr.exe <===== ATTENTION
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\MountPoints2: {98d4de9a-f64b-11e4-beb5-645a0485acdb} - "G:\HTC_Sync_Manager_PC.exe"
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-04-18]
ShortcutTarget: Dropbox.lnk -> C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2015-06-29]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Winserv.lnk [2015-06-29]
ShortcutTarget: Winserv.lnk -> C:\Windows\pcpps\CorelDRAWGraphicsSuiteX7Installer_EN64_Crack.exe ()
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled
ProxyServer: [.DEFAULT] => http=;https=
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2013-07-10] (Microsoft Corporation)
BHO: shopperz -> {5081D2D4-1637-404c-B74F-50526718257D} -> C:\Program Files\shopperz\mseff64.dll No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
BHO-x32: WebMonBHO -> {15DEE173-1BE9-4424-81E0-58A87076E9B1} -> C:\Program Files (x86)\Baidu\BaiduSd\\websafe\WebMonBHO.dll No File
BHO-x32: Great Find -> {1cc2bb80-20ab-43e5-b958-432d72b546ca} -> C:\Program Files (x86)\Great Find\Extensions\1cc2bb80-20ab-43e5-b958-432d72b546ca.dll No File
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files (x86)\XTab\SupTab.dll [2015-04-02] (Thinknice Co. Limited)
BHO-x32: shopperz -> {5081D2D4-1637-404c-B74F-50526718257D} -> C:\Program Files\shopperz\mseff32.dll No File
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-28] (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-04-30] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-28] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-04-30] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-04-30] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-4064182937-4136054916-3625840862-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\CCL.dll [341696 2015-04-16] (CC Corporation)
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\CCL.dll [341696 2015-04-16] (CC Corporation)
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\CCL.dll [341696 2015-04-16] (CC Corporation)
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\CCL.dll [341696 2015-04-16] (CC Corporation)
Winsock: Catalog9 16 C:\WINDOWS\SysWOW64\CCL.dll [341696 2015-04-16] (CC Corporation)
Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{0DDCC7F5-6388-4890-BAEB-BD297EDC8770}: [DhcpNameServer]
Tcpip\..\Interfaces\{52E3406D-CDDB-4BE0-ACEC-A8EE0F64332C}: [DhcpNameServer]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default
FF NewTab: hxxp://
FF DefaultSearchEngine: Secure Search
FF DefaultSearchEngine.US: Secure Search
FF SearchEngineOrder.1: Secure Search
FF SelectedSearchEngine: Secure Search
FF Homepage: hxxp://www.<HTML><HEAD>
FF Plugin: -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_190.dll [2015-06-24] ()
FF Plugin:,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin:,version= -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Plugin-x32: -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll [2015-06-24] ()
FF Plugin-x32: -> C:\Program Files (x86)\Baidu\BaiduSd\\explugin\npBaiduSDDetectPlug.dll No File
FF Plugin-x32:,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-11] (Intel Corporation)
FF Plugin-x32: WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-11] (Intel Corporation)
FF Plugin-x32:,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-28] (Oracle Corporation)
FF Plugin-x32:,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-28] (Oracle Corporation)
FF Plugin-x32:,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2013-07-10] (Microsoft Corporation)
FF Plugin-x32:,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32:,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: Update;version=3 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2015-05-29] (Google Inc.)
FF Plugin-x32: Update;version=9 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2015-05-29] (Google Inc.)
FF Plugin-x32:,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32:,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32:,version= -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-04-30] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4064182937-4136054916-3625840862-1001: Plugin 3.33 -> C:\Users\User\AppData\Local\Spoon\3.33.602.0\npMozillaSpoonPlugin.dll No File
FF Plugin HKU\S-1-5-21-4064182937-4136054916-3625840862-1001: -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2013-07-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\searchplugins\luckysearches.xml [2015-04-16]
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\searchplugins\omniboxes.xml [2015-04-16]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2015-06-01]
FF Extension: jid0coCUQ7NySNPcj72dA3557kKXGZUjetpack - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\Extensions\jid0-coCUQ7NySNPcj72dA3557kKXGZU@jetpack [2015-04-20]
FF Extension: Search Enginer - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\Extensions\
[email protected] [2015-04-16]
FF Extension: Search Enginer - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\Extensions\
[email protected] [2015-04-16]
FF Extension: PoriceMinus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\Extensions\
[email protected] [2015-06-01]
FF Extension: 06997db0c0274d5fbd37b0d9230226ea - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\Extensions\{06997db0-c027-4d5f-bd37-b0d9230226ea} [2015-04-20]
FF Extension: 11b496ea481a11dc83140800200c9a66 - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\Extensions\{11b496ea-481a-11dc-8314-0800200c9a66} [2015-04-20]
FF Extension: DownloadHelper - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-12-05]
FF Extension: Great Find - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2wg8gdmu.default\Extensions\{c0cebc48-e279-433d-941e-b6a337c130d6}.xpi [2015-06-26]
FF HKLM\...\Firefox\Extensions: [{5081D2D4-1637-404c-B74F-50526718257D}] - C:\Program Files\shopperz\Firefox
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-12-03]
FF HKLM-x32\...\Firefox\Extensions: [{5081D2D4-1637-404c-B74F-50526718257D}] - C:\Program Files\shopperz\Firefox
FF HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\...\Firefox\Extensions: [
[email protected]] - C:\Program Files (x86)\WordWeb\WCaptureMoz
FF Extension: WordWeb one-click lookup - C:\Program Files (x86)\WordWeb\WCaptureMoz [2014-12-03]
FF Extension: No Name - C:\Program Files (x86)\McAfee\SiteAdvisor [not found]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-05-27]
CHR Extension: (Google Art Project) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\akimgimeeoiognljlfchpbkpfbmeapkh [2015-05-27]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-29]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-02]
CHR Extension: (Indexing Test) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbeihidkikgdcoogkeoeconphggdhop [2015-05-27]
CHR Extension: (MusicAlarm) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmafbdibkmhhhejfjbonifjjjpoaecjo [2014-12-03]
CHR Extension: (McAfee SiteAdvisor Enterprise) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmendinpapjjojakimjlmkkkcmnojefg [2015-06-30]
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-02]
CHR Extension: (Dictionary) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dppjkecblddfabhinagflbhecjkkhekm [2014-12-03]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-05-27]
CHR Extension: (Block site) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2015-05-27]
CHR Extension: (Video Downloader professional) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-02-04]
CHR Extension: (Hola Better Internet Engine) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbfmioobedknooiakdehepogalbgkng [2015-05-27]
CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-27]
CHR Extension: (Dictionary by - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikhgcaliglmioibbockkmjknfnepbdh [2014-12-03]
CHR Extension: (Hola Better Internet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-05-27]
CHR Extension: (Google Keep - notes and lists) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-05-27]
CHR Extension: (Facebook Messenger Platinum App) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\icffcngoggobfihnaemmbkbkgdmfcaac [2015-05-27]
CHR Extension: (Google Play Music) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2015-05-27]
CHR Extension: (Dictionary Lookup) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipdjaafajlfiopcppipdinmcjbcpofhd [2015-05-27]
CHR Extension: (Hangouts) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2015-05-27]
CHR Extension: (Classic gray theme) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\kocejlmhfkhgniggkiancfidiigikalo [2015-05-27]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-27]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-05-29]
CHR Extension: (ShareThis) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lplpcpijdokpnbjcklakgabohjgneidi [2015-05-27]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2015-05-27]
CHR Extension: (Niice) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\miegcjodnnjpiakobaofjcjohidgekdi [2015-05-27]
CHR Extension: (Flair Player) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmenokpjamhajlajnldibdjkacgcp [2015-06-15]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-27]
CHR Extension: (TabCloud) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2015-05-27]
CHR Extension: (Kaspersky Security Scan) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeppdapcjiogpjjnceheinbfmkkpkfni [2015-05-27]
CHR Extension: (Send from Gmail (by Google)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc [2015-05-27]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-02]
CHR Extension: (MyMusicCloud) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\plaelelbkmommhmjlepigoiepmdaihbk [2015-05-27]
CHR HKU\S-1-5-21-4064182937-4136054916-3625840862-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\User\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-05-29]
CHR HKLM-x32\...\Chrome\Extension: [mjdepfkicdcciagbigfcmdhknnoaaegf] - C:\Program Files (x86)\WordWeb\wcxChrome.crx [2014-12-03]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [211320 2015-02-11] (Dell Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [345864 2015-03-19] (Intel Corporation)
R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158816 2015-04-02] (XTab system)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-11] (Intel Corporation)
R2 KinectManagement; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [98816 2013-02-27] (Microsoft Corporation) [File not signed]
S3 KMSServerService; C:\Program Files (x86)\KMSpicoPortable\KMSServer.exe [38454 2015-05-26] () [File not signed]
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [189912 2014-06-20] (McAfee, Inc.)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc)
R2 sprtsvc_netxpert; C:\Program Files (x86)\Airtel NetXpert\bin\sprtsvc.exe [206120 2011-06-03] (SupportSoft, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-20] (Adobe Systems Incorporated) [File not signed]
R2 tgsrvc_netxpert; C:\Program Files (x86)\Airtel NetXpert\bin\tgsrvc.exe [185640 2011-06-03] (SupportSoft, Inc.)
R2 VSSS; C:\Users\User\AppData\Roaming\Microsoft\SystemCertificates\VSSVC.exe [98832704 2015-06-26] (Microsoft Corporation) [File not signed] <==== ATTENTION
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-04-12] (Microsoft Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-04-12] (Microsoft Corporation)
R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [627992 2014-01-13] (Wacom Technology, Corp.)
S2 BDKVRTP; "C:\Program Files (x86)\Baidu\BaiduSd\\BaiduSdSvc.exe" -r [X]
S2 McAPExe; "C:\Program Files\McAfee\MSC\McAPExe.exe" [X]
S4 McMPFSvc; "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-22] (Advanced Micro Devices, Inc.)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3858944 2013-10-17] (Qualcomm Atheros Communications, Inc.)
R1 bd0003; C:\Windows\System32\DRIVERS\bd0003.sys [67400 2014-11-06] (Baidu)
R2 BDArKit; C:\Windows\System32\DRIVERS\BDArKit.sys [152392 2014-12-25] (Baidu Technology)
S1 BDMWrench_x64; C:\Windows\System32\DRIVERS\BDMWrench_x64.sys [56136 2014-11-06] (Baidu)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-11-21] (Microsoft Corporation)
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [98504 2013-09-25] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys [67784 2013-09-25] (Infowatch)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
S3 KinectCamera; C:\Windows\System32\Drivers\kinectcamera.sys [192512 2013-02-27] (Microsoft Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-11] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-06-20] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786296 2014-06-20] (McAfee, Inc.)
