Hi
My computer is effected, random popups and strange applications are running. I tried running and cleaning using "Malwarebytes Anti-Malware" and "Windows Defender". Each time I scan using "Malwarebytes Anti-Malware" I get a few infected items. Windows Defender cannot find any defects.
Please help me clean my computer.
Ran by bunty (administrator) on DESKTOP-HLC83MF (24-01-2017 20:12:51)
Running from C:\Users\bunty\Downloads
Loaded Profiles: bunty (Available Profiles: bunty)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Ready Mode Technology\IRMTService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Oracle Corporation) C:\Users\bunty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Update Tool Notifier.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
() C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
(CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc.) C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-12-31] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [611248 2015-04-19] (Waves Audio Ltd.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2015-07-13] (NVIDIA Corporation)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229080 2015-06-02] (Realtek Semiconductor Corporation)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-27] (Microsoft Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-4190236565-1295636768-4224594000-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50670720 2016-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-4190236565-1295636768-4224594000-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [37376 2016-07-16] (Microsoft Corporation)
Startup: C:\Users\bunty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Update Tool Notifier.exe [2015-12-30] (Oracle Corporation)
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{2e923492-74a5-427d-9c33-135cbf3d8002}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7c343ffd-f18c-44d2-9b3f-87734ad12805}: [DhcpNameServer] 82.163.143.176
Tcpip\..\Interfaces\{a8f940e2-624c-4fd4-9835-c8297c413bb6}: [DhcpNameServer] 82.163.143.176
Tcpip\..\Interfaces\{b69e7ccf-0ad5-4913-b3d4-8e4b9a66fd51}: [DhcpNameServer] 82.163.143.176
ManualProxies:
==================
HKU\S-1-5-21-4190236565-1295636768-4224594000-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell15.msn.com/?pc=DCTE
HKU\S-1-5-21-4190236565-1295636768-4224594000-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-4190236565-1295636768-4224594000-1001 -> DefaultScope {0AE53493-59E1-4DBE-8887-22F8AB0603FE} URL =
SearchScopes: HKU\S-1-5-21-4190236565-1295636768-4224594000-1001 -> {0AE53493-59E1-4DBE-8887-22F8AB0603FE} URL =
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2016-01-17] (Oracle Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2016-01-17] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-30] (Oracle Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-30] (Oracle Corporation)
========
FF DefaultProfile: h7sttrtd.default
FF ProfilePath: C:\Users\bunty\AppData\Roaming\Mozilla\Firefox\Profiles\h7sttrtd.default [2017-01-24]
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2016-01-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2016-01-17] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-30] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [132472 2016-09-09] (Dell Inc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2016-11-30] (Dell)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [78672 2016-09-13] (Dell Inc.)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-06-23] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-06-23] (Dell Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-27] (Dell Inc.)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-19] (Microsoft Corporation) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 IRMTService; c:\Program Files\Intel\Intel® Ready Mode Technology\IRMTService.exe [181520 2015-06-17] (Intel Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [207648 2015-09-04] (Intel Corporation)
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [80208 2016-09-22] (Dell)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056 2015-12-31] (Realtek Semiconductor)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31704 2016-09-09] (Dell Inc.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [563456 2015-01-19] (Waves Audio Ltd.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32464 2016-01-05] (Dell Computer Corporation)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [24240 2016-01-05] (Dell Computer Corporation)
S3 DellWAL; C:\Program Files\Dell\DellDataVault\DDDriver64Dcsa.sys [32464 2016-06-23] (Dell Computer Corporation)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [547840 2015-12-30] (Intel Corporation)
R3 IntelReadyModeDriver; C:\WINDOWS\System32\drivers\IntelReadyModeDriver.sys [33512 2015-06-17] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [615728 2015-12-31] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [5144064 2016-07-16] (Realtek Semiconductor Corporation )
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
S1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-12-18] (Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [194976 2015-12-18] (Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== One Month Created files and folders ========
2017-01-24 19:45 - 2017-01-24 20:12 - 00017759 _____ C:\Users\bunty\Downloads\FRST.txt
2017-01-24 19:45 - 2017-01-24 20:12 - 00000000 ____D C:\FRST
2017-01-24 19:45 - 2017-01-24 19:45 - 02420736 _____ (Farbar) C:\Users\bunty\Downloads\FRST64.exe
2017-01-24 19:42 - 2017-01-24 19:42 - 00000000 ____D C:\Users\bunty\AppData\LocalLow\Mozilla
2017-01-24 18:59 - 2017-01-24 19:46 - 00000000 ____D C:\Users\bunty\AppData\Local\Mozilla
2017-01-24 18:59 - 2017-01-24 19:42 - 00000000 ____D C:\Users\bunty\AppData\Roaming\Mozilla
2017-01-24 18:59 - 2017-01-24 18:59 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-01-24 18:59 - 2017-01-24 18:59 - 00001222 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-01-24 18:58 - 2017-01-24 18:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-24 18:58 - 2017-01-24 18:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-24 18:58 - 2017-01-24 18:58 - 00245344 _____ C:\Users\bunty\Downloads\Firefox Setup Stub 51.0.exe
2017-01-24 13:56 - 2017-01-24 13:56 - 00010705 _____ C:\Users\bunty\Desktop\scan_result.txt
2017-01-24 13:41 - 2017-01-24 13:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{2400EDC4-93AB-5A6F-ADC1-0839325305E7}
2017-01-24 13:41 - 2017-01-24 13:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{1B1842DC-ACB3-F577-54EA-699AB53081F0}
2017-01-24 13:41 - 2017-01-24 13:41 - 00000000 ____D C:\ProgramData\5e0d8369-1b57-1
2017-01-24 13:41 - 2017-01-24 13:41 - 00000000 ____D C:\ProgramData\5e0d8369-1a81-0
2017-01-24 13:41 - 2017-01-24 13:41 - 00000000 ____D C:\ProgramData\{CB212F8A-7C8A-9821-03FE-D2169C640C55}
2017-01-24 13:41 - 2017-01-24 13:41 - 00000000 ____D C:\ProgramData\{3C9F2638-8B34-9193-EC8D-7A9F9061FDF6}
2017-01-24 11:36 - 2017-01-24 18:54 - 00000000 ____D C:\ProgramData\{1DA842A0-AA03-F50B-3714-257DEB6CB7DB}
2017-01-24 11:36 - 2017-01-24 11:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{4B83C3CE-FC28-7465-7AEF-6A595F043D0E}
2017-01-24 07:41 - 2017-01-24 07:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{89645E2F-3ECF-E984-D9A3-934CE9FD0F2C}
2017-01-24 07:41 - 2017-01-24 07:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{4C5C7B7D-FBF7-CCD6-A726-C9AB768AC647}
2017-01-24 03:36 - 2017-01-24 18:54 - 00000000 ____D C:\ProgramData\{87388F09-3093-38A2-3EBC-EA3356313FBB}
2017-01-24 03:36 - 2017-01-24 03:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{08485829-BFE3-EF82-6C1B-7681B2568ABD}
2017-01-24 01:41 - 2017-01-24 01:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{DB8F2638-6C24-9193-89E2-2D6CB7AFADA1}
2017-01-24 01:41 - 2017-01-24 01:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{B2E88572-0543-32D9-12D8-FC4ECF779B3E}
2017-01-23 19:41 - 2017-01-23 19:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{C8A1BC7B-7F0A-0BD0-D3D9-EA80CA269404}
2017-01-23 19:41 - 2017-01-23 19:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{6252E440-D5F9-53EB-07F3-317AD7FBA458}
