Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Chrome extension can't be removed and decoder error blocks audio player startup


  • This topic is locked This topic is locked
7 replies to this topic

#1 highstream

highstream

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 17 January 2016 - 08:27 PM

An unwanted/unknown Chrome extension in Slimjet browser (x32) has brought me to post here (Win 8.1 Pro x64). Here are the two problems and what's been done:

1) Developed within the past few days, I believe: In Slimjet browser, an extension called "Word Highlight" ("W") appeared on the toolbar and shows itself as "installed by enterprise policy." So far, I've been unable to get rid of it: uninstall is blocked and I've tried a number of methods suggested on Slimjet's forum, most notably centering around the methods described here:http://tinypic.com/m/j6ty01/1, but nothing has worked so far.

- Have run MBAM pro, Comodo CIS and ESET online scanner, AdwCleaner and HiJackThis and have found nothing, zero malware/adware. Hitman Pro found a lot of tracker cookies but deleting them had no effect.

- Word Highlight extension does not appear in any of my other five browsers, two of which are Chromium based (Opera 35 and Vivaldi);

- I'm very careful about excluding adware, etc., during program installs and haven't installed anything recently that hasn't been well vetted (of course, that doesn't prevent the surreptitious install)

**- The registration code for Word Highlight is "ooabkmkhabkahcjbgpiajffckeibpdoa." After deleting its entries from the registry and deleting it from folders/files, restarting Slimjet reintroduces it in folders/files (Chrome-extension). Fully uninstalling Slimjet (Revo Pro), rebooting and reinstalling Slimjet reintroduces it to both the registry and files/folders. Note that after the code references were eliminated, the Word Highlight toolbar button is still there but grayed out, and the extension itself remains listed in Extensions and unable to be removed. Since no other Slimjet user has reported this problem with Slimjet, I have to assume there is something on my computer triggering it.

2) For a month or so: Album Player 2 (x32), which is my second choice sonically for playing music files (http://albumplayer.ru/english.html), has been unable to complete opening due to a decoder error. For a couple of months before that, I used it without problem, then all of a sudden upon starting it began to return an error box, "Could not load the decoder!" The thing is that even with this error, the decoder process shows as running in Windows Task Mgr. If I uninstall the program, reboot and reinstall, it will run correctly one or two times, then the decoder error kicks back in. Since the program's developer says nothing has changed re the decoder for some time, and other users on the JPlay forum haven't experienced this problem, I've been stuck. While I don't have any knowledge that this and the Chrome-extension issue are related, I have to consider the possibility that they are.

Thanks,

Win 8.1 Pro x64 (current)
Gigabyte GA-Z97-UD5H-BK / Intel i5-4690K, 16 GB RAM (4x4gb)
Samsung 850 Pro 256 GB SSD + Seagate HDDs (3) - 2 x 3TB, 2TB
Sapphire HD7750 Ultimate GPU, Seasonic X650 PSU
Plextor PX-891SA CD/DVD
Dell U2412M Monitor (1920x1200)
IBM Model M keyboard / Bornd M120 wireless mouse
Canon MP640 & Brother HL-2270DW printers (USB)
USB card + external audio system

 

----------------

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:10-01-2015 01
Ran by Gene (administrator) on GENE (16-01-2016 14:12:56)
Running from C:\Users\Gene\Downloads\Programs
Loaded Profiles: Gene (Available Profiles: Gene)
Platform: Windows 8.1 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: "C:\Program Files (x86)\Opera\Opera.exe" "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\JPLAY\jplay.exe
() C:\JPLAY\JPLAYStreamer.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Bitsum LLC) C:\Program Files\Process Lasso\ProcessLasso.exe
(Bitsum LLC) C:\Program Files\Process Lasso\ProcessGovernor.exe
(Windows X) C:\Windows\fidelizercore.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
() C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
() C:\Windows\SysWOW64\NMSAccessU.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
(Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
() C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(UltimateOutsider) C:\Program Files (x86)\UltimateOutsider\GWX Control Panel\GWX_control_panel.exe
(Flux Software LLC) C:\Users\Gene\AppData\Local\FluxSoftware\Flux\flux.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Edward Leigh) C:\Program Files (x86)\Bookmark Buddy\BmkBuddy.exe
(Seagate) C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe
(Firetrust) C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Hiroyuki Yamamoto) C:\Program Files (x86)\Sylpheed\sylpheed.exe
(2BrightSparks Pte Ltd) C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
(Microsoft Corporation) C:\Windows\System32\wbengine.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\vdsldr.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466136 2015-08-11] (Realtek Semiconductor)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-05] (COMODO)
HKLM\...\Run: [Fences] => C:\Program Files (x86)\Stardock\Fences\Fences.exe [3993744 2014-05-22] (Stardock Corporation)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2015-08-12] (CANON INC.)
HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe [400384 2015-12-09] (Seagate)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-12-16] (IvoSoft)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2015-08-11] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-21] (Oracle Corporation)
HKLM-x32\...\Run: [DiscWizardMonitor.exe] => C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe [6382568 2015-12-09] (Seagate)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1103424 2015-12-09] (Acronis)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157456 2015-12-14] (Apple Inc.)
HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-27] (Piriform Ltd)
HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\Run: [Spotify Web Helper] => C:\Users\Gene\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-13] (Spotify Ltd)
HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\Run: [Spotify] => C:\Users\Gene\AppData\Roaming\Spotify\Spotify.exe [7675448 2015-08-13] (Spotify Ltd)
HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3931728 2015-12-18] (Tonec Inc.)
HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\Run: [GwxControlPanelMonitor] => C:\Program Files (x86)\UltimateOutsider\GWX Control Panel\GWX_control_panel.exe [4470344 2016-01-02] (UltimateOutsider)
HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\Run: [f.lux] => C:\Users\Gene\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2016-01-11] (Flux Software LLC)
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - %SystemRoot%\system32\wpdshserviceobj.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [! IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-11-12] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-11-12] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2015-12-29]
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Bookmark Buddy.lnk [2015-11-15]
ShortcutTarget: Bookmark Buddy.lnk -> C:\Program Files (x86)\Bookmark Buddy\BmkBuddy.exe (Edward Leigh)
Startup: C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MailWasherPro.lnk [2015-11-15]
ShortcutTarget: MailWasherPro.lnk -> C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe (Firetrust)
Startup: C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TransTools Utilities.lnk [2015-11-15]
ShortcutTarget: TransTools Utilities.lnk -> C:\Users\Gene\AppData\Roaming\Microsoft\TransTools Utilities.exe ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\WINDOWS\SysWOW64\wlidNSP.dll [50176 2014-11-21] (Microsoft Corporation)
Winsock: Catalog5 09 C:\WINDOWS\SysWOW64\wlidNSP.dll [50176 2014-11-21] (Microsoft Corporation)
Winsock: Catalog5-x64 08 C:\WINDOWS\system32\wlidnsp.dll [74240 2014-11-21] (Microsoft Corporation)
Winsock: Catalog5-x64 09 C:\WINDOWS\system32\wlidnsp.dll [74240 2014-11-21] (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A53F2242-C242-45D4-B06C-6B0A05A4A9B5}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{B7F8D588-36ED-44A0-8292-33A98A90EC12}: [DhcpNameServer] 209.222.18.222 209.222.18.218

Internet Explorer:
==================
HKU\S-1-5-21-2432934315-392187705-3110959748-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://yahoo.com/
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-11-12] (IvoSoft)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-10-21] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-10-21] (Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-11-12] (IvoSoft)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-11-12] (IvoSoft)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-11-12] (IvoSoft)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-11-12] (IvoSoft)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-11-12] (IvoSoft)