R1 networx; C:\Windows\System32\drivers\networx.sys [60408 2014-11-03] (
S3 psdrv3; C:\Windows\System32\Drivers\psdrv3.sys [24472 2012-05-16] (Prime Sense Ltd.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31984 2013-03-06] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-04-12] (Microsoft Corporation)
S1 cherimoya; system32\drivers\cherimoya.sys [X]
R4 KProcessHacker2; \??\C:\Program Files\kprocesshacker.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-30 22:58 - 2015-06-30 22:58 - 00039327 _____ C:\Users\User\Desktop\FRST.txt
2015-06-30 22:58 - 2015-06-30 22:58 - 00000000 ____D C:\FRST
2015-06-30 22:38 - 2015-06-30 22:39 - 00287240 _____ C:\WINDOWS\Minidump\063015-24328-01.dmp
2015-06-30 22:38 - 2015-06-30 22:38 - 547071165 _____ C:\WINDOWS\MEMORY.DMP
2015-06-30 22:37 - 2015-06-30 22:37 - 01063160 _____ (Bleeping Computer, LLC) C:\Users\User\Downloads\rkill64.exe
2015-06-30 22:37 - 2015-06-30 22:37 - 00000652 _____ C:\Users\User\Desktop\Rkill.txt
2015-06-30 22:27 - 2015-06-30 22:30 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\User\Downloads\rkill.exe
2015-06-30 22:14 - 2015-06-30 22:15 - 02112512 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2015-06-30 21:44 - 2015-06-30 21:44 - 00000000 ____D C:\Users\User\AppData\Local\Skype
2015-06-30 21:43 - 2015-06-30 22:43 - 00000000 ____D C:\Users\User\AppData\Roaming\Skype
2015-06-30 21:37 - 2015-06-30 22:43 - 00000000 ____D C:\ProgramData\Skype
2015-06-30 20:47 - 2015-06-30 20:47 - 01415680 _____ (wj32) C:\Program Files\GWOGKNUJ.exe
2015-06-30 20:45 - 2015-06-30 20:45 - 01415680 _____ (wj32) C:\Program Files\XZDFH3FN.exe
2015-06-30 20:40 - 2015-06-30 20:40 - 01415680 _____ (wj32) C:\Program Files\05LSLKVW.exe
2015-06-30 20:38 - 2015-06-30 20:38 - 01415680 _____ (wj32) C:\Program Files\SL3L3XSU.exe
2015-06-30 20:38 - 2015-06-30 20:38 - 01415680 _____ (wj32) C:\Program Files\3XF8PUND.exe
2015-06-30 20:37 - 2015-06-30 20:37 - 01415680 _____ (wj32) C:\Program Files\8DIDIPKH.exe
2015-06-30 20:36 - 2015-06-30 20:36 - 01415680 _____ (wj32) C:\Program Files\4KCYK6XC.exe
2015-06-30 20:33 - 2015-06-30 20:33 - 01415680 _____ (wj32) C:\Program Files\3JBZT93N.exe
2015-06-30 20:31 - 2015-06-30 20:31 - 01415680 _____ (wj32) C:\Program Files\ZT9EJOIA.exe
2015-06-30 20:24 - 2015-06-30 20:24 - 01415680 _____ (wj32) C:\Program Files\US46I6YU.exe
2015-06-30 20:24 - 2015-06-30 20:24 - 01415680 _____ (wj32) C:\Program Files\LXP1FHZH.exe
2015-06-30 20:24 - 2015-06-30 20:24 - 01415680 _____ (wj32) C:\Program Files\KLZSCHMO.exe
2015-06-30 20:24 - 2015-06-30 20:24 - 01415680 _____ (wj32) C:\Program Files\1F7CHYU7.exe
2015-06-30 20:23 - 2015-06-30 20:23 - 01415680 _____ (wj32) C:\Program Files\X91P13P7.exe
2015-06-30 20:23 - 2015-06-30 20:23 - 01415680 _____ (wj32) C:\Program Files\VOI0TN57.exe
2015-06-30 20:23 - 2015-06-30 20:23 - 01415680 _____ (wj32) C:\Program Files\NSXRK2WF.exe
2015-06-30 20:22 - 2015-06-30 20:22 - 01415680 _____ (wj32) C:\Program Files\UMKIME02.exe
2015-06-30 20:22 - 2015-06-30 20:22 - 01415680 _____ (wj32) C:\Program Files\4WOIAK70.exe
2015-06-30 20:22 - 2015-06-30 20:22 - 01415680 _____ (wj32) C:\Program Files\4KWEM8UO.exe
2015-06-30 20:21 - 2015-06-30 20:21 - 01415680 _____ (wj32) C:\Program Files\V1GT8U91.exe
2015-06-30 20:21 - 2015-06-30 20:21 - 01415680 _____ (wj32) C:\Program Files\K6Y8UF25.exe
2015-06-30 20:21 - 2015-06-30 20:21 - 01415680 _____ (wj32) C:\Program Files\H7S47J4T.exe
2015-06-30 20:21 - 2015-06-30 20:21 - 01415680 _____ (wj32) C:\Program Files\6YK62EAI.exe
2015-06-30 20:21 - 2015-06-30 20:21 - 01415680 _____ (wj32) C:\Program Files\6M2IG8C6.exe
2015-06-30 18:19 - 2015-06-30 18:19 - 01415680 _____ (wj32) C:\Program Files\T807Z47K.exe
2015-06-30 18:19 - 2015-06-30 18:19 - 01415680 _____ (wj32) C:\Program Files\CRLA4X25.exe
2015-06-30 18:19 - 2015-06-30 18:19 - 01415680 _____ (wj32) C:\Program Files\0WONMSKI.exe
2015-06-30 18:09 - 2015-06-30 22:44 - 00004938 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for DELL-User Dell
2015-06-30 18:06 - 2015-06-30 18:06 - 01415680 _____ (wj32) C:\Program Files\B5NGAKV9.exe
2015-06-30 18:04 - 2015-06-30 18:04 - 01415680 _____ (wj32) C:\Program Files\KCSE0LJA.exe
2015-06-30 17:41 - 2015-06-30 17:41 - 01415680 _____ (wj32) C:\Program Files\THGS38A0.exe
2015-06-30 17:41 - 2015-06-30 17:41 - 01415680 _____ (wj32) C:\Program Files\FWMKBE8B.exe
2015-06-30 17:40 - 2015-06-30 17:40 - 01415680 _____ (wj32) C:\Program Files\ZSMPTPHH.exe
2015-06-30 17:40 - 2015-06-30 17:40 - 01415680 _____ (wj32) C:\Program Files\P7PWEWET.exe
2015-06-30 17:40 - 2015-06-30 17:40 - 01415680 _____ (wj32) C:\Program Files\2F46XMC5.exe
2015-06-30 17:38 - 2015-06-30 17:38 - 01415680 _____ (wj32) C:\Program Files\41UVPUDE.exe
2015-06-30 17:38 - 2015-06-30 17:38 - 00000000 ____D C:\Users\User\AppData\Roaming\Malwarebytes
2015-06-30 17:38 - 2015-06-30 17:38 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-30 17:36 - 2015-06-30 17:36 - 01415680 _____ (wj32) C:\Program Files\KSK2O0SA.exe
2015-06-30 17:36 - 2015-06-30 17:36 - 01415680 _____ (wj32) C:\Program Files\G2KMIMOM.exe
2015-06-30 17:35 - 2015-06-30 17:35 - 01415680 _____ (wj32) C:\Program Files\6Z4MGJBE.exe
2015-06-30 17:34 - 2015-06-30 17:34 - 01415680 _____ (wj32) C:\Program Files\OKG5C5CK.exe
2015-06-30 17:34 - 2015-06-30 17:34 - 01415680 _____ (wj32) C:\Program Files\B6D6KL3K.exe
2015-06-30 17:31 - 2015-06-30 17:31 - 01415680 _____ (wj32) C:\Program Files\XZCR7PWY.exe
2015-06-30 17:29 - 2015-06-30 17:29 - 01415680 _____ (wj32) C:\Program Files\XWV1GMUT.exe
2015-06-30 17:29 - 2015-06-30 17:29 - 01415680 _____ (wj32) C:\Program Files\4KSUCEGK.exe
2015-06-30 17:28 - 2015-06-30 17:28 - 01415680 _____ (wj32) C:\Program Files\BFVCRX4S.exe
2015-06-30 17:27 - 2015-06-30 17:27 - 01415680 _____ (wj32) C:\Program Files\3WK8D6O4.exe
2015-06-30 17:27 - 2015-06-30 17:27 - 01415680 _____ (wj32) C:\Program Files\0U0UCIWC.exe
2015-06-30 17:26 - 2015-06-30 17:26 - 01415680 _____ (wj32) C:\Program Files\BRY71TZ0.exe
2015-06-30 17:22 - 2015-06-30 17:22 - 01415680 _____ (wj32) C:\Program Files\W1TN3KL1.exe
2015-06-30 17:22 - 2015-06-30 17:22 - 01415680 _____ (wj32) C:\Program Files\VPUZSX2V.exe
2015-06-30 17:22 - 2015-06-30 17:22 - 01415680 _____ (wj32) C:\Program Files\DUZ49RW2.exe
2015-06-30 17:18 - 2015-06-30 17:18 - 01415680 _____ (wj32) C:\Program Files\HX135XZ7.exe
2015-06-30 17:18 - 2015-06-30 17:18 - 01415680 _____ (wj32) C:\Program Files\BG9O3L2G.exe
2015-06-30 17:17 - 2015-06-30 17:17 - 01415680 _____ (wj32) C:\Program Files\C6ZJE6ZH.exe
2015-06-30 17:17 - 2015-06-30 17:17 - 01415680 _____ (wj32) C:\Program Files\A6ACE680.exe
2015-06-30 17:17 - 2015-06-30 17:17 - 00013833 _____ C:\Users\User\Downloads\MONOVA.ORG Malwarebytes Anti-Malware Pro Final + Keygen.torrent
2015-06-30 17:16 - 2015-06-30 17:16 - 01415680 _____ (wj32) C:\Program Files\WD5AD59E.exe
2015-06-30 17:16 - 2015-06-30 17:16 - 01415680 _____ (wj32) C:\Program Files\VXJV9VRB.exe
2015-06-30 17:16 - 2015-06-30 17:16 - 01415680 _____ (wj32) C:\Program Files\S6S4WA20.exe
2015-06-30 17:16 - 2015-06-30 17:16 - 01415680 _____ (wj32) C:\Program Files\MP69R9G5.exe
2015-06-30 17:16 - 2015-06-30 17:16 - 01415680 _____ (wj32) C:\Program Files\F455JJWL.exe
2015-06-30 17:15 - 2015-06-30 17:15 - 01415680 _____ (wj32) C:\Program Files\M7A2E69K.exe
2015-06-30 17:08 - 2015-06-30 17:08 - 01415680 _____ (wj32) C:\Program Files\6CHB4YRW.exe
2015-06-30 17:07 - 2015-06-30 17:07 - 01415680 _____ (wj32) C:\Program Files\LNZ11FR4.exe
2015-06-30 17:07 - 2015-06-30 17:07 - 01415680 _____ (wj32) C:\Program Files\CHP71JO6.exe
2015-06-30 17:07 - 2015-06-30 17:07 - 01415680 _____ (wj32) C:\Program Files\BI0I0TBE.exe
2015-06-30 17:07 - 2015-06-30 17:07 - 01415680 _____ (wj32) C:\Program Files\37DHMEUC.exe
2015-06-30 17:05 - 2015-06-30 17:05 - 01415680 _____ (wj32) C:\Program Files\ASMRK4MR.exe
2015-06-30 17:04 - 2015-06-30 17:04 - 01415680 _____ (wj32) C:\Program Files\YGNGXF89.exe
2015-06-30 17:04 - 2015-06-30 17:04 - 01415680 _____ (wj32) C:\Program Files\05A3LKVB.exe
2015-06-30 17:02 - 2015-06-30 17:02 - 01415680 _____ (wj32) C:\Program Files\M8UG2O9J.exe
2015-06-30 17:00 - 2015-06-30 17:00 - 01415680 _____ (wj32) C:\Program Files\GLKK2I0E.exe
2015-06-30 16:59 - 2015-06-30 16:59 - 01415680 _____ (wj32) C:\Program Files\50INUZUN.exe
2015-06-30 16:57 - 2015-06-30 16:57 - 01415680 _____ (wj32) C:\Program Files\K82KPVP3.exe
2015-06-30 16:57 - 2015-06-30 16:57 - 01415680 _____ (wj32) C:\Program Files\AFM4XR9F.exe
2015-06-30 16:57 - 2015-06-30 16:57 - 01415680 _____ (wj32) C:\Program Files\9P6Y1G8Y.exe
2015-06-30 16:57 - 2015-06-30 16:57 - 01415680 _____ (wj32) C:\Program Files\6DTBGA3T.exe
2015-06-30 16:55 - 2015-06-30 16:55 - 01415680 _____ (wj32) C:\Program Files\M5XEU8BG.exe
2015-06-30 16:55 - 2015-06-30 16:55 - 01415680 _____ (wj32) C:\Program Files\LA4JMME5.exe
2015-06-30 16:53 - 2015-06-30 16:53 - 01415680 _____ (wj32) C:\Program Files\JOL3WKPK.exe
2015-06-30 16:52 - 2015-06-30 16:52 - 01415680 _____ (wj32) C:\Program Files\HD5XT5O6.exe
2015-06-30 16:47 - 2015-06-30 16:47 - 01415680 _____ (wj32) C:\Program Files\H9LN9DZR.exe
2015-06-30 16:47 - 2015-06-30 16:47 - 01415680 _____ (wj32) C:\Program Files\7EWPUPJ1.exe