2017-01-23 19:37 - 2017-01-23 19:37 - 00003972 _____ C:\WINDOWS\System32\Tasks\{995B101A-2EF0-A7B1-D13A-4DB81626C364}
2017-01-23 19:36 - 2017-01-24 18:54 - 00000000 ____D C:\ProgramData\{C5B036EA-721B-8141-7011-D8A2639ADE4E}
2017-01-23 19:36 - 2017-01-23 19:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{D669F058-61C2-47F3-9C93-9D65E311DCC8}
2017-01-22 19:41 - 2017-01-22 19:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{8641F75D-31EA-40F6-7020-AAC3D0665E22}
2017-01-22 19:41 - 2017-01-22 19:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{5D1F253B-EAB4-9290-7A70-96BBD543E60F}
2017-01-22 19:37 - 2017-01-22 19:37 - 00003972 _____ C:\WINDOWS\System32\Tasks\{23C59B7D-946E-2CD6-E9E6-0A6B2A49253B}
2017-01-22 19:36 - 2017-01-22 19:54 - 00000000 ____D C:\ProgramData\{F352507B-44F9-E7D0-F384-1395A77CE385}
2017-01-22 19:36 - 2017-01-22 19:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{DE071A10-69AC-ADBB-ED61-5B7385976038}
2017-01-22 13:41 - 2017-01-22 13:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{88CD131A-3F66-A4B1-5C7F-8045E64701A3}
2017-01-22 13:41 - 2017-01-22 13:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{77661BC9-C0CD-AC62-2BF5-FB2603675C73}
2017-01-22 11:36 - 2017-01-22 17:46 - 00000000 ____D C:\ProgramData\{E6149F30-51BF-289B-55E7-6F744472D5EE}
2017-01-22 11:36 - 2017-01-22 11:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{0713A0C1-B0B8-176A-7565-4C29A3E42280}
2017-01-22 07:41 - 2017-01-22 07:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{83120C19-34B9-BBB2-5704-4308BA20AB38}
2017-01-22 07:41 - 2017-01-22 07:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{3CAB1CE8-8B00-AB43-712D-5E1BD465B043}
2017-01-22 03:36 - 2017-01-22 17:46 - 00000000 ____D C:\ProgramData\{EA911ECF-5D3A-A964-5AFC-383DFF6A62C1}
2017-01-22 03:36 - 2017-01-22 03:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{EDD7C389-5A7C-7422-4E48-80265AC4708B}
2017-01-22 01:41 - 2017-01-22 01:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{FBEA62D4-4C41-D57F-2D2E-985D2D609FEA}
2017-01-22 01:41 - 2017-01-22 01:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{65CD50D0-D266-E77B-8B4F-76997C60FB39}
2017-01-21 19:41 - 2017-01-21 19:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{F417CBF8-43BC-7C53-2115-3E53EFD3AF3B}
2017-01-21 19:41 - 2017-01-21 19:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{1E7DC55F-A9D6-72F4-DE1F-7716B59105EA}
2017-01-21 19:36 - 2017-01-22 17:46 - 00000000 ____D C:\ProgramData\{3662D1AB-81C9-6600-F364-DB5E24563311}
2017-01-21 19:36 - 2017-01-21 19:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{7B1C4004-CCB7-F7AF-9E74-0EF52DA85F80}
2017-01-21 13:41 - 2017-01-21 13:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{C3CA1BDE-7461-AC75-A485-A6A1C034F2A2}
2017-01-21 13:41 - 2017-01-21 13:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{37930282-8038-B529-710D-81AE7955AB09}
2017-01-21 11:36 - 2017-01-22 17:46 - 00000000 ____D C:\ProgramData\{E0AF2824-5704-9F8F-0E3B-6245FAC14516}
2017-01-21 11:36 - 2017-01-21 11:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{50E9C122-E742-7689-37A4-AA61B4A87955}
2017-01-21 07:41 - 2017-01-21 07:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{BCD0C3E3-0B7B-7448-CB21-5E4F7FBD7F65}
2017-01-21 07:41 - 2017-01-21 07:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{420808F4-F5A3-BF5F-94A1-24528FED7D8F}
2017-01-21 03:36 - 2017-01-22 17:46 - 00000000 ____D C:\ProgramData\{11D011EE-A67B-A645-A7FF-CFB1B643D3A1}
2017-01-21 03:36 - 2017-01-21 03:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{4F8DCF81-F826-782A-4C57-A5E669181793}
2017-01-21 01:41 - 2017-01-21 01:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{78292C21-CF82-9B8A-F3B0-39FE1746ABCC}
2017-01-21 01:41 - 2017-01-21 01:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{42F8E4FB-F553-5350-DB8C-DC1D27137563}
2017-01-20 19:41 - 2017-01-20 19:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{8C9C64F1-3B37-D35A-7554-C7493B7353E2}
2017-01-20 19:41 - 2017-01-20 19:41 - 00003972 _____ C:\WINDOWS\System32\Tasks\{74A091E6-C30B-264D-EB2A-74B5BD7520A9}
2017-01-20 19:37 - 2017-01-20 19:37 - 00003972 _____ C:\WINDOWS\System32\Tasks\{C7C96358-7062-D4F3-3C75-F14E21B3DA7E}
2017-01-20 19:36 - 2017-01-22 17:46 - 00000000 ____D C:\ProgramData\{F49E6982-4335-DE29-2480-BCCD616C43AD}
2017-01-20 19:36 - 2017-01-20 19:36 - 00003972 _____ C:\WINDOWS\System32\Tasks\{9F690790-28C2-B03B-2654-CCA37F652573}
2017-01-17 17:18 - 2017-01-17 17:18 - 01562555 _____ C:\Users\bunty\Downloads\he shaarde maa.m4a
2017-01-16 14:48 - 2017-01-16 14:48 - 00710468 _____ C:\Users\bunty\Desktop\Upgrades-2.pdf
2017-01-16 14:47 - 2017-01-16 14:47 - 00712870 _____ C:\Users\bunty\Desktop\Upgrades-1.pdf
2017-01-16 11:01 - 2017-01-16 11:02 - 15515054 _____ C:\Users\bunty\Downloads\Cottage Disclosures.zip
2017-01-16 11:01 - 2017-01-16 11:01 - 04190013 _____ C:\Users\bunty\Downloads\New Sale Contract - Nasta and Parikh Residence - 14705 Stillman Bend - Pearson Place Cottages.zip
2017-01-12 22:43 - 2017-01-12 22:43 - 00010022 _____ C:\Users\bunty\Downloads\Statement_201612.pdf
2017-01-11 19:08 - 2017-01-11 19:08 - 03451065 _____ C:\Users\bunty\Downloads\Lessons #1-11 (1).m4a
2017-01-11 11:48 - 2017-01-11 11:48 - 03451065 _____ C:\Users\bunty\Downloads\Lessons #1-11.m4a
2017-01-10 20:13 - 2016-12-21 02:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-01-10 20:13 - 2016-12-21 02:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-01-10 20:13 - 2016-12-21 02:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-01-10 20:13 - 2016-12-21 01:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-01-10 20:13 - 2016-12-21 01:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-01-10 20:13 - 2016-12-21 01:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-01-10 20:13 - 2016-12-21 01:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-01-10 20:13 - 2016-12-21 01:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-01-10 20:13 - 2016-12-21 01:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-01-10 20:13 - 2016-12-21 01:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-01-10 20:13 - 2016-12-21 01:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-01-10 20:13 - 2016-12-21 01:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-01-10 20:13 - 2016-12-21 01:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-01-10 20:13 - 2016-12-21 01:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-01-10 20:13 - 2016-12-21 01:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-01-10 20:13 - 2016-12-21 01:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-01-10 20:13 - 2016-12-21 01:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-01-10 20:13 - 2016-12-21 01:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-01-10 20:13 - 2016-12-21 01:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-01-10 20:13 - 2016-12-21 01:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-01-10 20:13 - 2016-12-21 01:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-01-10 20:13 - 2016-12-21 01:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-01-10 20:13 - 2016-12-21 01:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-01-10 20:13 - 2016-12-21 01:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-01-10 20:13 - 2016-12-21 01:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-01-10 20:13 - 2016-12-21 01:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-01-10 20:13 - 2016-12-21 01:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-01-10 20:13 - 2016-12-21 01:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-10 20:13 - 2016-12-21 01:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-01-10 20:13 - 2016-12-21 01:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-01-10 20:13 - 2016-12-21 01:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-01-10 20:13 - 2016-12-21 01:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-01-10 20:13 - 2016-12-21 01:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-01-10 20:13 - 2016-12-21 01:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-01-10 20:13 - 2016-12-21 01:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-01-10 20:13 - 2016-12-21 01:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-01-10 20:13 - 2016-12-21 01:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-01-10 20:13 - 2016-12-21 01:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-01-10 20:13 - 2016-12-21 01:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-01-10 20:13 - 2016-12-21 00:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-01-10 20:13 - 2016-12-21 00:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-01-10 20:13 - 2016-12-21 00:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-01-10 20:13 - 2016-12-21 00:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-01-10 20:13 - 2016-12-21 00:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-01-10 20:13 - 2016-12-21 00:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-01-10 20:13 - 2016-12-21 00:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-01-10 20:13 - 2016-12-21 00:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-01-10 20:13 - 2016-12-21 00:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-01-10 20:13 - 2016-12-21 00:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-01-10 20:13 - 2016-12-21 00:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-01-10 20:13 - 2016-12-21 00:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-01-10 20:13 - 2016-12-21 00:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-01-10 20:13 - 2016-12-21 00:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-01-10 20:13 - 2016-12-21 00:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-01-10 20:13 - 2016-12-21 00:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-01-10 20:13 - 2016-12-21 00:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-01-10 20:13 - 2016-12-21 00:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-01-10 20:13 - 2016-12-21 00:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-01-10 20:13 - 2016-12-21 00:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-01-10 20:13 - 2016-12-20 23:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-01-10 20:13 - 2016-12-20 23:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-10 20:13 - 2016-12-20 23:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-01-10 20:13 - 2016-12-20 23:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-01-10 20:13 - 2016-12-20 23:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-01-10 20:13 - 2016-12-20 23:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-01-10 20:13 - 2016-12-20 23:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-01-10 20:13 - 2016-12-20 23:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-01-10 20:13 - 2016-12-20 23:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-01-10 20:13 - 2016-12-20 22:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-01-10 20:13 - 2016-12-20 22:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-10 20:13 - 2016-12-20 22:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-10 20:13 - 2016-12-20 22:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-10 20:13 - 2016-12-20 22:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-01-10 20:13 - 2016-12-20 22:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-01-10 20:13 - 2016-12-20 22:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-01-10 20:13 - 2016-12-20 22:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-01-10 20:13 - 2016-12-20 22:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-01-10 20:13 - 2016-12-20 22:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-01-10 20:13 - 2016-12-20 22:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-01-10 20:13 - 2016-12-20 22:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-01-10 20:13 - 2016-12-20 22:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-01-10 20:13 - 2016-12-20 22:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-01-10 20:13 - 2016-12-20 22:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-01-10 20:13 - 2016-12-20 22:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-01-10 20:13 - 2016-12-20 22:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-01-10 20:13 - 2016-12-20 22:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-01-10 20:13 - 2016-12-20 22:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-01-10 20:13 - 2016-12-20 22:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-01-10 20:13 - 2016-12-20 22:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-01-10 20:13 - 2016-12-20 22:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-01-10 20:13 - 2016-12-20 22:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-01-10 20:13 - 2016-12-20 22:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-01-10 20:13 - 2016-12-20 22:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-01-10 20:13 - 2016-12-20 22:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-01-10 20:13 - 2016-12-20 22:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-01-10 20:13 - 2016-12-20 22:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-01-10 20:13 - 2016-12-13 23:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-01-10 20:13 - 2016-12-13 23:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-01-10 20:13 - 2016-12-13 23:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-01-10 20:13 - 2016-12-13 23:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-01-10 20:13 - 2016-12-13 23:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-01-10 20:13 - 2016-12-13 23:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-01-10 20:13 - 2016-12-13 23:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-01-10 20:13 - 2016-12-13 23:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-01-10 20:13 - 2016-12-13 23:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-01-10 20:13 - 2016-12-13 23:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-01-10 20:13 - 2016-12-13 23:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-01-10 20:13 - 2016-12-13 23:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-01-10 20:13 - 2016-12-13 23:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-01-10 20:13 - 2016-12-13 23:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-01-10 20:13 - 2016-12-13 23:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-01-10 20:13 - 2016-12-13 23:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-01-10 20:13 - 2016-12-13 23:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-01-10 20:13 - 2016-12-13 23:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-01-10 20:13 - 2016-12-13 22:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-01-10 20:13 - 2016-12-13 22:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-10 20:13 - 2016-12-13 22:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-01-10 20:13 - 2016-12-13 22:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-01-10 20:13 - 2016-12-13 22:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-01-10 20:13 - 2016-12-13 22:42 - 00384000 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2017-01-10 20:13 - 2016-12-13 22:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-01-10 20:13 - 2016-12-13 22:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-01-10 20:13 - 2016-12-13 22:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 20:13 - 2016-12-13 22:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-01-10 20:13 - 2016-12-13 22:41 - 00362496 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2017-01-10 20:13 - 2016-12-13 22:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-01-10 20:13 - 2016-12-13 22:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-01-10 20:13 - 2016-12-13 22:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-01-10 20:13 - 2016-12-13 22:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-01-10 20:13 - 2016-12-13 22:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-01-10 20:13 - 2016-12-13 22:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 20:13 - 2016-12-13 22:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-01-10 20:13 - 2016-12-13 22:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-01-10 20:13 - 2016-12-13 22:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-01-10 20:13 - 2016-12-13 22:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-01-10 20:13 - 2016-12-13 22:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-01-10 20:13 - 2016-12-13 22:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-01-10 20:13 - 2016-12-13 22:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-10 20:13 - 2016-12-13 22:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-01-10 20:13 - 2016-12-13 22:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-01-10 20:13 - 2016-12-13 22:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-01-10 20:13 - 2016-12-13 22:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-01-10 20:13 - 2016-12-13 22:35 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2017-01-10 20:13 - 2016-12-13 22:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-01-10 20:13 - 2016-12-13 22:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-01-10 20:13 - 2016-12-13 22:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-01-10 20:13 - 2016-12-13 22:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-01-10 20:13 - 2016-12-13 22:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-01-10 20:13 - 2016-12-13 22:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-01-10 20:13 - 2016-12-13 22:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-01-10 20:13 - 2016-12-13 22:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-01-10 20:13 - 2016-12-13 22:25 - 02795520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2017-01-10 20:13 - 2016-12-13 22:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-01-10 20:13 - 2016-12-13 22:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-01-10 20:13 - 2016-12-13 22:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-01-10 20:13 - 2016-12-13 22:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-01-10 20:13 - 2016-12-13 22:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-01-10 20:13 - 2016-12-13 22:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-01-10 20:13 - 2016-12-13 22:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-01-10 20:13 - 2016-12-13 22:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-01-10 20:13 - 2016-12-13 22:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-01-10 20:13 - 2016-12-13 22:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-01-10 20:13 - 2016-12-13 22:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-01-10 20:13 - 2016-12-13 22:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-01-10 20:13 - 2016-11-02 06:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-01-10 20:13 - 2016-11-02 05:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-01-10 20:13 - 2016-11-02 04:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-10 20:13 - 2016-11-02 04:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-01-10 20:13 - 2016-11-02 04:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-01-10 20:13 - 2016-08-01 22:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-01-10 10:38 - 2017-01-10 10:38 - 03692105 _____ C:\Users\bunty\Downloads\STAAR-G3-2016Test-Math-f.pdf
2017-01-09 22:41 - 2017-01-09 22:41 - 00390802 _____ C:\Users\bunty\Downloads\TerraNova-InView-Order-Forms (2).zip
2017-01-09 14:09 - 2017-01-09 14:09 - 00390802 _____ C:\Users\bunty\Downloads\TerraNova-InView-Order-Forms (1).zip
2017-01-09 14:08 - 2017-01-09 14:08 - 00390802 _____ C:\Users\bunty\Downloads\TerraNova-InView-Order-Forms.zip
2017-01-07 18:54 - 2017-01-07 18:54 - 01065376 _____ (Google Inc.) C:\Users\bunty\Downloads\GoogleEarthSetup.exe
2017-01-07 18:54 - 2017-01-07 18:54 - 00002223 _____ C:\Users\Public\Desktop\Google Earth.lnk
2017-01-07 18:54 - 2017-01-07 18:54 - 00000000 ____D C:\Users\bunty\AppData\LocalLow\Google
2017-01-07 18:54 - 2017-01-07 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2017-01-06 10:24 - 2017-01-06 10:24 - 00030947 _____ C:\Users\bunty\Desktop\new_patient_form.pdf
2016-12-29 12:31 - 2016-12-29 12:31 - 00010524 _____ C:\Users\bunty\Desktop\Alphbet_doc.docx
2016-12-29 12:30 - 2016-12-29 12:30 - 00010477 _____ C:\Users\bunty\Desktop\num_pattern.docx
2017-01-24 19:01 - 2016-09-27 02:46 - 01356268 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-24 18:57 - 2015-12-30 19:31 - 00000000 ____D C:\Program Files (x86)\Google
2017-01-24 18:57 - 2015-12-30 19:30 - 00000000 ____D C:\Users\bunty\AppData\Local\Google
2017-01-24 18:54 - 2016-09-27 05:38 - 00000000 ___DC C:\WINDOWS\Panther
2017-01-24 18:54 - 2016-09-27 03:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-24 18:54 - 2016-09-27 02:43 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-24 18:54 - 2016-07-16 00:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-01-24 18:53 - 2016-02-19 09:29 - 00000000 ____D C:\ProgramData\5ea42599
2017-01-24 17:28 - 2016-07-16 05:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-24 17:28 - 2016-07-16 05:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-24 13:08 - 2015-12-30 23:06 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-01-23 19:36 - 2016-09-27 03:12 - 00003882 _____ C:\WINDOWS\System32\Tasks\{0A4C2238-A061-CB5D-6983-0D5EF0A8F340}
2017-01-23 10:10 - 2016-11-24 00:43 - 00010713 _____ C:\Users\bunty\Desktop\Macy_shopping.xlsx
2017-01-22 17:46 - 2016-07-16 05:47 - 00000000 ____D C:\WINDOWS\security
2017-01-21 20:13 - 2015-12-30 19:30 - 00000000 ____D C:\Users\bunty\AppData\Local\ElevatedDiagnostics
2017-01-20 05:00 - 2016-01-05 11:50 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-01-13 09:28 - 2016-07-16 05:47 - 00000000 ____D C:\WINDOWS\rescache
2017-01-12 11:41 - 2016-01-19 10:46 - 00000000 ____D C:\Users\bunty\AppData\Roaming\vlc
2017-01-12 05:05 - 2016-09-27 03:12 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-01-12 02:29 - 2016-01-17 18:40 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-01-11 11:22 - 2015-11-09 12:42 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-11 00:26 - 2016-07-16 05:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-11 00:15 - 2016-09-27 02:40 - 00350224 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-11 00:13 - 2016-07-16 05:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-11 00:13 - 2016-07-16 05:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-11 00:13 - 2016-07-16 05:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-11 00:13 - 2016-07-16 05:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-11 00:13 - 2016-07-16 05:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-10 22:28 - 2016-07-16 05:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-10 22:26 - 2016-01-13 13:41 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-10 22:25 - 2015-12-30 19:45 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-28 12:34 - 2016-01-03 17:23 - 00000000 ____D C:\Dimple
2016-12-28 09:56 - 2015-12-30 19:13 - 00000000 ____D C:\Users\bunty\AppData\Local\Packages
2015-12-30 19:14 - 2017-01-24 18:55 - 0407804 _____ () C:\Users\bunty\AppData\Local\BTServer.log
2016-01-23 20:10 - 2016-01-27 01:22 - 0000600 _____ () C:\Users\bunty\AppData\Local\PUTTY.RND
2016-09-27 02:43 - 2016-09-27 02:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-11-09 11:56 - 2015-11-09 11:56 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2015-11-09 11:54 - 2015-11-09 11:54 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2015-11-09 11:55 - 2015-11-09 11:56 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2015-11-09 11:54 - 2015-11-09 11:55 - 0000113 _____ () C:\ProgramData\{E1646825-D391-42A0-93AA-27FA810DA093}.log
====================
2017-01-19 08:57 - 2017-01-19 08:57 - 0739904 _____ (Oracle Corporation) C:\Users\bunty\AppData\Local\Temp\jre-8u121-windows-au.exe
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
Ran by bunty (24-01-2017 20:13:07)
Running from C:\Users\bunty\Downloads
Windows 10 Home Version 1607 (X64) (2016-09-27 09:15:46)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
bunty (S-1-5-21-4190236565-1295636768-4224594000-1001 - Administrator - Enabled) => C:\Users\bunty
DefaultAccount (S-1-5-21-4190236565-1295636768-4224594000-503 - Limited - Disabled)
Guest (S-1-5-21-4190236565-1295636768-4224594000-501 - Limited - Disabled)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{2282AFD7-5074-4BC6-B1F7-205AAC8F6AC9}) (Version: 18.6.1844.34416 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 18.6.1844.34416 - Alcor Micro Corp.) Hidden
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{903D0F33-D3CF-48D6-967D-84004089428A}) (Version: 4.0.51203.1 - Microsoft Corporation)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 12 - CyberLink Corp.)