FireFox:
========
FF ProfilePath: C:\Users\Gene\AppData\Roaming\Mozilla\Firefox\Profiles\oxpf6lhv.default
FF DefaultSearchEngine.US: Google
FF Homepage: yahoo.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-29] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-10-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-10-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-29] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1223183.dll [2015-12-21] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2014-07-28] (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2016-01-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2013-06-05] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Extension: Save-To-Read - C:\Users\Gene\AppData\Roaming\Mozilla\Firefox\Profiles\oxpf6lhv.default\extensions\save2read@konstantin.plotnikov.xpi [2015-08-11]
FF Extension: IDM integration - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2015-12-09]
FF Extension: Adblock Plus - C:\Users\Gene\AppData\Roaming\Mozilla\Firefox\Profiles\oxpf6lhv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-22]
FF Extension: Super Web Accelerator ! - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\jason@schober.net [2015-08-17] [not signed]
FF HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Gene\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Gene\AppData\Roaming\IDM\idmmzcc5 [2015-12-22] [not signed]
FF HKU\S-1-5-21-2432934315-392187705-3110959748-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-12-29]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-12-29]

Opera:
=======
StartMenuInternet: (HKLM) Operabeta - C:\Program Files (x86)\Opera beta\Launcher.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2015-08-11] (Brother Industries, Ltd.) [File not signed]
S4 cfbackd; C:\Program Files (x86)\CleverFiles\Disk Drill\cfbackd.w32.exe [211520 2015-08-12] (CleverFiles)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5542472 2015-10-01] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-08-05] (COMODO)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-01] (Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-01] (Dropbox, Inc.)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [36904 2015-08-12] (CHENGDU YIWO Tech Development Co., Ltd)
R2 gadjservice; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [16896 2015-11-01] () [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2016-01-02] (Intel Corporation)
R2 JPLAYService; c:\JPLAY\jplay.exe [238080 2015-08-11] () [File not signed]
R2 JPLAYStreamer; c:\JPLAY\JPLAYStreamer.exe [1496576 2015-08-11] () [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-13] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-13] (Malwarebytes)
R2 NMSAccess; C:\Windows\SysWOW64\NMSAccessU.exe [71096 2015-12-11] ()
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1657640 2015-08-19] (O&O Software GmbH)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [33080 2015-08-12] (The OpenVPN Project)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1572056 2015-12-29] (Secunia)
S2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [839384 2015-12-29] (Secunia)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2015-08-12] (Mister Group)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-01-02] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-01-02] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2015-08-11] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [102912 2015-08-11] (Advanced Micro Devices)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [21720 2015-11-18] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [828144 2015-11-18] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [35056 2015-08-05] (COMODO)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [18528 2014-11-18] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14944 2015-10-01] ()
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [48168 2015-08-12] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [10208 2015-10-01] ()
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127232 2016-01-02] (COMODO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-13] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-16] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-13] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 psaudio; C:\Windows\System32\drivers\psaudio_x64.sys [245976 2015-10-01] ()
R3 psaudioks; C:\Windows\system32\DRIVERS\psaudioks_x64.sys [53976 2015-08-12] ()
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2015-12-29] (Secunia)
S3 SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [16056 2015-12-21] (SlimWare Utilities, Inc.)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2015-12-09] (Acronis International GmbH)
S3 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [183224 2015-12-09] (Acronis)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2016-01-02] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2016-01-02] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2016-01-02] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-16 14:11 - 2016-01-16 14:12 - 00000000 ____D C:\FRST
2016-01-16 01:41 - 2016-01-16 01:41 - 00003126 _____ C:\WINDOWS\System32\Tasks\{EF79B175-75C5-4403-9420-57CD7B1D691C}
2016-01-15 21:07 - 2016-01-15 21:07 - 22477677 _____ C:\Users\Gene\Desktop\New Scientist 16 Jan 2016.pdf
2016-01-15 11:24 - 2016-01-15 11:24 - 00003836 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1439348087
2016-01-15 11:24 - 2016-01-15 11:24 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera beta.lnk
2016-01-15 02:22 - 2016-01-15 02:22 - 00003066 _____ C:\WINDOWS\System32\Tasks\{76495801-99FE-4B2C-A2CA-BC56A0C75C22}
2016-01-15 02:20 - 2016-01-15 02:20 - 00003066 _____ C:\WINDOWS\System32\Tasks\{A360986E-BB71-4276-A909-85B7CBA648D5}
2016-01-15 02:19 - 2016-01-15 02:19 - 00003126 _____ C:\WINDOWS\System32\Tasks\{32CFEA6A-D7A2-47C7-9367-1694A3D69695}
2016-01-15 02:18 - 2016-01-15 10:43 - 00000638 _____ C:\WINDOWS\Tasks\TrackerAutoUpdate.job
2016-01-15 02:18 - 2016-01-15 02:18 - 00003126 _____ C:\WINDOWS\System32\Tasks\{C688DE75-8FB6-467B-BD58-082623DAC6AB}
2016-01-15 02:18 - 2016-01-15 02:18 - 00003122 _____ C:\WINDOWS\System32\Tasks\TrackerAutoUpdate
2016-01-15 02:18 - 2016-01-15 02:18 - 00001054 _____ C:\Users\Public\Desktop\PDF-Viewer.lnk
2016-01-15 02:18 - 2016-01-15 02:18 - 00001054 _____ C:\ProgramData\Desktop\PDF-Viewer.lnk
2016-01-15 02:18 - 2016-01-15 02:17 - 00129248 _____ (Tracker Software Products (Canada) Ltd.) C:\WINDOWS\system32\pxcpm5L.dll
2016-01-13 19:34 - 2016-01-13 19:34 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2016-01-13 19:19 - 2016-01-13 19:19 - 00001915 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2016-01-13 19:19 - 2016-01-13 19:19 - 00001915 _____ C:\ProgramData\Desktop\HitmanPro.lnk
2016-01-13 19:18 - 2016-01-13 19:19 - 00000000 ____D C:\Program Files\HitmanPro
2016-01-13 17:57 - 2016-01-13 17:57 - 15318861 _____ C:\Users\Gene\Desktop\WebUser 13 Jan 2016.pdf
2016-01-13 08:17 - 2016-01-13 08:13 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-13 08:17 - 2016-01-13 08:13 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-13 08:13 - 2016-01-13 08:13 - 25837568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 20367360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 14456832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 12856320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 07453016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 08:13 - 2016-01-13 08:13 - 06051328 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 04610560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 02487808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 02011136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01499912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 01164800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-01-13 08:13 - 2016-01-13 08:13 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00498472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-01-13 08:13 - 2016-01-13 08:13 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00378880 ____C (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00340872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-13 08:13 - 2016-01-13 08:13 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-13 08:13 - 2016-01-13 08:13 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-01-13 08:13 - 2016-01-13 08:13 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00177488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-01-13 08:13 - 2016-01-13 08:13 - 00137968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00106960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-13 08:13 - 2016-01-13 08:13 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-01-13 08:13 - 2016-01-13 08:13 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-01-13 00:07 - 2016-01-13 19:34 - 00000000 ____D C:\ProgramData\HitmanPro
2016-01-12 20:24 - 2016-01-13 13:42 - 00000000 ____D C:\Users\Gene\Documents\Slimjet problem
2016-01-12 15:20 - 2016-01-12 15:20 - 00015698 _____ C:\Users\Gene\AppData\Local\recently-used.xbel
2016-01-12 13:19 - 2016-01-12 13:19 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-01-11 22:56 - 2016-01-13 01:39 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2016-01-11 22:56 - 2016-01-13 01:38 - 00000000 ____D C:\Users\Gene\AppData\Local\FluxSoftware
2016-01-07 00:04 - 2016-01-15 20:22 - 00000000 ____D C:\Users\Gene\AppData\Local\Bug head
2016-01-06 23:59 - 2016-01-06 23:59 - 00000958 _____ C:\Users\Public\Desktop\All core any cures.lnk
