Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Referred here from Win7 Forum - Possible infection


  • This topic is locked This topic is locked
3 replies to this topic

#1 dongsy

dongsy

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:05 PM

Posted 27 June 2016 - 06:41 PM

Original thread: http://www.bleepingcomputer.com/forums/t/618388/windows-7-indexingservices-not-working/

 

I dont know why he thought it was an illegal copy of Windows. Purchased this from Best Buy a couple years ago as a display model and I sure hope they wouldn't be selling a computer with an illegal copy of Windows.

 

I'm posting here after doing a lot of unproductive googling and getting nowhere with my issue.

 

Windows 7 64bit

 

It started about a week ago. Woke my computer from a sleep and it wouldn't recognize my USB label printer (though another on the same hub, different model works fine). Reinstalled drivers, software, etc no help.You'll see that the DYMO 4XL listed in the MiniToolBox output shows the driver is fine.

 

Then things started acting up on the computer.

 

-Lots of broken registry issues it seems (see attachment 4, 5 - when clicking these system links I get the errors shown)

-Cannot update MSE due to "connectivity error"

-Cannot stop MSE services so I can rename the db folder (see attachment 3, I am admin)

-Cannot search in start menu (ghost icons for "programs" or "control panel" appear and won't allow me to click -See attachment 1

-Cannot reset indexing

-Start menu customize doesn't work either (See attachment 2)

-System restore attempted twice, does not correct issue

-Some forums suggested removing a certain folder from the registry, mine does not have that folder (attachment 6)

-Cannot click on users to create a new profile

 

 

=================================

A couple weeks ago, after the PC crashed I lost some font files (default fonts) so i was getting symbols on web pages instead of characters and the default Word document font changed. Not sure if that's why the MiniToolBox results show Russian Characters?

===========================

 

Malwarebytes = 0 Results.

 

 

 

 

Attached Files


Edited by dongsy, 27 June 2016 - 06:44 PM.


BC AdBot (Login to Remove)

 


#2 dongsy

dongsy
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:05 PM

Posted 27 June 2016 - 06:45 PM

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 02
Ran by GreenVue (administrator) on COMPUTER (27-06-2016 19:34:57)
Running from C:\Users\GreenVue\Downloads
Loaded Profiles: GreenVue (Available Profiles: owner & Amazon & GreenVue)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Sanford, L.P.) C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Fitbit, Inc.) C:\Program Files (x86)\Fitbit Connect\FitbitConnectService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(BUFFALO INC.) C:\Program Files (x86)\BUFFALO\NASNAVI\nassvc.exe
(NETGEAR) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Intel® Corporation) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
(Red Bend Ltd.) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Flux Software LLC) C:\Users\GreenVue\AppData\Local\FluxSoftware\Flux\flux.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(DYMO) C:\Program Files (x86)\DYMO\DYMO Label Software\DYMO.DLS.Printing.Host.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
() C:\Program Files\pia_manager\pia_manager.exe
(hxxp://www.ruby-lang.org/) C:\Users\GreenVue\AppData\Local\Temp\ocr7EEF.tmp\bin\rubyw.exe
() C:\Program Files\pia_manager\pia_manager.exe
(hxxp://www.ruby-lang.org/) C:\Users\GreenVue\AppData\Local\Temp\ocr81EC.tmp\bin\rubyw.exe
() C:\Program Files\pia_manager\pia_tray\pia_tray.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\WifiManager.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\SAMSUNG\SamsungFastStart\SmartRestarter.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Runtime Software) C:\Program Files (x86)\Runtime Software\DriveImage XML\dixml.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1761120 2015-07-31] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2312896 2016-02-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DLSWebSvc] => C:\Program Files (x86)\DYMO\DYMO Label Software\DYMO.DLS.Printing.Host.exe [4869120 2015-12-21] (DYMO)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452272 2012-08-31] (CANON INC.)
Winlogon\Notify\igfxcui: C:\windows\SYSTEM32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2387057840-3057239107-685640680-1006\...\Run: [f.lux] => C:\Users\GreenVue\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-18\...\Run: [Bitdefender Wallet Agent] => "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
HKU\S-1-5-18\...\Run: [Bitdefender Wallet] => "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
HKU\S-1-5-18\...\Run: [Bitdefender Wallet Application Agent] => "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Best Buy pc app.lnk [2011-11-21]
ShortcutTarget: Best Buy pc app.lnk -> C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe (Microsoft)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Best Buy pc app.lnk [2011-11-21]
ShortcutTarget: Best Buy pc app.lnk -> C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe (Microsoft)
Startup: C:\Users\GreenVue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShipStation Connect.appref-ms [2015-12-07] ()
Startup: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Bitcoin.lnk [2016-06-27]
ShortcutTarget: Bitcoin.lnk -> C:\Program Files (x86)\Bitcoin2\bitcoin-qt.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 10 C:\windows\SysWOW64\PrxerNsp.dll [56424 2012-04-02] ()
Winsock: Catalog5-x64 10 C:\Windows\system32\PrxerNsp.dll [56936 2012-04-02] ()
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{83A19EC0-6EE1-43B5-80F9-1DDB2902C32C}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AB02002F-2C2E-440E-90E2-ED665B75BCD7}: [DhcpNameServer] 209.222.18.222 209.222.18.218