Dell Customer Connect (HKLM-x32\...\{35BEC446-269E-42E4-8EED-191A38CCFF3D}) (Version: 1.4.10.0 - Dell Inc.)
Dell Data Vault (Version: 4.3.9.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{AB7F2792-2ED1-4C5C-9F28-680E5110BF72}) (Version: 3.1.1018.0 - Dell Products, LP)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F127834}) (Version: 3.4.15000.0 - Dell Inc.)
Dell Help & Support (HKLM-x32\...\InstallShield_{7E780845-303D-4B46-9746-9D49D94D16AB}) (Version: 2.3.22.0 - Dell Inc.)
Dell Help & Support (Version: 2.3.22.0 - Dell Inc.) Hidden
Dell Product Registration (HKLM-x32\...\InstallShield_{85B14AE3-1624-45BE-942B-A528DF6F1CCE}) (Version: 3.0.123.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.61 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{27130E51-9555-408B-8134-7BFF54EDE27B}) (Version: 1.3.0.72 - Dell)
Dell Update (HKLM-x32\...\{DB82968B-57A4-4397-81A5-ECAB21B5DFCD}) (Version: 1.7.1015.0 - Dell Inc.)
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Dropbox 20 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - )
InfraRecorder 0.53 (x64 edition) (HKLM\...\{2C22EA92-CB30-4932-0053-000001000000}) (Version: 0.53.00.00 - Christian Kindahl)
Intel® Chipset Device Software (x32 Version: 10.1.1.13 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1167 - Intel Corporation)
Intel® Network Connections Drivers (HKLM\...\PROSet) (Version: 20.2 - Intel)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Ready Mode Technology (HKLM\...\{885308A3-1E3C-4A84-BFEC-35A696600DF2}) (Version: 1.1.70.506 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden <==== ATTENTION
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java SE Development Kit 8 Update 65 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180650}) (Version: 8.0.650.17 - Oracle Corporation)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxx Audio Installer (x64) (Version: 2.6.6073.1 - Waves Audio Ltd.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 with Update 1 (HKLM-x32\...\{5642384f-2a89-46d3-acd5-bfe8bf6e8b2f}) (Version: 14.0.24720.0 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
Mozilla Firefox 51.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 51.0 (x86 en-US)) (Version: 51.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.62 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.62 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
One System Care (HKLM-x32\...\OneSystemCare) (Version: 2.10.10.0 - OneSystemCare) <==== ATTENTION
Oracle VM VirtualBox 5.0.12 (HKLM\...\{6F93731D-89E1-4A8F-BDA9-D104860DDB02}) (Version: 5.0.12 - Oracle Corporation)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Product Registration (Version: 3.0.123.0 - Dell Inc.) Hidden
PuTTY release 0.66 (HKLM-x32\...\PuTTY_is1) (Version: 0.66 - Simon Tatham)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.41 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN and Bluetooth Driver (HKLM-x32\...\{6BFBB929-C278-42B3-8065-FF1178E071B8}) (Version: 13.218.243 - REALTEK Semiconductor Corp.)
Reviewer (HKLM-x32\...\{02338B81-427D-4DE4-BFAA-28F3327EE4D7}) (Version: 1.11.39.0 - Sorna Corporation)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24723 - Microsoft Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.21 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
SpaceSoundPro (HKLM\...\SpaceSoundPro) (Version: 1.0 - ) <==== ATTENTION
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
TypeScript Power Tool (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.4.0 (HKLM-x32\...\{33e2204a-4ec6-4458-895a-47e2a404d990}) (Version: 1.7.24720.0 - Microsoft Corporation)
Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WhatsApp (HKU\S-1-5-21-4190236565-1295636768-4224594000-1001\...\WhatsApp) (Version: 0.2.1061 - WhatsApp)
WinSCP 5.7.6 (HKLM-x32\...\winscp3_is1) (Version: 5.7.6 - Martin Prikryl)
==================== Scheduled Tasks (Whitelisted) =============
Task: {0CCC5B87-BC1B-4952-87E8-B35FFC5D9B9B} - System32\Tasks\{5D1F253B-EAB4-9290-7A70-96BBD543E60F} => C:\ProgramData\{859FAE5B-3234-19F0-8FF3-56822EA2D4BF}\630A70A1-D4A1-C70A-95B1-511FE4C3C00A.exe <==== ATTENTION
Task: {0FD1D9F0-BFA1-4F9D-8BA4-7878CAC0D9BE} - System32\Tasks\{65CD50D0-D266-E77B-8B4F-76997C60FB39} => C:\ProgramData\{F99111EC-4E3A-A647-4F55-AD2A7BFBDF72}\E17E1F84-56D5-A82F-7CC3-C559513E1FB5.exe <==== ATTENTION
Task: {13136FFB-C687-4CBD-A2D3-4F77F471FD24} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30] (Google Inc.)