2016-01-06 23:59 - 2016-01-06 23:59 - 00000958 _____ C:\ProgramData\Desktop\All core any cures.lnk
2016-01-06 23:59 - 2016-01-06 23:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bug head
2016-01-06 23:38 - 2016-01-06 23:38 - 00000000 ____D C:\ProgramData\ProcessLasso
2016-01-06 23:38 - 2016-01-06 23:38 - 00000000 ____D C:\ProgramData\IDM
2016-01-06 23:37 - 2016-01-06 23:37 - 00000000 ____D C:\ProgramData\Shared Space
2016-01-06 08:34 - 2016-01-06 08:34 - 00352985 _____ (Windows X) C:\WINDOWS\fidelizercore.exe
2016-01-06 08:34 - 2016-01-06 08:34 - 00002698 _____ C:\WINDOWS\System32\Tasks\Fidelizer
2016-01-02 21:41 - 2016-01-02 21:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GWX Control Panel
2016-01-02 21:27 - 2016-01-02 21:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-01-02 21:27 - 2016-01-02 21:27 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-01-02 21:27 - 2016-01-02 21:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-01-02 21:27 - 2016-01-02 21:27 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-01-02 21:27 - 2016-01-02 21:27 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-01-02 21:27 - 2016-01-02 21:27 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-01-02 21:27 - 2016-01-02 21:27 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2016-01-02 21:27 - 2016-01-02 21:27 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2016-01-02 21:27 - 2016-01-02 21:27 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2016-01-02 21:27 - 2016-01-02 21:27 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2016-01-02 21:27 - 2016-01-02 21:27 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2016-01-02 21:27 - 2016-01-02 21:27 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2016-01-02 21:27 - 2016-01-02 21:27 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2016-01-02 21:27 - 2016-01-02 21:27 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2016-01-02 21:27 - 2016-01-02 21:27 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2016-01-02 21:27 - 2015-10-22 07:08 - 00513456 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-01-02 21:27 - 2015-10-22 07:08 - 00513456 _____ C:\WINDOWS\system32\locale.nls
2016-01-02 21:06 - 2016-01-02 21:06 - 00030400 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-01-02 21:06 - 2016-01-02 21:06 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-01-02 18:24 - 2016-01-02 18:24 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2016-01-02 18:24 - 2016-01-02 18:24 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2016-01-02 18:24 - 2016-01-02 18:24 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-01-02 18:24 - 2016-01-02 18:24 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-01-02 18:23 - 2016-01-02 18:23 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-01-02 18:23 - 2016-01-02 18:23 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2016-01-02 18:23 - 2016-01-02 17:35 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2016-01-02 18:14 - 2016-01-02 18:14 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-01-02 18:14 - 2016-01-02 18:14 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-01-02 18:14 - 2016-01-02 18:14 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-01-02 18:14 - 2016-01-02 18:14 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-01-02 18:14 - 2016-01-02 18:14 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-01-02 18:14 - 2016-01-02 18:14 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-01-02 18:13 - 2016-01-02 18:13 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-01-02 18:04 - 2016-01-02 18:04 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-01-02 18:04 - 2016-01-02 18:04 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2016-01-02 18:04 - 2016-01-02 18:04 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2016-01-02 18:04 - 2016-01-02 18:04 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2016-01-02 18:04 - 2016-01-02 17:35 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-01-02 18:04 - 2016-01-02 17:35 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-01-02 18:04 - 2016-01-02 17:35 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-01-02 18:04 - 2016-01-02 17:35 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-01-02 18:04 - 2016-01-02 17:35 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-01-02 18:04 - 2016-01-02 17:35 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-01-02 17:51 - 2016-01-13 01:35 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-02 17:51 - 2016-01-02 17:51 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2016-01-02 17:50 - 2016-01-02 17:50 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-01-02 17:50 - 2016-01-02 17:50 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2016-01-02 17:50 - 2016-01-02 17:50 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-01-02 17:50 - 2016-01-02 17:50 - 00000000 ____D C:\Program Files\MSBuild
2016-01-02 17:50 - 2016-01-02 17:50 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-01-02 17:50 - 2016-01-02 17:50 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-01-02 17:50 - 2016-01-02 16:30 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-01-02 17:50 - 2016-01-02 16:29 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-02 17:42 - 2016-01-02 17:35 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2016-01-02 17:42 - 2016-01-02 17:35 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2016-01-02 17:36 - 2016-01-02 17:36 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-02 17:36 - 2016-01-02 17:36 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-01-02 17:35 - 2016-01-02 17:35 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-01-02 17:35 - 2016-01-02 17:35 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-01-02 17:35 - 2016-01-02 17:35 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2016-01-02 17:35 - 2016-01-02 17:35 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2016-01-02 17:34 - 2016-01-02 17:34 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-01-02 17:34 - 2016-01-02 17:34 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2016-01-02 17:34 - 2016-01-02 17:34 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-01-02 17:34 - 2016-01-02 17:34 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-01-02 17:34 - 2016-01-02 17:34 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 22372152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 19795904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 00118616 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-01-02 17:33 - 2016-01-02 17:33 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2016-01-02 17:33 - 2016-01-02 17:33 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 02887168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-01-02 17:31 - 2016-01-02 17:31 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-01-02 17:31 - 2016-01-02 17:31 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-01-02 17:31 - 2016-01-02 17:31 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-01-02 17:31 - 2016-01-02 17:31 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2016-01-02 17:31 - 2016-01-02 17:31 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-01-02 17:31 - 2016-01-02 17:31 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2016-01-02 17:31 - 2016-01-02 17:31 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-01-02 17:31 - 2015-07-16 13:36 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-01-02 17:31 - 2015-07-16 12:50 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-01-02 17:30 - 2016-01-02 17:30 - 18823680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 15159296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-01-02 17:30 - 2016-01-02 17:30 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01659568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-01-02 17:30 - 2016-01-02 17:30 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01540728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-01-02 17:30 - 2016-01-02 17:30 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-01-02 17:30 - 2016-01-02 17:30 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-01-02 17:30 - 2016-01-02 17:30 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01134752 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 01091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00825856 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2016-01-02 17:30 - 2016-01-02 17:30 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2016-01-02 17:30 - 2016-01-02 17:30 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-01-02 17:30 - 2016-01-02 17:30 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-01-02 17:30 - 2016-01-02 17:30 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2016-01-02 17:30 - 2016-01-02 17:30 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2016-01-02 17:30 - 2016-01-02 17:30 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-01-02 17:30 - 2016-01-02 17:30 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-01-02 17:30 - 2016-01-02 17:30 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2016-01-02 17:30 - 2016-01-02 17:30 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2016-01-02 17:28 - 2016-01-02 17:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-02 17:17 - 2016-01-02 17:17 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 02819072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2016-01-02 17:17 - 2016-01-02 17:17 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2016-01-02 17:17 - 2016-01-02 17:17 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-01-02 17:17 - 2016-01-02 