GatheredHussies.dll

Lowyat.NET forums

Lowyat.NET Kopitiam Garage Sales

Lowyat.NET Rules and Regulations FAQ Help Search Members

Welcome Guest ( Log In | Register )

Lowyat.NET -> Technical Support

Bump Topic Add Reply RSS Feed

Outline · [ Standard ] · Linear+

GatheredHussies.dll, module could not be found

views

TSbdcyl	Jul 15 2016, 08:40 PM, updated 10y ago Show posts by this member only \| Post #1
Enthusiast Senior Member 874 posts Joined: Aug 2006	how to solve this problem? is regarding what? just happen today.... This post has been edited by bdcyl: Jul 15 2016, 08:43 PM
Card PM	Report Top Like Quote Reply

1024kbps	Jul 15 2016, 08:49 PM Show posts by this member only \| IPv6 \| Post #2
李素裳 Senior Member 6,015 posts Joined: Feb 2007	QUOTE(bdcyl @ Jul 15 2016, 08:40 PM) how to solve this problem? is regarding what? just happen today.... Run Hijackthis and post the log here.
Card PM	Report Top Like Quote Reply

TSbdcyl	Jul 15 2016, 08:58 PM Show posts by this member only \| Post #3
Enthusiast Senior Member 874 posts Joined: Aug 2006	QUOTE(1024kbps @ Jul 15 2016, 09:49 PM) Run Hijackthis and post the log here. Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 8:58:00 PM, on 15-Jul-16 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.10586.0020) FIREFOX: 47.0 (x86 en-US) Boot mode: Normal Running processes: C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe C:\Users\User\Downloads\HijackThis.exe C:\Users\User\Desktop\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://malaysia.search.yahoo.com/yhs/web?h...ngle%2BLanguage R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID=617...AB-D2389D2DA5E5 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = .local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" O4 - HKLM\..\Run: [Tencent] "C:\Program Files (x86)\Tencent\Tencent.exe" http://down.baidu2016.com/qq/test.txt /start O4 - HKLM\..\Run: [MTview] C:\Program Files (x86)\MTV20151125\MTView.exe -mini O4 - HKLM\..\Run: [bdruninstaller] "C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setuplauncher.exe" /run:"setupdownloader.exe" /args:"/token:kit /after_restart" O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c O4 - HKCU\..\Run: [Chromium] "c:\users\user\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session --restore-last-session O4 - HKUS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User '?') O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User '?') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User '?') O4 - HKUS\S-1-5-21-3557774620-388533037-4077533664-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Dropbox Update] "C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c (User '?') O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User '?') O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User '?') O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user') O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: .dell.com O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{e5652af5-0019-4322-b881-20e1c5170c76}: NameServer = 54.251.190.247,169.55.51.86 O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing) O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NitroPDFDriverCreatorReadSpool2 (NitroDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: Intel® Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 13600 bytes
Card PM	Report Top Like Quote Reply

1024kbps	Jul 15 2016, 09:16 PM Show posts by this member only \| IPv6 \| Post #4
李素裳 Senior Member 6,015 posts Joined: Feb 2007	Could not find in the log you can try to search on Registry editor, press windows key + R, type regedit, search for the GatheredHussies and delete the entries. Less risky option would be run CCleaner https://www.piriform.com/ccleaner This kind of executable dll sometimes will hide on task scheduler as well.
Card PM	Report Top Like Quote Reply

TSbdcyl	Jul 15 2016, 09:40 PM Show posts by this member only \| Post #5
Enthusiast Senior Member 874 posts Joined: Aug 2006	QUOTE(1024kbps @ Jul 15 2016, 10:16 PM) Could not find in the log you can try to search on Registry editor, press windows key + R, type regedit, search for the GatheredHussies and delete the entries. Less risky option would be run CCleaner https://www.piriform.com/ccleaner This kind of executable dll sometimes will hide on task scheduler as well. ok will try it... 10q4ur guide...
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 04:52 PM Show posts by this member only \| Post #6
Enthusiast Senior Member 874 posts Joined: Aug 2006	QUOTE(1024kbps @ Jul 15 2016, 10:16 PM) Could not find in the log you can try to search on Registry editor, press windows key + R, type regedit, search for the GatheredHussies and delete the entries. Less risky option would be run CCleaner https://www.piriform.com/ccleaner This kind of executable dll sometimes will hide on task scheduler as well. ahhhh.... it happen again.... Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 4:53:04 PM, on 13-Sep-16 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.10586.0545) FIREFOX: 47.0 (x86 en-US) Boot mode: Normal Running processes: C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe C:\Users\User\Downloads\HijackThis.exe C:\WINDOWS\SysWOW64\DllHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID=617...AB-D2389D2DA5E5 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID=617...AB-D2389D2DA5E5 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = .local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" O4 - HKLM\..\Run: [bdruninstaller] "C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setuplauncher.exe" /run:"setupdownloader.exe" /args:"/token:kit /after_restart" O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user') O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: .dell.com O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{e5652af5-0019-4322-b881-20e1c5170c76}: NameServer = 54.251.190.247,169.55.51.86 O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing) O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NitroPDFDriverCreatorReadSpool2 (NitroDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: Intel® Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11208 bytes
Card PM	Report Top Like Quote Reply