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-22] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Samsung BHO Class -> {AA609D72-8482-4076-8991-8CDAE5B93BCB} -> C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll [2010-10-25] ()
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-22] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.)
Handler-x32: g7ps - {9EACF0FB-4FC7-436E-989B-3197142AD979} - C:\Program Files (x86)\Common Files\G7PS\Shared Files\G7PSDLL\G7PS.dll [2001-11-05] (G7 Productivity Systems, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\GreenVue\AppData\Roaming\Mozilla\Firefox\Profiles\nzjhzqfn.default
FF DefaultSearchEngine.US: Google
FF Homepage: hxxp://ip-score.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-26] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-02-12] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-26] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-09-09] ()
FF Plugin-x32: @dymo.com/DymoLabelFramework -> C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll [2015-12-21] ( Sanford L.P.)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-22] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-02-12] (Adobe Systems)
FF SearchPlugin: C:\Users\GreenVue\AppData\Roaming\Mozilla\Firefox\Profiles\nzjhzqfn.default\searchplugins\amazon-search-suggestions.xml [2015-10-16]
FF Extension: NoScript - C:\Users\GreenVue\AppData\Roaming\Mozilla\Firefox\Profiles\nzjhzqfn.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-04-07]
FF Extension: BetterPrivacy - C:\Users\GreenVue\AppData\Roaming\Mozilla\Firefox\Profiles\nzjhzqfn.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2016-05-09]
FF Extension: JS Print Setup - C:\Users\GreenVue\AppData\Roaming\Mozilla\Firefox\Profiles\nzjhzqfn.default\extensions\jsprintsetup@edabg.com.xpi [2016-05-13]
FF Extension: Ghostery - C:\Users\GreenVue\AppData\Roaming\Mozilla\Firefox\Profiles\nzjhzqfn.default\Extensions\firefox@ghostery.com.xpi [2016-05-05]
FF Extension: ListLabelShip.com - C:\Users\GreenVue\AppData\Roaming\Mozilla\Firefox\Profiles\nzjhzqfn.default\Extensions\jid0-zmSc8AbqrvBrSMzznqC3zMFcE70@jetpack.xpi [2016-04-21]
FF Extension: Location Guard - C:\Users\GreenVue\AppData\Roaming\Mozilla\Firefox\Profiles\nzjhzqfn.default\Extensions\jid1-HdwPLukcGQeOSh@jetpack.xpi [2016-04-01]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-01-25] [not signed]