2015-06-30 16:47 - 2015-06-30 16:47 - 01415680 _____ (wj32) C:\Program Files\6AM4YY4K.exe
2015-06-30 16:46 - 2015-06-30 16:46 - 01415680 _____ (wj32) C:\Program Files\FA4M5ZSV.exe
2015-06-30 16:40 - 2015-06-30 16:40 - 01415680 _____ (wj32) C:\Program Files\BHWFETJV.exe
2015-06-30 16:40 - 2015-06-30 16:40 - 01415680 _____ (wj32) C:\Program Files\B5NGL2VS.exe
2015-06-30 16:39 - 2015-06-30 16:39 - 01415680 _____ (wj32) C:\Program Files\W2WPW1UO.exe
2015-06-30 16:37 - 2015-06-30 16:37 - 01415680 _____ (wj32) C:\Program Files\Z48NFVNH.exe
2015-06-30 16:31 - 2015-06-30 16:31 - 01415680 _____ (wj32) C:\Program Files\XPJBMIM0.exe
2015-06-30 16:29 - 2015-06-30 16:29 - 01415680 _____ (wj32) C:\Program Files\YAW8M86Y.exe
2015-06-30 16:29 - 2015-06-30 16:29 - 01415680 _____ (wj32) C:\Program Files\5NF7NSM0.exe
2015-06-30 16:24 - 2015-06-30 16:24 - 01415680 _____ (wj32) C:\Program Files\SFHJJEXS.exe
2015-06-30 16:24 - 2015-06-30 16:24 - 01415680 _____ (wj32) C:\Program Files\IUKBEJO7.exe
2015-06-30 16:23 - 2015-06-30 16:23 - 01415680 _____ (wj32) C:\Program Files\A2E6O6IC.exe
2015-06-30 16:23 - 2015-06-30 16:23 - 01415680 _____ (wj32) C:\Program Files\7J2U05HF.exe
2015-06-30 16:21 - 2015-06-30 16:21 - 01415680 _____ (wj32) C:\Program Files\ZX5PB97B.exe
2015-06-30 16:21 - 2015-06-30 16:21 - 01415680 _____ (wj32) C:\Program Files\A64W6YWO.exe
2015-06-30 16:20 - 2015-06-30 16:20 - 01415680 _____ (wj32) C:\Program Files\TXPSW1HV.exe
2015-06-30 16:20 - 2015-06-30 16:20 - 01415680 _____ (wj32) C:\Program Files\T5RP7DVX.exe
2015-06-30 16:20 - 2015-06-30 16:20 - 01415680 _____ (wj32) C:\Program Files\RX4A4AF5.exe
2015-06-30 16:20 - 2015-06-30 16:20 - 01415680 _____ (wj32) C:\Program Files\KIXCF6Y4.exe
2015-06-30 16:19 - 2015-06-30 16:19 - 01415680 _____ (wj32) C:\Program Files\YKOGW6CW.exe
2015-06-30 16:19 - 2015-06-30 16:19 - 01415680 _____ (wj32) C:\Program Files\UDLB32DS.exe
2015-06-30 16:17 - 2015-06-30 16:17 - 01415680 _____ (wj32) C:\Program Files\S4KOA8KS.exe
2015-06-30 16:16 - 2015-06-30 16:16 - 01415680 _____ (wj32) C:\Program Files\XJGFWI3P.exe
2015-06-30 16:11 - 2015-06-30 16:11 - 00001514 _____ C:\Users\User\Desktop\McAfee Virtual Technician.lnk
2015-06-30 16:11 - 2015-06-30 16:11 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\McAfee
2015-06-30 16:10 - 2015-06-30 16:10 - 01415680 _____ (wj32) C:\Program Files\VAF7ZH9F.exe
2015-06-30 16:10 - 2015-06-30 16:10 - 01415680 _____ (wj32) C:\Program Files\RYEWDVEB.exe
2015-06-30 16:08 - 2015-06-30 16:08 - 01415680 _____ (wj32) C:\Program Files\L0SXP5XY.exe
2015-06-30 16:08 - 2015-06-30 16:08 - 01415680 _____ (wj32) C:\Program Files\K2JM15XR.exe
2015-06-30 16:08 - 2015-06-30 16:08 - 01415680 _____ (wj32) C:\Program Files\FZRLKW1V.exe
2015-06-30 16:07 - 2015-06-30 16:08 - 00308576 _____ (McAfee Inc.) C:\Users\User\Downloads\mvtapp.exe
2015-06-30 16:07 - 2015-06-30 16:07 - 01415680 _____ (wj32) C:\Program Files\VC4K1FDI.exe
2015-06-30 16:05 - 2015-06-30 16:05 - 01415680 _____ (wj32) C:\Program Files\ZBNZBNSA.exe
2015-06-30 16:05 - 2015-06-30 16:05 - 01415680 _____ (wj32) C:\Program Files\XT5X9S1S.exe
2015-06-30 16:05 - 2015-06-30 16:05 - 01415680 _____ (wj32) C:\Program Files\TFRZBX1P.exe
2015-06-30 16:05 - 2015-06-30 16:05 - 01415680 _____ (wj32) C:\Program Files\E64GSGOC.exe
2015-06-30 16:04 - 2015-06-30 16:04 - 01415680 _____ (wj32) C:\Program Files\YACY28IS.exe
2015-06-30 16:04 - 2015-06-30 16:04 - 01415680 _____ (wj32) C:\Program Files\9VN9VHXN.exe
2015-06-30 16:03 - 2015-06-30 16:03 - 01415680 _____ (wj32) C:\Program Files\YIO6OTBR.exe
2015-06-30 16:03 - 2015-06-30 16:03 - 01415680 _____ (wj32) C:\Program Files\RWPJ16ZS.exe
2015-06-30 16:02 - 2015-06-30 16:02 - 01415680 _____ (wj32) C:\Program Files\YEVDIBIJ.exe
2015-06-30 16:02 - 2015-06-30 16:02 - 01415680 _____ (wj32) C:\Program Files\WK5NGBI7.exe
2015-06-30 16:02 - 2015-06-30 16:02 - 01415680 _____ (wj32) C:\Program Files\94MSZSMH.exe
2015-06-30 16:02 - 2015-06-30 16:02 - 01415680 _____ (wj32) C:\Program Files\4LDTBGX9.exe
2015-06-30 16:01 - 2015-06-30 16:01 - 01415680 _____ (wj32) C:\Program Files\EJOTBGAP.exe
2015-06-30 16:00 - 2015-06-30 16:00 - 01415680 _____ (wj32) C:\Program Files\TPPRNH7N.exe
2015-06-30 16:00 - 2015-06-30 16:00 - 01415680 _____ (wj32) C:\Program Files\TLNFV7TL.exe
2015-06-30 16:00 - 2015-06-30 16:00 - 01415680 _____ (wj32) C:\Program Files\NR53HRBX.exe
2015-06-30 16:00 - 2015-06-30 16:00 - 01415680 _____ (wj32) C:\Program Files\2A0KWM60.exe
2015-06-30 15:59 - 2015-06-30 15:59 - 01415680 _____ (wj32) C:\Program Files\DFD9DPL5.exe
2015-06-30 05:02 - 2015-06-30 05:02 - 01415680 _____ (wj32) C:\Program Files\DUZFWPUK.exe
2015-06-30 05:01 - 2015-06-30 05:01 - 01415680 _____ (wj32) C:\Program Files\CMUGOOXN.exe
2015-06-30 04:58 - 2015-06-30 04:58 - 01415680 _____ (wj32) C:\Program Files\YIBVOI0I.exe
2015-06-30 04:57 - 2015-06-30 04:57 - 01415680 _____ (wj32) C:\Program Files\9EJ1UBG7.exe
2015-06-30 04:54 - 2015-06-30 04:54 - 01415680 _____ (wj32) C:\Program Files\G93L1TYP.exe
2015-06-30 04:53 - 2015-06-30 04:53 - 01415680 _____ (wj32) C:\Program Files\2OKYKM8M.exe
2015-06-30 04:52 - 2015-06-30 04:52 - 01415680 _____ (wj32) C:\Program Files\1FRTLZ1J.exe
2015-06-30 04:49 - 2015-06-30 04:49 - 01415680 _____ (wj32) C:\Program Files\FB37JV75.exe
2015-06-30 04:48 - 2015-06-30 04:48 - 01415680 _____ (wj32) C:\Program Files\KXP5DIZD.exe
2015-06-30 04:47 - 2015-06-30 04:47 - 01415680 _____ (wj32) C:\Program Files\ZB9HJ191.exe
2015-06-30 04:46 - 2015-06-30 04:46 - 01415680 _____ (wj32) C:\Program Files\ZTM4ZTB2.exe
2015-06-30 04:46 - 2015-06-30 04:46 - 01415680 _____ (wj32) C:\Program Files\OUPJ172F.exe
2015-06-30 04:46 - 2015-06-30 04:46 - 01415680 _____ (wj32) C:\Program Files\49E8DIN2.exe
2015-06-30 04:45 - 2015-06-30 04:45 - 01415680 _____ (wj32) C:\Program Files\R3FRGVJ9.exe
2015-06-30 04:45 - 2015-06-30 04:45 - 01415680 _____ (wj32) C:\Program Files\O6ZHC6OK.exe
2015-06-30 04:42 - 2015-06-30 04:42 - 01415680 _____ (wj32) C:\Program Files\GVNS916V.exe
2015-06-30 04:39 - 2015-06-30 04:39 - 01415680 _____ (wj32) C:\Program Files\L04KEMRS.exe
2015-06-30 04:37 - 2015-06-30 04:37 - 01415680 _____ (wj32) C:\Program Files\YGYRLEWK.exe
2015-06-30 04:36 - 2015-06-30 04:36 - 01415680 _____ (wj32) C:\Program Files\80TAIBTN.exe
2015-06-30 04:35 - 2015-06-30 04:35 - 01415680 _____ (wj32) C:\Program Files\S6WY0KF9.exe
2015-06-30 04:33 - 2015-06-30 04:33 - 01415680 _____ (wj32) C:\Program Files\58PHX1UK.exe
2015-06-30 04:32 - 2015-06-30 04:32 - 01415680 _____ (wj32) C:\Program Files\VBF7ZHMB.exe
2015-06-30 04:32 - 2015-06-30 04:32 - 01415680 _____ (wj32) C:\Program Files\0WGM4ZHK.exe
2015-06-30 04:30 - 2015-06-30 04:30 - 01415680 _____ (wj32) C:\Program Files\4XPHMKI4.exe
2015-06-30 04:29 - 2015-06-30 04:29 - 01415680 _____ (wj32) C:\Program Files\M4MFXR9B.exe
2015-06-30 04:28 - 2015-06-30 04:28 - 01415680 _____ (wj32) C:\Program Files\ZHZHZSZK.exe
2015-06-30 04:26 - 2015-06-30 04:26 - 01415680 _____ (wj32) C:\Program Files\SZ5KA5NT.exe
2015-06-30 04:26 - 2015-06-30 04:26 - 01415680 _____ (wj32) C:\Program Files\91I0INST.exe
2015-06-30 04:24 - 2015-06-30 04:24 - 01415680 _____ (wj32) C:\Program Files\FKPJ171F.exe
2015-06-30 04:21 - 2015-06-30 04:21 - 01415680 _____ (wj32) C:\Program Files\IYKK05PK.exe
2015-06-30 04:21 - 2015-06-30 04:21 - 01415680 _____ (wj32) C:\Program Files\HOTMGLZE.exe
2015-06-30 04:18 - 2015-06-30 04:18 - 01415680 _____ (wj32) C:\Program Files\OSLK7M2I.exe
2015-06-30 04:18 - 2015-06-30 04:18 - 01415680 _____ (wj32) C:\Program Files\IARW1UO2.exe
2015-06-30 04:16 - 2015-06-30 04:16 - 01415680 _____ (wj32) C:\Program Files\UCHO4C6C.exe
2015-06-30 04:15 - 2015-06-30 04:15 - 01415680 _____ (wj32) C:\Program Files\BRWK6YDK.exe
2015-06-30 04:14 - 2015-06-30 04:14 - 01415680 _____ (wj32) C:\Program Files\60GX0SXA.exe
2015-06-30 04:13 - 2015-06-30 04:13 - 01415680 _____ (wj32) C:\Program Files\LP2GT7PS.exe
2015-06-30 04:13 - 2015-06-30 04:13 - 01415680 _____ (wj32) C:\Program Files\E8E8KWES.exe
2015-06-30 04:13 - 2015-06-30 04:13 - 01415680 _____ (wj32) C:\Program Files\9D5XCH91.exe
2015-06-30 04:11 - 2015-06-30 04:11 - 01415680 _____ (wj32) C:\Program Files\AUNU2XM5.exe
2015-06-30 04:09 - 2015-06-30 04:09 - 01415680 _____ (wj32) C:\Program Files\A7K8FYTJ.exe
2015-06-30 04:08 - 2015-06-30 04:08 - 01415680 _____ (wj32) C:\Program Files\CVDVK8YG.exe
2015-06-30 04:08 - 2015-06-30 04:08 - 01415680 _____ (wj32) C:\Program Files\9JPEVDJN.exe
2015-06-30 04:06 - 2015-06-30 04:06 - 01415680 _____ (wj32) C:\Program Files\5N5N5ZSJ.exe
2015-06-30 04:06 - 2015-06-30 04:06 - 01415680 _____ (wj32) C:\Program Files\4B4YG9EJ.exe
2015-06-30 04:01 - 2015-06-30 04:01 - 01415680 _____ (wj32) C:\Program Files\YSASASLC.exe
2015-06-30 04:01 - 2015-06-30 04:01 - 01415680 _____ (wj32) C:\Program Files\B5YGASAI.exe
2015-06-30 03:57 - 2015-06-30 03:57 - 01415680 _____ (wj32) C:\Program Files\U8ACEGUP.exe
2015-06-30 03:57 - 2015-06-30 03:57 - 01415680 _____ (wj32) C:\Program Files\RKSMP7S8.exe
2015-06-30 03:57 - 2015-06-30 03:57 - 01415680 _____ (wj32) C:\Program Files\RJBKTLDT.exe
2015-06-30 03:57 - 2015-06-30 03:57 - 01415680 _____ (wj32) C:\Program Files\CHMP7B3S.exe