17:17 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2016-01-02 17:17 - 2016-01-02 17:17 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2016-01-02 17:17 - 2016-01-02 17:17 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2016-01-02 17:17 - 2016-01-02 17:17 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-01-02 17:17 - 2016-01-02 17:17 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-02 17:17 - 2016-01-02 17:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2016-01-02 17:17 - 2016-01-02 17:17 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2016-01-02 17:17 - 2016-01-02 17:17 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 03706880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 02476376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 02462720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 02243584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00766464 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00551232 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00468824 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-01-02 17:16 - 2016-01-02 17:16 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00462168 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00443224 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-01-02 17:16 - 2016-01-02 17:16 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-01-02 17:16 - 2016-01-02 17:16 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00239424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-01-02 17:16 - 2016-01-02 17:16 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-01-02 17:16 - 2016-01-02 17:16 - 00154432 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-01-02 17:16 - 2016-01-02 17:16 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-01-02 17:16 - 2016-01-02 17:16 - 00092504 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00078848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winusb.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-01-02 17:16 - 2016-01-02 17:16 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-01-02 17:16 - 2016-01-02 17:16 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00035384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00027992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-01-02 17:16 - 2016-01-02 17:16 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2016-01-02 17:16 - 2016-01-02 17:16 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2016-01-02 17:16 - 2016-01-02 17:16 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2016-01-02 17:16 - 2015-09-12 06:47 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-01-02 17:15 - 2016-01-02 17:15 - 01083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-01-02 17:15 - 2016-01-02 17:15 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-01-02 17:15 - 2016-01-02 17:15 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-01-02 17:15 - 2016-01-02 17:15 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-01-02 17:15 - 2016-01-02 17:15 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-01-02 17:15 - 2016-01-02 17:15 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-01-02 17:15 - 2016-01-02 17:15 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-01-02 17:15 - 2016-01-02 17:15 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-01-02 17:15 - 2016-01-02 17:15 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-01-02 17:15 - 2016-01-02 17:15 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-01-02 17:15 - 2016-01-02 17:15 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-01-02 17:15 - 2016-01-02 17:15 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2016-01-02 17:15 - 2016-01-02 17:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:13 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-01-02 17:15 - 2016-01-02 17:12 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-01-02 17:15 - 2016-01-02 17:12 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-01-02 17:14 - 2016-01-02 17:14 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-01-02 17:14 - 2016-01-02 17:14 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-01-02 17:14 - 2016-01-02 17:14 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-01-02 17:14 - 2016-01-02 17:14 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-01-02 17:14 - 2016-01-02 17:14 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-01-02 17:14 - 2016-01-02 17:14 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-01-02 17:14 - 2016-01-02 17:14 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2016-01-02 17:08 - 2016-01-02 17:08 - 00000401 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-01-02 17:05 - 2015-08-05 01:33 - 00007471 _____ C:\WINDOWS\system32\Drivers\inspect.cat
2016-01-02 16:59 - 2016-01-02 16:59 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2016-01-02 16:58 - 2016-01-02 16:58 - 00001658 __RSH C:\ProgramData\ntuser.pol
2016-01-02 16:58 - 2016-01-02 16:58 - 00001452 _____ C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-01-02 16:58 - 2016-01-02 16:58 - 00000020 ___SH C:\Users\Gene\ntuser.ini
2016-01-02 16:57 - 2016-01-02 16:57 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-01-02 16:56 - 2016-01-02 16:56 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-01-02 16:56 - 2016-01-02 16:56 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-01-02 16:56 - 2016-01-02 16:56 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-01-02 16:56 - 2016-01-02 16:56 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-01-02 16:56 - 2016-01-02 16:56 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-01-02 16:54 - 2016-01-13 01:40 - 00000000 ____D C:\Users\Gene
2016-01-02 16:54 - 2016-01-02 16:58 - 00028578 _____ C:\WINDOWS\diagwrn.xml
2016-01-02 16:54 - 2016-01-02 16:58 - 00028578 _____ C:\WINDOWS\diagerr.xml
2016-01-02 16:54 - 2016-01-02 16:54 - 00000000 _SHDL C:\Users\Gene\My Documents
2016-01-02 16:54 - 2016-01-02 16:54 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-01-02 16:54 - 2014-11-21 01:53 - 00000369 _____ C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-01-02 16:54 - 2014-11-21 01:53 - 00000369 _____ C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-01-02 16:52 - 2016-01-02 16:55 - 00000000 ____D C:\ProgramData\Brother
2016-01-02 16:52 - 2016-01-02 16:55 - 00000000 ____D C:\Program Files\AMD
2016-01-02 16:52 - 2016-01-02 16:52 - 00000000 ___HD C:\ProgramData\CanonBJ
2016-01-02 16:52 - 2016-01-02 16:52 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-01-02 16:52 - 2016-01-02 16:52 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-01-02 16:52 - 2016-01-02 16:52 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-01-02 16:52 - 2016-01-02 16:52 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-01-02 16:52 - 2016-01-02 16:52 - 00000000 ____D C:\Program Files\Realtek
2016-01-02 16:52 - 2016-01-02 16:52 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-01-02 16:52 - 2016-01-02 16:52 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2016-01-02 16:05 - 2016-01-02 16:25 - 00000000 __RHD C:\ESD
2016-01-02 12:53 - 2016-01-05 14:04 - 00011498 _____ C:\Users\Gene\Desktop\My Fair Lady Usher Signup Worksheet.xlsx
2016-01-02 00:23 - 2016-01-02 00:23 - 00001624 _____ C:\Users\Gene\Desktop\APlayer x32.lnk
2016-01-01 20:38 - 2016-01-02 15:14 - 00000000 ___RD C:\Users\Gene\Dropbox
2016-01-01 20:38 - 2016-01-01 20:38 - 00001252 _____ C:\Users\Gene\Desktop\Dropbox.lnk
2016-01-01 20:36 - 2016-01-02 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-01-01 20:36 - 2016-01-01 20:36 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Dropbox
2016-01-01 20:35 - 2016-01-02 15:14 - 00000000 ____D C:\Users\Gene\AppData\Local\Dropbox
2016-01-01 20:35 - 2016-01-02 11:58 - 00000914 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-01 20:35 - 2016-01-02 11:58 - 00000910 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-01 20:35 - 2016-01-01 23:32 - 00003888 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-01-01 20:35 - 2016-01-01 23:32 - 00003652 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-01-01 20:35 - 2016-01-01 20:36 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-01-01 20:35 - 2016-01-01 20:35 - 00000000 ____D C:\ProgramData\Dropbox
2016-01-01 17:03 - 2016-01-01 17:43 - 34978722 _____ C:\Users\Gene\Desktop\Consumer Reports - Feb 2016.pdf
2015-12-29 13:49 - 2015-12-29 13:49 - 00001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2015-12-29 05:23 - 2016-01-03 19:54 - 00199152 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys
2015-12-27 19:51 - 2015-12-27 19:51 - 00000503 _____ C:\Users\Gene\Desktop\Music-Books-World Cup (E).lnk
2015-12-27 18:59 - 2016-01-15 02:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange Lite 2012
2015-12-26 22:46 - 2016-01-02 16:56 - 00000000 ____D C:\WINDOWS\SysWOW64\spool
2015-12-26 22:46 - 2016-01-02 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Win2PDF
2015-12-26 22:46 - 2015-12-26 22:46 - 00154864 _____ C:\WINDOWS\SysWOW64\WIN2PDFS.DLL
2015-12-26 22:46 - 2015-12-26 22:46 - 00085744 _____ (Dane Prairie Systems, LLC - hxxp://www.win2pdf.com) C:\WINDOWS\system32\WIN2PDFM7.DLL
2015-12-26 22:46 - 2008-06-23 15:41 - 00000002 _____ C:\WINDOWS\1way.ini
2015-12-26 14:44 - 2015-12-26 14:44 - 00000000 ____D C:\Users\Gene\AppData\Local\Incomedia
2015-12-26 12:57 - 2015-12-26 12:57 - 00000000 ____D C:\Users\Gene\Documents\Incomedia
2015-12-26 12:50 - 2015-12-26 12:50 - 00000000 ____D C:\Users\Gene\AppData\Roaming\YCanPDF
2015-12-26 12:48 - 2015-12-26 12:48 - 00000000 ____D C:\Users\Gene\AppData\Local\Downloaded Installations