BlueWind	Sep 13 2016, 05:27 PM Show posts by this member only \| Post #7
Sianzation Senior Member 2,901 posts Joined: Jan 2007	HJT is way outdated. Please use FRST instead. Farbar Recovery Scan Tool (FRST) Scan Please download Farbar Recovery Scan Tool (x32) or Farbar Recovery Scan Tool (x64) and save the file to your Desktop. Note: Download and run the version compatible with your system (32 or 64-bit). Download both if you're unsure; only one will run. Right-click FRST.exe or FRST64.exe and select Run as administrator to run the programme. Click Yes to the disclaimer. Ensure the Addition.txt box is checked. Click the Scan button and let the programme run. Upon completion, click OK, then OK on the Addition.txt pop up screen. Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Copy the contents of both logs and paste in your next reply. This post has been edited by BlueWind: Sep 13 2016, 05:28 PM
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:09 PM Show posts by this member only \| Post #8
Enthusiast Senior Member 874 posts Joined: Aug 2006	Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-09-2016 Ran by User (administrator) on DANIEL_LAPTOP (13-09-2016 18:00:50) Running from C:\Users\User\Downloads Loaded Profiles: User (Available Profiles: User & DefaultAppPool) Platform: Windows 10 Home Version 1511 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33508...very-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe () C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE (Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE (Microsoft Corporation) C:\Windows\System32\mqsvc.exe () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe (RealNetworks, Inc.) C:\Program Files (x86)\Real\realplayer\RPDS\Bin\rpdsvc.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (RealNetworks, Inc.) C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe (Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [6301696 2010-12-22] (Dell Inc.) HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-15] (Apple Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1754424 2014-10-08] (Bitdefender) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [bdruninstaller] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setuplauncher.exe" /run:"setupdownloader.exe" /args:"/token:kit /after_restart" Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3557774620-388533037-4077533664-1000\...\Run: [Dropbox Update] => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-07-06] (Dropbox, Inc.) HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403304 2016-01-28] (Garmin Ltd. or its subsidiaries) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google) ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2014-04-21] (Tonec Inc.) ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => [MsiInstallPath]\[ManufacturerName] SafeBox\SafeBoxShell.dll No File ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => [MsiInstallPath]\[ManufacturerName] SafeBox\SafeBoxShell.dll No File ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => [MsiInstallPath]\[ManufacturerName] SafeBox\SafeBoxShell.dll No File ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => [MsiInstallPath]\[ManufacturerName] SafeBox\SafeBoxShell.dll No File Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2016-03-25] ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION ==================== Internet (Whitelisted) ====================
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:09 PM Show posts by this member only \| Post #9
Enthusiast Senior Member 874 posts Joined: Aug 2006	(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{1eb4d9ee-1a30-467e-a91f-c4b88f3d889f}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{8389c2ec-4061-4e1a-91ed-5cd91e3bd22b}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e5652af5-0019-4322-b881-20e1c5170c76}: [NameServer] 54.251.190.247,169.55.51.86 Tcpip\..\Interfaces\{e5652af5-0019-4322-b881-20e1c5170c76}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{ffd0ad70-6a46-441b-92dd-2a2f7da9480a}: [DhcpNameServer] 192.168.1.1 ManualProxies: Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131129657862445103&GUID=F76C5C29-6728-40C4-B7AB-D2389D2DA5E5 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131129657862465007&GUID=F76C5C29-6728-40C4-B7AB-D2389D2DA5E5 HKU\S-1-5-21-3557774620-388533037-4077533664-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131129657862475006&GUID=F76C5C29-6728-40C4-B7AB-D2389D2DA5E5 SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3557774620-388533037-4077533664-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 SearchScopes: HKU\S-1-5-21-3557774620-388533037-4077533664-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-01-26] (Internet Download Manager, Tonec Inc.) BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-07-30] (RealDownloader) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-01-26] (Internet Download Manager, Tonec Inc.) BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION) BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2014-07-30] (RealDownloader) BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2016-04-29] (Oracle Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation) Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab FireFox: ======== FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\gq606iw0.default FF SelectedSearchEngine: Yahoo! Powered FF DefaultSearchEngine: Yahoo! Powered FF NewTab: about:newtab FF Keyword.URL: user_pref("keyword.URL", true); FF Homepage: user_pref("browser.startup.homepage", "hxxps://www.malwarebytes.org/restorebrowser/ FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-17] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-17] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll [2016-04-29] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll [2012-02-24] ( ) FF Plugin-x32: @real.com/nppl3260;version=17.0.13.2 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [2014-10-17] (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.13 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2014-07-30] (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprpplugin;version=17.0.13.2 -> c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [2014-10-17] (RealPlayer Cloud) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-13] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-13] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.) FF Plugin-x32: visualon.com/voBrowserPlugin -> C:\ProgramData\VisualOn\BrowserPlugin\npAstroBrowserPlugin.dll [2015-03-09] (Measat Broadcast Network Systems) FF Extension: (X-notifier) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\gq606iw0.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2016-08-31] FF Extension: (Firefox Hotfix) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\gq606iw0.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31] FF Extension: (LavaFox V2) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\gq606iw0.default\Extensions\info@djzig.com [2016-09-13] FF Extension: (BlackFox V2) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\gq606iw0.default\Extensions\zigboom@hotmail.com [2016-09-13] FF Extension: (Adblock Plus) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\gq606iw0.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-07-18] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext FF Extension: (bdToolbar) - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2014-10-13] [not signed] FF HKLM-x32\...\Firefox\Extensions: [{9D2AA73B-6049-4799-B8AC-925723370070}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext FF Extension: (RealDownloader) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-10-17] [not signed] FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-12-02] [not signed] FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext FF HKU\S-1-5-21-3557774620-388533037-4077533664-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\User\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\User\AppData\Roaming\IDM\idmmzcc5 [2015-02-13] [not signed] FF HKU\S-1-5-21-3557774620-388533037-4077533664-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\User\AppData\Roaming\IDM\idmmzcc5
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:10 PM Show posts by this member only \| Post #10
Enthusiast Senior Member 874 posts Joined: Aug 2006	Chrome: ======= CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://google.com/" CHR DefaultSearchURL: Default -> hxxp://www-searching.com/search.aspx?s=G3GzAMOBL2140,bcda8a51-3853-4db6-a7d7-6be2c7ac9d1f,&prd=smw&q={searchTerms} CHR DefaultSearchKeyword: Default -> www-searching.com CHR DefaultSuggestURL: Default -> hxxp://api.searchpredict.com/api/?rqtype=ffplugin&siteID=8661&dbCode=1&command={searchTerms} CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26] CHR Extension: (Google Cast) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2016-05-13] CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29] CHR Extension: (Bing) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2016-09-13] CHR Extension: (Legacy Browser Support) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\heildphpnddilhkemkielfhnkaagiabh [2016-09-13] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-04-28] CHR Extension: (Chrome Web Store Payments) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-05] CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-08] CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-13] CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-02-06] CHR HKU\S-1-5-21-3557774620-388533037-4077533664-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3557774620-388533037-4077533664-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [7774620-388533037-4077533664-1000] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2016-01-16] CHR HKLM-x32\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-02-06] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [77632 2014-08-05] (Bitdefender) R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed] R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation) S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [803856 2016-01-28] (Garmin Ltd. or its subsidiaries) S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed] R2 NitroDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe [343032 2012-02-24] (Nitro PDF Software) R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-07-30] () R2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-10-17] (RealNetworks, Inc.) R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-07-30] () [File not signed] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH) S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation) R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [5741568 2010-12-22] (Dell Inc.) [File not signed] ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [82664 2015-10-21] (Advanced Micro Devices, Inc.) U5 BDSandBox; C:\WINDOWS\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.) S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-12-17] () R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek ) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-08-07] (BitDefender S.R.L.) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) S1 BdfNdisf; \??\D:\Windows\System32\DriverStore\FileRepository\netlwf.inf_amd64_8442774b5947c37e\bdfndisf6.sys [X] U4 bdselfpr; \??\C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys [X] U3 idsvc; no ImagePath S3 RtlWlanu; \SystemRoot\system32\DRIVERS\rtwlanu.sys [X] U4 vsserv; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-09-13 18:00 - 2016-09-13 18:00 - 00024158 _____ C:\Users\User\Downloads\FRST.txt 2016-09-13 17:54 - 2016-09-13 18:00 - 00000000 ____D C:\FRST 2016-09-13 17:54 - 2016-09-13 17:54 - 05658674 _____ (Swearware) C:\Users\User\Downloads\ComboFix.exe 2016-09-13 17:53 - 2016-09-13 17:54 - 00000000 _____ C:\Users\User\Downloads\JRT (1).exe 2016-09-13 17:53 - 2016-09-13 17:53 - 02398720 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe 2016-09-13 17:29 - 2016-09-13 17:41 - 00000000 _____ C:\Users\User\Downloads\JRT.exe 2016-09-13 17:29 - 2016-09-13 17:30 - 03826240 _____ C:\Users\User\Downloads\AdwCleaner.exe 2016-09-13 17:29 - 2016-09-13 17:30 - 01304400 _____ C:\Users\User\Downloads\Autoruns.zip 2016-09-13 17:00 - 2016-09-13 17:04 - 11572656 _____ (SurfRight B.V.) C:\Users\User\Downloads\HitmanPro_x64 (1).exe 2016-09-13 16:59 - 2016-09-13 17:20 - 00000000 ____D C:\ProgramData\HitmanPro 2016-09-13 16:49 - 2016-09-13 16:52 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe 2016-09-13 16:00 - 2016-08-03 18:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2016-09-13 16:00 - 2016-08-03 18:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2016-09-13 16:00 - 2016-08-03 18:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-09-13 16:00 - 2016-08-03 18:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2016-09-13 16:00 - 2016-08-03 17:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2016-09-13 16:00 - 2016-08-03 17:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2016-09-13 16:00 - 2016-08-03 17:41 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys 2016-09-13 16:00 - 2016-08-03 17:40 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys 2016-09-13 16:00 - 2016-08-03 17:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2016-09-13 16:00 - 2016-08-03 17:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe 2016-09-13 16:00 - 2016-08-03 17:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2016-09-13 16:00 - 2016-08-03 17:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2016-09-13 16:00 - 2016-08-03 17:29 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2016-09-13 16:00 - 2016-08-03 17:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-09-13 16:00 - 2016-08-03 17:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-09-13 16:00 - 2016-08-03 17:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2016-09-13 16:00 - 2016-08-03 17:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2016-09-13 16:00 - 2016-08-03 13:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll 2016-09-13 16:00 - 2016-08-03 13:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2016-09-13 16:00 - 2016-08-03 13:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2016-09-13 16:00 - 2016-08-03 13:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll 2016-09-13 16:00 - 2016-08-03 12:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll 2016-09-13 16:00 - 2016-08-03 12:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2016-09-13 16:00 - 2016-08-03 12:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2016-09-13 16:00 - 2016-08-03 12:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2016-09-13 16:00 - 2016-07-01 12:49 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-09-13 16:00 - 2016-07-01 12:49 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-09-13 16:00 - 2016-07-01 12:49 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-09-13 16:00 - 2016-07-01 12:49 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-09-13 16:00 - 2016-07-01 12:49 - 00337336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2016-09-13 16:00 - 2016-07-01 12:48 - 02656408 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2016-09-13 16:00 - 2016-07-01 12:33 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2016-09-13 16:00 - 2016-07-01 12:32 - 01603224 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll 2016-09-13 16:00 - 2016-07-01 12:32 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2016-09-13 16:00 - 2016-07-01 12:32 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2016-09-13 16:00 - 2016-07-01 12:32 - 00106928 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe 2016-09-13 16:00 - 2016-07-01 12:32 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll 2016-09-13 16:00 - 2016-07-01 12:31 - 01848584 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2016-09-13 16:00 - 2016-07-01 12:21 - 28851224 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll 2016-09-13 16:00 - 2016-07-01 12:20 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll 2016-09-13 16:00 - 2016-07-01 12:19 - 00836760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2016-09-13 16:00 - 2016-07-01 12:07 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll 2016-09-13 16:00 - 2016-07-01 11:59 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2016-09-13 16:00 - 2016-07-01 11:54 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2016-09-13 16:00 - 2016-07-01 11:53 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2016-09-13 16:00 - 2016-07-01 11:52 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2016-09-13 16:00 - 2016-07-01 11:51 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll 2016-09-13 16:00 - 2016-07-01 11:50 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll 2016-09-13 16:00 - 2016-07-01 11:50 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2016-09-13 16:00 - 2016-07-01 11:50 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2016-09-13 16:00 - 2016-07-01 11:47 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2016-09-13 16:00 - 2016-07-01 11:47 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll 2016-09-13 16:00 - 2016-07-01 11:47 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll 2016-09-13 16:00 - 2016-07-01 11:47 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2016-09-13 16:00 - 2016-07-01 11:47 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll 2016-09-13 16:00 - 2016-07-01 11:47 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2016-09-13 16:00 - 2016-07-01 11:47 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll 2016-09-13 16:00 - 2016-07-01 11:47 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2016-09-13 16:00 - 2016-07-01 11:46 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2016-09-13 16:00 - 2016-07-01 11:45 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll 2016-09-13 16:00 - 2016-07-01 11:45 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2016-09-13 16:00 - 2016-07-01 11:44 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2016-09-13 16:00 - 2016-07-01 11:44 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll 2016-09-13 16:00 - 2016-07-01 11:44 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll 2016-09-13 16:00 - 2016-07-01 11:43 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2016-09-13 16:00 - 2016-07-01 11:43 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll 2016-09-13 16:00 - 2016-07-01 11:43 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2016-09-13 16:00 - 2016-07-01 11:43 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll 2016-09-13 16:00 - 2016-07-01 11:43 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll 2016-09-13 16:00 - 2016-07-01 11:43 - 00529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2016-09-13 16:00 - 2016-07-01 11:43 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2016-09-13 16:00 - 2016-07-01 11:43 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2016-09-13 16:00 - 2016-07-01 11:42 - 02012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll 2016-09-13 16:00 - 2016-07-01 11:42 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2016-09-13 16:00 - 2016-07-01 11:42 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll 2016-09-13 16:00 - 2016-07-01 11:41 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2016-09-13 16:00 - 2016-07-01 11:40 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll 2016-09-13 16:00 - 2016-07-01 11:40 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2016-09-13 16:00 - 2016-07-01 11:40 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2016-09-13 16:00 - 2016-07-01 11:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2016-09-13 16:00 - 2016-07-01 11:40 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll 2016-09-13 16:00 - 2016-07-01 11:40 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll 2016-09-13 16:00 - 2016-07-01 11:39 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe 2016-09-13 16:00 - 2016-07-01 11:38 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2016-09-13 16:00 - 2016-07-01 11:37 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll 2016-09-13 16:00 - 2016-07-01 11:37 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll 2016-09-13 16:00 - 2016-07-01 11:36 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll 2016-09-13 16:00 - 2016-07-01 11:36 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll 2016-09-13 16:00 - 2016-07-01 11:33 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2016-09-13 16:00 - 2016-07-01 11:32 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2016-09-13 16:00 - 2016-07-01 11:31 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2016-09-13 16:00 - 2016-07-01 11:31 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll 2016-09-13 16:00 - 2016-07-01 11:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe 2016-09-13 16:00 - 2016-07-01 11:30 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll 2016-09-13 16:00 - 2016-07-01 11:30 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2016-09-13 16:00 - 2016-07-01 11:30 - 00849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2016-09-13 16:00 - 2016-07-01 11:30 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll 2016-09-13 16:00 - 2016-07-01 11:30 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll 2016-09-13 16:00 - 2016-07-01 11:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2016-09-13 16:00 - 2016-07-01 11:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll 2016-09-13 16:00 - 2016-07-01 11:28 - 03577344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2016-09-13 16:00 - 2016-07-01 11:27 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll 2016-09-13 16:00 - 2016-07-01 11:27 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll 2016-09-13 16:00 - 2016-07-01 11:27 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll 2016-09-13 16:00 - 2016-07-01 11:26 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2016-09-13 16:00 - 2016-07-01 11:26 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll 2016-09-13 16:00 - 2016-07-01 11:26 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll 2016-09-13 16:00 - 2016-07-01 11:26 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll 2016-09-13 16:00 - 2016-07-01 11:26 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll 2016-09-13 16:00 - 2016-07-01 11:25 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2016-09-13 16:00 - 2016-07-01 11:25 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll 2016-09-13 16:00 - 2016-07-01 11:25 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll 2016-09-13 16:00 - 2016-07-01 11:25 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2016-09-13 16:00 - 2016-07-01 11:25 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll 2016-09-13 16:00 - 2016-07-01 11:25 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe 2016-09-13 16:00 - 2016-07-01 11:24 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2016-09-13 16:00 - 2016-07-01 11:24 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll 2016-09-13 16:00 - 2016-07-01 11:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll 2016-09-13 16:00 - 2016-07-01 11:22 - 03053568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2016-09-13 16:00 - 2016-07-01 11:21 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll 2016-09-13 16:00 - 2016-07-01 11:17 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2016-09-13 16:00 - 2016-07-01 11:15 - 04413440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2016-09-13 16:00 - 2016-07-01 11:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll 2016-09-13 16:00 - 2016-07-01 11:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll 2016-09-13 16:00 - 2016-07-01 11:13 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2016-09-13 16:00 - 2016-07-01 11:08 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll 2016-09-13 16:00 - 2016-05-28 13:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll 2016-09-13 16:00 - 2016-05-28 13:23 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll 2016-09-13 16:00 - 2016-05-28 13:22 - 00211296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2016-09-13 16:00 - 2016-05-28 13:04 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll 2016-09-13 16:00 - 2016-05-28 13:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2016-09-13 16:00 - 2016-05-28 13:04 - 00111064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll 2016-09-13 16:00 - 2016-05-28 12:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2016-09-13 16:00 - 2016-05-28 12:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2016-09-13 16:00 - 2016-05-28 12:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2016-09-13 16:00 - 2016-05-28 12:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2016-09-13 16:00 - 2016-05-28 12:22 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll 2016-09-13 16:00 - 2016-05-28 12:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll 2016-09-13 16:00 - 2016-05-28 12:13 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll 2016-09-13 16:00 - 2016-05-28 12:01 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2016-09-13 15:59 - 2016-08-03 18:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2016-09-13 15:59 - 2016-08-03 18:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2016-09-13 15:59 - 2016-08-03 18:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2016-09-13 15:59 - 2016-08-03 18:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-09-13 15:59 - 2016-08-03 18:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2016-09-13 15:59 - 2016-08-03 18:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-09-13 15:59 - 2016-08-03 18:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-09-13 15:59 - 2016-08-03 18:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-09-13 15:59 - 2016-08-03 17:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2016-09-13 15:59 - 2016-08-03 17:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-09-13 15:59 - 2016-08-03 17:41 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2016-09-13 15:59 - 2016-08-03 17:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2016-09-13 15:59 - 2016-08-03 17:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2016-09-13 15:59 - 2016-08-03 17:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2016-09-13 15:59 - 2016-08-03 17:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2016-09-13 15:59 - 2016-08-03 17:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll 2016-09-13 15:59 - 2016-08-03 17:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll 2016-09-13 15:59 - 2016-08-03 17:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2016-09-13 15:59 - 2016-08-03 17:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-09-13 15:59 - 2016-08-03 17:29 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2016-09-13 15:59 - 2016-08-03 17:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2016-09-13 15:59 - 2016-08-03 17:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2016-09-13 15:59 - 2016-08-03 17:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2016-09-13 15:59 - 2016-08-03 17:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-09-13 15:59 - 2016-08-03 17:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2016-09-13 15:59 - 2016-08-03 17:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2016-09-13 15:59 - 2016-08-03 17:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-09-13 15:59 - 2016-08-03 13:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-09-13 15:59 - 2016-08-03 13:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2016-09-13 15:59 - 2016-08-03 12:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe 2016-09-13 15:59 - 2016-08-03 12:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll 2016-09-13 15:59 - 2016-08-03 12:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-09-13 15:59 - 2016-08-03 12:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll 2016-09-13 15:59 - 2016-08-03 12:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll 2016-09-13 15:59 - 2016-08-03 12:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2016-09-13 15:59 - 2016-08-03 12:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-09-13 15:59 - 2016-08-03 12:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2016-09-13 15:59 - 2016-08-03 12:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2016-09-13 15:59 - 2016-08-03 12:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2016-09-13 15:59 - 2016-07-01 12:49 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2016-09-13 15:59 - 2016-07-01 12:45 - 01613664 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2016-09-13 15:59 - 2016-07-01 12:43 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll 2016-09-13 15:59 - 2016-07-01 12:35 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2016-09-13 15:59 - 2016-07-01 12:35 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2016-09-13 15:59 - 2016-07-01 12:35 - 00847656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2016-09-13 15:59 - 2016-07-01 12:35 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2016-09-13 15:59 - 2016-07-01 12:25 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2016-09-13 15:59 - 2016-07-01 12:25 - 02145032 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2016-09-13 15:59 - 2016-07-01 12:25 - 00648256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2016-09-13 15:59 - 2016-07-01 12:24 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-09-13 15:59 - 2016-07-01 12:24 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2016-09-13 15:59 - 2016-07-01 12:23 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2016-09-13 15:59 - 2016-07-01 12:23 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2016-09-13 15:59 - 2016-07-01 12:23 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe 2016-09-13 15:59 - 2016-07-01 12:21 - 02403168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2016-09-13 15:59 - 2016-07-01 12:19 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2016-09-13 15:59 - 2016-07-01 12:18 - 00064584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll 2016-09-13 15:59 - 2016-07-01 12:03 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2016-09-13 15:59 - 2016-07-01 11:58 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll 2016-09-13 15:59 - 2016-07-01 11:57 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2016-09-13 15:59 - 2016-07-01 11:55 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUX.dll 2016-09-13 15:59 - 2016-07-01 11:55 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2016-09-13 15:59 - 2016-07-01 11:54 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2016-09-13 15:59 - 2016-07-01 11:52 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10_1.dll 2016-09-13 15:59 - 2016-07-01 11:52 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2016-09-13 15:59 - 2016-07-01 11:50 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2016-09-13 15:59 - 2016-07-01 11:49 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe 2016-09-13 15:59 - 2016-07-01 11:48 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2016-09-13 15:59 - 2016-07-01 11:48 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2016-09-13 15:59 - 2016-07-01 11:48 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys 2016-09-13 15:59 - 2016-07-01 11:48 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll 2016-09-13 15:59 - 2016-07-01 11:48 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll 2016-09-13 15:59 - 2016-07-01 11:47 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll 2016-09-13 15:59 - 2016-07-01 11:46 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll 2016-09-13 15:59 - 2016-07-01 11:45 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll 2016-09-13 15:59 - 2016-07-01 11:45 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll 2016-09-13 15:59 - 2016-07-01 11:45 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll 2016-09-13 15:59 - 2016-07-01 11:45 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2016-09-13 15:59 - 2016-07-01 11:44 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll 2016-09-13 15:59 - 2016-07-01 11:43 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll 2016-09-13 15:59 - 2016-07-01 11:43 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll 2016-09-13 15:59 - 2016-07-01 11:43 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll 2016-09-13 15:59 - 2016-07-01 11:43 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll 2016-09-13 15:59 - 2016-07-01 11:43 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2016-09-13 15:59 - 2016-07-01 11:43 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll 2016-09-13 15:59 - 2016-07-01 11:42 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll 2016-09-13 15:59 - 2016-07-01 11:42 - 01434112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll 2016-09-13 15:59 - 2016-07-01 11:42 - 01240064 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10.dll 2016-09-13 15:59 - 2016-07-01 11:42 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2016-09-13 15:59 - 2016-07-01 11:42 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll 2016-09-13 15:59 - 2016-07-01 11:41 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll 2016-09-13 15:59 - 2016-07-01 11:40 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll 2016-09-13 15:59 - 2016-07-01 11:39 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2016-09-13 15:59 - 2016-07-01 11:38 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2016-09-13 15:59 - 2016-07-01 11:38 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll 2016-09-13 15:59 - 2016-07-01 11:38 - 01671168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2016-09-13 15:59 - 2016-07-01 11:38 - 01443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll 2016-09-13 15:59 - 2016-07-01 11:38 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll 2016-09-13 15:59 - 2016-07-01 11:38 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IconCodecService.dll 2016-09-13 15:59 - 2016-07-01 11:37 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll 2016-09-13 15:59 - 2016-07-01 11:36 - 02445312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2016-09-13 15:59 - 2016-07-01 11:34 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2016-09-13 15:59 - 2016-07-01 11:34 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll 2016-09-13 15:59 - 2016-07-01 11:34 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2016-09-13 15:59 - 2016-07-01 11:32 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-09-13 15:59 - 2016-07-01 11:32 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll 2016-09-13 15:59 - 2016-07-01 11:31 - 00994816 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2016-09-13 15:59 - 2016-07-01 11:31 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll 2016-09-13 15:59 - 2016-07-01 11:31 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll 2016-09-13 15:59 - 2016-07-01 11:30 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll 2016-09-13 15:59 - 2016-07-01 11:29 - 05503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2016-09-13 15:59 - 2016-07-01 11:29 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2016-09-13 15:59 - 2016-07-01 11:29 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll 2016-09-13 15:59 - 2016-07-01 11:29 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll 2016-09-13 15:59 - 2016-07-01 11:28 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll 2016-09-13 15:59 - 2016-07-01 11:27 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2016-09-13 15:59 - 2016-07-01 11:27 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll 2016-09-13 15:59 - 2016-07-01 11:26 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll 2016-09-13 15:59 - 2016-07-01 11:26 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll 2016-09-13 15:59 - 2016-07-01 11:25 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll 2016-09-13 15:59 - 2016-07-01 11:25 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2016-09-13 15:59 - 2016-07-01 11:25 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll 2016-09-13 15:59 - 2016-07-01 11:24 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-09-13 15:59 - 2016-07-01 11:23 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll 2016-09-13 15:59 - 2016-07-01 11:23 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe 2016-09-13 15:59 - 2016-07-01 11:21 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2016-09-13 15:59 - 2016-07-01 11:14 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2016-09-13 15:59 - 2016-05-28 13:22 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys 2016-09-13 15:59 - 2016-05-28 12:58 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2016-09-13 15:59 - 2016-05-28 12:57 - 02548944 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2016-09-13 15:59 - 2016-05-28 12:57 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2016-09-13 15:59 - 2016-05-28 12:57 - 01372312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2016-09-13 15:59 - 2016-05-28 12:57 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2016-09-13 15:59 - 2016-05-28 12:29 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2016-09-13 15:59 - 2016-05-28 12:28 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2016-09-13 15:59 - 2016-05-28 12:26 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2016-09-13 15:59 - 2016-05-28 12:26 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2016-09-13 15:59 - 2016-05-28 12:22 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys 2016-09-13 15:59 - 2016-05-28 12:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2016-09-13 15:59 - 2016-05-28 12:21 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll 2016-09-13 15:59 - 2016-05-28 12:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll 2016-09-13 15:59 - 2016-05-28 12:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll 2016-09-13 15:59 - 2016-05-28 12:17 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2016-09-13 15:59 - 2016-05-28 12:17 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2016-09-13 15:59 - 2016-05-28 12:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2016-09-13 15:59 - 2016-05-28 12:16 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2016-09-13 15:59 - 2016-05-28 12:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll 2016-09-13 15:59 - 2016-05-28 12:15 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2016-09-13 15:59 - 2016-05-28 12:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll 2016-09-13 15:59 - 2016-05-28 12:15 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2016-09-13 15:59 - 2016-05-28 12:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll 2016-09-13 15:59 - 2016-05-28 12:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2016-09-13 15:59 - 2016-05-28 12:04 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll 2016-09-13 15:59 - 2016-05-28 12:03 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll 2016-09-13 15:59 - 2016-05-28 12:03 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2016-09-13 15:59 - 2016-05-28 12:00 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2016-09-13 15:59 - 2016-05-28 12:00 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2016-09-13 15:59 - 2016-05-28 11:59 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2016-09-13 15:59 - 2016-02-09 12:25 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2016-09-13 15:58 - 2016-08-03 19:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-09-13 15:58 - 2016-08-03 19:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-09-13 15:58 - 2016-08-03 19:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2016-09-13 15:58 - 2016-08-03 18:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-09-13 15:58 - 2016-08-03 18:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2016-09-13 15:58 - 2016-08-03 18:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2016-09-13 15:58 - 2016-08-03 18:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2016-09-13 15:58 - 2016-08-03 18:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe 2016-09-13 15:58 - 2016-08-03 18:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2016-09-13 15:58 - 2016-08-03 17:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe 2016-09-13 15:58 - 2016-08-03 17:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll 2016-09-13 15:58 - 2016-08-03 17:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll 2016-09-13 15:58 - 2016-08-03 17:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2016-09-13 15:58 - 2016-08-03 17:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2016-09-13 15:58 - 2016-08-03 17:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-09-13 15:58 - 2016-08-03 17:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2016-09-13 15:58 - 2016-08-03 17:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-09-13 15:58 - 2016-08-03 17:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-09-13 15:58 - 2016-08-03 17:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-09-13 15:58 - 2016-08-03 17:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2016-09-13 15:58 - 2016-08-03 13:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2016-09-13 15:58 - 2016-08-03 13:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-09-13 15:58 - 2016-08-03 12:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe 2016-09-13 15:58 - 2016-08-03 12:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2016-09-13 15:58 - 2016-07-01 13:30 - 01223872 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-09-13 15:58 - 2016-07-01 13:30 - 00587456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-09-13 15:58 - 2016-07-01 13:30 - 00559808 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-09-13 15:58 - 2016-07-01 13:30 - 00310464 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2016-09-13 15:58 - 2016-07-01 13:30 - 00284352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2016-09-13 15:58 - 2016-07-01 12:49 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2016-09-13 15:58 - 2016-07-01 12:48 - 01238584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe 2016-09-13 15:58 - 2016-07-01 12:39 - 01557776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2016-09-13 15:58 - 2016-07-01 12:38 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:10 PM Show posts by this member only \| Post #11