2015-06-30 03:54 - 2015-06-30 03:54 - 01415680 _____ (wj32) C:\Program Files\OTM3VNST.exe
2015-06-30 03:54 - 2015-06-30 03:54 - 01415680 _____ (wj32) C:\Program Files\2GGI9PF6.exe
2015-06-30 03:51 - 2015-06-30 03:51 - 01415680 _____ (wj32) C:\Program Files\HY1V03L9.exe
2015-06-30 03:44 - 2015-06-30 03:44 - 01415680 _____ (wj32) C:\Program Files\B3WK8KV0.exe
2015-06-30 03:43 - 2015-06-30 03:43 - 01415680 _____ (wj32) C:\Program Files\D7PUZ49Y.exe
2015-06-30 03:43 - 2015-06-30 03:43 - 01415680 _____ (wj32) C:\Program Files\05BG82VS.exe
2015-06-30 03:41 - 2015-06-30 03:41 - 01415680 _____ (wj32) C:\Program Files\WP7PKEJY.exe
2015-06-30 03:41 - 2015-06-30 03:41 - 01415680 _____ (wj32) C:\Program Files\JZ4VCHZ7.exe
2015-06-30 03:41 - 2015-06-30 03:41 - 01415680 _____ (wj32) C:\Program Files\0SKC46OW.exe
2015-06-30 03:39 - 2015-06-30 03:39 - 01415680 _____ (wj32) C:\Program Files\4JWWUNO4.exe
2015-06-30 03:36 - 2015-06-30 03:36 - 01415680 _____ (wj32) C:\Program Files\N5L2YTLM.exe
2015-06-30 03:36 - 2015-06-30 03:36 - 01415680 _____ (wj32) C:\Program Files\B1K349RW.exe
2015-06-30 03:36 - 2015-06-30 03:36 - 01415680 _____ (wj32) C:\Program Files\AOAWEGUK.exe
2015-06-30 03:35 - 2015-06-30 03:35 - 01415680 _____ (wj32) C:\Program Files\XF8D5ZS0.exe
2015-06-30 03:35 - 2015-06-30 03:35 - 01415680 _____ (wj32) C:\Program Files\L04ARH9C.exe
2015-06-30 03:35 - 2015-06-30 03:35 - 01415680 _____ (wj32) C:\Program Files\03XP5MRZ.exe
2015-06-30 03:34 - 2015-06-30 03:34 - 01415680 _____ (wj32) C:\Program Files\85RDI4VR.exe
2015-06-30 03:33 - 2015-06-30 03:33 - 01415680 _____ (wj32) C:\Program Files\K8PICST4.exe
2015-06-30 03:32 - 2015-06-30 03:32 - 01415680 _____ (wj32) C:\Program Files\KXLAFXPK.exe
2015-06-30 03:31 - 2015-06-30 03:31 - 01415680 _____ (wj32) C:\Program Files\6DVDVD80.exe
2015-06-30 03:30 - 2015-06-30 03:30 - 01415680 _____ (wj32) C:\Program Files\XDIZRWOP.exe
2015-06-30 03:30 - 2015-06-30 03:30 - 01415680 _____ (wj32) C:\Program Files\WRXFMO2I.exe
2015-06-30 03:30 - 2015-06-30 03:30 - 01415680 _____ (wj32) C:\Program Files\KV0GXDIV.exe
2015-06-30 03:29 - 2015-06-30 03:29 - 01415680 _____ (wj32) C:\Program Files\Y5OMJE7Y.exe
2015-06-30 03:29 - 2015-06-30 03:29 - 01415680 _____ (wj32) C:\Program Files\IO6DJDVO.exe
2015-06-30 03:29 - 2015-06-30 03:29 - 01415680 _____ (wj32) C:\Program Files\FTIV20GU.exe
2015-06-30 03:29 - 2015-06-30 03:29 - 01415680 _____ (wj32) C:\Program Files\94X5CV00.exe
2015-06-30 03:29 - 2015-06-30 03:29 - 01415680 _____ (wj32) C:\Program Files\81JDVOT6.exe
2015-06-30 03:28 - 2015-06-30 22:04 - 00000000 ____D C:\ProgramData\AVAST Software
2015-06-30 03:28 - 2015-06-30 03:28 - 01415680 _____ (wj32) C:\Program Files\H05HMCOM.exe
2015-06-30 03:28 - 2015-06-30 03:28 - 01415680 _____ (wj32) C:\Program Files\CSE0G8OS.exe
2015-06-30 03:27 - 2015-06-30 03:27 - 01415680 _____ (wj32) C:\Program Files\9C4M49EB.exe
2015-06-30 03:26 - 2015-06-30 03:26 - 01415680 _____ (wj32) C:\Program Files\I05A2IZS.exe
2015-06-30 03:25 - 2015-06-30 03:25 - 01415680 _____ (wj32) C:\Program Files\ZHZBTBDB.exe
2015-06-30 03:25 - 2015-06-30 03:25 - 01415680 _____ (wj32) C:\Program Files\P5XUM29A.exe
2015-06-30 03:24 - 2015-06-30 03:24 - 01415680 _____ (wj32) C:\Program Files\5NHN4DVP.exe
2015-06-30 03:22 - 2015-06-30 03:22 - 01415680 _____ (wj32) C:\Program Files\NSA4X2JB.exe
2015-06-30 03:20 - 2015-06-30 03:20 - 01415680 _____ (wj32) C:\Program Files\WLDF4TLZ.exe
2015-06-30 03:19 - 2015-06-30 03:27 - 05471128 _____ (Avast Software s.r.o.) C:\Users\Public\Desktop\avast_internet_security_setup_online.exe
2015-06-30 03:19 - 2015-06-30 03:19 - 01415680 _____ (wj32) C:\Program Files\HXP7OHO2.exe
2015-06-30 03:19 - 2015-06-30 03:19 - 01415680 _____ (wj32) C:\Program Files\CUC5N5C5.exe
2015-06-30 03:16 - 2015-06-30 03:16 - 01415680 _____ (wj32) C:\Program Files\RTV77W9X.exe
2015-06-30 03:16 - 2015-06-30 03:16 - 01415680 _____ (wj32) C:\Program Files\P6ZGU8O4.exe
2015-06-30 03:12 - 2015-06-30 03:12 - 01415680 _____ (wj32) C:\Program Files\3BD5R3FD.exe
2015-06-30 03:09 - 2015-06-30 03:09 - 01415680 _____ (wj32) C:\Program Files\VDFN51NJ.exe
2015-06-30 03:09 - 2015-06-30 03:09 - 01415680 _____ (wj32) C:\Program Files\EENYUAFR.exe
2015-06-30 03:09 - 2015-06-30 03:09 - 01415680 _____ (wj32) C:\Program Files\C4WOKSUU.exe
2015-06-30 03:09 - 2015-06-30 03:09 - 01415680 _____ (wj32) C:\Program Files\9IR03V3V.exe
2015-06-30 03:07 - 2015-06-30 03:07 - 00000000 ____D C:\Users\User\AppData\Roaming\ZTEMTUI
2015-06-30 03:06 - 2015-06-30 03:06 - 01415680 _____ (wj32) C:\Program Files\G9381VKS.exe
2015-06-30 03:06 - 2015-06-30 03:06 - 01415680 _____ (wj32) C:\Program Files\B3KNSWSG.exe
2015-06-30 03:06 - 2015-06-30 03:06 - 01415680 _____ (wj32) C:\Program Files\A80CUMOM.exe
2015-06-30 03:05 - 2015-06-30 03:05 - 01415680 _____ (wj32) C:\Program Files\KKAMKM2I.exe
2015-06-30 03:05 - 2015-06-30 03:05 - 01415680 _____ (wj32) C:\Program Files\3BBFNNRZ.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\Z9VZRVB7.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\YI06O6O8.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\U8KA0KYS.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\RJOSKNS6.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\O8A6EYIC.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\MKYAY6AA.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\H1FZP7L9.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\G0K0CWCS.exe
2015-06-30 03:04 - 2015-06-30 03:04 - 01415680 _____ (wj32) C:\Program Files\2I6MKKYY.exe
2015-06-30 03:03 - 2015-06-30 03:03 - 01415680 _____ (wj32) C:\Program Files\C8AUAW0O.exe
2015-06-30 03:03 - 2015-06-30 03:03 - 01415680 _____ (wj32) C:\Program Files\4WI42IAU.exe
2015-06-30 03:00 - 2015-06-30 03:00 - 01415680 _____ (wj32) C:\Program Files\Z3FVJNZR.exe
2015-06-30 03:00 - 2015-06-30 03:00 - 01415680 _____ (wj32) C:\Program Files\VLB73NDT.exe
2015-06-30 03:00 - 2015-06-30 03:00 - 01415680 _____ (wj32) C:\Program Files\RZF3FVR3.exe
2015-06-30 03:00 - 2015-06-30 03:00 - 01415680 _____ (wj32) C:\Program Files\HKCRVA25.exe
2015-06-30 02:59 - 2015-06-30 02:59 - 01415680 _____ (wj32) C:\Program Files\SACMOGIA.exe
2015-06-30 02:59 - 2015-06-30 02:59 - 01415680 _____ (wj32) C:\Program Files\S80H0INB.exe
2015-06-30 02:46 - 2015-06-30 02:46 - 01415680 _____ (wj32) C:\Program Files\3EKKWWSZ.exe
2015-06-30 02:42 - 2015-06-30 02:42 - 01415680 _____ (wj32) C:\Program Files\WSXRXHAF.exe
2015-06-30 02:42 - 2015-06-30 02:42 - 01415680 _____ (wj32) C:\Program Files\6B5NSAF6.exe
2015-06-30 00:22 - 2014-06-20 10:30 - 00189912 _____ (McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe
2015-06-30 00:20 - 2015-06-30 00:20 - 01415680 _____ (wj32) C:\Program Files\NIGLMT04.exe
2015-06-29 23:56 - 2015-06-29 23:56 - 00000290 _____ C:\WINDOWS\wininit.ini
2015-06-29 23:53 - 2015-06-29 23:53 - 01415680 _____ (wj32) C:\Program Files\7SBUFYH9.exe
2015-06-29 23:35 - 2015-06-29 23:35 - 01415680 _____ (wj32) C:\Program Files\YHMPA0L3.exe
2015-06-29 23:35 - 2015-06-29 23:35 - 01415680 _____ (wj32) C:\Program Files\C0WKSOO0.exe
2015-06-29 23:29 - 2015-06-29 23:29 - 01415680 _____ (wj32) C:\Program Files\7JVR397V.exe
2015-06-29 23:25 - 2015-06-29 23:29 - 05157536 _____ (McAfee, Inc.) C:\Users\User\Downloads\McAfeeSetup (1).exe
2015-06-29 23:17 - 2015-06-29 23:17 - 01415680 _____ (wj32) C:\Program Files\VOV1J1V9.exe
2015-06-29 23:17 - 2015-06-29 23:17 - 01415680 _____ (wj32) C:\Program Files\PR68XOPJ.exe
2015-06-29 23:16 - 2015-06-29 23:38 - 00000000 ____D C:\Program Files\stinger
2015-06-29 22:51 - 2015-06-29 22:51 - 01415680 _____ (wj32) C:\Program Files\TXBF6KYN.exe
2015-06-29 22:01 - 2015-06-29 22:01 - 01415680 _____ (wj32) C:\Program Files\C4L1IN3K.exe
2015-06-29 21:48 - 2015-06-29 21:59 - 07720664 _____ (McAfee, Inc.) C:\Users\User\Downloads\Setup_serial_vXhmvuT7FQA_QT7-DpztaA2_key.exe
2015-06-29 21:27 - 2015-06-29 21:27 - 01415680 _____ (wj32) C:\Program Files\JJ37R7FN.exe
2015-06-29 21:26 - 2015-06-29 21:26 - 01415680 _____ (wj32) C:\Program Files\EAMAW8WO.exe
2015-06-29 21:14 - 2015-06-29 21:14 - 01415680 _____ (wj32) C:\Program Files\K8P5A2WA.exe
2015-06-29 21:14 - 2015-06-29 21:14 - 01415680 _____ (wj32) C:\Program Files\I5NJCYD5.exe
2015-06-29 20:00 - 2015-06-29 20:04 - 04718584 _____ (Avira Operations GmbH & Co. KG) C:\Users\User\Downloads\avira_en_av_5591562e2b8e5__ws.exe
2015-06-29 19:55 - 2015-06-29 19:56 - 00688992 _____ (Swearware) C:\Users\User\Desktop\dds.scr
2015-06-29 19:55 - 2015-06-29 19:55 - 00000126 _____ C:\Users\User\Desktop\download.htm
2015-06-29 19:39 - 2015-06-29 19:39 - 01415680 _____ (wj32) C:\Program Files\PHXFAB6N.exe
2015-06-29 19:36 - 2015-06-29 19:36 - 01415680 _____ (wj32) C:\Program Files\NVKIJKXX.exe
2015-06-29 19:32 - 2015-06-29 19:32 - 01415680 _____ (wj32) C:\Program Files\U16ZHMGL.exe
2015-06-29 19:32 - 2015-06-29 19:32 - 01415680 _____ (wj32) C:\Program Files\LX9NZL7P.exe
2015-06-29 19:32 - 2015-06-29 19:32 - 01415680 _____ (wj32) C:\Program Files\IA2MU6SM.exe
2015-06-29 19:32 - 2015-06-29 19:32 - 01415680 _____ (wj32) C:\Program Files\CYKCAI4U.exe
2015-06-29 19:30 - 2015-06-29 19:30 - 00000103 _____ C:\Users\User\Desktop\oas-disabled-fix.cmd
2015-06-29 19:22 - 2015-06-29 19:22 - 01415680 _____ (wj32) C:\Program Files\O2E02G8W.exe