2015-12-26 11:08 - 2015-12-26 11:08 - 22106120 _____ C:\Users\Gene\Desktop\Micro Mart (graphics cards) - 31 Dec 2015.pdf
2015-12-26 10:03 - 2016-01-02 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebSite X5 v12 - Home
2015-12-26 10:03 - 2015-12-26 22:42 - 00000000 ____D C:\Program Files (x86)\WebSite X5 v12 - Home
2015-12-23 21:03 - 2015-12-23 21:03 - 00000000 ____D C:\Program Files\Reason
2015-12-22 09:35 - 2015-12-22 11:44 - 00000000 ____D C:\WINDOWS\pss
2015-12-21 21:07 - 2015-12-21 21:07 - 31027136 _____ C:\Users\Gene\Desktop\Sports Illustrated - 21 Dec 2015.pdf
2015-12-21 21:06 - 2015-12-21 21:06 - 24771241 _____ C:\Users\Gene\Desktop\Sound & Image Dec 15-Jan 16.pdf
2015-12-21 20:51 - 2015-12-21 20:51 - 00031800 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2015-12-21 20:51 - 2015-12-21 20:51 - 00001121 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2015-12-21 20:51 - 2015-12-21 20:51 - 00001121 _____ C:\ProgramData\Desktop\Revo Uninstaller Pro.lnk
2015-12-21 10:52 - 2015-12-21 10:52 - 00001113 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2015-12-21 10:52 - 2015-12-21 10:52 - 00001113 _____ C:\ProgramData\Desktop\SpywareBlaster.lnk
2015-12-20 12:43 - 2015-12-20 12:43 - 00424075 _____ C:\Users\Gene\Desktop\An Intermarket Approach to Beta Rotation.pdf
2015-12-20 03:12 - 2015-12-20 03:05 - 00445952 _____ (Matthew T. Ashland) C:\WINDOWS\system32\MACDll.dll
2015-12-20 03:05 - 2015-12-20 03:05 - 00445952 _____ (Matthew T. Ashland) C:\WINDOWS\SysWOW64\MACDll.dll
2015-12-20 02:48 - 2016-01-02 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Medieval Software
2015-12-20 02:48 - 2015-12-22 11:43 - 00000000 ____D C:\Program Files (x86)\Medieval Software
2015-12-20 02:48 - 2015-12-20 02:48 - 00001292 _____ C:\Users\Public\Desktop\Medieval CUE Splitter.lnk
2015-12-20 02:48 - 2015-12-20 02:48 - 00001292 _____ C:\ProgramData\Desktop\Medieval CUE Splitter.lnk
2015-12-19 17:59 - 2015-12-19 17:59 - 44233598 _____ C:\Users\Gene\Desktop\What Hi-Fi Sound and Vision - Jan 2016.pdf
2015-12-18 11:16 - 2016-01-02 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Lasso
2015-12-18 11:16 - 2015-12-22 13:55 - 00003000 _____ C:\WINDOWS\System32\Tasks\Process Lasso Core Engine Only
2015-12-18 11:16 - 2015-12-22 13:55 - 00002994 _____ C:\WINDOWS\System32\Tasks\Process Lasso Management Console (GUI)
2015-12-17 18:56 - 2015-12-17 18:56 - 81264803 _____ C:\Users\Gene\Desktop\Economist double issue 2015-12-19.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-16 14:12 - 2015-08-11 20:07 - 00000000 ____D C:\Users\Gene\Documents\Bookmark Lists
2016-01-16 14:11 - 2013-08-22 06:36 - 00000000 ____D C:\Windows
2016-01-16 14:10 - 2015-08-12 17:56 - 02920320 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2016-01-16 14:10 - 2015-08-11 18:17 - 01474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2016-01-16 14:01 - 2015-10-14 16:13 - 00000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-01-16 13:50 - 2014-11-21 01:43 - 00866430 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-16 13:50 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\Inf
2016-01-16 13:49 - 2015-08-11 20:24 - 00000000 ____D C:\Users\Gene\AppData\Roaming\DMCache
2016-01-16 13:46 - 2015-08-11 18:37 - 00000000 ____D C:\Users\Gene\AppData\Roaming\XYplorer
2016-01-16 13:44 - 2015-08-11 18:48 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Sylpheed
2016-01-16 12:41 - 2015-08-11 20:03 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-01-16 12:40 - 2015-12-03 18:37 - 00000912 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-16 12:40 - 2015-08-11 18:23 - 00000000 __SHD C:\Users\Gene\IntelGraphicsProfiles
2016-01-16 12:40 - 2013-08-22 07:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-16 01:42 - 2013-08-22 06:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-01-16 01:40 - 2015-08-11 22:48 - 00000000 ____D C:\Users\Gene\Documents\My Filehippo Downloads
2016-01-15 22:23 - 2015-08-11 22:09 - 00000000 ____D C:\ProgramData\Zoom Player
2016-01-15 21:28 - 2015-10-14 18:09 - 00000000 ____D C:\Users\Gene\AppData\Roaming\vlc
2016-01-15 20:17 - 2015-11-04 00:16 - 00000000 ____D C:\Program Files\Bug head
2016-01-15 17:25 - 2015-10-01 09:00 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2432934315-392187705-3110959748-1001
2016-01-15 16:53 - 2015-08-12 09:46 - 00266741 _____ C:\Users\Gene\Desktop\Scottrade - Schwab.xlsx
2016-01-15 11:24 - 2015-08-11 20:24 - 00000000 ____D C:\Users\Gene\AppData\Roaming\IDM
2016-01-15 11:24 - 2015-08-11 19:54 - 00000000 ____D C:\Program Files (x86)\Opera beta
2016-01-15 02:18 - 2015-08-11 21:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2016-01-15 02:18 - 2015-08-11 21:35 - 00000000 ____D C:\Program Files\Tracker Software
2016-01-15 02:02 - 2015-08-11 22:48 - 00000000 ____D C:\Users\Gene\Documents\Temporary Documents
2016-01-14 21:04 - 2015-08-11 18:13 - 00000000 ____D C:\Users\Gene\AppData\Local\ClassicShell
2016-01-14 21:01 - 2015-08-12 13:56 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Anvsoft
2016-01-14 21:00 - 2015-08-12 15:33 - 00000000 ____D C:\Users\Gene\AppData\Roaming\foobar2000
2016-01-14 15:41 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\rescache
2016-01-13 23:28 - 2015-08-12 15:33 - 00001139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2016-01-13 23:28 - 2015-08-12 15:33 - 00001057 _____ C:\Users\Public\Desktop\foobar2000.lnk
2016-01-13 23:28 - 2015-08-12 15:33 - 00001057 _____ C:\ProgramData\Desktop\foobar2000.lnk
2016-01-13 23:28 - 2015-08-12 15:33 - 00000000 ____D C:\Program Files (x86)\foobar2000
2016-01-13 20:49 - 2015-08-12 10:51 - 00000000 ____D C:\My Text Files
2016-01-13 17:42 - 2015-08-12 10:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-13 17:42 - 2015-08-12 10:10 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-01-13 17:42 - 2015-08-12 10:10 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-01-13 08:24 - 2015-08-11 22:06 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-13 08:24 - 2015-08-11 22:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-13 08:19 - 2015-08-11 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-13 08:19 - 2013-08-22 08:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-13 08:17 - 2015-08-11 22:22 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-13 08:14 - 2015-08-11 22:22 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-13 01:39 - 2015-12-09 13:39 - 00000000 ____D C:\Users\Gene\AppData\Local\gtk-2.0
2016-01-13 01:39 - 2015-11-26 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashPeak Slimjet
2016-01-13 01:39 - 2015-11-26 12:02 - 00000000 ____D C:\Program Files (x86)\Slimjet
2016-01-13 01:39 - 2015-08-27 08:38 - 00000000 ____D C:\Users\Gene\AppData\LocalLow\Adblock Plus for IE
2016-01-13 01:39 - 2015-08-20 14:02 - 00000000 ____D C:\Users\Gene\AppData\Roaming\NoteTab Light
2016-01-13 01:39 - 2015-08-11 21:10 - 00000000 ____D C:\Users\Gene\AppData\Roaming\ProcessLasso
2016-01-13 01:39 - 2015-08-11 18:17 - 00000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2016-01-13 01:39 - 2013-08-22 08:36 - 00000000 __RSD C:\WINDOWS\Media
2016-01-13 01:39 - 2013-08-22 08:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-13 01:39 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-01-13 01:39 - 2013-08-22 08:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-13 01:39 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-01-13 01:38 - 2015-11-26 12:02 - 00000000 ____D C:\Users\Gene\AppData\Local\Slimjet
2016-01-13 01:38 - 2015-08-12 10:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-01-13 01:38 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\registration
2016-01-13 01:38 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\servicing
2016-01-13 00:18 - 2015-08-16 22:30 - 00000000 ____D C:\AdwCleaner
2016-01-12 00:11 - 2015-08-12 11:08 - 00000000 ____D C:\ProgramData\TEMP
2016-01-12 00:11 - 2015-08-12 11:08 - 00000000 ____D C:\Program Files (x86)\SpywareBlaster
2016-01-11 20:00 - 2015-08-11 22:48 - 00000000 ____D C:\Users\Gene\Documents\Calibre Library
2016-01-11 14:01 - 2015-11-26 12:02 - 00001013 _____ C:\Users\Public\Desktop\FlashPeak Slimjet.lnk
2016-01-11 14:01 - 2015-11-26 12:02 - 00001013 _____ C:\ProgramData\Desktop\FlashPeak Slimjet.lnk
2016-01-11 13:49 - 2015-10-14 16:13 - 00003846 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-01-11 13:49 - 2015-08-12 22:01 - 00000000 ____D C:\Users\Gene\AppData\Local\Adobe
2016-01-10 22:00 - 2015-12-04 21:55 - 00000000 ____D C:\WINDOWS\System32\Tasks\NCH Software
2016-01-09 20:27 - 2015-12-15 23:24 - 00001451 _____ C:\Users\Gene\Desktop\Infinity Blade.lnk
2016-01-08 11:17 - 2015-08-12 22:58 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Azureus
2016-01-07 15:55 - 2015-08-11 22:52 - 00000000 ____D C:\Program Files (x86)\Autoruns
2016-01-07 15:53 - 2015-08-11 22:15 - 00001212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2016-01-07 15:53 - 2015-08-11 22:15 - 00001200 _____ C:\Users\Public\Desktop\paint.net.lnk
2016-01-07 15:53 - 2015-08-11 22:15 - 00001200 _____ C:\ProgramData\Desktop\paint.net.lnk
2016-01-07 15:53 - 2015-08-11 22:15 - 00000000 ____D C:\Program Files\paint.net
2016-01-07 14:25 - 2015-08-11 23:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-07 12:49 - 2015-08-13 19:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-06 23:19 - 2015-08-12 15:29 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Coolverse software
2016-01-06 18:17 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-05 16:09 - 2015-08-12 22:01 - 00002389 _____ C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2016-01-05 16:09 - 2015-08-12 13:08 - 00002381 _____ C:\Users\Gene\Desktop\Vivaldi.lnk