Enthusiast Senior Member 874 posts Joined: Aug 2006	2016-09-13 15:58 - 2016-07-01 12:38 - 01083656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe 2016-09-13 15:58 - 2016-07-01 12:38 - 00256192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2016-09-13 15:58 - 2016-07-01 12:35 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2016-09-13 15:58 - 2016-07-01 12:35 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2016-09-13 15:58 - 2016-07-01 12:33 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2016-09-13 15:58 - 2016-07-01 12:33 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2016-09-13 15:58 - 2016-07-01 12:33 - 00730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll 2016-09-13 15:58 - 2016-07-01 12:32 - 01040800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2016-09-13 15:58 - 2016-07-01 12:23 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll 2016-09-13 15:58 - 2016-07-01 12:23 - 00925576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2016-09-13 15:58 - 2016-07-01 12:23 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2016-09-13 15:58 - 2016-07-01 12:23 - 00451936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2016-09-13 15:58 - 2016-07-01 12:21 - 00376536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll 2016-09-13 15:58 - 2016-07-01 12:20 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll 2016-09-13 15:58 - 2016-07-01 12:12 - 01866104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2016-09-13 15:58 - 2016-07-01 12:11 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-09-13 15:58 - 2016-07-01 12:10 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2016-09-13 15:58 - 2016-07-01 12:00 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2016-09-13 15:58 - 2016-07-01 11:58 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2016-09-13 15:58 - 2016-07-01 11:53 - 01567744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2016-09-13 15:58 - 2016-07-01 11:51 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2016-09-13 15:58 - 2016-07-01 11:51 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll 2016-09-13 15:58 - 2016-07-01 11:50 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-09-13 15:58 - 2016-07-01 11:50 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll 2016-09-13 15:58 - 2016-07-01 11:49 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Maps.dll 2016-09-13 15:58 - 2016-07-01 11:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll 2016-09-13 15:58 - 2016-07-01 11:48 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe 2016-09-13 15:58 - 2016-07-01 11:48 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll 2016-09-13 15:58 - 2016-07-01 11:47 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2016-09-13 15:58 - 2016-07-01 11:47 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2016-09-13 15:58 - 2016-07-01 11:47 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2016-09-13 15:58 - 2016-07-01 11:47 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2016-09-13 15:58 - 2016-07-01 11:46 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe 2016-09-13 15:58 - 2016-07-01 11:46 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2016-09-13 15:58 - 2016-07-01 11:46 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll 2016-09-13 15:58 - 2016-07-01 11:46 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll 2016-09-13 15:58 - 2016-07-01 11:45 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll 2016-09-13 15:58 - 2016-07-01 11:45 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2016-09-13 15:58 - 2016-07-01 11:45 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll 2016-09-13 15:58 - 2016-07-01 11:44 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2016-09-13 15:58 - 2016-07-01 11:44 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll 2016-09-13 15:58 - 2016-07-01 11:44 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll 2016-09-13 15:58 - 2016-07-01 11:44 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll 2016-09-13 15:58 - 2016-07-01 11:43 - 00992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll 2016-09-13 15:58 - 2016-07-01 11:43 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll 2016-09-13 15:58 - 2016-07-01 11:43 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2016-09-13 15:58 - 2016-07-01 11:43 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2016-09-13 15:58 - 2016-07-01 11:43 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll 2016-09-13 15:58 - 2016-07-01 11:42 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll 2016-09-13 15:58 - 2016-07-01 11:42 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll 2016-09-13 15:58 - 2016-07-01 11:42 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll 2016-09-13 15:58 - 2016-07-01 11:42 - 00697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2016-09-13 15:58 - 2016-07-01 11:42 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll 2016-09-13 15:58 - 2016-07-01 11:42 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2016-09-13 15:58 - 2016-07-01 11:42 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll 2016-09-13 15:58 - 2016-07-01 11:41 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe 2016-09-13 15:58 - 2016-07-01 11:41 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll 2016-09-13 15:58 - 2016-07-01 11:41 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2016-09-13 15:58 - 2016-07-01 11:41 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2016-09-13 15:58 - 2016-07-01 11:41 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2016-09-13 15:58 - 2016-07-01 11:41 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2016-09-13 15:58 - 2016-07-01 11:41 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2016-09-13 15:58 - 2016-07-01 11:41 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2016-09-13 15:58 - 2016-07-01 11:41 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll 2016-09-13 15:58 - 2016-07-01 11:40 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll 2016-09-13 15:58 - 2016-07-01 11:40 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2016-09-13 15:58 - 2016-07-01 11:40 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2016-09-13 15:58 - 2016-07-01 11:40 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2016-09-13 15:58 - 2016-07-01 11:39 - 01872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2016-09-13 15:58 - 2016-07-01 11:39 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll 2016-09-13 15:58 - 2016-07-01 11:39 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll 2016-09-13 15:58 - 2016-07-01 11:38 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2016-09-13 15:58 - 2016-07-01 11:38 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2016-09-13 15:58 - 2016-07-01 11:38 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll 2016-09-13 15:58 - 2016-07-01 11:37 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2016-09-13 15:58 - 2016-07-01 11:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2016-09-13 15:58 - 2016-07-01 11:35 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2016-09-13 15:58 - 2016-07-01 11:34 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-09-13 15:58 - 2016-07-01 11:33 - 02285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll 2016-09-13 15:58 - 2016-07-01 11:31 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2016-09-13 15:58 - 2016-07-01 11:30 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2016-09-13 15:58 - 2016-07-01 11:30 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2016-09-13 15:58 - 2016-07-01 11:30 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll 2016-09-13 15:58 - 2016-07-01 11:30 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2016-09-13 15:58 - 2016-07-01 11:30 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll 2016-09-13 15:58 - 2016-07-01 11:29 - 04646912 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2016-09-13 15:58 - 2016-07-01 11:29 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-09-13 15:58 - 2016-07-01 11:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2016-09-13 15:58 - 2016-07-01 11:28 - 03046400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2016-09-13 15:58 - 2016-07-01 11:28 - 02876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2016-09-13 15:58 - 2016-07-01 11:28 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll 2016-09-13 15:58 - 2016-07-01 11:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2016-09-13 15:58 - 2016-07-01 11:27 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll 2016-09-13 15:58 - 2016-07-01 11:27 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2016-09-13 15:58 - 2016-07-01 11:27 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll 2016-09-13 15:58 - 2016-07-01 11:27 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll 2016-09-13 15:58 - 2016-07-01 11:27 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2016-09-13 15:58 - 2016-07-01 11:27 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2016-09-13 15:58 - 2016-07-01 11:27 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll 2016-09-13 15:58 - 2016-07-01 11:26 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll 2016-09-13 15:58 - 2016-07-01 11:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-09-13 15:58 - 2016-07-01 11:26 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll 2016-09-13 15:58 - 2016-07-01 11:26 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll 2016-09-13 15:58 - 2016-07-01 11:26 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2016-09-13 15:58 - 2016-07-01 11:25 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2016-09-13 15:58 - 2016-07-01 11:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2016-09-13 15:58 - 2016-07-01 11:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2016-09-13 15:58 - 2016-07-01 11:25 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-09-13 15:58 - 2016-07-01 11:25 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2016-09-13 15:58 - 2016-07-01 11:24 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe 2016-09-13 15:58 - 2016-07-01 11:24 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-09-13 15:58 - 2016-07-01 11:24 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2016-09-13 15:58 - 2016-07-01 11:23 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll 2016-09-13 15:58 - 2016-07-01 11:23 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2016-09-13 15:58 - 2016-07-01 11:22 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2016-09-13 15:58 - 2016-07-01 11:22 - 00965120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2016-09-13 15:58 - 2016-07-01 11:22 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2016-09-13 15:58 - 2016-07-01 11:20 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2016-09-13 15:58 - 2016-07-01 11:20 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-09-13 15:58 - 2016-07-01 11:19 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2016-09-13 15:58 - 2016-07-01 11:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2016-09-13 15:58 - 2016-07-01 11:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2016-09-13 15:58 - 2016-07-01 11:18 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll 2016-09-13 15:58 - 2016-07-01 11:18 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2016-09-13 15:58 - 2016-07-01 11:16 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2016-09-13 15:58 - 2016-07-01 11:16 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-09-13 15:58 - 2016-07-01 11:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2016-09-13 15:58 - 2016-07-01 11:15 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2016-09-13 15:58 - 2016-07-01 11:15 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll 2016-09-13 15:58 - 2016-07-01 11:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2016-09-13 15:58 - 2016-07-01 11:13 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll 2016-09-13 15:58 - 2016-07-01 11:08 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll 2016-09-13 15:58 - 2016-06-28 19:20 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2016-09-13 15:58 - 2016-05-28 13:22 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll 2016-09-13 15:58 - 2016-05-28 13:22 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2016-09-13 15:58 - 2016-05-28 13:18 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll 2016-09-13 15:58 - 2016-05-28 12:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2016-09-13 15:58 - 2016-05-28 12:29 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll 2016-09-13 15:58 - 2016-05-28 12:29 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll 2016-09-13 15:58 - 2016-05-28 12:23 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2016-09-13 15:58 - 2016-05-28 12:21 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll 2016-09-13 15:58 - 2016-05-28 12:20 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll 2016-09-13 15:58 - 2016-05-28 12:20 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll 2016-09-13 15:58 - 2016-05-28 12:20 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll 2016-09-13 15:58 - 2016-05-28 12:20 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll 2016-09-13 15:58 - 2016-05-28 12:20 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll 2016-09-13 15:58 - 2016-05-28 12:19 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll 2016-09-13 15:58 - 2016-05-28 12:18 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll 2016-09-13 15:58 - 2016-05-28 12:18 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2016-09-13 15:58 - 2016-05-28 12:18 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL 2016-09-13 15:58 - 2016-05-28 12:18 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2016-09-13 15:58 - 2016-05-28 12:17 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll 2016-09-13 15:58 - 2016-05-28 12:17 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2016-09-13 15:58 - 2016-05-28 12:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2016-09-13 15:58 - 2016-05-28 12:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll 2016-09-13 15:58 - 2016-05-28 12:16 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys 2016-09-13 15:58 - 2016-05-28 12:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2016-09-13 15:58 - 2016-05-28 12:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll 2016-09-13 15:58 - 2016-05-28 12:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2016-09-13 15:58 - 2016-05-28 12:11 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll 2016-09-13 15:58 - 2016-05-28 12:02 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2016-09-13 15:58 - 2016-05-28 12:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2016-09-13 15:57 - 2016-08-03 18:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll 2016-09-13 15:57 - 2016-08-03 18:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2016-09-13 15:57 - 2016-08-03 18:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll 2016-09-13 15:57 - 2016-08-03 18:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-09-13 15:57 - 2016-08-03 18:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2016-09-13 15:57 - 2016-08-03 17:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-09-13 15:57 - 2016-08-03 17:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll 2016-09-13 15:57 - 2016-08-03 17:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll 2016-09-13 15:57 - 2016-08-03 17:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll 2016-09-13 15:57 - 2016-08-03 17:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll 2016-09-13 15:57 - 2016-08-03 17:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2016-09-13 15:57 - 2016-08-03 17:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll 2016-09-13 15:57 - 2016-08-03 17:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2016-09-13 15:57 - 2016-08-03 17:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-09-13 15:57 - 2016-08-03 17:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-09-13 15:57 - 2016-08-03 17:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2016-09-13 15:57 - 2016-08-03 17:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2016-09-13 15:57 - 2016-08-03 17:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2016-09-13 15:57 - 2016-08-03 17:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2016-09-13 15:57 - 2016-08-03 17:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2016-09-13 15:57 - 2016-08-03 17:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-09-13 15:57 - 2016-08-03 17:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-09-13 15:57 - 2016-08-03 17:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-09-13 15:57 - 2016-08-03 13:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2016-09-13 15:57 - 2016-08-03 13:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-09-13 15:57 - 2016-08-03 12:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll 2016-09-13 15:57 - 2016-08-03 12:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-09-13 15:57 - 2016-08-03 12:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2016-09-13 15:57 - 2016-08-03 12:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-09-13 15:57 - 2016-08-03 12:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2016-09-13 15:57 - 2016-08-03 12:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2016-09-13 15:57 - 2016-08-03 12:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-09-13 15:57 - 2016-08-03 12:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-09-13 15:57 - 2016-08-03 12:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-09-13 15:57 - 2016-08-03 12:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-09-13 15:57 - 2016-08-03 12:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-09-13 15:57 - 2016-08-03 12:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2016-09-13 15:57 - 2016-08-03 12:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2016-09-13 15:57 - 2016-08-03 12:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-09-13 15:57 - 2016-08-03 12:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll 2016-09-13 15:57 - 2016-07-01 12:35 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2016-09-13 15:57 - 2016-07-01 12:35 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe 2016-09-13 15:57 - 2016-07-01 12:33 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2016-09-13 15:57 - 2016-07-01 12:32 - 06605544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2016-09-13 15:57 - 2016-07-01 12:32 - 06536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2016-09-13 15:57 - 2016-07-01 12:19 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2016-09-13 15:57 - 2016-07-01 12:19 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll 2016-09-13 15:57 - 2016-07-01 12:19 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2016-09-13 15:57 - 2016-07-01 12:17 - 01536600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2016-09-13 15:57 - 2016-07-01 12:12 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2016-09-13 15:57 - 2016-07-01 12:11 - 00521152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2016-09-13 15:57 - 2016-07-01 11:57 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe 2016-09-13 15:57 - 2016-07-01 11:55 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll 2016-09-13 15:57 - 2016-07-01 11:54 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll 2016-09-13 15:57 - 2016-07-01 11:52 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2016-09-13 15:57 - 2016-07-01 11:52 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll 2016-09-13 15:57 - 2016-07-01 11:50 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll 2016-09-13 15:57 - 2016-07-01 11:50 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll 2016-09-13 15:57 - 2016-07-01 11:50 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll 2016-09-13 15:57 - 2016-07-01 11:49 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2016-09-13 15:57 - 2016-07-01 11:48 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll 2016-09-13 15:57 - 2016-07-01 11:47 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll 2016-09-13 15:57 - 2016-07-01 11:47 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll 2016-09-13 15:57 - 2016-07-01 11:47 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll 2016-09-13 15:57 - 2016-07-01 11:47 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll 2016-09-13 15:57 - 2016-07-01 11:47 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll 2016-09-13 15:57 - 2016-07-01 11:46 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll 2016-09-13 15:57 - 2016-07-01 11:46 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll 2016-09-13 15:57 - 2016-07-01 11:46 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll 2016-09-13 15:57 - 2016-07-01 11:46 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll 2016-09-13 15:57 - 2016-07-01 11:45 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2016-09-13 15:57 - 2016-07-01 11:45 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2016-09-13 15:57 - 2016-07-01 11:45 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll 2016-09-13 15:57 - 2016-07-01 11:45 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll 2016-09-13 15:57 - 2016-07-01 11:45 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll 2016-09-13 15:57 - 2016-07-01 11:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll 2016-09-13 15:57 - 2016-07-01 11:44 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll 2016-09-13 15:57 - 2016-07-01 11:44 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2016-09-13 15:57 - 2016-07-01 11:44 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll 2016-09-13 15:57 - 2016-07-01 11:43 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll 2016-09-13 15:57 - 2016-07-01 11:43 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll 2016-09-13 15:57 - 2016-07-01 11:43 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2016-09-13 15:57 - 2016-07-01 11:43 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2016-09-13 15:57 - 2016-07-01 11:42 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll 2016-09-13 15:57 - 2016-07-01 11:42 - 00429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll 2016-09-13 15:57 - 2016-07-01 11:41 - 01037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll 2016-09-13 15:57 - 2016-07-01 11:41 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2016-09-13 15:57 - 2016-07-01 11:41 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2016-09-13 15:57 - 2016-07-01 11:41 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-09-13 15:57 - 2016-07-01 11:41 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe 2016-09-13 15:57 - 2016-07-01 11:40 - 02103296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll 2016-09-13 15:57 - 2016-07-01 11:40 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2016-09-13 15:57 - 2016-07-01 11:40 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll 2016-09-13 15:57 - 2016-07-01 11:37 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-09-13 15:57 - 2016-07-01 11:36 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll 2016-09-13 15:57 - 2016-07-01 11:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2016-09-13 15:57 - 2016-07-01 11:34 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-09-13 15:57 - 2016-07-01 11:34 - 04170240 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll 2016-09-13 15:57 - 2016-07-01 11:34 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2016-09-13 15:57 - 2016-07-01 11:34 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll 2016-09-13 15:57 - 2016-07-01 11:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll 2016-09-13 15:57 - 2016-07-01 11:33 - 06675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2016-09-13 15:57 - 2016-07-01 