2015-06-29 19:22 - 2015-06-29 19:22 - 01415680 _____ (wj32) C:\Program Files\MYACMEWO.exe
2015-06-29 19:22 - 2015-06-29 19:22 - 01415680 _____ (wj32) C:\Program Files\97D535NB.exe
2015-06-29 19:22 - 2015-06-29 19:22 - 01415680 _____ (wj32) C:\Program Files\6YWEGYKO.exe
2015-06-29 19:04 - 2015-06-29 19:04 - 01415680 _____ (wj32) C:\Program Files\XH13RNZN.exe
2015-06-29 17:34 - 2015-06-29 17:34 - 01415680 _____ (wj32) C:\Program Files\PZXDLPJL.exe
2015-06-29 17:34 - 2015-06-29 17:34 - 01415680 _____ (wj32) C:\Program Files\DFHPNZRZ.exe
2015-06-29 17:34 - 2015-06-29 17:34 - 01415680 _____ (wj32) C:\Program Files\86SA47OK.exe
2015-06-29 16:54 - 2015-06-29 16:54 - 01415680 _____ (wj32) C:\Program Files\I4OAWGC0.exe
2015-06-29 16:54 - 2015-06-29 16:54 - 01415680 _____ (wj32) C:\Program Files\AAKUGWC6.exe
2015-06-29 16:54 - 2015-06-29 16:54 - 01415680 _____ (wj32) C:\Program Files\5DV9BTJV.exe
2015-06-29 16:54 - 2015-06-29 16:54 - 01415680 _____ (wj32) C:\Program Files\1JZR9E6W.exe
2015-06-29 16:43 - 2015-06-29 16:43 - 01415680 _____ (wj32) C:\Program Files\4KIACA82.exe
2015-06-29 16:43 - 2015-06-29 16:43 - 01415680 _____ (wj32) C:\Program Files\380FK0UP.exe
2015-06-29 16:38 - 2015-06-29 16:39 - 00000000 ____D C:\ProgramData\Protexis64
2015-06-29 16:37 - 2015-06-29 16:34 - 00002539 _____ C:\Users\Public\Desktop\Bitstream Font Navigator (64-Bit).lnk
2015-06-29 16:37 - 2015-06-29 16:29 - 00003072 _____ C:\Users\Public\Desktop\Corel CAPTURE X7 (64-Bit).lnk
2015-06-29 16:37 - 2015-06-29 16:29 - 00002363 _____ C:\Users\Public\Desktop\Corel CONNECT X7 (64-Bit).lnk
2015-06-29 16:37 - 2015-06-29 16:28 - 00003079 _____ C:\Users\Public\Desktop\Corel PHOTO-PAINT X7 (64-Bit).lnk
2015-06-29 16:37 - 2015-06-29 16:28 - 00003031 _____ C:\Users\Public\Desktop\CorelDRAW X7 (64-Bit).lnk
2015-06-29 16:35 - 2015-06-29 16:35 - 00000000 ____D C:\Users\User\Downloads\Corel Draw X7 [32-64]
2015-06-29 16:34 - 2015-06-29 16:34 - 00000000 ____D C:\Program Files\Common Files\Corel
2015-06-29 16:33 - 2015-06-29 16:33 - 00000000 ____D C:\Program Files\Common Files\Protexis
2015-06-29 16:32 - 2015-06-29 16:32 - 00019242 _____ C:\Users\User\Downloads\[]corel.draw.x7.x32.x64.btis (1).torrent
2015-06-29 16:31 - 2015-06-29 16:32 - 00019242 _____ C:\Users\User\Downloads\[]corel.draw.x7.x32.x64.btis.torrent
2015-06-29 16:28 - 2015-06-29 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit)
2015-06-29 16:27 - 2015-06-29 16:27 - 00000000 ____D C:\Program Files\Corel
2015-06-29 16:25 - 2015-06-29 16:25 - 01415680 _____ (wj32) C:\Program Files\NP1PRX1T.exe
2015-06-29 16:24 - 2015-06-29 16:37 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X7 x64
2015-06-29 16:23 - 2015-06-29 16:23 - 00000000 ____D C:\WINDOWS\pcpps
2015-06-29 16:10 - 2015-06-29 16:10 - 01415680 _____ (wj32) C:\Program Files\MOW4CO20.exe
2015-06-29 16:06 - 2015-06-29 16:06 - 01415680 _____ (wj32) C:\Program Files\JC4Y3W1R.exe
2015-06-29 16:03 - 2015-06-29 16:03 - 01415680 _____ (wj32) C:\Program Files\3PBXOKG7.exe
2015-06-29 02:47 - 2015-06-29 02:47 - 00196538 _____ C:\Users\User\Downloads\watch (1).htm
2015-06-29 02:38 - 2015-06-29 02:38 - 01415680 _____ (wj32) C:\Program Files\WCKW8SW8.exe
2015-06-29 02:38 - 2015-06-29 02:38 - 01415680 _____ (wj32) C:\Program Files\EGYW0ECW.exe
2015-06-29 01:59 - 2015-06-29 01:59 - 01415680 _____ (wj32) C:\Program Files\FIA26B3S.exe
2015-06-29 01:59 - 2015-06-29 01:59 - 01415680 _____ (wj32) C:\Program Files\1DVNPHJ7.exe
2015-06-29 00:38 - 2015-06-29 00:38 - 01415680 _____ (wj32) C:\Program Files\K2L6IGSO.exe
2015-06-29 00:38 - 2015-06-29 00:38 - 01415680 _____ (wj32) C:\Program Files\8R3V7K20.exe
2015-06-29 00:38 - 2015-06-29 00:38 - 01415680 _____ (wj32) C:\Program Files\68WMOU04.exe
2015-06-29 00:35 - 2015-06-29 00:35 - 01415680 _____ (wj32) C:\Program Files\E670AGAY.exe
2015-06-29 00:33 - 2015-06-29 00:33 - 01415680 _____ (wj32) C:\Program Files\ST6KXLWY.exe
2015-06-29 00:27 - 2015-06-29 00:27 - 01415680 _____ (wj32) C:\Program Files\GSW8SCSO.exe
2015-06-29 00:27 - 2015-06-29 00:27 - 01415680 _____ (wj32) C:\Program Files\CKOWOSOG.exe
2015-06-29 00:19 - 2015-06-29 00:19 - 00020064 _____ C:\Users\User\Downloads\MONOVA.ORG CorelDRAW Graphics Suite X7 [Eng] 32bit-64bit including crack.torrent
2015-06-29 00:15 - 2015-06-29 00:15 - 01415680 _____ (wj32) C:\Program Files\26YE0M80.exe
2015-06-29 00:12 - 2015-06-29 19:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Toolkit Final
2015-06-29 00:12 - 2015-06-29 00:12 - 00494885 _____ C:\Users\User\Downloads\Microsoft Toolkit Final.exe
2015-06-29 00:08 - 2015-06-29 00:08 - 01415680 _____ (wj32) C:\Program Files\V37B37V3.exe
2015-06-28 23:52 - 2015-06-30 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-06-28 23:51 - 2015-06-28 23:51 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-06-28 23:50 - 2015-06-28 23:50 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-06-28 23:49 - 2015-06-28 23:50 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-06-28 23:47 - 2015-06-28 23:47 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2015-06-28 23:47 - 2015-06-28 23:47 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2015-06-28 23:46 - 2015-06-28 23:49 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-28 23:46 - 2015-06-28 23:46 - 00000000 __RHD C:\MSOCache
2015-06-28 23:46 - 2015-06-28 23:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-06-28 23:26 - 2015-06-28 23:26 - 00004063 _____ C:\Users\User\Downloads\[]
2015-06-28 23:23 - 2015-06-28 23:23 - 00000000 ____D C:\Users\User\AppData\Local\VS Revo Group
2015-06-28 23:23 - 2015-06-28 23:23 - 00000000 ____D C:\ProgramData\VS Revo Group
2015-06-28 20:47 - 2014-01-12 15:48 - 00000000 ____D C:\Users\User\Desktop\cdrom.inf_amd64_cf04adb457be1724
2015-06-28 20:46 - 2015-06-28 20:46 - 00090604 _____ C:\Users\User\Downloads\
2015-06-28 20:45 - 2015-06-28 20:45 - 00087418 _____ C:\Users\User\Downloads\
2015-06-28 20:45 - 2014-01-12 02:34 - 00000000 ____D C:\Users\User\Desktop\cdrom.inf_amd64_42e9c29f0affc440
2015-06-28 20:32 - 2015-06-28 20:34 - 00600658 _____ ( ) C:\Users\User\Downloads\DriverUpdateTools.exe
2015-06-28 20:09 - 2015-06-28 20:09 - 00000000 ____D C:\Program Files\Common Files\Atheros
2015-06-28 19:56 - 2015-06-28 19:56 - 01415680 _____ (wj32) C:\Program Files\L160S701.exe
2015-06-28 19:56 - 2015-06-28 19:56 - 01415680 _____ (wj32) C:\Program Files\CKOOWW0O.exe
2015-06-28 19:49 - 2015-06-28 19:49 - 01415680 _____ (wj32) C:\Program Files\IKCOMEWA.exe
2015-06-28 19:49 - 2015-06-28 19:49 - 01415680 _____ (wj32) C:\Program Files\5DX5DLPX.exe
2015-06-28 19:42 - 2015-06-28 19:42 - 00000000 ____D C:\Users\User\AppData\Roaming\Ashampoo
2015-06-28 19:42 - 2015-06-28 19:42 - 00000000 ____D C:\Users\User\AppData\Local\ashampoo
2015-06-28 19:42 - 2015-06-28 19:42 - 00000000 ____D C:\ProgramData\ashampoo
2015-06-28 19:40 - 2015-06-28 19:40 - 00000000 ____D C:\Users\User\Desktop\Ashampoo Burning Studio with themepack
2015-06-28 19:32 - 2015-06-30 20:46 - 00002232 ____H C:\Users\User\Documents\Default.rdp
2015-06-28 18:58 - 2015-06-28 18:58 - 01415680 _____ (wj32) C:\Program Files\UZ6ZUCUJ.exe
2015-06-28 18:58 - 2015-06-28 18:58 - 01415680 _____ (wj32) C:\Program Files\USEO5RH2.exe
2015-06-28 18:58 - 2015-06-28 18:58 - 01415680 _____ (wj32) C:\Program Files\PBXUGRCA.exe
2015-06-28 02:52 - 2015-06-28 02:52 - 01415680 _____ (wj32) C:\Program Files\M24YKCIG.exe
2015-06-27 19:49 - 2015-06-28 20:17 - 00007605 _____ C:\Users\User\AppData\Local\Resmon.ResmonCfg
2015-06-27 19:31 - 2015-06-27 19:31 - 01415680 _____ (wj32) C:\Program Files\P6P3C3PK.exe
2015-06-27 19:31 - 2015-06-27 19:31 - 01415680 _____ (wj32) C:\Program Files\EXEAO5TK.exe
2015-06-27 19:31 - 2015-06-27 19:31 - 01415680 _____ (wj32) C:\Program Files\CTWD6B50.exe
2015-06-27 19:31 - 2015-06-27 19:31 - 01415680 _____ (wj32) C:\Program Files\CL73ZKEB.exe
2015-06-27 19:31 - 2015-06-27 19:31 - 01415680 _____ (wj32) C:\Program Files\AS06Y0C0.exe
2015-06-27 19:31 - 2015-06-27 19:31 - 01415680 _____ (wj32) C:\Program Files\1N5RPBJ1.exe
2015-06-27 04:02 - 2015-06-27 04:02 - 01415680 _____ (wj32) C:\Program Files\SKVW118I.exe
2015-06-27 03:57 - 2015-06-27 03:57 - 01415680 _____ (wj32) C:\Program Files\RRV37ZZJ.exe
2015-06-27 03:53 - 2015-06-27 03:53 - 00347816 _____ (Microsoft Corporation) C:\Users\User\Downloads\MicrosoftFixit.dvd.MATSKB.Run.exe
2015-06-27 03:42 - 2015-06-27 03:42 - 00638243 _____ C:\Users\User\Downloads\CDDVDWin8.meta (1).diagcab
2015-06-27 03:33 - 2015-06-27 03:33 - 01415680 _____ (wj32) C:\Program Files\DJ5R1TF7.exe
2015-06-27 03:26 - 2015-06-27 03:26 - 01415680 _____ (wj32) C:\Program Files\YPUYK5J2.exe
2015-06-27 03:26 - 2015-06-27 03:26 - 01415680 _____ (wj32) C:\Program Files\IOI06BGH.exe
2015-06-27 03:19 - 2015-06-27 03:19 - 01415680 _____ (wj32) C:\Program Files\LT9T9LTX.exe
2015-06-27 03:15 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2015-06-27 03:15 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2015-06-27 02:55 - 2015-06-27 03:09 - 00000000 ____D C:\Users\User\Downloads\Nero Burning ROM 10.5.10300 + Key [RH]
2015-06-27 02:37 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2015-06-27 02:11 - 2015-06-27 02:11 - 01415680 _____ (wj32) C:\Program Files\ZTZ6OJ2M.exe