Chrome:
=======
CHR Profile: C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-21]
CHR Extension: (Google Docs) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-21]
CHR Extension: (Google Drive) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-05]
CHR Extension: (Google Search) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Google Sheets) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-21]
CHR Extension: (Google Docs Offline) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-03]
CHR Extension: (ScriptSafe) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf [2015-07-22]
CHR Extension: (Gmail) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-21]
CHR Profile: C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Docs) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-26]
CHR Extension: (Google Drive) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-26]
CHR Extension: (Google Search) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Google Sheets) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-26]
CHR Extension: (Google Docs Offline) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-21]
CHR Extension: (ListLabelShip) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mgoinoicgchejcfinjkkchmobfmcbimf [2016-04-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (ScriptSafe) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf [2016-06-27]
CHR Extension: (Gmail) - C:\Users\GreenVue\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-26]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [693440 2016-01-28] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2015-08-16] (Brother Industries, Ltd.) [File not signed]
R2 DMAgent; C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [498688 2011-06-13] (Red Bend Ltd.) [File not signed]
R2 DymoPnpService; C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe [33520 2015-12-21] (Sanford, L.P.)
R2 Fitbit Connect; C:\Program Files (x86)\Fitbit Connect\FitbitConnectService.exe [5738528 2014-11-07] (Fitbit, Inc.) [File not signed]
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1037824 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] ()
R2 NasPmService; C:\Program Files (x86)\BUFFALO\NASNAVI\nassvc.exe [251760 2012-03-29] (BUFFALO INC.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [225792 2014-03-23] (NETGEAR) [File not signed]
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [14848 2011-07-01] () [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [307064 2015-07-31] (Western Digital Technologies, Inc.)
R2 WiMAXAppSrv; C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [986112 2011-06-13] (Intel® Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
U4 cmdAgent; "C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [163368 2012-04-01] (Broadcom Corporation.)
S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-08-04] (Broadcom Corporation.)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-01-27] (GFI Software)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [52320 2015-02-20] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-06-27] (Malwarebytes)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation)
R2 NPF; C:\windows\system32\drivers\npf.sys [35344 2014-09-25] (CACE Technologies, Inc.)