11:33 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll 2016-09-13 15:57 - 2016-07-01 11:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShServiceObj.dll 2016-09-13 15:57 - 2016-07-01 11:32 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll 2016-09-13 15:57 - 2016-07-01 11:32 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll 2016-09-13 15:57 - 2016-07-01 11:32 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2016-09-13 15:57 - 2016-07-01 11:32 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimCfg.dll 2016-09-13 15:57 - 2016-07-01 11:31 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll 2016-09-13 15:57 - 2016-07-01 11:31 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2016-09-13 15:57 - 2016-07-01 11:31 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe 2016-09-13 15:57 - 2016-07-01 11:31 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimAuth.dll 2016-09-13 15:57 - 2016-07-01 11:30 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2016-09-13 15:57 - 2016-07-01 11:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2016-09-13 15:57 - 2016-07-01 11:30 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll 2016-09-13 15:57 - 2016-07-01 11:30 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll 2016-09-13 15:57 - 2016-07-01 11:29 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe 2016-09-13 15:57 - 2016-07-01 11:29 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll 2016-09-13 15:57 - 2016-07-01 11:29 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll 2016-09-13 15:57 - 2016-07-01 11:28 - 02912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll 2016-09-13 15:57 - 2016-07-01 11:28 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll 2016-09-13 15:57 - 2016-07-01 11:28 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll 2016-09-13 15:57 - 2016-07-01 11:27 - 04827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2016-09-13 15:57 - 2016-07-01 11:27 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2016-09-13 15:57 - 2016-07-01 11:27 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll 2016-09-13 15:57 - 2016-07-01 11:27 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2016-09-13 15:57 - 2016-07-01 11:27 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll 2016-09-13 15:57 - 2016-07-01 11:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbe.dll 2016-09-13 15:57 - 2016-07-01 11:26 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll 2016-09-13 15:57 - 2016-07-01 11:25 - 01121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2016-09-13 15:57 - 2016-07-01 11:25 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2016-09-13 15:57 - 2016-07-01 11:25 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2016-09-13 15:57 - 2016-07-01 11:25 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll 2016-09-13 15:57 - 2016-07-01 11:24 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2016-09-13 15:57 - 2016-07-01 11:24 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll 2016-09-13 15:57 - 2016-07-01 11:24 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll 2016-09-13 15:57 - 2016-07-01 11:23 - 03301376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll 2016-09-13 15:57 - 2016-07-01 11:23 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll 2016-09-13 15:57 - 2016-07-01 11:23 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2016-09-13 15:57 - 2016-07-01 11:23 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2016-09-13 15:57 - 2016-07-01 11:23 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-09-13 15:57 - 2016-07-01 11:23 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll 2016-09-13 15:57 - 2016-07-01 11:23 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2016-09-13 15:57 - 2016-07-01 11:23 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll 2016-09-13 15:57 - 2016-07-01 11:21 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll 2016-09-13 15:57 - 2016-07-01 11:20 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll 2016-09-13 15:57 - 2016-07-01 11:19 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2016-09-13 15:57 - 2016-07-01 11:19 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll 2016-09-13 15:57 - 2016-07-01 11:15 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll 2016-09-13 15:57 - 2016-07-01 11:15 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll 2016-09-13 15:57 - 2016-07-01 11:15 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll 2016-09-13 15:57 - 2016-07-01 11:14 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2016-09-13 15:57 - 2016-07-01 11:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2016-09-13 15:57 - 2016-07-01 11:13 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll 2016-09-13 15:57 - 2016-07-01 11:13 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2016-09-13 15:57 - 2016-07-01 11:11 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-09-13 15:57 - 2016-07-01 11:09 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2016-09-13 15:57 - 2016-07-01 11:08 - 01976832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll 2016-09-13 15:57 - 2016-07-01 11:08 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll 2016-09-13 15:57 - 2016-05-28 13:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll 2016-09-13 15:57 - 2016-05-28 13:20 - 00430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll 2016-09-13 15:57 - 2016-05-28 13:09 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe 2016-09-13 15:57 - 2016-05-28 13:08 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys 2016-09-13 15:57 - 2016-05-28 13:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll 2016-09-13 15:57 - 2016-05-28 13:03 - 00131248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll 2016-09-13 15:57 - 2016-05-28 12:35 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys 2016-09-13 15:57 - 2016-05-28 12:28 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll 2016-09-13 15:57 - 2016-05-28 12:24 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys 2016-09-13 15:57 - 2016-05-28 12:24 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll 2016-09-13 15:57 - 2016-05-28 12:23 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll 2016-09-13 15:57 - 2016-05-28 12:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2016-09-13 15:57 - 2016-05-28 12:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2016-09-13 15:57 - 2016-05-28 12:19 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2016-09-13 15:57 - 2016-05-28 12:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll 2016-09-13 15:57 - 2016-05-28 12:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll 2016-09-13 15:57 - 2016-05-28 12:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll 2016-09-13 15:57 - 2016-05-28 12:06 - 01339904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll 2016-09-13 15:57 - 2016-05-28 12:04 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll 2016-09-13 15:57 - 2016-05-28 12:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll 2016-09-13 15:57 - 2016-05-28 12:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2016-09-13 15:57 - 2016-05-28 11:53 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2016-09-13 15:56 - 2016-08-03 17:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2016-09-13 15:56 - 2016-08-03 17:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-09-13 15:56 - 2016-08-03 17:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2016-09-13 15:56 - 2016-08-03 17:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2016-09-13 15:56 - 2016-08-03 12:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2016-09-13 15:56 - 2016-08-03 12:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2016-09-13 15:56 - 2016-07-01 11:55 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IconCodecService.dll 2016-09-13 15:56 - 2016-07-01 11:48 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll 2016-09-13 15:56 - 2016-07-01 11:45 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll 2016-09-13 15:56 - 2016-07-01 11:45 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll 2016-09-13 15:56 - 2016-07-01 11:44 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2016-09-13 15:56 - 2016-07-01 11:44 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-09-13 15:56 - 2016-07-01 11:42 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2016-09-13 15:56 - 2016-07-01 11:42 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll 2016-09-13 15:56 - 2016-07-01 11:42 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2016-09-13 15:56 - 2016-07-01 11:41 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll 2016-09-13 15:56 - 2016-07-01 11:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll 2016-09-13 15:56 - 2016-07-01 11:31 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll 2016-09-13 15:56 - 2016-07-01 11:29 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll 2016-09-13 15:56 - 2016-07-01 11:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2016-09-13 15:56 - 2016-07-01 11:28 - 00442880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll 2016-09-13 15:56 - 2016-07-01 11:28 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll 2016-09-13 15:56 - 2016-07-01 11:28 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll 2016-09-13 15:56 - 2016-07-01 11:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll 2016-09-13 15:56 - 2016-07-01 11:28 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll 2016-09-13 15:56 - 2016-07-01 11:26 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll 2016-09-13 15:56 - 2016-07-01 11:25 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll 2016-09-13 15:56 - 2016-07-01 11:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll 2016-09-13 15:56 - 2016-07-01 11:21 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll 2016-09-13 15:56 - 2016-07-01 11:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe 2016-09-13 15:56 - 2016-07-01 11:19 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll 2016-09-13 15:56 - 2016-07-01 11:13 - 02849792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll 2016-09-13 15:56 - 2016-07-01 11:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2016-09-13 15:56 - 2016-05-28 12:26 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2016-09-13 15:56 - 2016-05-28 12:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll 2016-09-13 15:20 - 2016-09-13 16:15 - 00002332 _____ C:\Users\User\Desktop\Google Chrome.lnk 2016-09-13 14:51 - 2016-09-13 16:15 - 00001086 _____ C:\Users\Public\Desktop\CCleaner.lnk 2016-09-13 14:51 - 2016-09-13 14:51 - 00002876 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2016-09-13 14:51 - 2016-09-13 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2016-09-13 14:51 - 2016-09-13 14:51 - 00000000 ____D C:\Program Files (x86)\CCleaner 2016-09-13 14:49 - 2016-09-13 14:50 - 08227032 _____ (Piriform Ltd) C:\Users\User\Downloads\ccsetup521.exe 2016-09-13 14:44 - 2016-09-13 14:44 - 01065376 _____ (Google Inc.) C:\Users\User\Downloads\ChromeSetup(1).exe 2016-09-13 14:29 - 2016-09-13 14:30 - 00410344 _____ (TweakBit) C:\Users\User\Downloads\at.dll-repairkit.exe 2016-09-13 12:19 - 2016-09-13 12:19 - 00000000 ____D C:\Program Files (x86)\eBookConverter 2016-09-13 12:10 - 2016-09-13 12:13 - 67237586 _____ C:\Users\User\Downloads\ePub Converter 3.16.1104.374 + Crack - softasm.com.rar 2016-09-13 12:01 - 2016-09-13 12:01 - 00000903 _____ C:\Users\User\Downloads\STPM_Past_Year_Mathematics_T_Term_1_Chap-pdf.acsm 2016-09-09 11:50 - 2016-09-09 11:50 - 00000903 _____ C:\Users\User\Downloads\STPM_Past_Year_Mathematics_T_Term_3_Chap-pdf.acsm 2016-09-09 11:50 - 2016-09-09 11:50 - 00000903 _____ C:\Users\User\Downloads\STPM_Past_Year_Mathematics_T_Term_3_Chap-pdf (1).acsm 2016-09-04 09:57 - 2016-09-04 09:57 - 00000000 ____D C:\ProgramData\eBook Converter 2016-09-04 09:51 - 2016-09-04 09:51 - 00000903 _____ C:\Users\User\Downloads\STPM_Past_Year_Mathematics_T_Term_1_Chap-pdf (2).acsm 2016-09-04 09:51 - 2016-09-04 09:51 - 00000903 _____ C:\Users\User\Downloads\STPM_Past_Year_Mathematics_T_Term_1_Chap-pdf (1).acsm 2016-09-04 09:41 - 2016-09-04 09:41 - 00000000 ____D C:\ProgramData\AVS4YOU 2016-09-04 09:40 - 2016-09-04 10:06 - 00000000 ____D C:\Program Files (x86)\AVS4YOU 2016-09-04 09:17 - 2016-09-13 12:05 - 00000000 ____D C:\Users\User\Documents\My Digital Editions 2016-09-03 10:06 - 2016-09-13 13:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-09-01 10:53 - 2016-09-13 13:45 - 00000000 ____D C:\Program Files (x86)\Dropbox 2016-09-01 10:39 - 2016-09-01 10:48 - 137086173 _____ C:\Users\User\Downloads\gmapsupp_v760_LIcon.zip 2016-09-01 10:38 - 2016-09-01 10:53 - 169283274 _____ C:\Users\User\Downloads\MFM-PPG-X8.5-X9-160804.rar 2016-08-30 13:11 - 2016-08-30 13:11 - 00381041 _____ C:\Users\User\Downloads\Matematik Modul Cemerlang PT3 2016 Set 3 JPPP Skema.pdf 2016-08-30 13:10 - 2016-08-30 13:10 - 01080500 _____ C:\Users\User\Downloads\Matematik Modul Cemerlang PT3 2016 Set 2 JPPP Skema.pdf 2016-08-30 13:10 - 2016-08-30 13:10 - 00928452 _____ C:\Users\User\Downloads\Matematik Modul Cemerlang PT3 2016 Set 3 JPPP Soalan.pdf 2016-08-30 13:09 - 2016-08-30 13:09 - 01558748 _____ C:\Users\User\Downloads\Matematik Modul Cemerlang PT3 2016 Set 2 JPPP Soalan.pdf 2016-08-30 13:08 - 2016-08-30 13:08 - 00646714 _____ C:\Users\User\Downloads\Matematik Modul Cemerlang PT3 2016 Set 1 JPPP Soalan.pdf 2016-08-30 13:08 - 2016-08-30 13:08 - 00558021 _____ C:\Users\User\Downloads\Matematik Modul Cemerlang PT3 2016 Set 1 JPPP Skema.pdf 2016-08-30 13:06 - 2016-08-30 13:06 - 01006015 _____ C:\Users\User\Downloads\2015-PPT3-Kedah-Math-w-Ans.pdf 2016-08-30 13:05 - 2016-08-30 13:06 - 01246098 _____ C:\Users\User\Downloads\1. SBP Skema-Trial-PT3-2015 Matematik.pdf 2016-08-30 13:05 - 2016-08-30 13:05 - 03104012 _____ C:\Users\User\Downloads\PT3 MRSM 2015 Marking Scheme - MATE.pdf 2016-08-30 13:05 - 2016-08-30 13:05 - 02406552 _____ C:\Users\User\Downloads\MRSM Trial PT3 2015 - MATEMATIK.pdf 2016-08-30 13:05 - 2016-08-30 13:05 - 01406181 _____ C:\Users\User\Downloads\2. SBP Trial PT3 2015 Matematik.pdf 2016-08-29 20:27 - 2016-08-29 20:27 - 03337044 _____ C:\Users\User\Downloads\TPoints-Redemption-2.pdf 2016-08-26 22:12 - 2016-08-26 22:12 - 00220551 _____ C:\Users\User\Downloads\eStatement_08252016.pdf 2016-08-26 22:08 - 2016-08-26 22:09 - 00524918 _____ C:\Users\User\Downloads\20160825.pdf 2016-08-20 21:03 - 2016-08-20 21:03 - 00384183 _____ C:\Users\User\Downloads\Cara-cara penukaran ID.pdf 2016-08-17 16:45 - 2016-08-17 16:45 - 05692792 _____ C:\Users\User\Downloads\kod.apk 2016-08-15 07:40 - 2016-08-15 07:40 - 00000000 ____D C:\Program Files (x86)\GlobFX 2016-08-15 07:10 - 2016-08-15 07:12 - 00000000 ____D C:\Users\User\AppData\Local\Popcorn-Time 2016-08-15 06:54 - 2016-08-15 07:17 - 00000000 _____ C:\Users\User\Documents\PDVD_MediaDisc.PlayList 2016-08-14 10:43 - 2016-08-14 10:43 - 00053948 _____ C:\Users\User\Downloads\SU20160811231338X1.789130180~1733770562.pdf
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:11 PM Show posts by this member only \| Post #12
Enthusiast Senior Member 874 posts Joined: Aug 2006	==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-09-13 18:00 - 2015-01-14 21:18 - 00000930 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-09-13 17:58 - 2016-01-15 11:06 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-09-13 17:56 - 2016-01-15 10:36 - 00371032 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-09-13 17:56 - 2015-10-30 14:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2016-09-13 17:56 - 2014-08-02 20:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2016-09-13 17:56 - 2014-08-02 20:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2016-09-13 17:51 - 2014-12-20 14:18 - 00000000 ____D C:\Users\User\AppData\Roaming\Telegram Desktop 2016-09-13 17:43 - 2015-01-15 00:13 - 00000000 ____D C:\AdwCleaner 2016-09-13 16:59 - 2015-12-17 21:31 - 10358080 _____ (SurfRight B.V.) C:\Users\User\Downloads\HitmanPro.exe 2016-09-13 16:46 - 2015-01-15 00:20 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-09-13 16:45 - 2015-10-30 15:21 - 00000000 ____D C:\WINDOWS\INF 2016-09-13 16:45 - 2015-02-16 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software 2016-09-13 16:45 - 2015-02-16 16:18 - 00000000 ____D C:\Program Files (x86)\Epson Software 2016-09-13 16:44 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-09-13 16:44 - 2015-06-06 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Splashtop Remote 2016-09-13 16:43 - 2015-07-15 11:14 - 00000000 ____D C:\Program Files\Common Files\Apple 2016-09-13 16:43 - 2014-10-21 11:10 - 00000000 ____D C:\ProgramData\Apple 2016-09-13 16:42 - 2015-06-06 11:16 - 00000000 ____D C:\Users\User\Documents\AirDroid 2016-09-13 16:34 - 2015-10-30 15:11 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-09-13 16:33 - 2016-01-15 10:44 - 01009692 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-09-13 16:33 - 2014-08-02 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-09-13 16:32 - 2014-09-17 10:51 - 00000000 ____D C:\Program Files (x86)\Opera 2016-09-13 16:28 - 2015-09-10 13:42 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-09-13 16:23 - 2015-10-30 15:24 - 00000000 ___HD C:\Program Files\WindowsApps 2016-09-13 16:21 - 2015-10-30 15:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs 2016-09-13 16:21 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2016-09-13 16:21 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\system32\oobe 2016-09-13 16:21 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-09-13 16:20 - 2015-10-30 17:07 - 00000000 ____D C:\Program Files\Windows Journal 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ___RD C:\WINDOWS\PrintDialog 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\Provisioning 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\bcastdvr 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ____D C:\Program Files\Windows Defender 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2016-09-13 16:20 - 2015-10-30 15:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2016-09-13 16:17 - 2014-07-14 09:57 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-09-13 16:16 - 2016-01-15 10:57 - 00001495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-09-13 16:16 - 2015-11-22 19:06 - 00001047 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk 2016-09-13 16:16 - 2015-11-22 19:05 - 00002403 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-09-13 16:16 - 2015-10-31 11:38 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-09-13 16:16 - 2015-06-06 11:06 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2016-09-13 16:16 - 2015-01-31 21:43 - 00000971 _____ C:\Users\Public\Desktop\SimpleTV.lnk 2016-09-13 16:16 - 2015-01-14 21:21 - 00002344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-09-13 16:16 - 2014-09-18 14:50 - 00001746 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MapSource.lnk 2016-09-13 16:16 - 2014-09-17 10:51 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2016-09-13 16:16 - 2014-08-24 18:52 - 00002619 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Open Microsoft Office Document.lnk 2016-09-13 16:16 - 2014-08-24 18:52 - 00002609 _____ C:\ProgramData\Microsoft\Windows\Start Menu\New Microsoft Office Document.lnk 2016-09-13 16:16 - 2014-07-14 09:57 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-09-13 16:16 - 2014-07-14 09:23 - 00000979 _____ C:\Users\Public\Desktop\Winamp.lnk 2016-09-13 16:16 - 2014-07-13 20:58 - 00002557 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 7.lnk 2016-09-13 16:16 - 2014-07-11 04:03 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk 2016-09-13 16:16 - 2014-07-11 04:02 - 00001964 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-09-13 16:16 - 2014-07-11 03:57 - 00001172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ImageReady 7.0.lnk 2016-09-13 16:16 - 2014-07-11 02:19 - 00002060 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Switchable Graphics.lnk 2016-09-13 16:15 - 2016-01-28 09:30 - 00002035 _____ C:\Users\User\Desktop\Telegram.lnk 2016-09-13 16:15 - 2015-12-27 11:54 - 00001774 _____ C:\Users\User\Desktop\EPSON Scan.lnk 2016-09-13 16:15 - 2015-11-13 15:25 - 00001074 _____ C:\Users\Public\Desktop\Astroburn Lite.lnk 2016-09-13 16:15 - 2015-10-31 11:38 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2016-09-13 16:15 - 2015-10-23 21:39 - 00001063 _____ C:\Users\Public\Desktop\MiniLyrics.lnk 2016-09-13 16:15 - 2015-09-17 16:18 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk 2016-09-13 16:15 - 2015-07-20 23:20 - 00001647 _____ C:\Users\Public\Desktop\IDesigner.lnk 2016-09-13 16:15 - 2015-04-28 16:13 - 00001034 _____ C:\Users\Public\Desktop\MovieTube.lnk 2016-09-13 16:15 - 2015-03-20 21:00 - 00001007 _____ C:\Users\User\Desktop\Dropbox.lnk 2016-09-13 16:15 - 2015-02-13 13:42 - 00001115 _____ C:\Users\User\Desktop\Password Recovery Bundle 2013.lnk 2016-09-13 16:15 - 2015-01-15 00:20 - 00001171 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-09-13 16:15 - 2014-12-21 14:06 - 00001883 _____ C:\Users\Public\Desktop\LG Smart Scan.lnk 2016-09-13 16:15 - 2014-09-17 10:51 - 00001111 _____ C:\Users\Public\Desktop\Opera.lnk 2016-09-13 16:15 - 2014-08-24 18:53 - 00002675 _____ C:\Users\User\Desktop\Microsoft Office Word 2007.lnk 2016-09-13 16:15 - 2014-08-24 18:53 - 00002637 _____ C:\Users\User\Desktop\Microsoft Office Excel 2007.lnk 2016-09-13 16:15 - 2014-08-24 18:53 - 00002627 _____ C:\Users\User\Desktop\Microsoft Office PowerPoint 2007.lnk 2016-09-13 16:15 - 2014-08-03 18:11 - 00000951 _____ C:\Users\User\Desktop\Ares.lnk 2016-09-13 16:15 - 2014-07-14 09:19 - 00000986 _____ C:\Users\User\Desktop\BPBiblePortable - Shortcut.lnk 2016-09-13 16:15 - 2014-07-13 20:58 - 00002059 _____ C:\Users\Public\Desktop\Nitro Pro 7.lnk 2016-09-13 16:15 - 2014-07-11 04:02 - 00001910 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2016-09-13 16:15 - 2014-07-11 03:59 - 00002043 _____ C:\Users\Public\Desktop\CyberLink PowerDVD.lnk 2016-09-13 16:15 - 2014-07-11 03:56 - 00001147 _____ C:\Users\User\Desktop\FotoSlate.lnk 2016-09-13 16:01 - 2014-08-17 