2015-06-27 02:11 - 2015-06-27 02:11 - 01415680 _____ (wj32) C:\Program Files\JVFNBRBZ.exe
2015-06-27 02:11 - 2015-06-27 02:11 - 01415680 _____ (wj32) C:\Program Files\JRBJB1BB.exe
2015-06-27 02:11 - 2015-06-27 02:11 - 01415680 _____ (wj32) C:\Program Files\IR3C432E.exe
2015-06-27 02:10 - 2015-06-27 02:10 - 01415680 _____ (wj32) C:\Program Files\95HPHL7T.exe
2015-06-27 02:10 - 2015-06-27 02:10 - 01415680 _____ (wj32) C:\Program Files\775FT7H7.exe
2015-06-27 02:04 - 2015-06-27 02:04 - 01415680 _____ (wj32) C:\Program Files\0ZV76CB3.exe
2015-06-27 02:00 - 2015-06-27 02:36 - 86837264 _____ (Nero AG) C:\Users\User\Downloads\Nero_BurningROM2015-16.0.02600_softonic_trial.exe
2015-06-27 01:57 - 2015-06-27 03:29 - 00000000 ____D C:\Users\User\AppData\Roaming\Nero
2015-06-27 01:57 - 2015-06-27 03:17 - 00000000 ____D C:\Users\User\AppData\Local\Nero
2015-06-27 01:57 - 2015-06-27 01:59 - 00000000 ____D C:\Users\User\AppData\Local\Nero_AG
2015-06-27 01:52 - 2015-06-29 19:24 - 00000000 ____D C:\Program Files (x86)\Nero
2015-06-27 01:52 - 2015-06-27 03:12 - 00000000 ____D C:\ProgramData\Nero
2015-06-27 01:49 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2015-06-27 01:47 - 2015-06-27 01:47 - 01415680 _____ (wj32) C:\Program Files\LNP1T53V.exe
2015-06-27 01:33 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2015-06-27 01:07 - 2015-06-27 01:07 - 01415680 _____ (wj32) C:\Program Files\DHTX1XXD.exe
2015-06-27 01:07 - 2015-06-27 01:07 - 00000000 ____D C:\b4f879bec5b21fbd1b59cd9e21
2015-06-27 01:05 - 2015-06-27 01:06 - 00255920 _____ C:\Users\User\Downloads\Touch_Firmware_Elan_A01_W764W864W8164_ZPE.exe
2015-06-27 00:40 - 2015-06-27 01:28 - 201645672 _____ (Nero AG) C:\Users\User\Downloads\Nero_MediaHome_setup-16.0.02900_3p_free.exe
2015-06-27 00:36 - 2015-06-27 00:36 - 00000000 ____D C:\Users\User\AppData\Roaming\AVG
2015-06-27 00:35 - 2015-06-27 00:35 - 00000000 ____D C:\Users\User\AppData\Local\Avg
2015-06-27 00:33 - 2015-06-27 00:37 - 00000000 ____D C:\ProgramData\AVG
2015-06-27 00:04 - 2015-06-27 00:04 - 00000000 ____D C:\Users\User\Documents\My Weblog Posts
2015-06-27 00:04 - 2015-06-27 00:04 - 00000000 ____D C:\Users\User\AppData\Roaming\Windows Live Writer
2015-06-27 00:04 - 2015-06-27 00:04 - 00000000 ____D C:\Users\User\AppData\Local\Windows Live Writer
2015-06-26 19:23 - 2015-06-26 19:23 - 01415680 _____ (wj32) C:\Program Files\A1NWAO2H.exe
2015-06-26 19:22 - 2015-06-26 19:22 - 01415680 _____ (wj32) C:\Program Files\V4DWDRNZ.exe
2015-06-26 19:22 - 2015-06-26 19:22 - 01415680 _____ (wj32) C:\Program Files\401NW5WB.exe
2015-06-26 19:21 - 2015-06-26 19:21 - 01415680 _____ (wj32) C:\Program Files\T2GXL7LI.exe
2015-06-26 19:21 - 2015-06-26 19:21 - 01415680 _____ (wj32) C:\Program Files\6UBPY7KN.exe
2015-06-26 06:10 - 2015-06-26 06:10 - 00206178 _____ C:\Users\User\Downloads\watch.htm
2015-06-26 02:23 - 2015-06-27 00:31 - 00001090 _____ C:\Users\User\AppData\Roaming\burnaware.ini
2015-06-26 02:22 - 2015-06-27 00:24 - 00000000 ____D C:\Users\User\AppData\Roaming\OpenCandy
2015-06-26 02:20 - 2015-06-26 02:21 - 08369728 _____ (Burnaware ) C:\Users\User\Downloads\burnaware_free.exe
2015-06-26 02:19 - 2015-06-26 02:20 - 03469871 _____ (LIGHTNING UK!) C:\Users\User\Downloads\SetupImgBurn_2.5.8.0.exe
2015-06-26 01:37 - 2015-06-26 01:42 - 09224497 _____ C:\Users\User\Downloads\paint_trails_brushes_by_env1ro (1).rar
2015-06-26 01:36 - 2015-06-26 01:47 - 21326967 _____ C:\Users\User\Downloads\385-grunge-vector-line-brushset-1.rar
2015-06-26 01:36 - 2015-06-26 01:43 - 19306695 _____ C:\Users\User\Downloads\
2015-06-26 01:35 - 2015-06-26 01:36 - 00572102 _____ C:\Users\User\Downloads\hyper_brushes_by_axeraider70.abr
2015-06-26 01:35 - 2015-06-26 01:35 - 00453852 _____ C:\Users\User\Downloads\
2015-06-26 01:31 - 2015-06-26 01:33 - 05714151 _____ C:\Users\User\Downloads\
2015-06-26 01:30 - 2015-06-26 01:33 - 09224497 _____ C:\Users\User\Downloads\paint_trails_brushes_by_env1ro.rar
2015-06-26 01:29 - 2015-06-26 01:34 - 04047912 _____ C:\Users\User\Downloads\paint_markers_brush_set_by_ldn755.abr
2015-06-26 01:28 - 2015-06-26 01:28 - 00001645 _____ C:\Users\User\Downloads\andantonius___pencil_brush_by_andantonius-d1qom1i.abr
2015-06-24 00:33 - 2015-06-24 00:33 - 18174128 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2015-06-22 18:56 - 2015-06-22 18:59 - 00638243 _____ C:\Users\User\Downloads\CDDVDWin8.meta.diagcab
2015-06-20 23:05 - 2015-06-20 23:05 - 00021248 _____ C:\Users\User\Downloads\D02C78BFBE39DB1CE843274966088D7DBE243351.torrent
2015-06-20 23:03 - 2015-06-20 23:03 - 00020024 _____ C:\Users\User\Downloads\D7A46713EAEE18C746B3254B7D1492A50FD9D6CE.torrent
2015-06-19 19:10 - 2015-06-19 19:10 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-06-19 19:09 - 2015-06-30 22:14 - 00000924 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-4064182937-4136054916-3625840862-1001UA.job
2015-06-19 19:09 - 2015-06-30 19:14 - 00000872 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-4064182937-4136054916-3625840862-1001Core.job
2015-06-19 19:09 - 2015-06-19 19:09 - 00003868 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4064182937-4136054916-3625840862-1001UA
2015-06-19 19:09 - 2015-06-19 19:09 - 00003488 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4064182937-4136054916-3625840862-1001Core
2015-06-19 19:09 - 2015-06-19 19:09 - 00000000 ____D C:\Users\User\AppData\Local\Dropbox
2015-06-19 19:09 - 2015-06-19 19:09 - 00000000 ____D C:\ProgramData\Dropbox
2015-06-18 17:22 - 2015-06-18 19:18 - 193276899 _____ C:\Users\User\Downloads\321.rar
2015-06-18 02:42 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys
2015-06-17 14:19 - 2015-06-17 14:19 - 00314751 _____ C:\Users\User\Downloads\attachments (2).zip
2015-06-15 22:53 - 2015-06-15 23:09 - 18163385 _____ C:\Users\User\Downloads\Fargo S1 E6 Buridans [bleep].mp4.crdownload
2015-06-14 01:42 - 2015-05-25 18:53 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-06-14 01:42 - 2015-05-25 18:37 - 01430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-06-14 01:42 - 2015-05-22 18:38 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-06-14 01:42 - 2015-05-21 18:38 - 01119232 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-06-14 01:42 - 2015-05-21 18:38 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-06-14 01:42 - 2015-05-21 18:38 - 00756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-06-14 01:42 - 2015-05-21 18:38 - 00422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-06-14 01:42 - 2015-05-21 18:38 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-06-14 01:42 - 2015-05-21 18:38 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-06-14 01:42 - 2015-04-17 03:37 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-06-14 01:42 - 2015-04-09 04:11 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-06-14 01:42 - 2015-04-09 03:37 - 00410336 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-06-14 01:42 - 2015-04-02 04:12 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-06-14 01:42 - 2015-04-02 04:00 - 02483712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-06-14 01:42 - 2015-03-20 09:19 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-06-14 01:42 - 2015-03-20 08:38 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-06-14 01:42 - 2015-03-20 08:07 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-06-14 01:42 - 2015-03-20 07:37 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-06-14 01:42 - 2015-03-02 07:13 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-06-14 01:42 - 2015-03-02 06:51 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-06-14 01:16 - 2015-04-16 11:47 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-06-14 01:15 - 2015-04-14 04:07 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-06-14 01:15 - 2015-04-14 04:04 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-06-14 01:15 - 2015-04-10 06:10 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-06-14 01:15 - 2015-04-10 05:47 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-06-14 01:13 - 2015-04-01 09:51 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-06-14 01:13 - 2015-04-01 09:48 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-06-14 01:13 - 2015-04-01 09:47 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-06-14 01:13 - 2015-04-01 09:38 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-06-14 01:13 - 2015-04-01 09:16 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-06-14 01:13 - 2015-04-01 08:47 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-06-14 01:13 - 2015-04-01 08:47 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-06-14 01:13 - 2015-04-01 08:23 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-06-14 01:13 - 2015-04-01 08:23 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-06-14 01:13 - 2015-04-01 08:15 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-06-14 01:13 - 2015-04-01 08:15 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-06-14 01:13 - 2015-04-01 07:44 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-06-14 01:13 - 2015-04-01 07:42 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-06-13 