S3 tapoas; C:\Windows\System32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project)
S3 clwvd; system32\DRIVERS\clwvd.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-27 19:34 - 2016-06-27 19:35 - 00023028 _____ C:\Users\GreenVue\Downloads\FRST.txt
2016-06-27 18:09 - 2016-06-27 19:34 - 00000000 ____D C:\FRST
2016-06-27 18:09 - 2016-06-27 18:09 - 19709440 _____ (Luis Cobian, CobianSoft) C:\Users\GreenVue\Downloads\cbSetup.exe
2016-06-27 18:06 - 2016-06-27 18:06 - 00001067 _____ C:\Users\Public\Desktop\DriveImage XML.lnk
2016-06-27 18:06 - 2016-06-27 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Runtime Software
2016-06-27 18:06 - 2016-06-27 18:06 - 00000000 ____D C:\Program Files (x86)\Runtime Software
2016-06-27 18:05 - 2016-06-27 18:05 - 02026456 _____ C:\Users\GreenVue\Downloads\dixmlsetup.exe
2016-06-27 18:04 - 2016-06-27 18:04 - 02389504 _____ (Farbar) C:\Users\GreenVue\Downloads\FRST64.exe
2016-06-27 16:20 - 2016-06-27 16:20 - 00000000 ____H C:\ProgramData\cm-lock
2016-06-27 15:10 - 2016-06-27 15:11 - 50716384 _____ (Microsoft Corporation) C:\Users\GreenVue\Downloads\Windows-KB890830-x64-V5.37.exe
2016-06-27 14:58 - 2016-06-27 14:58 - 00266367 _____ C:\Users\GreenVue\Downloads\fad0d29c5-f96c-487f-80a3-f4c7f510cd58.pdf
2016-06-27 14:52 - 2016-06-27 14:52 - 00001009 _____ C:\Users\GreenVue\Desktop\firefox - Shortcut.lnk
2016-06-27 14:38 - 2016-06-27 14:38 - 141052176 _____ (Microsoft Corporation) C:\Users\GreenVue\Downloads\msert(1).exe
2016-06-27 14:35 - 2016-06-27 14:35 - 00000000 ____D C:\windows\system32\MpEngineStore
2016-06-27 14:32 - 2016-06-27 15:26 - 00194594 _____ C:\windows\ntbtlog.txt
2016-06-27 14:28 - 2016-06-27 14:28 - 141052176 _____ (Microsoft Corporation) C:\Users\GreenVue\Downloads\msert.exe
2016-06-27 14:11 - 2016-06-27 14:11 - 05659224 _____ (Swearware) C:\Users\GreenVue\Downloads\ComboFix.exe
2016-06-27 14:07 - 2016-06-27 14:30 - 00000000 ____D C:\Users\GreenVue\Desktop\Speccy
2016-06-27 13:59 - 2016-06-27 13:59 - 00037663 _____ C:\Users\GreenVue\Downloads\MTB.txt
2016-06-27 13:58 - 2016-06-27 13:58 - 00892416 _____ (Farbar) C:\Users\GreenVue\Downloads\MiniToolBox.exe
2016-06-27 12:53 - 2016-06-27 12:53 - 00095704 _____ C:\Users\GreenVue\Downloads\Labels-1861.pdf
2016-06-27 12:53 - 2016-06-27 12:53 - 00094193 _____ C:\Users\GreenVue\Downloads\Labels-1862.pdf
2016-06-27 12:50 - 2016-06-27 12:50 - 00080053 _____ C:\Users\GreenVue\Downloads\Labels-1863.pdf
2016-06-27 12:48 - 2016-06-27 12:48 - 00074490 _____ C:\Users\GreenVue\Downloads\Labels-1859.pdf
2016-06-27 12:38 - 2016-06-27 12:38 - 00094494 _____ C:\Users\GreenVue\Downloads\Labels-1860.pdf
2016-06-27 12:32 - 2016-06-27 12:32 - 00144205 _____ C:\Users\GreenVue\Downloads\Labels-100311.pdf
2016-06-27 12:31 - 2016-06-27 12:31 - 00071965 _____ C:\Users\GreenVue\Downloads\Labels-1855.pdf
2016-06-27 12:29 - 2016-06-27 12:29 - 00073582 _____ C:\Users\GreenVue\Downloads\Labels-1854.pdf
2016-06-27 12:28 - 2016-06-27 12:28 - 00073312 _____ C:\Users\GreenVue\Downloads\Labels-1852.pdf
2016-06-27 12:26 - 2016-06-27 12:26 - 00073532 _____ C:\Users\GreenVue\Downloads\Labels-1851.pdf
2016-06-27 12:24 - 2016-06-27 12:24 - 00075354 _____ C:\Users\GreenVue\Downloads\Labels-1850.pdf
2016-06-27 12:21 - 2016-06-27 12:21 - 00072552 _____ C:\Users\GreenVue\Downloads\Labels-1849.pdf