19:02 - 00000000 ____D C:\Users\User\Desktop\GPS 2016-09-13 15:54 - 2015-06-06 09:14 - 00000000 ____D C:\Users\User\Downloads\Telegram Desktop 2016-09-13 15:09 - 2015-01-14 21:18 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-09-13 15:06 - 2016-04-28 06:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2016-09-13 15:02 - 2015-03-06 17:59 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2016-09-13 15:02 - 2015-02-13 12:29 - 00000000 ____D C:\Users\User\AppData\Roaming\IDM 2016-09-13 15:02 - 2014-08-24 18:24 - 00000000 ____D C:\Users\User\AppData\Roaming\DAEMON Tools Lite 2016-09-13 14:55 - 2016-01-16 02:35 - 00000000 ___DC C:\WINDOWS\Panther 2016-09-13 14:55 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\ModemLogs 2016-09-13 14:55 - 2015-01-18 19:25 - 00000000 ____D C:\Users\User\AppData\Local\CrashDumps 2016-09-13 14:23 - 2015-01-14 21:18 - 00003992 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-09-13 14:23 - 2015-01-14 21:18 - 00003760 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-09-13 14:06 - 2016-06-24 17:46 - 00000000 ____D C:\Users\User\AppData\Local\MonoplanesShawed 2016-09-13 14:06 - 2015-01-15 00:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-09-13 14:03 - 2016-01-15 10:45 - 00000000 ____D C:\Users\DefaultAppPool 2016-09-13 13:59 - 2015-10-30 17:07 - 00000000 ____D C:\WINDOWS\ShellNew 2016-09-13 13:59 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\SysWOW64\setup 2016-09-13 13:59 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\system32\setup 2016-09-13 13:58 - 2015-10-30 15:24 - 00000000 __RSD C:\WINDOWS\Media 2016-09-13 13:58 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\IME 2016-09-13 13:58 - 2015-09-17 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2016-09-13 13:58 - 2015-07-14 17:06 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-09-13 13:58 - 2015-07-14 17:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-09-13 13:58 - 2015-05-22 21:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Split And Merge Basic 2016-09-13 13:58 - 2015-02-13 12:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Unlocker 2016-09-13 13:58 - 2015-02-13 12:29 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2016-09-13 13:58 - 2015-02-13 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2016-09-13 13:58 - 2015-01-31 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimpleTV 2016-09-13 13:58 - 2014-12-20 14:18 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2016-09-13 13:58 - 2014-08-17 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMapTool 2016-09-13 13:58 - 2014-07-14 21:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniLyrics 2016-09-13 13:58 - 2014-07-14 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ares 2016-09-13 13:58 - 2014-07-14 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2016-09-13 13:53 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\SystemResources 2016-09-13 13:53 - 2015-10-30 14:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2016-09-13 13:53 - 2015-10-30 14:28 - 00000000 ____D C:\WINDOWS\servicing 2016-09-13 13:52 - 2016-07-03 15:33 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-09-13 13:52 - 2016-06-24 17:47 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence 2016-09-13 13:52 - 2016-04-28 07:04 - 00000000 ____D C:\Users\User\Desktop\Google Drive 2016-09-13 13:52 - 2016-04-28 07:02 - 00000000 ___RD C:\Users\User\Google Drive 2016-09-13 13:52 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\Globalization 2016-09-13 13:52 - 2015-01-10 11:43 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Garmin 2016-09-13 13:52 - 2014-10-07 17:37 - 00000000 ___RD C:\Users\User\Dropbox 2016-09-13 13:52 - 2014-10-07 17:35 - 00000000 ____D C:\Users\User\AppData\Roaming\Dropbox 2016-09-13 13:52 - 2014-07-14 21:16 - 00000000 ____D C:\Users\User\AppData\Roaming\MiniLyrics 2016-09-13 13:52 - 2014-07-14 09:14 - 00000000 ____D C:\Users\User\AppData\Roaming\vlc 2016-09-13 13:52 - 2014-07-11 04:03 - 00000000 ____D C:\Users\User\AppData\Roaming\Winamp 2016-09-13 13:50 - 2015-05-22 20:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip 2016-09-13 13:50 - 2014-07-11 04:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-09-13 13:49 - 2016-01-15 10:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2016-09-13 13:49 - 2015-11-13 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Astroburn Lite 2016-09-13 13:49 - 2015-04-28 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MovieTube 2016-09-13 13:49 - 2015-02-16 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 9.0 Sprint 2016-09-13 13:49 - 2015-02-16 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2016-09-13 13:49 - 2015-02-13 13:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Recovery Bundle 2013 2016-09-13 13:49 - 2014-12-21 14:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG Smart Scan 2016-09-13 13:49 - 2014-12-13 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iphotobook.my 2016-09-13 13:49 - 2014-08-24 18:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-09-13 13:49 - 2014-08-05 15:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2016-09-13 13:49 - 2014-07-18 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks 2016-09-13 13:49 - 2014-07-11 03:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 2016-09-13 13:49 - 2014-07-11 03:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ACD Systems 2016-09-13 13:49 - 2014-07-11 02:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2016-09-13 13:49 - 2014-07-11 02:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN 2016-09-13 13:49 - 2014-07-11 02:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netwaiting 2016-09-13 13:48 - 2016-06-14 14:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-09-13 13:48 - 2014-07-14 21:15 - 00000000 ____D C:\Program Files (x86)\Minilyrics 2016-09-13 13:48 - 2014-07-11 04:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-09-13 13:47 - 2015-01-15 00:20 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-09-13 13:47 - 2014-08-24 18:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-09-13 13:27 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\registration 2016-09-13 13:25 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2016-09-13 13:25 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\SystemApps 2016-09-13 13:23 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\system32\Macromed 2016-09-13 13:20 - 2015-11-22 19:01 - 00000000 ____D C:\Users\User\AppData\Local\Packages 2016-09-13 13:20 - 2014-07-14 07:42 - 00000000 ____D C:\Users\User\AppData\Roaming\Adobe 2016-09-13 13:19 - 2014-07-18 13:16 - 00000000 ____D C:\ProgramData\Real 2016-09-13 13:16 - 2014-07-11 03:57 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-09-13 13:05 - 2015-12-17 21:43 - 00000000 ___HD C:\$SysReset 2016-09-10 12:03 - 2015-10-30 15:24 - 00000000 ____D C:\WINDOWS\system32\NDF 2016-08-15 08:09 - 2014-10-30 15:05 - 00000000 ____D C:\Users\User\AppData\Local\Adobe 2016-08-15 07:33 - 2015-01-31 21:43 - 00000000 ____D C:\Users\User\AppData\Roaming\SimpleTV V03 ==================== Files in the root of some directories ======= 2014-07-14 09:06 - 2014-07-14 09:06 - 6010880 _____ () C:\Program Files (x86)\GUT3E39.tmp 2015-12-17 22:40 - 2015-12-17 22:40 - 0005120 _____ () C:\Users\User\AppData\Roaming\GiftBag.db 2014-08-25 00:20 - 2016-06-25 12:46 - 0000231 _____ () C:\Users\User\AppData\Roaming\WB.CFG 2014-12-02 17:19 - 2014-12-02 17:19 - 0000010 _____ () C:\Users\User\AppData\Local\DSI.DAT 2014-07-13 21:05 - 2014-07-13 21:05 - 0828911 _____ () C:\ProgramData\1405255773.bdinstall.bin 2014-07-13 21:08 - 2014-07-13 21:08 - 0040874 _____ () C:\ProgramData\1405256894.bdinstall.bin 2014-10-04 12:11 - 2014-10-04 12:11 - 0040803 _____ () C:\ProgramData\1412395873.bdinstall.bin 2014-10-04 14:15 - 2014-10-04 14:15 - 0040803 _____ () C:\ProgramData\1412403346.bdinstall.bin 2014-10-04 23:53 - 2014-10-04 23:53 - 0040803 _____ () C:\ProgramData\1412437998.bdinstall.bin 2016-01-16 19:55 - 2016-01-16 20:13 - 0100149 _____ () C:\ProgramData\1452945320.4492.bin 2016-01-16 19:55 - 2016-01-16 20:13 - 0313205 _____ () C:\ProgramData\1452945320.5464.bin 2016-01-16 19:56 - 2016-01-16 19:57 - 0001090 _____ () C:\ProgramData\1452945320.6412.bin 2016-01-16 19:55 - 2016-01-16 20:13 - 0243634 _____ () C:\ProgramData\1452945320.6436.bin 2016-01-16 19:55 - 2016-01-16 20:13 - 0033685 _____ () C:\ProgramData\1452945320.7160.bin 2016-01-16 19:56 - 2016-01-16 19:59 - 0001090 _____ () C:\ProgramData\1452945320.8028.bin 2016-01-16 20:04 - 2016-01-16 20:04 - 0061809 _____ () C:\ProgramData\1452945839.bdinstall.bin 2016-01-16 20:13 - 2016-01-16 20:13 - 0061809 _____ () C:\ProgramData\1452946381.bdinstall.bin 2016-01-16 20:17 - 2016-01-16 20:17 - 0009645 _____ () C:\ProgramData\1452946665.4908.bin 2016-01-16 20:17 - 2016-01-16 20:18 - 0075695 _____ () C:\ProgramData\1452946665.4968.bin 2016-01-16 20:17 - 2016-01-16 20:17 - 0008470 _____ () C:\ProgramData\1452946665.5092.bin 2016-01-16 20:17 - 2016-01-16 20:17 - 0003473 _____ () C:\ProgramData\1452946665.5280.bin 2016-01-16 20:17 - 2016-01-16 20:18 - 0097722 _____ () C:\ProgramData\1452946665.7968.bin 2016-01-16 20:18 - 2016-01-16 20:18 - 0009248 _____ () C:\ProgramData\1452946689.1452.bin 2016-01-16 20:18 - 2016-01-16 20:18 - 0075547 _____ () C:\ProgramData\1452946689.1460.bin 2016-01-16 20:18 - 2016-01-16 20:18 - 0008470 _____ () C:\ProgramData\1452946689.1472.bin 2016-01-16 20:18 - 2016-01-16 20:18 - 0097908 _____ () C:\ProgramData\1452946689.8400.bin 2016-01-16 20:18 - 2016-01-16 20:18 - 0003473 _____ () C:\ProgramData\1452946689.8944.bin 2016-01-16 20:29 - 2016-01-16 20:30 - 0075828 _____ () C:\ProgramData\1452947346.6932.bin 2016-01-16 20:29 - 2016-01-16 20:30 - 0012914 _____ () C:\ProgramData\1452947346.8392.bin 2016-01-16 20:29 - 2016-01-16 20:30 - 0098092 _____ () C:\ProgramData\1452947346.8656.bin 2016-01-16 20:29 - 2016-01-16 20:30 - 0023840 _____ () C:\ProgramData\1452947346.8936.bin 2016-01-16 20:29 - 2016-01-16 20:29 - 0003473 _____ () C:\ProgramData\1452947346.8940.bin 2016-01-16 20:34 - 2016-01-16 20:34 - 0075547 _____ () C:\ProgramData\1452947642.3744.bin 2016-01-16 20:34 - 2016-01-16 20:34 - 0008621 _____ () C:\ProgramData\1452947642.6476.bin 2016-01-16 20:34 - 2016-01-16 20:34 - 0003473 _____ () C:\ProgramData\1452947642.7508.bin 2016-01-16 20:34 - 2016-01-16 20:34 - 0010391 _____ () C:\ProgramData\1452947642.8196.bin 2016-01-16 20:34 - 2016-01-16 20:34 - 0097722 _____ () C:\ProgramData\1452947642.8928.bin 2016-01-16 21:16 - 2016-01-16 21:16 - 0003473 _____ () C:\ProgramData\1452950197.5464.bin 2016-01-16 21:16 - 2016-01-16 21:16 - 0075829 _____ () C:\ProgramData\1452950197.5568.bin 2016-01-16 21:16 - 2016-01-16 21:16 - 0011609 _____ () C:\ProgramData\1452950197.5812.bin 2016-01-16 21:16 - 2016-01-16 21:17 - 0010818 _____ () C:\ProgramData\1452950197.7632.bin 2016-01-16 21:16 - 2016-01-16 21:16 - 0098279 _____ () C:\ProgramData\1452950197.8800.bin 2016-02-09 20:40 - 2016-02-09 20:43 - 0075547 _____ () C:\ProgramData\1455021597.2780.bin 2016-02-09 20:40 - 2016-02-09 20:43 - 0003473 _____ () C:\ProgramData\1455021597.3928.bin 2016-02-09 20:40 - 2016-02-09 20:43 - 0014649 _____ () C:\ProgramData\1455021597.4712.bin 2016-02-09 20:39 - 2016-02-09 20:43 - 0098712 _____ () C:\ProgramData\1455021597.6712.bin 2016-02-09 21:04 - 2016-02-09 21:04 - 0098712 _____ () C:\ProgramData\1455023066.1664.bin 2016-02-09 21:04 - 2016-02-09 21:04 - 0075547 _____ () C:\ProgramData\1455023066.1764.bin 2016-02-09 21:04 - 2016-02-09 21:04 - 0010959 _____ () C:\ProgramData\1455023066.1952.bin 2016-02-09 21:04 - 2016-02-09 21:04 - 0003473 _____ () C:\ProgramData\1455023066.2052.bin 2016-02-09 21:08 - 2016-02-09 21:08 - 0010965 _____ () C:\ProgramData\1455023317.4284.bin 2016-02-09 21:08 - 2016-02-09 21:08 - 0098712 _____ () C:\ProgramData\1455023317.4896.bin 2016-02-09 21:08 - 2016-02-09 21:09 - 0075547 _____ () C:\ProgramData\1455023317.6820.bin 2016-02-09 21:08 - 2016-02-09 21:08 - 0003473 _____ () C:\ProgramData\1455023317.6860.bin 2016-02-18 11:18 - 2016-02-18 11:18 - 0098712 _____ () C:\ProgramData\1455765503.1608.bin 2016-02-18 11:18 - 2016-02-18 11:18 - 0003473 _____ () C:\ProgramData\1455765503.5076.bin 2016-02-18 11:18 - 2016-02-18 11:18 - 0075546 _____ () C:\ProgramData\1455765503.828.bin 2016-02-18 11:18 - 2016-02-18 11:18 - 0010936 _____ () C:\ProgramData\1455765503.8908.bin 2016-06-24 17:50 - 2016-06-24 17:53 - 0075547 _____ () C:\ProgramData\1466761816.3296.bin 2016-06-24 17:50 - 2016-06-24 17:52 - 0012115 _____ () C:\ProgramData\1466761816.4308.bin 2016-06-24 17:50 - 2016-06-24 17:53 - 0052598 _____ () C:\ProgramData\1466761816.4396.bin 2016-06-24 17:50 - 2016-06-24 17:52 - 0098302 _____ () C:\ProgramData\1466761816.6648.bin 2016-06-24 17:50 - 2016-06-24 17:50 - 0003473 _____ () C:\ProgramData\1466761816.7692.bin
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:11 PM Show posts by this member only \| Post #13
Enthusiast Senior Member 874 posts Joined: Aug 2006	Some files in TEMP: ==================== C:\Users\User\AppData\Local\Temp\2AC02BED-480E-4564-9122-78206DF1326C_pcrepairkit_setup.exe C:\Users\User\AppData\Local\Temp\HitmanPro.exe C:\Users\User\AppData\Local\Temp\libeay32.dll C:\Users\User\AppData\Local\Temp\msvcr120.dll C:\Users\User\AppData\Local\Temp\sqlite3.dll C:\Users\User\AppData\Local\Temp\uninstall.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-04-05 17:26 ==================== End of FRST.txt ============================
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:11 PM Show posts by this member only \| Post #14
Enthusiast Senior Member 874 posts Joined: Aug 2006	Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-09-2016 Ran by User (13-09-2016 18:04:00) Running from C:\Users\User\Downloads Windows 10 Home Version 1511 (X64) (2016-01-15 03:10:22) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3557774620-388533037-4077533664-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3557774620-388533037-4077533664-503 - Limited - Disabled) Guest (S-1-5-21-3557774620-388533037-4077533664-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3557774620-388533037-4077533664-1002 - Limited - Enabled) User (S-1-5-21-3557774620-388533037-4077533664-1000 - Administrator - Enabled) => C:\Users\User ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.506.5829 - ABBYY) ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.506.5829 - ABBYY) Hidden ACD FotoSlate (HKLM-x32\...\ACD FotoSlate) (Version: - ) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Ares 2.2.8 (HKLM-x32\...\Ares) (Version: 2.2.8-Build#3052 - Seekar Ltd) Astro on the Go video player Browser Plugin (HKLM-x32\...\{6473BEC3-1AC2-4ADE-AFEE-0B9BC7051D56}) (Version: 3.14.6.7628 - Measat Broadcast Network Systems Sdn Bhd) Astroburn Lite (HKLM-x32\...\Astroburn Lite) (Version: 1.8.0.0183 - Disc Soft Ltd) ATI AVIVO64 Codecs (Version: 11.6.0.10108 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{10416F38-AA50-C0FF-1853-42FB01E3E93C}) (Version: 3.0.804.0 - ATI Technologies, Inc.) Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 17.28.0.1191 - Bitdefender) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) ccc-core-static (x32 Version: 2011.0108.2234.40493 - ATI) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.21 - Piriform) Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.93 - Dell) Dell System Detect (HKU\S-1-5-21-3557774620-388533037-4077533664-1000\...\73f463568823ebbe) (Version: 6.7.0.2 - Dell) Dropbox (HKU\S-1-5-21-3557774620-388533037-4077533664-1000\...\Dropbox) (Version: 5.4.24 - Dropbox, Inc.) Elevated Installer (x32 Version: 4.1.16.0 - Garmin Ltd or its subsidiaries) Hidden Epson Easy Photo Print 2 (HKLM-x32\...\{07AA1C7F-E8CA-4FDC-B975-BC9EBC22B6DE}) (Version: 2.7.0.0 - SEIKO EPSON CORPORATION) Epson Event Manager (HKLM-x32\...\{17FA0444-A025-43B9-862C-81AE6307C2F2}) (Version: 3.10.0050 - Seiko Epson Corporation) Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION) EPSON K300 Series Manual (HKLM-x32\...\EPSON K300 Series Manual) (Version: - ) EPSON K300 Series Network Guide (HKLM-x32\...\EPSON K300 Series Network Guide) (Version: - ) EPSON K300 Series Printer Uninstall (HKLM\...\EPSON K300 Series) (Version: - SEIKO EPSON Corporation) EPSON L220 Series Printer Uninstall (HKLM\...\EPSON L220 Series) (Version: - SEIKO EPSON Corporation) EPSON Manuals (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.50.0.0 - SEIKO EPSON CORPORATION) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION) EpsonNet Setup 3.3 (HKLM-x32\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3b - SEIKO EPSON CORPORATION) Garmin Express (HKLM-x32\...\{0733d53f-b41d-47cc-b336-d95751c4b2cb}) (Version: 4.1.16.0 - Garmin Ltd or its subsidiaries) Garmin Express (x32 Version: 4.1.16.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (x32 Version: 4.1.16.0 - Garmin Ltd or its subsidiaries) Hidden Garmin MapSource (HKLM-x32\...\{58FA5D40-E35A-47ED-8AFA-68CCC758559E}) (Version: 6.15.11 - Garmin Ltd or its subsidiaries) Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) GMapTool 0.8.67 (HKLM-x32\...\{1873789F-59D5-4002-8A2F-60A827B78F98}_is1) (Version: - AP) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.101 - Google Inc.) Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden High-Definition Video Playback (x32 Version: 7.1.13900.47.0 - Nero AG) Hidden IBank Additional Maths Form 4 Version 3.4 (HKLM-x32\...\IBank Additional Maths Form 4 Version 3.4) (Version: - ) IBank Additional Maths Form 5 Version 3.4 (HKLM-x32\...\IBank Additional Maths Form 5 Version 3.4) (Version: - ) IBank Additional Maths SPM Version 3.4 (HKLM-x32\...\IBank Additional Maths SPM Version 3.4) (Version: - ) IBank Mathematics, Addtional Maths (HKLM-x32\...\IBank Mathematics, Addtional Maths) (Version: - ) Intel® Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation) Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation) Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) iTunes (HKLM\...\{88509E20-3936-4D88-A1C0-B274C7BB5151}) (Version: 12.3.0.44 - Apple Inc.) Java™ 7 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217000FF}) (Version: 7.0.0 - Oracle) Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) MFM-Garmin 151221 (HKLM-x32\...\Malfreemaps Garmin Map_is1) (Version: - malfreemaps.com) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) MiniLyrics (HKLM-x32\...\MiniLyrics) (Version: 7.7.49 - Crintsoft) MovieTube version 1.4 (HKLM-x32\...\{EF8D37F4-6233-4DAE-A9FF-367D82F13788}_is1) (Version: 1.4 - MovieTube) Mozilla Firefox 47.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 en-US)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) MSM 2015 NT v7.16 (HKLM-x32\...\Malsingmaps.com Malaysia/Singapore/Brunei Map_is1) (Version: - Malsingmaps.com) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero 10 Movie ThemePack 1 (HKLM-x32\...\{43FBAB46-5969-4200-9958-1FF81FEE506F}) (Version: 10.2.10000.11.0 - Nero AG) Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.2.10500.1.102 - Nero AG) Nero CoverDesigner 10 (HKLM-x32\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.2.11400.11.100 - Nero AG) Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.2.10500.2.100 - Nero AG) Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.2.12600.27.100 - Nero AG) Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.2.10400.5.100 - Nero AG) Nero MediaHub 10 (HKLM-x32\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.2.13300.36.100 - Nero AG) Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{ADEF1F0B-635E-4041-B50F-A510C1B4D2C5}) (Version: 10.5.10000 - Nero AG) Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.2.11300.12.100 - Nero AG) Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG) Netwaiting (HKLM-x32\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.59 - BVRP Software, Inc) Nitro Pro 7 (HKLM\...\{AE4B7C9E-19A7-4561-9024-BF2D0CE43595}) (Version: 7.2.0.15 - Nitro PDF Software) Opera Stable 38.0.2220.41 (HKLM-x32\...\Opera 38.0.2220.41) (Version: 38.0.2220.41 - Opera Software) Password Recovery Bundle 2013 (HKLM-x32\...\Password Recovery Bundle 2013_is1) (Version: - Top Password Software, Inc.) PDF Split And Merge Basic (HKLM-x32\...\{9A40D2F8-9458-458B-95E3-B57797C574E1}) (Version: 2.2.4 - Andrea Vacondio) PLDS OEM Content (x32 Version: 0.0.0.0.0 - Nero AG) Hidden PowerDVD (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - ) PowerXpressHybrid (x32 Version: 1.00.0000 - ATI) Hidden PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden RAR Password Unlocker 4.2.0.0 (HKLM-x32\...\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1) (Version: - Password Unlocker Studio) RealDownloader (x32 Version: 17.0.13 - RealNetworks, Inc.) Hidden RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.13 - RealNetworks) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.34.1130.2010 - Realtek) RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden Scanner Mouse (HKLM-x32\...\{CD004679-9B81-4CD5-B4A4-6C6B24C562DC}) (Version: 1.7.2 - LG) SimpleTV 0.4.6 r (HKLM-x32\...\{290A2821-B1F8-4565-B49A-25F349A5B5CB}_is1) (Version: - SergeyVS) Splashtop Streamer (HKLM-x32\...\{B7C5EA94-B96A-41F5-BE95-25D78B486678}) (Version: 2.6.5.8 - Splashtop Inc.) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43174 - TeamViewer) Telegram Desktop version 0.10.5 (HKU\S-1-5-21-3557774620-388533037-4077533664-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.10.5 - Telegram Messenger LLP) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) WinZip (HKLM-x32\...\WinZip) (Version: 9.0 SR-1 (6224) - WinZip Computing, Inc.) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3557774620-388533037-4077533664-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0C14E21F-107A-4957-A0BD-4882F40C6527} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {0EF6EAC2-908A-4AD2-A4E1-CD7D27201D6D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {19416C49-4F03-463E-9171-1420B7AACECB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION Task: {1BF52469-47D8-4193-898E-BF35F7DABB14} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-09-13] (Microsoft Corporation) Task: {222DF6DE-D66F-4DA7-AD0E-A42205C1700D} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe Task: {22DD1BF1-4A31-4CF5-BB4D-EB445B0EFA23} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {28379A0C-FE08-42D9-95D0-5BA9D251F550} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {294F4F3F-7AEC-4249-B63E-449359F9A6EA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {308550EB-513B-4C8D-A7EB-A9513C3095DC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files (x86)\CCleaner\CCleaner.exe [2016-08-06] (Piriform Ltd) Task: {3A89006A-9D23-4C2C-8FAC-EE3D804C0CD7} - System32\Tasks\UserMonoplanesShawedV2 => Rundll32.exe GatheredHussies.dll,main 7 1 <==== ATTENTION Task: {3EB6C806-91A3-4AF9-B470-791D4C0E201E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {41E66513-5C04-421B-A11D-61B2904F5F55} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {4326F7D7-997F-4FC4-98A7-4929FB850EAE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.) Task: {4513096F-3DEE-4499-9D28-4A2D36F7290A} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3557774620-388533037-4077533664-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-07-30] (RealNetworks, Inc.) Task: {49392C01-736D-4302-9232-46ED069D84B1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION Task: {4E613B58-6314-48CF-BA26-5DB798EB69D6} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe Task: {52347BA2-AB43-4E18-9481-6E8ED10E1553} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\QQBrowser\Update\Download\77ADD770F7D8E1D9413434EA28B6564E\Update\BrowserUpdate.exe [2016-03-17] (Tencent) <==== ATTENTION Task: {52A43609-FE44-4074-AEF5-8B56878D34D5} - no filepath Task: {61227A85-65D3-473E-BBDA-5819D3C7E76E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION Task: {66124126-D96F-4711-9DE0-8E29AB6893AC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {6B1075C2-7BEC-47ED-B2E8-0D4C2EE931A8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {6D136727-01B5-47B2-B974-D8B5F82F0EB1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-17] (Adobe Systems Incorporated) Task: {74D55EB5-4A53-4A9D-A878-D8631599EF65} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION Task: {7817401F-6081-4846-A9DA-33E431178CD3} - System32\Tasks\{9ADD0D44-7EF6-4AE5-A87C-EA23FF6B0F21} => pcalua.exe -a "C:\Program Files (x86)\WinRAR\WinRAR.exe" Task: {786F38E7-EEF3-4835-9587-989F7292E592} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {7B0DBE6F-BEB4-4AA5-9A1B-4D4A105055F4} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe Task: {7EAA03EF-981C-4AEB-A338-525976D1D61B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION Task: {7ED3C1FB-AC85-4BEF-810E-23A71F13801A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {80C83659-5EE3-4B7D-8E3E-751F3A741C39} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {85A49E1F-8D4F-4A64-8ECD-215605C65FEE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {87DD19C3-D367-40F4-85BF-1EF840F8BAE8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {89DCA9A1-34C1-4E94-986D-261EFA013263} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {8F31266D-5CC8-457E-8BE1-2F52A446F3B0} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe Task: {92C5D08D-3C33-4A58-BE88-EDC9CE839D81} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated) Task: {932983C7-0391-44F0-BC12-F475B64FD9E3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION Task: {958968AB-AC82-4DFD-BF53-6139B9959417} - System32\Tasks\EPSON L220 Series Update {A293187F-8731-4CD1-A52B-D4AB26BAB817} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN2E.EXE [2013-11-22] (SEIKO EPSON CORPORATION) Task: {97113BA2-8C16-4920-B925-B764E83F5DB8} - System32\Tasks\{0858844E-EF7A-486A-924B-9B98D3601B08} => pcalua.exe -a C:\Users\User\Downloads\IDesigner_setup.exe -d C:\Users\User\Downloads Task: {9A300399-F504-4C19-8502-E322440D903E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.) Task: {9CC6DB37-E90D-4E67-B633-419551768CAF} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-01-28] () Task: {A4C701C0-9513-4067-A6EF-56282B1FA608} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {A7ABD366-5FB5-4550-BCC4-4370FE5FC0D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {A81B0140-B8D7-4207-AF8D-1084EBF3A3B1} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {A834EAB0-0BDA-4C47-B3E0-679D01FBFCAE} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {B272CB4A-A9D6-4DDC-AEC8-CA68FAA10BAB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION Task: {B4ADF684-E607-4A0F-9B53-906030024360} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {B4BB481E-81AC-4200-8781-B0DEA1B88F76} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3557774620-388533037-4077533664-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-07-30] (RealNetworks, Inc.) Task: {BA12EC03-E432-4963-8D05-5AD038DC6E0D} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-10-30] (PC-Doctor, Inc.) Task: {BAB7AD11-35F7-41F6-8A04-C8D4ED12267C} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3557774620-388533037-4077533664-1000UA => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-06] (Dropbox, Inc.) Task: {BBC482BC-D336-4AF0-8C78-4E448723DE60} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {C4028797-E135-4FC5-8C38-7E95C48CD5F6} - System32\Tasks\EPSON L220 Series Update {DC731F58-2F5B-4A6D-B403-B9411EFCBD97} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN2E.EXE [2013-11-22] (SEIKO EPSON CORPORATION) Task: {C632FB9C-4FCC-4CA9-8E70-C200E36AE314} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3557774620-388533037-4077533664-1000Core => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-06] (Dropbox, Inc.) Task: {D465C4E1-68E1-459A-82CC-D35A832209AC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {ED86AC30-1E0F-40D7-AE47-0FB5168ABF3E} - System32\Tasks\Opera scheduled Autoupdate 1410922271 => C:\Program Files (x86)\Opera\launcher.exe [2016-07-01] (Opera Software) Task: {F2B64C8C-9787-4A4E-BFCD-870C510104C4} - no filepath Task: {F3E65C9F-E535-42F8-8230-C9F59FD7F92A} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {F90FB435-C0FB-49E6-A50F-96FE6512D684} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3557774620-388533037-4077533664-1000Core.job => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3557774620-388533037-4077533664-1000UA.job => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\EPSON L220 Series Update {A293187F-8731-4CD1-A52B-D4AB26BAB817}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN2E.EXE:/EXE:{A293187F-8731-4CD1-A52B-D4AB26BAB817} /F:Update WORKGROUP\DANIEL_LAPTOP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON L220 Series Update {DC731F58-2F5B-4A6D-B403-B9411EFCBD97}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN2E.EXE:/EXE:{DC731F58-2F5B-4A6D-B403-B9411EFCBD97} /F:Update WORKGROUP\DANIEL_LAPTOP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.)
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:12 PM Show posts by this member only \| Post #15
Enthusiast Senior Member 874 posts Joined: Aug 2006	==================== Loaded Modules (Whitelisted) ============== 2015-10-30 15:18 - 2015-10-30 15:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2014-07-30 05:04 - 2014-07-30 05:04 - 00023552 _____ () C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe 2014-07-30 02:17 - 2014-07-30 02:17 - 00039568 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe 2016-09-13 16:00 - 2016-07-01 12:48 - 02656408 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-09-13 16:00 - 2016-07-01 12:48 - 02656408 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2012-02-24 02:43 - 2012-02-24 02:43 - 00124920 _____ () C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NPShellExtension64.dll 2016-04-19 15:18 - 2016-04-19 15:18 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-01-16 02:32 - 2016-01-16 02:32 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-09-13 15:57 - 2016-07-01 11:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-09-13 15:59 - 2016-07-01 11:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-09-13 15:59 - 2016-07-01 11:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-09-13 15:59 - 2016-07-01 11:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-09-13 15:59 - 2016-07-01 11:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-06-01 21:00 - 2015-06-01 21:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-07-18 13:19 - 2014-10-17 13:52 - 00864856 _____ () c:\program files (x86)\real\realplayer\RPDS\Plugins\cldplin.dll 2016-04-19 15:18 - 2016-04-19 15:18 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2014-07-11 02:36 - 2010-11-06 14:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Windows:nlsPreferences [0] AlternateDataStreams: C:\Users\User\Downloads\AirDroid_Desktop_Client_3.1.2.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\DeepBurner1.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\DefaultPack.EXE:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\DellSystemDetectLauncher.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\DropboxInstaller (1).exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\DropboxInstaller.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\IDesigner_setup.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\iTunes6464Setup.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\kodi-15.0-Isengard_alpha1.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\kodi-15.1-Isengard.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\kodi-15.2-rc2.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\mbam-setup-2.2.0.1024.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\MiniLyrics.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\movietube_setup.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\mseinstall.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\PopcornTime-latest.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\psiphon-87-en-win.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\SafariSetup.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\SamsungLink_Installer64.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\simpletv0.4.6rsetup.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\Splashtop_Personal_Win_v2.6.0.0.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\Splashtop_Streamer_WIN_v2.6.5.8.EXE:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\Sygic PC maps DOWNLOADER [TomTom 2014.09 maps].exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\tsetup.0.8.38.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\Tv-Plug-In.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\unifying250.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\WeChat_C1018.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\winzip195-32.exe:BDU [0] AlternateDataStreams: C:\Users\User\Downloads\ZonaSetup_latest.exe:BDU [0] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-3557774620-388533037-4077533664-1000\...\dell.com -> dell.com ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 10:34 - 2016-06-24 17:49 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3557774620-388533037-4077533664-1000\Control Panel\Desktop\\Wallpaper -> D:\MyPictures\wallpaper\1203431916.jpg DNS Servers: 54.251.190.247 - 169.55.51.86 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^RealPlayer Cloud Service UI.lnk => C:\Windows\pss\RealPlayer Cloud Service UI.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Intel® Turbo Boost Technology Monitor 2.0.lnk => C:\Windows\pss\Intel® Turbo Boost Technology Monitor 2.0.lnk.Startup MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^LG Smart Scan.lnk => C:\Windows\pss\LG Smart Scan.lnk.Startup MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^TornTvDownloader.lnk => C:\Windows\pss\TornTvDownloader.lnk.Startup MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: BRS => C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe -runBRS MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" MSCONFIG\startupreg: EPSON K300 Series => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIG4P.EXE /FU "C:\Windows\TEMP\E_S7A6C.tmp" /EF "HKCU" MSCONFIG\startupreg: EPSON K300 Series (Copy 1) => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIG4P.EXE /FU "C:\Windows\TEMP\E_S9B73.tmp" /EF "HKCU" MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe MSCONFIG\startupreg: K300(Network) => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIG4P.EXE /FU "C:\Windows\TEMP\E_S6C69.tmp" /EF "HKCU" MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch MSCONFIG\startupreg: RemoteControl => "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe" MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun MSCONFIG\startupreg: TkBellExe => "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "Bdagent" HKLM\...\StartupApproved\Run32: => "EEventManager" HKLM\...\StartupApproved\Run32: => "bdruninstaller" HKU\S-1-5-21-3557774620-388533037-4077533664-1000\...\StartupApproved\Run: => "Dropbox Update" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [UDP Query User{D2654AE2-B371-4E73-B088-640193B408E3}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [TCP Query User{D94026DE-39BF-411A-9F09-DC8A57F37B76}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe FirewallRules: [{A26E7D10-8B55-402B-899C-3006D2DEA0FF}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe FirewallRules: [{6BC0B79F-C457-4DC1-8C77-F16ECB31877B}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe FirewallRules: [{907EB440-22C5-4A52-8735-9D7B0C739AC6}] => (Allow) C:\Users\User\Downloads\QQPCDownload1322.exe FirewallRules: [{D64F66BF-D2D4-4608-A06A-27A5D362022D}] => (Allow) C:\Users\User\Downloads\QQPCDownload1322.exe FirewallRules: [{8D7AF3BA-3D09-4143-A673-208F67502A07}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe FirewallRules: [{F21E48C7-DCEB-47D1-B3B3-0D59F4B6220C}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe FirewallRules: [UDP Query User{25CCBDDD-D89C-4D02-8511-5982DD1EEBCF}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{CAD3A930-1A27-4B1E-8C28-DB5676204A1D}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [{B9919670-16E6-4235-8DC9-0BE60A8EC754}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{61D3A469-97AC-41F5-845E-17DD14CBB3A5}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{13EB8F75-8F4F-4FDE-A527-6C90259E8680}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe FirewallRules: [{A29127DC-BA27-4E5E-B166-C3BD2BAC2E4E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{8C24E2C3-477F-4EDC-9698-6CA2243FB266}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{CE6656D3-19CF-41E4-8CC1-BC6B44B33C32}] => (Allow) C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{AF8109C9-BEEA-480B-9F05-6FC0DFA4AFC7}] => (Allow) C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{B6598F48-CBCC-43B3-BFBA-E3848C39BB79}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{66D65D5F-F563-4F29-AFC4-15D8B647793D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{C59C9429-3F3A-467B-B7EF-1F021E8B87E9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{761F1E94-B2BA-41EE-B2A3-68453A3FAE02}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{64EF97FA-1A25-416A-99CF-83DC31FD6957}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{6D6A076B-15F3-44E1-A41C-01CA54798D6C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{D7475939-4D79-47CC-B08A-EF0129C1BB0A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{5E3240D0-99D9-4F19-A5CB-2E1A02B39AAE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{EA2FDBAE-C323-44C1-9BC9-854E652F71DC}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{4A92ADAF-15BB-4D1D-A864-2469366DFB5A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{333AA0AA-BFAF-4C77-A3A4-69A26A2BD9ED}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5C01B3A2-030D-43C0-81EB-AF38EE30564A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Restore Points ========================= 21-06-2016 16:57:45 Installed TP-LINK Wireless Configuration Utility and Driver 15-07-2016 19:44:20 Removed Safari 13-09-2016 13:11:34 Restore Operation ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/13/2016 05:41:17 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program AdwCleaner.exe version 6.0.1.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: 1930 Start Time: 01d20da174cc475a Termination Time: 0 Application Path: C:\Users\User\Downloads\AdwCleaner.exe Report Id: 18034a23-7996-11e6-8dad-ccaf78a37686 Faulting package full name: Faulting package-relative application ID: Error: (09/13/2016 05:06:06 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "C:\Windows\Installer\{7FBAD091-89F7-4C77-A224-15FF4423C7D2}\recordingmanager.exe". Dependent Assembly rpshellextension.1.0,language="",type="win32",version="1.0.0.0" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (09/13/2016 04:43:21 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: DANIEL_LAPTOP) Description: Application or service 'Apple Mobile Device Service' could not be restarted. Error: (09/13/2016 04:40:50 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "C:\Windows\Installer\{7FBAD091-89F7-4C77-A224-15FF4423C7D2}\recordingmanager.exe". Dependent Assembly rpshellextension.1.0,language="",type="win32",version="1.0.0.0" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (09/13/2016 04:40:50 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "C:\Windows\Installer\{7FBAD091-89F7-4C77-A224-15FF4423C7D2}\recordingmanager.exe". Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (09/13/2016 04:16:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIEL_LAPTOP) Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (09/13/2016 04:16:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIEL_LAPTOP) Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (09/13/2016 04:16:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIEL_LAPTOP) Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (09/13/2016 04:16:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIEL_LAPTOP) Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (09/13/2016 04:16:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DANIEL_LAPTOP) Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. System errors: ============= Error: (09/13/2016 05:58:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The NetPipeActivator service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. Error: (09/13/2016 05:58:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the NetPipeActivator service to connect. Error: (09/13/2016 05:58:18 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. Error: (09/13/2016 05:58:15 PM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 413) (User: NT AUTHORITY) Description: Task Scheduler service failed to load tasks at service startup. Additional Data: Error Value: 2147942402. Error: (09/13/2016 05:56:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\WINDOWS\System32\bcmihvsrv64.dll Error: (09/13/2016 05:56:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\WINDOWS\System32\bcmihvsrv64.dll Error: (09/13/2016 05:56:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\WINDOWS\System32\bcmihvsrv64.dll Error: (09/13/2016 05:56:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Sync Host_8d6af service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (09/13/2016 05:43:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Message Queuing service terminated unexpectedly. It has done this 2 time(s). Error: (09/13/2016 05:43:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Print Spooler service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service. CodeIntegrity: =================================== Date: 2016-09-13 17:54:36.739 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:54:36.710 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:54:36.674 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:54:35.829 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:54:35.296 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:39:52.621 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:39:52.589 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:39:52.561 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:39:45.886 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-13 17:39:41.519 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel® Core™ i5-2430M CPU @ 2.40GHz Percentage of memory in use: 27% Total physical RAM: 6038.16 MB Available physical RAM: 4378.46 MB Total Virtual: 12182.16 MB Available Virtual: 10637.51 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:345.48 GB) (Free:262.9 GB) NTFS Drive d: (Daniel CHAN) (Fixed) (Total:302.73 GB) (Free:229.11 GB) NTFS Drive e: (SIM Lee Lee) (Fixed) (Total:283.2 GB) (Free:236.85 GB) NTFS Drive g: (Remax64G) (Removable) (Total:59.46 GB) (Free:58.95 GB) exFAT ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F9B2C755) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=345.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=302.7 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=283.2 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 59.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt ============================
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 06:12 PM Show posts by this member only \| Post #16
Enthusiast Senior Member 874 posts Joined: Aug 2006	QUOTE(BlueWind @ Sep 13 2016, 06:27 PM) HJT is way outdated. Please use FRST instead. Farbar Recovery Scan Tool (FRST) Scan Please download Farbar Recovery Scan Tool (x32) or Farbar Recovery Scan Tool (x64) and save the file to your Desktop. Note: Download and run the version compatible with your system (32 or 64-bit). Download both if you're unsure; only one will run. Right-click FRST.exe or FRST64.exe and select Run as administrator to run the programme. Click Yes to the disclaimer. Ensure the Addition.txt box is checked. Click the Scan button and let the programme run. Upon completion, click OK, then OK on the Addition.txt pop up screen. Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Copy the contents of both logs and paste in your next reply. so long...............
Card PM	Report Top Like Quote Reply