2016-01-05 16:08 - 2015-08-12 22:01 - 00000000 ____D C:\Users\Gene\AppData\Local\Vivaldi
2016-01-05 12:44 - 2015-08-11 17:48 - 00000000 ____D C:\Users\Gene\AppData\Local\Packages
2016-01-04 10:08 - 2015-08-11 20:23 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager
2016-01-03 18:18 - 2015-08-12 10:50 - 00000000 ____D C:\My MS Word Files
2016-01-03 13:36 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\AppCompat
2016-01-03 13:28 - 2013-08-22 07:44 - 00409712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-02 21:44 - 2015-08-11 21:10 - 00000000 ____D C:\Program Files\Process Lasso
2016-01-02 18:26 - 2013-08-22 08:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-01-02 18:26 - 2013-08-22 08:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-01-02 18:14 - 2013-08-22 08:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-01-02 18:14 - 2013-08-22 08:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-01-02 18:14 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-01-02 18:04 - 2014-11-21 01:25 - 00000000 ____D C:\Program Files\Windows Journal
2016-01-02 17:51 - 2013-08-22 08:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2016-01-02 17:50 - 2014-11-21 02:18 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2016-01-02 17:50 - 2014-11-21 02:18 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2016-01-02 17:50 - 2014-11-21 02:18 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2016-01-02 17:50 - 2014-11-21 02:18 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2016-01-02 17:50 - 2013-08-22 04:22 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2016-01-02 17:50 - 2013-08-22 04:22 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2016-01-02 17:50 - 2013-08-22 04:17 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2016-01-02 17:50 - 2013-08-22 04:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2016-01-02 17:50 - 2013-08-22 04:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2016-01-02 17:50 - 2013-08-21 20:56 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2016-01-02 17:50 - 2013-08-21 20:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2016-01-02 17:50 - 2013-08-21 20:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2016-01-02 17:50 - 2013-08-21 20:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2016-01-02 17:50 - 2013-08-21 20:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2016-01-02 17:30 - 2014-11-21 01:37 - 02473472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-01-02 17:28 - 2014-11-21 09:17 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2016-01-02 17:28 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-01-02 17:28 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-01-02 17:28 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-01-02 17:05 - 2015-08-05 01:31 - 00127232 _____ (COMODO) C:\WINDOWS\system32\Drivers\inspect.sys
2016-01-02 17:02 - 2015-08-09 04:52 - 25076864 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 24270600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 17973744 _____ C:\WINDOWS\system32\igd11dxva64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 17493192 _____ C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 09519352 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 08723000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 06253856 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 04929056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 01425032 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 01421904 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 01299392 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 01039488 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 00295568 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 00275816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 00232832 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 00225488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 00196392 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 00190640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-01-02 17:02 - 2015-08-09 04:52 - 00047472 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 15989760 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 10860544 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 09562096 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 07529968 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 04928256 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-01-02 17:02 - 2015-08-09 04:50 - 03599360 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 03335664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 02956232 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 02787336 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 02048512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 01522712 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 01379328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 01139712 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 01073152 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 01047960 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 01044896 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 01024536 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00707584 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00681496 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00634352 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00625688 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00483224 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00459160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00434176 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00404376 _____ C:\WINDOWS\system32\igfxTray.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00395248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00382976 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00380928 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00363544 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00355232 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00350112 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00349600 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00324512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00314352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00296432 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00288688 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00279048 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00266224 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-01-02 17:02 - 2015-08-09 04:50 - 00257968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00240128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00228264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00224240 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00206872 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00200704 _____ C:\WINDOWS\system32\igdde64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00192000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4264.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00189416 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00178688 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00167328 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-01-02 17:02 - 2015-08-09 04:50 - 00162280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00161792 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00144408 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00138248 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00102912 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00096752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00095232 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00092648 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00082432 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00071152 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00044032 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00020976 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00019968 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00013824 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-01-02 17:02 - 2015-08-09 04:50 - 00013824 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-01-02 17:02 - 2015-05-26 09:28 - 00042288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2016-01-02 17:02 - 2015-05-26 09:28 - 00030512 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2016-01-02 17:00 - 2015-08-11 17:48 - 00000000 ____D C:\Users\Gene\AppData\Local\PackageStaging
2016-01-02 16:57 - 2013-08-22 08:36 - 00000000 __RHD C:\Users\Public\Libraries
2016-01-02 16:56 - 2015-10-25 20:59 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2016-01-02 16:56 - 2015-08-12 13:28 - 00000000 ____D C:\WINDOWS\system32\oodag
2016-01-02 16:56 - 2014-11-21 01:00 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-01-02 16:56 - 2014-11-21 01:00 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-01-02 16:56 - 2014-11-21 01:00 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-01-02 16:56 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-01-02 16:56 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-01-02 16:56 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\spool
2016-01-02 16:56 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-02 16:56 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-01-02 16:56 - 2013-08-22 06:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-01-02 16:56 - 2013-08-22 06:36 - 00000000 ____D C:\Users\Default.migrated