2016-06-27 12:18 - 2016-06-27 12:18 - 00479476 _____ C:\Users\GreenVue\Desktop\cc_20160627_121825.reg
2016-06-27 12:18 - 2016-06-27 12:18 - 00078113 _____ C:\Users\GreenVue\Downloads\Labels-1848.pdf
2016-06-27 11:59 - 2014-09-11 08:57 - 00536256 _____ (Sysinternals) C:\Users\GreenVue\Desktop\Handle.exe
2016-06-27 11:32 - 2016-06-27 11:32 - 00000000 ____D C:\Users\owner\AppData\Local\DYMO
2016-06-27 11:32 - 2016-06-27 11:32 - 00000000 ____D C:\Users\owner\AppData\Local\CrashDumps
2016-06-27 10:04 - 2016-06-27 10:07 - 564744309 _____ C:\Users\GreenVue\Downloads\Windows6.1-KB947821-v34-x64.msu
2016-06-25 14:26 - 2016-06-25 14:26 - 00493073 _____ C:\Users\GreenVue\Downloads\2176363283016977.txt
2016-06-24 12:42 - 2016-06-24 12:42 - 00031794 _____ C:\Users\GreenVue\Downloads\package(23).pdf
2016-06-24 11:40 - 2016-06-24 11:40 - 00064559 _____ C:\Users\GreenVue\Downloads\Labels-1(6).pdf
2016-06-24 11:24 - 2016-06-24 11:24 - 00074753 _____ C:\Users\GreenVue\Downloads\Labels-1846.pdf
2016-06-24 11:22 - 2016-06-24 11:22 - 00096195 _____ C:\Users\GreenVue\Downloads\Labels-1845.pdf
2016-06-24 11:21 - 2016-06-24 11:21 - 00491754 _____ C:\Users\GreenVue\Downloads\2169819589016976.txt
2016-06-24 11:11 - 2016-06-24 11:11 - 00073851 _____ C:\Users\GreenVue\Downloads\Labels-1847.pdf
2016-06-23 16:54 - 2016-06-23 16:54 - 00065911 _____ C:\Users\GreenVue\Downloads\Labels-1(5).pdf
2016-06-23 14:56 - 2016-06-23 14:56 - 00031684 _____ C:\Users\GreenVue\Downloads\package(22).pdf
2016-06-23 14:14 - 2016-06-23 14:14 - 00094375 _____ C:\Users\GreenVue\Downloads\package(21).pdf
2016-06-23 11:32 - 2016-06-23 11:32 - 00073177 _____ C:\Users\GreenVue\Downloads\Labels-1832.pdf
2016-06-23 11:30 - 2016-06-23 11:30 - 00093988 _____ C:\Users\GreenVue\Downloads\Labels-1835.pdf
2016-06-23 11:25 - 2016-06-23 11:25 - 00146278 _____ C:\Users\GreenVue\Downloads\Labels-100310(1).pdf
2016-06-23 11:23 - 2016-06-23 11:23 - 00146278 _____ C:\Users\GreenVue\Downloads\Labels-100310.pdf
2016-06-23 11:20 - 2016-06-23 11:20 - 00072045 _____ C:\Users\GreenVue\Downloads\Labels-1839.pdf
2016-06-23 11:17 - 2016-06-23 11:17 - 00146485 _____ C:\Users\GreenVue\Downloads\Labels-100309.pdf
2016-06-23 11:10 - 2016-06-23 11:10 - 00073131 _____ C:\Users\GreenVue\Downloads\Labels-1836.pdf
2016-06-23 11:06 - 2016-06-23 11:06 - 00491199 _____ C:\Users\GreenVue\Downloads\2161483282016975.txt
2016-06-23 11:06 - 2016-06-23 11:06 - 00104978 _____ C:\Users\GreenVue\Downloads\Labels-1837.pdf
2016-06-23 10:52 - 2016-06-23 10:52 - 00072574 _____ C:\Users\GreenVue\Downloads\Labels-1843.pdf
2016-06-23 10:49 - 2016-06-23 10:49 - 00074376 _____ C:\Users\GreenVue\Downloads\Labels-1841.pdf
2016-06-23 10:48 - 2016-06-23 10:48 - 00077308 _____ C:\Users\GreenVue\Downloads\Labels-1842.pdf
2016-06-23 10:47 - 2016-06-23 10:47 - 00073174 _____ C:\Users\GreenVue\Downloads\Labels-1844.pdf
2016-06-23 10:45 - 2016-06-23 10:45 - 00073387 _____ C:\Users\GreenVue\Downloads\Labels-1840.pdf
2016-06-22 15:33 - 2016-06-22 15:33 - 00031540 _____ C:\Users\GreenVue\Downloads\package(20).pdf
2016-06-22 15:00 - 2016-06-22 15:00 - 00031768 _____ C:\Users\GreenVue\Downloads\package(19).pdf
2016-06-22 14:24 - 2016-06-22 14:24 - 00031832 _____ C:\Users\GreenVue\Downloads\package(18).pdf
2016-06-22 13:39 - 2016-06-22 13:39 - 00045707 _____ C:\Users\GreenVue\Downloads\createboxlabels(95).pdf