Task: {13A6A95E-A6EA-4169-B8C2-9AE7F21C34D3} - System32\Tasks\{8641F75D-31EA-40F6-7020-AAC3D0665E22} => C:\ProgramData\{EA2F51D8-5D84-E673-5BF7-B58DA94DE705}\3F07E22B-88AC-5580-E91C-B784E9B31D51.exe <==== ATTENTION
Task: {1A5E4B6B-B757-4CFF-88AC-16CCFB303846} - System32\Tasks\{C3CA1BDE-7461-AC75-A485-A6A1C034F2A2} => C:\ProgramData\{2EB47875-991F-CFDE-FDC4-FC78CECE912B}\10521584-A7F9-A22F-F78D-7084E704021D.exe <==== ATTENTION
Task: {1B1AB5D3-E7F6-4949-BA93-D4AE312C27B1} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {1DFB2F86-EFCB-4BC3-80C1-27723B609975} - System32\Tasks\{0A4C2238-A061-CB5D-6983-0D5EF0A8F340} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\5ea42599\6df4c7d1.dll" <==== ATTENTION
Task: {1F5DB41E-A8FB-4FB6-9313-DFEC677EB0AB} - System32\Tasks\{2400EDC4-93AB-5A6F-ADC1-0839325305E7} => C:\ProgramData\{CB212F8A-7C8A-9821-03FE-D2169C640C55}\F9079B62-4EAC-2CC9-6003-F625203DF640.exe [2017-01-24] () <==== ATTENTION
Task: {20D12F52-DCB5-440B-9A41-3DD88528D121} - System32\Tasks\{42F8E4FB-F553-5350-DB8C-DC1D27137563} => C:\ProgramData\{9B9A40D5-2C31-F77E-D218-2548A5E84703}\80DBCC8E-3770-7B25-54DE-7F530CA854F7.exe <==== ATTENTION
Task: {2D45F929-1925-4F87-AC89-53207F01A02F} - System32\Tasks\{C8A1BC7B-7F0A-0BD0-D3D9-EA80CA269404} => C:\ProgramData\{C6B21CFF-7119-AB54-0833-965B70A6803E}\5A912DBD-ED3A-9A16-0634-DB1FC6E3B996.exe <==== ATTENTION
Task: {338C4CAE-4A7B-40DA-BF8D-9BC16E460DE0} - System32\Tasks\{4C5C7B7D-FBF7-CCD6-A726-C9AB768AC647} => C:\ProgramData\{DB6975FB-6CC2-C250-CD1E-45938C21DC17}\265DED98-91F6-5A33-3029-1CA08163A8E1.exe <==== ATTENTION
Task: {3C178D44-A5D4-4724-9766-8DA7FFE1C6ED} - System32\Tasks\{74A091E6-C30B-264D-EB2A-74B5BD7520A9} => C:\ProgramData\{CFD92489-7872-9322-2CF7-33AE55CC4D8A}\40206FB1-F78B-D81A-D9EA-AA751E5227C6.exe <==== ATTENTION
Task: {3D1E38EB-D004-4E96-BC66-BF3E8B9E075D} - System32\Tasks\{B2E88572-0543-32D9-12D8-FC4ECF779B3E} => C:\ProgramData\{B7290A92-0082-BD39-063D-A341F5B7DCF8}\E85A6038-5FF1-D793-5B34-F12443A2ECDA.exe <==== ATTENTION
Task: {40CFF422-2DEB-476B-B260-DEA961E02125} - \{04040547-0579-787E-0911-7908090F117D} -> No File <==== ATTENTION
Task: {45ECAF48-AA07-4202-B918-C00B320B5F30} - System32\Tasks\{89645E2F-3ECF-E984-D9A3-934CE9FD0F2C} => C:\ProgramData\{1B636BFE-ACC8-DC55-3160-BB9F3C603272}\5E645767-E9CF-E0CC-B9E7-0AD80B3658EF.exe <==== ATTENTION
Task: {4739F3B6-DC26-45DE-BC1F-FCCDB4A48B9B} - System32\Tasks\{995B101A-2EF0-A7B1-D13A-4DB81626C364} => C:\ProgramData\{2C35B72D-9B9E-0086-CAAD-6445CA30AC52}\556735A2-E2CC-8209-789F-609AF4E067F8.exe <==== ATTENTION
Task: {4C8C130E-312D-4ADB-AC8D-E12D1C2EE803} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {4C8E82AA-B4CF-4FF4-BF08-E57CA7D8ED28} - System32\Tasks\{9F690790-28C2-B03B-2654-CCA37F652573} => C:\ProgramData\{F49E6982-4335-DE29-2480-BCCD616C43AD}\8179CEE6-36D2-794D-DFDA-CD88D4819ED8.exe <==== ATTENTION
Task: {50213AA4-8DD5-44DD-9B9C-47AAC6BC04AD} - System32\Tasks\{8C9C64F1-3B37-D35A-7554-C7493B7353E2} => C:\ProgramData\{E94738BE-5EEC-8F15-A4E4-4A5986BDE567}\FE2BD10E-4980-66A5-E12C-8DB13944928E.exe <==== ATTENTION
Task: {5BBB5DD5-9666-4AA5-B75C-EFB6E9A7B13A} - System32\Tasks\{83120C19-34B9-BBB2-5704-4308BA20AB38} => C:\ProgramData\{E7E1F078-504A-47D3-43F6-4B0977E16EE3}\B062C3F6-07C9-745D-B926-358813E3782E.exe <==== ATTENTION
Task: {5D86FB47-0FBC-4C55-B9ED-1068FE3B7664} - System32\Tasks\{DB8F2638-6C24-9193-89E2-2D6CB7AFADA1} => C:\ProgramData\{8C66E1BE-3BCD-5615-BA52-3DEBEE9E3439}\FCB8905C-4B13-27F7-36D2-24B22CE341B3.exe <==== ATTENTION
Task: {841079F9-3E45-4ACD-A3C0-779CFC143D6F} - System32\Tasks\{BCD0C3E3-0B7B-7448-CB21-5E4F7FBD7F65} => C:\ProgramData\{AD33A6E0-1A98-114B-457D-21D21D4D9ACE}\33F0488B-845B-FF20-A168-F8ECA7CB8E50.exe <==== ATTENTION
Task: {8873FA4E-F61F-4F25-BD6A-A51C987572B0} - System32\Tasks\{23C59B7D-946E-2CD6-E9E6-0A6B2A49253B} => C:\ProgramData\{EFFEECF0-5855-5B5B-FF9E-970CF1F0855B}\24EF8776-9344-30DD-84FC-673B3F1EA9DF.exe <==== ATTENTION
Task: {8C088A95-FFED-46E8-AD9F-8A080B54C0A7} - System32\Tasks\{1E7DC55F-A9D6-72F4-DE1F-7716B59105EA} => C:\ProgramData\{5091C64C-E73A-71E7-01F8-9C372DAFD56D}\0F5363BA-B8F8-D411-EB50-F28DCC924C68.exe <==== ATTENTION
Task: {929A67E8-E9C5-4C19-8812-B01EB9267CCD} - System32\Tasks\{37930282-8038-B529-710D-81AE7955AB09} => C:\ProgramData\{599B2F3A-EE30-9891-8A22-C636457A9306}\871EF101-30B5-46AA-9CFF-171067FEBB14.exe <==== ATTENTION
Task: {93DC6659-3C46-4367-B3BE-E34879EA80C6} - System32\Tasks\{4F8DCF81-F826-782A-4C57-A5E669181793} => C:\ProgramData\{11D011EE-A67B-A645-A7FF-CFB1B643D3A1}\B13550AB-069E-E700-FE36-A754ED769D36.exe <==== ATTENTION
Task: {997864D7-32F1-425C-ABB2-53602F290EAC} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLVDLauncher.exe [2015-01-28] (CyberLink Corp.)
Task: {9E40CB44-98B4-402C-8FCF-BF38570636EF} - System32\Tasks\{F417CBF8-43BC-7C53-2115-3E53EFD3AF3B} => C:\ProgramData\{B2C6888F-056D-3F24-AF46-09C44F6634D8}\26705AFD-91DB-ED56-12F5-E5AB92A1C0B5.exe <==== ATTENTION
Task: {A17BA2DE-9B23-4468-A22E-082CCF5A7C8F} - System32\Tasks\{4B83C3CE-FC28-7465-7AEF-6A595F043D0E} => C:\ProgramData\{1DA842A0-AA03-F50B-3714-257DEB6CB7DB}\8BF744EC-3C5C-F347-43D2-8083B2F8B2AC.exe <==== ATTENTION
Task: {A2AF066D-8FA0-453E-84A0-B5A640A2DAEE} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe [2015-08-18] (CyberLink)
Task: {A44252F2-8596-4540-B8EF-E98C5BA69E05} - System32\Tasks\{1B1842DC-ACB3-F577-54EA-699AB53081F0} => C:\ProgramData\{3C9F2638-8B34-9193-EC8D-7A9F9061FDF6}\A3998FBA-1432-3811-9570-CCDE64579A3A.exe [2017-01-24] () <==== ATTENTION
Task: {A8007945-B91C-4D8C-A665-8768A828B281} - System32\Tasks\UninstallDDS-C960901F-CE14-4DE1-9729-1305F719A337 => C:\Windows\TEMP\DeleteFolderTask.exe <==== ATTENTION
Task: {A9E637C9-EABE-4184-9644-398B9CE5473F} - System32\Tasks\{08485829-BFE3-EF82-6C1B-7681B2568ABD} => C:\ProgramData\{87388F09-3093-38A2-3EBC-EA3356313FBB}\48B962BB-FF12-D510-4D67-22F551657BE9.exe <==== ATTENTION
Task: {AA7F54A4-4563-4B28-B4B7-A5A7FC08E28D} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {AE0CA65A-22C4-40FB-B698-CE19436B2C79} - System32\Tasks\{EDD7C389-5A7C-7422-4E48-80265AC4708B} => C:\ProgramData\{EA911ECF-5D3A-A964-5AFC-383DFF6A62C1}\5383BBC8-E428-0C63-AC4B-E28DEDEDE0B1.exe <==== ATTENTION
Task: {B009E017-E46D-4B47-95F9-F433E9B644CD} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-09-13] (PC-Doctor, Inc.)