BlueWind	Sep 13 2016, 08:10 PM Show posts by this member only \| Post #17
Sianzation Senior Member 2,901 posts Joined: Jan 2007	I got work to do. Please be patient. Download attached fixlist.txt file and save it to the Desktop. [attachmentid=7521467] NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work. NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system Run FRST/FRST64 and press the Fix button just once and wait. If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run. When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 13 2016, 09:44 PM Show posts by this member only \| Post #18
Enthusiast Senior Member 874 posts Joined: Aug 2006	QUOTE(BlueWind @ Sep 13 2016, 09:10 PM) I got work to do. Please be patient. Download attached fixlist.txt file and save it to the Desktop. [attachmentid=7521467] NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work. NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system Run FRST/FRST64 and press the Fix button just once and wait. If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run. When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply. ohh u misunderstood, i mean so long is the info in both file so long..... thanks4ur help.. will try it out.....
Card PM	Report Top Like Quote Reply

BlueWind	Sep 13 2016, 09:50 PM Show posts by this member only \| Post #19
Sianzation Senior Member 2,901 posts Joined: Jan 2007	We're not done and the fix is not instantaneous though. Just want to make sure you're aware of it.
Card PM	Report Top Like Quote Reply

1024kbps	Sep 13 2016, 10:03 PM Show posts by this member only \| Post #20
李素裳 Senior Member 6,015 posts Joined: Feb 2007	As predicted, it is hidden on Task Scheduler : Task: {3A89006A-9D23-4C2C-8FAC-EE3D804C0CD7} - System32\Tasks\UserMonoplanesShawedV2 => Rundll32.exe GatheredHussies.dll,main 7 1 <==== ATTENTION You just need to open Task Scheduler, just type it on the taskbar, find the matching entry on task scheduler and delete it > problem solved, prolly This post has been edited by 1024kbps: Sep 13 2016, 10:08 PM
Card PM	Report Top Like Quote Reply

TSbdcyl	Sep 14 2016, 09:43 PM Show posts by this member only \| Post #21
Enthusiast Senior Member 874 posts Joined: Aug 2006	problem solved by using RogueKiller
Card PM	Report Top Like Quote Reply

« Next Oldest · Technical Support · Next Newest »

Add Reply Options

Change to:

0.0426sec

0.66

6 queries

GZIP Disabled
Time is now: 14th December 2025 - 12:12 AM

All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)

Removal Request

Powered by Invision Power Board © 2025 IPS, Inc.