2016-06-22 12:48 - 2016-06-22 12:48 - 00045638 _____ C:\Users\GreenVue\Downloads\createboxlabels(94).pdf
2016-06-22 09:54 - 2016-06-22 09:54 - 00071963 _____ C:\Users\GreenVue\Downloads\Labels-1827.pdf
2016-06-22 09:53 - 2016-06-22 09:53 - 00074608 _____ C:\Users\GreenVue\Downloads\Labels-1826.pdf
2016-06-22 09:53 - 2016-06-22 09:53 - 00073456 _____ C:\Users\GreenVue\Downloads\Labels-1828.pdf
2016-06-22 09:51 - 2016-06-22 09:51 - 00153975 _____ C:\Users\GreenVue\Downloads\Labels-100308.pdf
2016-06-21 15:24 - 2016-06-21 15:24 - 00043957 _____ C:\Users\GreenVue\Downloads\createboxlabels(93).pdf
2016-06-21 14:44 - 2016-06-21 14:44 - 00043680 _____ C:\Users\GreenVue\Downloads\createboxlabels(92).pdf
2016-06-21 14:42 - 2016-06-21 14:42 - 00485070 _____ C:\Users\GreenVue\Downloads\2146822489016973.txt
2016-06-21 14:42 - 2016-06-21 14:42 - 00045376 _____ C:\Users\GreenVue\Downloads\createboxlabels(91).pdf
2016-06-21 14:11 - 2016-06-21 14:11 - 00044341 _____ C:\Users\GreenVue\Downloads\createboxlabels(90).pdf
2016-06-21 12:42 - 2016-06-21 12:42 - 00044560 _____ C:\Users\GreenVue\Downloads\createboxlabels(89).pdf
2016-06-21 11:48 - 2016-06-21 11:48 - 00043860 _____ C:\Users\GreenVue\Downloads\createboxlabels(88).pdf
2016-06-21 10:35 - 2016-06-21 10:35 - 00481120 _____ C:\Users\GreenVue\Downloads\2143734357016973.txt
2016-06-20 16:16 - 2016-06-20 16:16 - 00043461 _____ C:\Users\GreenVue\Downloads\createboxlabels(87).pdf
2016-06-20 15:44 - 2016-06-20 15:44 - 00043059 _____ C:\Users\GreenVue\Downloads\createboxlabels(86).pdf
2016-06-20 15:13 - 2016-06-20 15:13 - 00045559 _____ C:\Users\GreenVue\Downloads\createboxlabels(85).pdf
2016-06-20 15:13 - 2016-06-20 15:13 - 00031670 _____ C:\Users\GreenVue\Downloads\package(17).pdf
2016-06-20 14:31 - 2016-06-20 14:31 - 00045006 _____ C:\Users\GreenVue\Downloads\createboxlabels(84).pdf
2016-06-20 13:41 - 2016-06-20 13:41 - 00089696 _____ C:\Users\GreenVue\Downloads\createboxlabels(83).pdf
2016-06-20 12:33 - 2016-06-20 12:33 - 00478088 _____ C:\Users\GreenVue\Downloads\2138580007016972.txt
2016-06-18 12:07 - 2016-06-18 12:07 - 00478029 _____ C:\Users\GreenVue\Downloads\2125252476016970.txt
2016-06-18 09:42 - 2016-06-18 09:42 - 00000000 ____D C:\ProgramData\Adobe
2016-06-17 14:57 - 2016-06-17 14:57 - 00476595 _____ C:\Users\GreenVue\Downloads\2120257486016969.txt
2016-06-17 10:10 - 2016-06-17 10:10 - 00072991 _____ C:\Users\GreenVue\Downloads\Labels-1785.pdf
2016-06-17 10:09 - 2016-06-17 10:09 - 00073131 _____ C:\Users\GreenVue\Downloads\Labels-1784.pdf
2016-06-17 10:07 - 2016-06-17 10:07 - 00071397 _____ C:\Users\GreenVue\Downloads\Labels-1783.pdf
2016-06-17 10:04 - 2016-06-17 10:04 - 00090792 _____ C:\Users\GreenVue\Downloads\Labels-1787.pdf
2016-06-17 10:02 - 2016-06-17 10:02 - 00073836 _____ C:\Users\GreenVue\Downloads\Labels-1782.pdf
2016-06-17 10:02 - 2016-06-17 10:02 - 00072761 _____ C:\Users\GreenVue\Downloads\Labels-1786.pdf
2016-06-17 10:01 - 2016-06-17 10:01 - 00072420 _____ C:\Users\GreenVue\Downloads\Labels-1789.pdf
2016-06-17 09:58 - 2016-06-17 09:58 - 00074877 _____ C:\Users\GreenVue\Downloads\Labels-1788.pdf
2016-06-16 16:38 - 2016-06-16 13:31 - 35157990 ____N C:\Users\GreenVue\Downloads\VID_20160616_163013.mp4
2016-06-16 15:17 - 2016-06-16 15:17 - 00043662 _____ C:\Users\GreenVue\Downloads\createboxlabels(82).pdf