2016-01-02 16:56 - 2013-08-22 06:25 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-02 16:55 - 2015-12-16 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2016-01-02 16:55 - 2015-12-14 12:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-01-02 16:55 - 2015-12-09 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate
2016-01-02 16:55 - 2015-12-05 14:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrar Registry Manager
2016-01-02 16:55 - 2015-12-05 00:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-02 16:55 - 2015-12-03 10:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2016-01-02 16:55 - 2015-12-01 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sylpheed
2016-01-02 16:55 - 2015-11-05 17:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-01-02 16:55 - 2015-11-05 13:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Linn
2016-01-02 16:55 - 2015-11-01 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte
2016-01-02 16:55 - 2015-10-12 16:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
2016-01-02 16:55 - 2015-10-03 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-01-02 16:55 - 2015-10-01 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.8
2016-01-02 16:55 - 2015-09-03 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Kawa
2016-01-02 16:55 - 2015-09-03 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2016-01-02 16:55 - 2015-08-28 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-01-02 16:55 - 2015-08-19 19:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KGLTRadio
2016-01-02 16:55 - 2015-08-19 06:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software
2016-01-02 16:55 - 2015-08-12 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2016-01-02 16:55 - 2015-08-12 23:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2016-01-02 16:55 - 2015-08-12 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2016-01-02 16:55 - 2015-08-12 23:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Screen Capture
2016-01-02 16:55 - 2015-08-12 17:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karen's Power Tools
2016-01-02 16:55 - 2015-08-12 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-02 16:55 - 2015-08-12 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-01-02 16:55 - 2015-08-12 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rewrite data
2016-01-02 16:55 - 2015-08-12 15:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NoteTab Light
2016-01-02 16:55 - 2015-08-12 15:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2016-01-02 16:55 - 2015-08-12 15:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2016-01-02 16:55 - 2015-08-12 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cleverfiles Disk Drill
2016-01-02 16:55 - 2015-08-12 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-01-02 16:55 - 2015-08-12 15:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2016-01-02 16:55 - 2015-08-12 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-01-02 16:55 - 2015-08-12 14:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2016-01-02 16:55 - 2015-08-12 14:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NoVirusThanks
2016-01-02 16:55 - 2015-08-12 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
2016-01-02 16:55 - 2015-08-12 13:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2016-01-02 16:55 - 2015-08-12 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jv16 PowerTools X
2016-01-02 16:55 - 2015-08-12 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2016-01-02 16:55 - 2015-08-12 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2016-01-02 16:55 - 2015-08-12 00:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup Workstation 8.6
2016-01-02 16:55 - 2015-08-11 23:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2016-01-02 16:55 - 2015-08-11 23:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-01-02 16:55 - 2015-08-11 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2016-01-02 16:55 - 2015-08-11 22:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinimServer
2016-01-02 16:55 - 2015-08-11 22:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange
2016-01-02 16:55 - 2015-08-11 22:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2BrightSparks
2016-01-02 16:55 - 2015-08-11 22:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-01-02 16:55 - 2015-08-11 22:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2016-01-02 16:55 - 2015-08-11 22:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-01-02 16:55 - 2015-08-11 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoom Player
2016-01-02 16:55 - 2015-08-11 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2016-01-02 16:55 - 2015-08-11 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-01-02 16:55 - 2015-08-11 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2016-01-02 16:55 - 2015-08-11 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-01-02 16:55 - 2015-08-11 20:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2016-01-02 16:55 - 2015-08-11 20:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-01-02 16:55 - 2015-08-11 20:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bookmark Buddy
2016-01-02 16:55 - 2015-08-11 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-01-02 16:55 - 2015-08-11 19:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IZArc
2016-01-02 16:55 - 2015-08-11 19:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JPLAY
2016-01-02 16:55 - 2015-08-11 18:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XYplorer
2016-01-02 16:55 - 2015-08-11 18:21 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-01-02 16:55 - 2015-08-11 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2016-01-02 16:55 - 2015-08-11 17:57 - 00000000 ____D C:\Program Files\Intel
2016-01-02 16:55 - 2015-08-11 17:53 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2016-01-02 16:55 - 2015-08-11 17:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series
2016-01-02 16:55 - 2014-11-21 01:25 - 00000000 ____D C:\WINDOWS\ShellNew
2016-01-02 16:55 - 2013-08-22 08:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-01-02 16:55 - 2013-08-22 08:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-01-02 16:55 - 2013-08-22 08:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-01-02 16:55 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\InputMethod
2016-01-02 16:55 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\Help
2016-01-02 16:55 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\FileManager
2016-01-02 16:54 - 2015-12-07 08:54 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GWX Control Panel
2016-01-02 16:54 - 2015-11-03 23:23 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firetrust
2016-01-02 16:54 - 2015-10-12 16:06 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2016-01-02 16:54 - 2015-09-03 23:16 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2016-01-02 16:54 - 2015-08-12 15:05 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2016-01-02 16:54 - 2015-08-12 14:13 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2016-01-02 16:54 - 2015-08-12 14:07 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Copy Contents
2016-01-02 16:54 - 2015-08-12 14:01 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
2016-01-02 16:54 - 2015-08-12 13:49 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jv16 PowerTools X
2016-01-02 16:54 - 2015-08-12 10:42 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TransTools
2016-01-02 16:54 - 2015-08-11 20:23 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-01-02 16:54 - 2013-08-22 08:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-01-02 14:54 - 2015-08-12 13:06 - 00002286 _____ C:\Users\Gene\Desktop\Kindle.lnk
2016-01-02 14:54 - 2015-08-11 22:25 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Skype
2016-01-02 14:54 - 2015-08-11 22:25 - 00000000 ____D C:\ProgramData\Skype
2016-01-01 22:57 - 2015-08-24 15:03 - 00000000 ____D C:\Users\Gene\AppData\Local\ElevatedDiagnostics
2016-01-01 22:46 - 2015-08-12 14:09 - 00000000 ____D C:\Program Files (x86)\Calibre2
2015-12-31 15:14 - 2015-08-12 10:51 - 00000000 ____D C:\Adobe Files
2015-12-29 13:49 - 2015-12-01 06:10 - 00018456 _____ (Secunia) C:\WINDOWS\system32\Drivers\psi_mf_amd64.sys
2015-12-28 13:24 - 2015-08-11 18:47 - 00000000 ____D C:\Program Files (x86)\Sylpheed
2015-12-27 14:07 - 2015-11-04 23:49 - 00000000 ____D C:\Users\Gene\AppData\Roaming\Kazoo
2015-12-27 13:36 - 2015-08-25 08:29 - 00000846 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-27 13:36 - 2015-08-25 08:29 - 00000846 _____ C:\ProgramData\Desktop\CCleaner.lnk
2015-12-23 23:15 - 2015-08-11 22:48 - 00000000 ____D C:\Users\Gene\Documents\My Kindle Content
2015-12-22 11:44 - 2015-12-05 00:29 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-22 11:44 - 2015-08-12 11:08 - 00000000 ____D C:\ProgramData\Licenses
2015-12-22 11:44 - 2015-08-11 21:49 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-22 11:44 - 2015-08-11 21:01 - 00000000 ____D C:\Program Files\CCleaner
2015-12-22 11:44 - 2015-08-11 18:36 - 00000000 ____D C:\Program Files (x86)\XYplorer
2015-12-22 00:24 - 2015-08-11 22:48 - 00000251 ____H C:\Users\Gene\Documents\.picasa.ini
2015-12-21 20:37 - 2015-08-12 00:31 - 00003100 ____H C:\WINDOWS\EPMBatch.ept
2015-12-21 10:50 - 2015-08-11 21:18 - 00016056 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2015-12-21 09:58 - 2015-08-12 13:08 - 00000756 _____ C:\Users\Gene\Desktop\World Cup 2015-2016.lnk
2015-12-21 09:58 - 2015-08-12 13:07 - 00000644 _____ C:\Users\Gene\Desktop\Music.lnk
2015-12-21 09:58 - 2015-08-12 13:05 - 00000813 _____ C:\Users\Gene\Desktop\E-Books.lnk
2015-12-19 11:41 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\ModemLogs