Task: {B16162B2-3DF0-4454-8FCF-3552DC2EC65D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {B3335427-1A85-40E4-9A64-183EE3E7BD11} - System32\Tasks\{7B1C4004-CCB7-F7AF-9E74-0EF52DA85F80} => C:\ProgramData\{3662D1AB-81C9-6600-F364-DB5E24563311}\04CC75EB-B367-C240-B25A-9302D8E2F341.exe <==== ATTENTION
Task: {B9F35528-9BFA-4A07-96DD-345AAF3F479E} - System32\Tasks\{77661BC9-C0CD-AC62-2BF5-FB2603675C73} => C:\ProgramData\{F0DB8970-4770-3EDB-CC33-C600AF19AC0D}\0B26EB6F-BC8D-5CC4-DDA4-521C39E20F66.exe <==== ATTENTION
Task: {BFA78EF5-C84C-466E-892D-1FDACDB502CB} - System32\Tasks\{78292C21-CF82-9B8A-F3B0-39FE1746ABCC} => C:\ProgramData\{E1A656A8-560D-E103-51BE-2EB94AE46E72}\E8FA0F2B-5F51-B880-F4A9-AFDE42F88114.exe <==== ATTENTION
Task: {D369A702-0C88-481E-A4D3-A2F485BAA5E1} - System32\Tasks\{D669F058-61C2-47F3-9C93-9D65E311DCC8} => C:\ProgramData\{C5B036EA-721B-8141-7011-D8A2639ADE4E}\39450C25-8EEE-BB8E-C6F9-79DCF54C8636.exe <==== ATTENTION
Task: {D4B242B2-715F-4D51-BD8D-B2519AE1697B} - System32\Tasks\{420808F4-F5A3-BF5F-94A1-24528FED7D8F} => C:\ProgramData\{51EF326F-E644-85C4-9531-5DE673797274}\20A58908-970E-3EA3-9D0A-1FA52EA5F5A3.exe <==== ATTENTION
Task: {D9675E42-E401-4591-9BE0-D66A8B120FD6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30] (Google Inc.)
Task: {DCA12544-B5DF-4A69-BE3A-799D575CEE74} - System32\Tasks\{FBEA62D4-4C41-D57F-2D2E-985D2D609FEA} => C:\ProgramData\{F2050416-45AE-B3BD-4EEB-D934556822A8}\80360CC8-379D-BB63-0C9F-5BED4BBD4829.exe <==== ATTENTION
Task: {E3CACE9C-C60C-4E31-AE3E-29BA2D878E38} - System32\Tasks\{50E9C122-E742-7689-37A4-AA61B4A87955} => C:\ProgramData\{E0AF2824-5704-9F8F-0E3B-6245FAC14516}\BACA4E0B-0D61-F9A0-3AA2-A1A25FAE41FC.exe <==== ATTENTION
Task: {EB10EC6D-B3A3-4D1D-B889-8AC9884E7C41} - System32\Tasks\{0713A0C1-B0B8-176A-7565-4C29A3E42280} => C:\ProgramData\{E6149F30-51BF-289B-55E7-6F744472D5EE}\13D2EF89-A479-5822-09E6-6560AAEA0738.exe <==== ATTENTION
Task: {EB490BE2-3276-4CC2-B309-D7D8814E6DB4} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-09-09] (Dell Inc.)
Task: {ECE41561-85D0-4E89-BBAA-3E831057749B} - System32\Tasks\{DE071A10-69AC-ADBB-ED61-5B7385976038} => C:\ProgramData\{F352507B-44F9-E7D0-F384-1395A77CE385}\292AAB99-9E81-1C32-A4E4-399B04F7EABA.exe <==== ATTENTION
Task: {F1BB1220-9B08-4B94-8E61-AE10131EF9D1} - System32\Tasks\{3CAB1CE8-8B00-AB43-712D-5E1BD465B043} => C:\ProgramData\{F46E0D4F-43C5-BAE4-73E5-F79D7D8FFC46}\18CE0BF6-AF65-BC5D-E927-E8FC616B45BB.exe <==== ATTENTION
Task: {F6BC7D6D-E141-48FE-ADE0-1F5822C750F6} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-09-13] (PC-Doctor, Inc.)