2016-06-16 14:00 - 2016-06-16 14:00 - 00475504 _____ C:\Users\GreenVue\Downloads\2108308887016968.txt
2016-06-16 14:00 - 2016-06-16 14:00 - 00088074 _____ C:\Users\GreenVue\Downloads\createboxlabels(81).pdf
2016-06-16 12:08 - 2016-06-16 12:08 - 00043218 _____ C:\Users\GreenVue\Downloads\createboxlabels(80).pdf
2016-06-16 11:07 - 2016-06-16 11:07 - 00473165 _____ C:\Users\GreenVue\Downloads\2106370863016968.txt
2016-06-16 10:20 - 2016-06-16 10:20 - 00094567 _____ C:\Users\GreenVue\Downloads\Labels-1781.pdf
2016-06-16 10:18 - 2016-06-16 10:18 - 00074083 _____ C:\Users\GreenVue\Downloads\Labels-1779.pdf
2016-06-16 10:17 - 2016-06-16 10:17 - 00074498 _____ C:\Users\GreenVue\Downloads\Labels-1780.pdf
2016-06-15 16:44 - 2016-06-15 16:44 - 00043825 _____ C:\Users\GreenVue\Downloads\createboxlabels(79).pdf
2016-06-15 16:41 - 2016-06-15 16:41 - 00043436 _____ C:\Users\GreenVue\Downloads\createboxlabels(78).pdf
2016-06-15 15:30 - 2016-06-15 15:30 - 00045452 _____ C:\Users\GreenVue\Downloads\createboxlabels(77).pdf
2016-06-15 14:49 - 2016-06-15 14:49 - 00097473 _____ C:\Users\GreenVue\Downloads\Labels-1772.pdf
2016-06-15 14:47 - 2016-06-15 14:47 - 00071314 _____ C:\Users\GreenVue\Downloads\Labels-1773.pdf
2016-06-15 14:44 - 2016-06-15 14:44 - 00074893 _____ C:\Users\GreenVue\Downloads\Labels-1777.pdf
2016-06-15 14:26 - 2016-06-15 14:26 - 01329048 _____ C:\Users\GreenVue\Downloads\2016May_MonthlySummary.pdf
2016-06-15 14:24 - 2016-06-15 14:24 - 00075328 _____ C:\Users\GreenVue\Downloads\Labels-1776.pdf
2016-06-15 14:23 - 2016-06-15 14:23 - 00071382 _____ C:\Users\GreenVue\Downloads\Labels-1775.pdf
2016-06-15 14:22 - 2016-06-15 14:22 - 00073638 _____ C:\Users\GreenVue\Downloads\Labels-1774.pdf
2016-06-15 14:22 - 2016-06-15 14:22 - 00072565 _____ C:\Users\GreenVue\Downloads\Labels-1771.pdf
2016-06-15 14:20 - 2016-06-15 14:20 - 00074690 _____ C:\Users\GreenVue\Downloads\Labels-636015864335492554.pdf
2016-06-15 14:02 - 2016-06-15 14:02 - 00074175 _____ C:\Users\GreenVue\Downloads\Labels-1778.pdf
2016-06-15 13:49 - 2016-06-15 13:49 - 01332678 _____ C:\Users\GreenVue\Downloads\PVS-14_6015_manual.pdf
2016-06-15 07:02 - 2016-05-23 19:37 - 00394960 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-06-15 07:02 - 2016-05-23 18:54 - 00346312 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2016-06-15 07:02 - 2016-05-21 12:57 - 20341248 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-06-15 07:02 - 2016-05-20 18:27 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2016-06-15 07:02 - 2016-05-20 18:27 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2016-06-15 07:02 - 2016-05-20 18:14 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2016-06-15 07:02 - 2016-05-20 18:10 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2016-06-15 07:02 - 2016-05-20 18:09 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2016-06-15 07:02 - 2016-05-20 17:59 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2016-06-15 07:02 - 2016-05-20 17:57 - 00497664 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-06-15 07:02 - 2016-05-20 17:57 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2016-06-15 07:02 - 2016-05-20 17:57 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2016-06-15 07:02 - 2016-05-20 17:55 