==================== Files in the root of some directories =======

2015-12-27 18:59 - 2015-12-27 18:59 - 0000376 _____ () C:\Program Files\Common Files\TrackerSoftwareInstallerPDFX5SA.log
2015-12-04 21:59 - 2015-12-04 21:59 - 0000046 _____ () C:\Users\Gene\AppData\Roaming\Camdata.ini
2015-12-04 21:59 - 2015-12-04 21:59 - 0000408 _____ () C:\Users\Gene\AppData\Roaming\CamLayout.ini
2015-12-04 21:59 - 2015-12-04 21:59 - 0000408 _____ () C:\Users\Gene\AppData\Roaming\CamShapes.ini
2015-12-04 21:59 - 2015-12-04 21:59 - 0004547 _____ () C:\Users\Gene\AppData\Roaming\CamStudio.cfg
2015-08-12 13:49 - 2015-08-12 13:49 - 0000020 ___SH () C:\Users\Gene\AppData\Roaming\Sys11965 DataCollection.dat
2015-08-12 13:49 - 2015-08-12 13:49 - 0000020 ___SH () C:\Users\Gene\AppData\Roaming\System413_DataDB.ind
2015-12-04 21:59 - 2015-12-04 21:59 - 0000096 _____ () C:\Users\Gene\AppData\Roaming\version2.xml
2010-08-15 08:44 - 2010-08-15 08:44 - 0037346 _____ () C:\Users\Gene\AppData\Roaming\Microsoft\gpl-3.0-standalone.html
2014-06-28 02:02 - 2014-06-28 02:02 - 0027462 _____ () C:\Users\Gene\AppData\Roaming\Microsoft\readme.html
2014-08-04 10:27 - 2015-08-12 10:42 - 1249280 _____ () C:\Users\Gene\AppData\Roaming\Microsoft\TransTools Utilities.exe
2007-10-31 10:41 - 2007-10-31 10:41 - 0000532 _____ () C:\Users\Gene\AppData\Roaming\Microsoft\TransTools.cfg
2013-05-12 07:29 - 2013-05-12 07:29 - 0000904 _____ () C:\Users\Gene\AppData\Roaming\Microsoft\TransTools_QA_NBSP.cfg
2015-08-12 10:42 - 2015-08-12 10:42 - 0109617 _____ (Stanislav Okhvat) C:\Users\Gene\AppData\Roaming\Microsoft\Uninstall.exe
2015-08-12 10:42 - 2015-08-12 10:42 - 0007936 __RSH () C:\Users\Gene\AppData\Roaming\Microsoft\uninstall.log
2015-08-22 09:00 - 2015-08-22 09:00 - 3531374 _____ () C:\Users\Gene\AppData\Local\curl.zip
2015-08-14 09:00 - 2015-08-14 09:00 - 0003584 _____ () C:\Users\Gene\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-01-12 15:20 - 2016-01-12 15:20 - 0015698 _____ () C:\Users\Gene\AppData\Local\recently-used.xbel
2016-01-02 16:52 - 2016-01-02 16:52 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-01-12 11:00

==================== End of FRST.txt ============================

Attached Files



BC AdBot (Login to Remove)

 


#2 highstream

highstream
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 18 January 2016 - 10:07 PM

Turns out from Word Highlight extension reviews in google store that I'm not alone in experiencing this problem: https://chrome.google.com/webstore/search/word%20highlight (see reviews)



#3 nasdaq

nasdaq

  • Malware Response Team
  • 40,256 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:31 PM

Posted 19 January 2016 - 02:50 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.
 
start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
Task: {9DCB6799-6DCC-40AB-93B4-4C07EED0DB65} - \blockerpro -> No File <==== ATTENTION
Task: {CFF3D559-3F2D-4602-A9D0-262538FCE4ED} - System32\Tasks\bEG => C:\ProgramData\Jason\Jason.exe [2015-10-01] (Don HO don.h@free.fr) <==== ATTENTION
Task: {F351DC7F-C31F-4600-843E-89A06E140C45} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [2016-01-15] (Tracker Software Products (Canada) Ltd.) <==== ATTENTION
Task: {FF63BC5D-0344-48A7-B849-B2540ADF5705} - System32\Tasks\WeatherApi => C:\Users\Gene\AppData\Roaming\CrashRep\GUP.exe [2015-10-01] (Don HO don.h@free.fr)
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe <==== ATTENTION
C:\ProgramData\Jason
C:\Program Files\Tracker Software
C:\Users\Gene\AppData\Roaming\CrashRep

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

After the restart of the computer if the problem persists please run this tool and post the log for my review.

Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2


If your operating system is 64 bit download this tool:
SystemLook_x64.exe
  • Double-click SystemLook.exe
  • to run it.
  • Copy and paste the content
  • of the following bold text into the main textfield:
    :reg
    HKEY_CURRENT_USER > SOFTWARE, then select Policies > Google > Chrome > ExtensionInstallForcelist /sub
  • [/b]
  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
  • Note: The log can also be found on your Desktop entitled SystemLook.txt.
===

Remove this old copy of Java. The last one you have the latest version Java 8 Update 66
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java SE Development Kit 8 Update 65 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180650}) (Version: 8.0.650.17 - Oracle Corporation)

#4 highstream

highstream
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 19 January 2016 - 04:43 PM

Fixlog.txt file attached and thanks for noticing the Java update 65 entries. That first step worked to eliminate Word Highlight extension from Slimjet. Many thanks for that. It didn't solve the Album Player decoder issue, though. Perhaps that's a program conflict somewhere.

 

Attached File  Fixlog.txt   3.69KB   2 downloads


Edited by highstream, 19 January 2016 - 05:07 PM.


#5 nasdaq

nasdaq

  • Malware Response Team
  • 40,256 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:31 PM

Posted 20 January 2016 - 08:25 AM

The registration code for Word Highlight is "ooabkmkhabkahcjbgpiajffckeibpdoa." After deleting its entries from the registry and deleting it from folders/files, restarting Slimjet reintroduces it in folders/files (Chrome-extension). Fully uninstalling Slimjet (Revo Pro), rebooting and reinstalling Slimjet reintroduces it to both the registry and files/folders. Note that after the code references were eliminated, the Word Highlight toolbar button is still there but grayed out, and the extension itself remains listed in Extensions and unable to be removed. Since no other Slimjet user has reported this problem with Slimjet, I have to assume there is something on my computer triggering it.


Would it be possible for your to upload/attach the following folder if it exists.

%LOCALAPPDATA%\Slimjet\User Data\Default\Extensions\ooabkmkhabkahcjbgpiajffckeibpdoa

Security experts would like to have a look at its contents.

The deleted folder if still in your recycle bin would be acceptable.

Thank you.

#6 highstream

highstream
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 20 January 2016 - 10:22 AM

Sorry, I had already deleted the Word Highlight chrome-extension entry from my main drive and the backup picked up that change.



#7 nasdaq

nasdaq

  • Malware Response Team
  • 40,256 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:31 PM

Posted 21 January 2016 - 08:38 AM

Thank you for the feedback.

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/
===

#8 nasdaq

nasdaq

  • Malware Response Team
  • 40,256 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:31 PM

Posted 27 January 2016 - 09:27 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users