Task: {F6BD387D-21B4-4853-BA52-2BAC2FFAB016} - System32\Tasks\{6252E440-D5F9-53EB-07F3-317AD7FBA458} => C:\ProgramData\{CEC1AB4F-796A-1CE4-7715-E33CF688DD5D}\884A975C-3FE1-20F7-B638-0909D8A09565.exe <==== ATTENTION
Task: {FED3EA1E-76B4-45EC-8681-92581AEEC56A} - System32\Tasks\{C7C96358-7062-D4F3-3C75-F14E21B3DA7E} => C:\ProgramData\{F089D395-4722-643E-A64E-B13288770685}\CFCB6290-7860-D53B-7E5E-5443B4EC4579.exe <==== ATTENTION
2016-12-13 17:46 - 2016-12-09 04:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-27 02:43 - 2016-08-01 06:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-11-09 11:55 - 2014-04-14 20:59 - 00253776 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2015-11-09 12:07 - 2015-06-02 12:25 - 00117976 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2016-12-13 17:46 - 2016-12-09 04:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-28 10:11 - 2016-09-28 10:11 - 01864384 _____ () C:\Users\bunty\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2016-09-27 05:36 - 2016-09-27 05:36 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-10 20:13 - 2016-12-21 01:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-10 20:13 - 2016-12-21 00:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-11-09 12:07 - 2014-07-03 11:22 - 00277720 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\SkypePlugin.exe
2015-05-29 18:12 - 2015-05-29 18:12 - 00505200 _____ () C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
2017-01-22 17:54 - 2017-01-22 17:54 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-01-22 17:54 - 2017-01-22 17:54 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-01-22 17:54 - 2017-01-22 17:54 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 13:37 - 2016-12-14 13:38 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\roottools.dll
2017-01-10 20:13 - 2016-12-21 00:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-10 20:13 - 2016-12-21 00:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-10 20:13 - 2016-12-21 00:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-10 20:13 - 2016-12-21 00:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-10 20:13 - 2016-12-21 00:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-05-29 18:11 - 2015-05-29 18:11 - 00214384 _____ () C:\Program Files (x86)\Dropbox\DropboxOEM\Ledger.dll
2015-05-29 18:12 - 2015-05-29 18:12 - 00114032 _____ () C:\Program Files (x86)\Dropbox\DropboxOEM\zlib1.dll
2015-11-09 11:54 - 2014-12-08 01:28 - 00627672 _____ () C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMediaLibrary.dll
2014-12-08 17:28 - 2014-12-08 17:28 - 00016856 _____ () C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvcPS.dll
2016-09-09 07:32 - 2016-09-09 07:32 - 00134008 _____ () C:\Program Files (x86)\Dell Customer Connect\ServiceTagPlusPlus.dll
2015-06-23 18:26 - 2015-06-23 18:26 - 00155888 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2015-09-04 19:34 - 2015-09-04 19:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
==================== Safe Mode (Whitelisted) ===================
==================== Association (Whitelisted) ===============
==================== Internet Explorer trusted/restricted ===============
==================== Hosts content: ===============================
==================== Other Areas ============================
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
HKU\S-1-5-21-4190236565-1295636768-4224594000-1001\...\StartupApproved\Run: => "Skype"
FirewallRules: [{9DF1F2C0-7068-4664-B8F2-8DFB8B02009D}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{415F6D01-1470-4DDE-8885-D0459B6C3624}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F4A5AE70-3BDA-47E2-8C29-5AEB24580DB2}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E3D5311A-5C58-43C5-BBE0-EBB0ECAC0292}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8340ED43-BE3E-4DB4-A548-926C71BAA3D2}] => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDirector12\PDR10.EXE
FirewallRules: [{10F697FB-A5A6-45DC-B691-F56663E42D16}] => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{7401175B-360D-41B6-9CA0-DAC4C6D429B8}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{20FEB402-6703-45DE-B219-463339B3BDA3}] => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [TCP Query User{F1BAE012-03E4-4366-AFA9-D73FB782A742}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{1252E63F-5C6A-4DFF-ADB5-7704260ACEAB}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{8540F10C-7C17-48A5-A26C-AA663B9F9DAC}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{84B98C6A-F078-4549-8B92-42C7372F84B4}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E2F28825-183A-4D3D-B3D1-7185354DE50B}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{17E1E839-38AB-49CD-BC0F-1EECF5F1EDDC}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D57C04C7-02C1-473B-8941-31C8E1E0F16F}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1F463DF1-47B2-4414-8A02-AFB71380732B}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
16-01-2017 11:48:00 Scheduled Checkpoint
==================== Event log errors: =========================
==================
Error: (01/24/2017 06:59:18 PM) (Source: ESENT) (EventID: 489) (User: )
Description: firefox (8596) An attempt to open the file "C:\Users\bunty\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\spartan.edb" for read only access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-HLC83MF$ via https://INTC-KeyId-5...plates/Aik/scepfailed:
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Description: Faulting application name: chrome.exe, version: 56.0.2924.59, time stamp: 0x5875a10e
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x582588e6
Exception code: 0xe0000008
Fault offset: 0x0000000000017788
Faulting process id: 0x2c24
Faulting application start time: 0x01d271eeb278b559
Faulting application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 2b09d86d-09e2-4c3e-b9aa-584ceadee3ed
Faulting package full name:
Faulting package-relative application ID:
Description: Faulting application name: chrome.exe, version: 56.0.2924.59, time stamp: 0x5875a10e
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x582588e6
Exception code: 0xe0000008
Fault offset: 0x0000000000017788
Faulting process id: 0x3a98
Faulting application start time: 0x01d274b5f4b096f8
Faulting application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: fe918408-c945-494b-b0fa-b604c62a17d2
Faulting package full name:
Faulting package-relative application ID:
Description: Faulting application name: chrome.exe, version: 56.0.2924.59, time stamp: 0x5875a10e
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x582588e6
Exception code: 0xe0000008
Fault offset: 0x0000000000017788
Faulting process id: 0x3b98
Faulting application start time: 0x01d2743feecc4ebd
Faulting application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 5e218a35-6366-4c29-9420-4ddcb5a4687a
Faulting package full name:
Faulting package-relative application ID:
Description: Faulting application name: chrome.exe, version: 56.0.2924.59, time stamp: 0x5875a10e
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x582588e6
Exception code: 0xe0000008
Fault offset: 0x0000000000017788
Faulting process id: 0x1aac
Faulting application start time: 0x01d27482fcf42663
Faulting application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: d611d660-db98-477d-aeca-60f1d43f44d0
Faulting package full name:
Faulting package-relative application ID:
Description: Faulting application name: chrome.exe, version: 56.0.2924.59, time stamp: 0x5875a10e
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x582588e6
Exception code: 0xe0000008
Fault offset: 0x0000000000017788
Faulting process id: 0x1cb4
Faulting application start time: 0x01d26d0b04ba3ff9
Faulting application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 75c47c55-3f61-4b35-9b40-0bd8a4791575
Faulting package full name:
Faulting package-relative application ID:
Description: Faulting application name: Explorer.EXE, version: 10.0.14393.479, time stamp: 0x58258a90
Faulting module name: ntdll.dll, version: 10.0.14393.479, time stamp: 0x5825887f
Exception code: 0xc0000005
Fault offset: 0x000000000002f7db
Faulting process id: 0x1360
Faulting application start time: 0x01d26c2f5065461a
Faulting application path: C:\WINDOWS\Explorer.EXE
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: 552f1c2a-057a-4723-ab07-694067218190
Faulting package full name:
Faulting package-relative application ID:
Description: Faulting application name: chrome.exe, version: 56.0.2924.59, time stamp: 0x5875a10e
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x582588e6
Exception code: 0xe0000008
Fault offset: 0x0000000000017788
Faulting process id: 0x3430
Faulting application start time: 0x01d27483aeab0f1f
Faulting application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: a710339a-6eca-4bce-b634-df77f4cfaa52
Faulting package full name:
Faulting package-relative application ID:
Description: Faulting application name: chrome.exe, version: 56.0.2924.59, time stamp: 0x5875a10e
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x582588e6
Exception code: 0xe0000008
Fault offset: 0x0000000000017788
Faulting process id: 0x3ca8
Faulting application start time: 0x01d27483ae999884
Faulting application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: adb2ec26-8af3-4229-9a2b-ece2fa6f32cf
Faulting package full name:
Faulting package-relative application ID:
System errors:
=============
Error: (01/24/2017 06:54:59 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
CodeIntegrity:
===================================
Date: 2017-01-24 13:09:19.311
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Percentage of memory in use: 12%
Total physical RAM: 32686.84 MB
Available physical RAM: 28677.72 MB
Total Virtual: 37550.84 MB
Available Virtual: 33226.28 MB
Drive i: (data) (Fixed) (Total:300 GB) (Free:299.87 GB) NTFS
Drive j: (LIVE) (Removable) (Total:7.45 GB) (Free:4.05 GB) FAT32
Drive n: (008648) (CDROM) (Total:0.62 GB) (Free:0 GB) CDFS
Disk: 0 (Size: 931.5 GB) (Disk ID: 1414FEFC)
Disk: 1 (Size: 7.5 GB) (Disk ID: 00000000)
Edited by buntyn, 24 January 2017 - 08:14 PM.