18:54 - 2015-05-27 20:05 - 24917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-06-13 18:54 - 2015-05-27 19:38 - 19607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-06-13 18:54 - 2015-05-23 08:45 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-06-13 18:54 - 2015-05-23 08:44 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-06-13 18:54 - 2015-05-23 08:40 - 02278912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-06-13 18:54 - 2015-05-23 08:35 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-06-13 18:54 - 2015-05-23 08:34 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-06-13 18:54 - 2015-05-23 08:18 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-06-13 18:54 - 2015-05-23 08:17 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-06-13 18:54 - 2015-05-23 08:17 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-06-13 18:54 - 2015-05-23 08:17 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-06-13 18:54 - 2015-05-23 08:13 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-06-13 18:54 - 2015-05-23 08:08 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-06-13 18:54 - 2015-05-23 08:08 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-06-13 18:54 - 2015-05-23 08:07 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-06-13 18:54 - 2015-05-23 07:58 - 12829696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-06-13 18:54 - 2015-05-23 07:58 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-06-13 18:54 - 2015-05-23 07:50 - 01950720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-06-13 18:54 - 2015-05-23 07:46 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-06-13 18:54 - 2015-05-23 07:44 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-06-13 18:54 - 2015-05-23 00:30 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-06-13 18:54 - 2015-05-23 00:30 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-06-13 18:54 - 2015-05-23 00:30 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-06-13 18:54 - 2015-05-23 00:22 - 06026240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-06-13 18:54 - 2015-05-23 00:18 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-06-13 18:54 - 2015-05-23 00:17 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-06-13 18:54 - 2015-05-23 00:17 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-06-13 18:54 - 2015-05-22 23:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-06-13 18:54 - 2015-05-22 23:53 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-06-13 18:54 - 2015-05-22 23:51 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-06-13 18:54 - 2015-05-22 23:45 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-06-13 18:54 - 2015-05-22 23:39 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-06-13 18:54 - 2015-05-22 23:38 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-06-13 18:54 - 2015-05-22 23:36 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-06-13 18:54 - 2015-05-22 23:35 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-06-13 18:54 - 2015-05-22 23:27 - 14404096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-06-13 18:54 - 2015-05-22 23:20 - 02426880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-06-13 18:54 - 2015-05-22 23:19 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-06-13 18:54 - 2015-05-22 23:08 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-06-13 18:54 - 2015-05-22 22:56 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-06-13 18:01 - 2015-04-25 08:04 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-06-13 18:01 - 2015-04-25 08:03 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-06-12 19:12 - 2015-06-12 19:12 - 00000000 ____D C:\Users\User\AppData\Roaming\WTablet
2015-06-12 19:08 - 2015-06-12 19:09 - 00000000 ____D C:\Program Files (x86)\TabletPlugins
2015-06-12 19:08 - 2015-06-12 19:08 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom
2015-06-12 19:08 - 2014-01-13 11:54 - 01913624 _____ (Wacom Technology, Corp.) C:\WINDOWS\system32\Pen_Tablet.dll
2015-06-12 19:08 - 2014-01-13 11:54 - 01906968 _____ (Wacom Technology, Corp.) C:\WINDOWS\system32\Pen_Touch_Tablet.dll
2015-06-12 19:08 - 2014-01-13 11:54 - 01780504 _____ (Wacom Technology, Corp.) C:\WINDOWS\system32\WacomMT.dll
2015-06-12 19:08 - 2014-01-13 11:54 - 01778968 _____ (Wacom Technology, Corp.) C:\WINDOWS\system32\Wintab32.dll
2015-06-12 19:08 - 2014-01-13 11:54 - 01544472 _____ (Wacom Technology, Corp.) C:\WINDOWS\SysWOW64\Pen_Touch_Tablet.dll
2015-06-12 19:08 - 2014-01-13 11:54 - 01432344 _____ (Wacom Technology, Corp.) C:\WINDOWS\SysWOW64\WacomMT.dll
2015-06-12 14:03 - 2015-05-21 22:17 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-06-12 03:56 - 2015-06-12 04:02 - 38455200 _____ C:\Users\User\Downloads\PenTablet_532-1.exe
2015-06-10 17:26 - 2015-06-10 17:26 - 00001080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CS6.lnk
2015-06-10 17:05 - 2015-06-10 17:05 - 00000000 ____D C:\Users\User\AppData\Roaming\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1
2015-06-10 17:00 - 2015-06-10 17:05 - 00000000 ____D C:\ProgramData\Wacom
2015-06-10 17:00 - 2015-06-10 17:00 - 00001163 _____ C:\Users\Public\Desktop\Bamboo Dock.lnk
2015-06-10 17:00 - 2015-06-10 17:00 - 00000000 ____D C:\Users\User\AppData\Roaming\Wacom
2015-06-10 17:00 - 2015-06-10 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bamboo Dock
2015-06-10 16:59 - 2015-06-10 16:59 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-06-10 16:59 - 2015-06-10 16:59 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-06-10 15:30 - 2015-06-10 17:00 - 00000002 _____ C:\Users\User\.bdockinstall.log
2015-06-10 15:30 - 2015-06-10 17:00 - 00000000 ____D C:\Program Files (x86)\Bamboo Dock
2015-06-10 15:29 - 2015-06-12 19:09 - 00000000 ____D C:\Program Files\TabletPlugins
2015-06-10 15:29 - 2013-11-11 19:46 - 00015160 _____ (Wacom Technology) C:\WINDOWS\system32\Drivers\wacomrouterfilter.sys
2015-06-10 15:28 - 2015-06-12 19:08 - 00000000 ____D C:\Program Files\Tablet
2015-06-10 15:28 - 2014-01-13 11:54 - 01551640 _____ (Wacom Technology, Corp.) C:\WINDOWS\SysWOW64\Pen_Tablet.dll
2015-06-10 15:28 - 2013-11-11 19:46 - 00090424 _____ (Wacom Technology) C:\WINDOWS\system32\Drivers\wachidrouter.sys
2015-06-10 15:28 - 2013-11-11 19:46 - 00014136 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\Drivers\hidkmdf.sys
2015-06-10 15:28 - 2012-04-11 18:04 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdfcoinstaller01009.dll
2015-06-09 19:46 - 2015-06-09 19:46 - 00913102 _____ C:\Users\User\Downloads\i4 for site latest.psd
2015-06-09 17:09 - 2015-06-09 17:09 - 00000800 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2015-06-09 17:09 - 2015-06-09 17:09 - 00000752 _____ C:\Users\User\Desktop\Start Tor Browser.lnk
2015-06-09 17:08 - 2015-06-09 17:09 - 00000000 ____D C:\Users\User\Desktop\Tor Browser
2015-06-09 12:41 - 2015-06-09 13:23 - 35854880 _____ C:\Users\User\Downloads\torbrowser-install-4.5.1_en-US.exe
2015-06-08 15:11 - 2015-06-08 15:11 - 00000132 _____ C:\Users\User\AppData\Roaming\Adobe GIF Format CS6 Prefs
2015-06-03 05:44 - 2015-06-03 05:44 - 00000673 _____ C:\Users\User\Downloads\google_eng_250_250.html
2015-06-02 01:52 - 2015-04-10 06:04 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-06-02 01:52 - 2015-04-10 05:41 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-06-02 01:52 - 2015-03-20 07:26 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-06-02 01:52 - 2015-03-17 22:56 - 00467776 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-06-02 01:52 - 2015-03-09 07:32 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-06-02 01:51 - 2015-03-04 07:02 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-06-02 01:51 - 2015-03-04 06:42 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-06-02 01:51 - 2015-01-30 06:23 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-06-02 01:50 - 2015-04-03 06:05 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-06-02 01:50 - 2015-04-03 05:44 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-06-02 01:50 - 2015-04-02 03:52 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-06-02 01:50 - 2015-04-02 03:50 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-06-02 01:50 - 2015-04-01 09:15 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-06-02 01:50 - 2015-04-01 08:01 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-06-02 01:50 - 2015-03-13 07:32 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-06-02 01:50 - 2015-03-13 06:41 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-06-02 01:50 - 2015-03-13 06:09 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-06-02 01:50 - 2015-03-06 08:17 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-06-02 01:49 - 2015-03-11 07:19 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-06-02 01:49 - 2015-03-11 06:39 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-06-02 01:49 - 2015-02-18 04:49 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-06-02 01:48 - 2015-03-13 09:33 - 00239424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-06-02 01:48 - 2015-03-13 09:33 - 00154432 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-06-02 01:48 - 2015-03-06 08:38 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-06-02 01:48 - 2015-03-06 08:13 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-05-31 16:24 - 2015-05-31 16:24 - 00000118 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-05-31 14:40 - 2015-05-31 14:40 - 00000401 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-30 22:45 - 2015-04-12 10:31 - 01516357 _____ C:\WINDOWS\WindowsUpdate.log
2015-06-30 22:44 - 2015-04-12 10:42 - 00000000 ___DO C:\Users\User\OneDrive
2015-06-30 22:44 - 2014-12-03 05:44 - 00000000 ___RD C:\Users\User\Dropbox
2015-06-30 22:44 - 2014-12-03 05:36 - 00000000 ____D C:\Users\User\AppData\Roaming\Dropbox
2015-06-30 22:44 - 2014-12-02 03:35 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4064182937-4136054916-3625840862-1001
2015-06-30 22:42 - 2015-05-29 01:10 - 00000000 ___RD C:\Users\User\Google Drive
2015-06-30 22:41 - 2015-05-20 20:46 - 00000000 ____D C:\Users\User\Tracing
2015-06-30 22:40 - 2015-05-24 02:02 - 00000000 ____D C:\Users\User\AppData\Local\CrashDumps
2015-06-30 22:39 - 2015-05-27 02:13 - 00000900 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-30 22:39 - 2015-04-16 14:55 - 00004148 _____ C:\WINDOWS\Tasks\4652072b-041a-4d46-b300-5cb6025f14d8-4.job
2015-06-30 22:39 - 2013-08-22 20:15 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-06-30 22:38 - 2015-04-12 19:03 - 00000000 ____D C:\WINDOWS\Minidump
2015-06-30 22:38 - 2013-08-22 20:16 - 00323740 _____ C:\WINDOWS\setupact.log
2015-06-30 22:31 - 2014-12-05 22:24 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-06-30 22:30 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\system32\sru
2015-06-30 22:12 - 2015-05-27 02:13 - 00000904 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-30 22:10 - 2015-04-12 16:16 - 00003906 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5A807F99-38A6-491F-A586-45E0041CDCBD}
2015-06-30 22:06 - 2015-05-26 22:06 - 00000396 _____ C:\WINDOWS\Tasks\Bidaily Synchronize Task[973b].job
2015-06-30 22:04 - 2014-11-21 14:04 - 00569250 _____ C:\WINDOWS\PFRO.log
2015-06-30 22:04 - 2013-08-22 18:55 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-06-30 21:40 - 2014-12-02 11:16 - 00000000 ____D C:\Users\User\AppData\Roaming\vlc
2015-06-30 20:56 - 2015-04-27 19:45 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-06-30 20:56 - 2014-12-02 04:11 - 00000000 ____D C:\Program Files\McAfee
2015-06-30 20:56 - 2014-12-02 04:04 - 00000000 ____D C:\ProgramData\McAfee
2015-06-30 20:56 - 2014-12-02 04:04 - 00000000 ____D C:\Program Files\Common Files\McAfee
2015-06-30 20:54 - 2012-07-26 13:42 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2015-06-30 20:48 - 2015-04-27 19:54 - 00000000 __RSD C:\Users\User\Documents\McAfee Vaults
2015-06-30 20:38 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-06-30 20:37 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\tracing
2015-06-30 17:57 - 2014-12-03 07:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-30 17:42 - 2015-03-19 16:20 - 00000000 ____D C:\Users\User\AppData\Roaming\BitTorrent
2015-06-30 17:32 - 2014-11-21 14:14 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-30 16:36 - 2013-01-01 13:52 - 00000000 ____D C:\Users\User\AppData\Local\Packages
2015-06-30 16:10 - 2014-12-30 02:11 - 00000000 ____D C:\ProgramData\Corel
2015-06-30 03:07 - 2014-12-17 22:54 - 00000000 ____D C:\Users\User\AppData\Roaming\AC2787-ZTEEVDO
2015-06-30 03:04 - 2015-04-12 16:15 - 00000000 __SHD C:\Users\User\AppData\Local\EmieUserList
2015-06-30 03:04 - 2015-04-12 16:15 - 00000000 __SHD C:\Users\User\AppData\Local\EmieSiteList
2015-06-30 03:04 - 2015-04-12 16:15 - 00000000 __SHD C:\Users\User\AppData\Local\EmieBrowserModeList
2015-06-30 02:00 - 2014-12-03 06:31 - 00000000 ____D C:\Users\User\AppData\Local\Adobe
2015-06-30 00:32 - 2015-04-16 14:42 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-06-29 23:57 - 2013-08-22 18:55 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-06-29 21:12 - 2015-04-16 14:47 - 00000000 ____D C:\Program Files (x86)\3b5e57a9-2300-42b6-837e-64ff9ae02ad6
2015-06-29 21:04 - 2015-04-13 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2015-06-29 21:03 - 2013-08-22 21:06 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-06-29 19:36 - 2015-04-16 15:07 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-29 16:39 - 2014-12-03 05:49 - 00000000 ____D C:\Users\User\Documents\Corel
2015-06-29 16:38 - 2014-12-30 02:22 - 00000000 ____D C:\Users\User\AppData\Roaming\Corel
2015-06-29 16:29 - 2014-12-30 02:09 - 00000000 ____D C:\Users\Public\Documents\Corel
2015-06-29 00:30 - 2013-08-22 20:14 - 05187736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-06-29 00:28 - 2014-12-12 18:58 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-06-29 00:28 - 2014-11-21 21:26 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-06-29 00:01 - 2012-07-26 10:56 - 00000199 _____ C:\WINDOWS\win.ini
2015-06-29 00:00 - 2014-12-03 05:47 - 00000000 ____D C:\Users\User\Downloads\University Grants Commision_files
2015-06-29 00:00 - 2014-12-03 05:47 - 00000000 ____D C:\Users\User\Downloads\fw
2015-06-29 00:00 - 2014-12-03 05:45 - 00000000 ____D C:\Users\User\Desktop\sanket AUD
2015-06-28 23:51 - 2014-11-21 13:55 - 00000000 ____D C:\WINDOWS\ShellNew
2015-06-28 23:48 - 2013-08-22 21:06 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-28 20:09 - 2013-08-22 20:16 - 00000262 _____ C:\WINDOWS\setuperr.log
2015-06-28 19:16 - 2015-05-28 00:36 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-06-28 18:49 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-06-27 04:51 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\rescache
2015-06-27 04:11 - 2012-07-26 13:29 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-06-27 01:55 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\Cursors
2015-06-27 01:34 - 2013-08-22 21:06 - 00000000 ___RD C:\WINDOWS\ToastData
2015-06-27 01:34 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-06-26 08:09 - 2014-12-03 07:36 - 00000000 ____D C:\Users\User\AppData\Local\Microsoft Help
2015-06-26 03:24 - 2015-05-21 17:30 - 00000000 ____D C:\My
2015-06-24 00:33 - 2014-12-05 22:24 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-06-23 03:35 - 2015-02-01 23:56 - 00000132 _____ C:\Users\User\AppData\Roaming\Adobe PNG Format CS6 Prefs
2015-06-23 01:17 - 2015-05-27 02:18 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-20 23:00 - 2015-03-19 16:59 - 00000878 _____ C:\Users\User\Desktop\BitTorrent.lnk
2015-06-20 23:00 - 2015-03-19 16:59 - 00000858 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2015-06-20 08:32 - 2014-11-21 21:33 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-06-20 08:32 - 2014-11-21 21:33 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-12 13:40 - 2015-04-16 14:51 - 00000000 ____D C:\Users\User\AppData\Local\4C4C4544-1429195891-4E10-8033-B2C04F515831
2015-06-11 15:50 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-06-10 17:00 - 2014-12-03 06:32 - 00000000 ____D C:\ProgramData\Adobe
2015-06-10 16:59 - 2014-12-03 06:37 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-06-08 20:39 - 2014-12-05 22:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-07 22:55 - 2015-04-16 14:46 - 00000000 ____D C:\Users\User\AppData\Roaming\4C4C4544-1429175766-4E10-8033-B2C04F515831
2015-06-07 19:09 - 2015-04-17 21:04 - 00001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-06-07 19:09 - 2015-01-27 03:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-07 19:09 - 2014-12-05 22:12 - 00001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-06-06 16:06 - 2015-05-26 22:06 - 00000000 ____D C:\ProgramData\{1132ae0a-e898-0430-1132-2ae0ae89b82b}
2015-06-02 16:57 - 2013-08-22 21:06 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-06-02 16:53 - 2015-04-12 23:26 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-06-02 16:53 - 2015-04-12 23:26 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-06-02 02:07 - 2014-12-04 18:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-06-02 01:55 - 2014-12-04 18:29 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-31 23:12 - 2015-02-03 16:26 - 00001456 _____ C:\Users\User\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-05-31 04:49 - 2013-08-22 19:06 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
==================== Files in the root of some directories =======
2015-06-08 15:11 - 2015-06-08 15:11 - 0000132 _____ () C:\Users\User\AppData\Roaming\Adobe GIF Format CS6 Prefs
2015-02-01 23:56 - 2015-06-23 03:35 - 0000132 _____ () C:\Users\User\AppData\Roaming\Adobe PNG Format CS6 Prefs
2015-06-26 02:23 - 2015-06-27 00:31 - 0001090 _____ () C:\Users\User\AppData\Roaming\burnaware.ini
2015-02-03 16:26 - 2015-05-31 23:12 - 0001456 _____ () C:\Users\User\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-06-27 19:49 - 2015-06-28 20:17 - 0007605 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
2014-11-21 14:46 - 2014-11-21 14:46 - 80478208 ___SH (Redtail Technology) C:\ProgramData\msboivr.exe
Files to move or delete:
Some files in TEMP:
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-06-30 18:33
==================== End of log ============================