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2016-06-15 07:02 - 2016-05-20 17:54 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2016-06-15 07:02 - 2016-05-20 17:50 - 02287104 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-06-15 07:02 - 2016-05-20 17:49 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2016-06-15 07:02 - 2016-05-20 17:48 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2016-06-15 07:02 - 2016-05-20 17:45 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2016-06-15 07:02 - 2016-05-20 17:45 - 00476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2016-06-15 07:02 - 2016-05-20 17:44 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-06-15 07:02 - 2016-05-20 17:43 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2016-06-15 07:02 - 2016-05-20 17:33 - 00416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2016-06-15 07:02 - 2016-05-20 17:33 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2016-06-15 07:02 - 2016-05-20 17:32 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2016-06-15 07:02 - 2016-05-20 17:29 - 13815808 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-06-15 07:02 - 2016-05-20 17:27 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-06-15 07:02 - 2016-05-20 17:26 - 00091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2016-06-15 07:02 - 2016-05-20 17:25 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-06-15 07:02 - 2016-05-20 17:23 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2016-06-15 07:02 - 2016-05-20 17:22 - 00152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2016-06-15 07:02 - 2016-05-20 17:21 - 00279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2016-06-15 07:02 - 2016-05-20 17:19 - 00130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2016-06-15 07:02 - 2016-05-20 17:09 - 00725504 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2016-06-15 07:02 - 2016-05-20 17:09 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-06-15 07:02 - 2016-05-20 17:08 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2016-06-15 07:02 - 2016-05-20 17:08 - 00806400 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-06-15 07:02 - 2016-05-20 17:06 - 02131968 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-06-15 07:02 - 2016-05-20 16:38 - 01310208 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-06-15 07:02 - 2016-05-20 16:38 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-06-15 07:02 - 2016-05-20 16:34 - 01544192 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-06-15 07:02 - 2016-05-20 16:23 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-06-15 07:02 - 2016-05-18 12:10 - 00312832 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2016-06-15 07:02 - 2016-05-18 12:09 - 00405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2016-06-15 07:02 - 2016-05-12 13:15 - 00105472 _____ (Microsoft Corporation) C:\windows\system32\winipsec.dll
2016-06-15 07:02 - 2016-05-12 13:15 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2016-06-15 07:02 - 2016-05-12 13:14 - 00794624 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2016-06-15 07:02 - 2016-05-12 13:14 - 00502272 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2016-06-15 07:02 - 2016-05-12 13:14 - 00373760 _____ (Microsoft Corporation) C:\windows\system32\polstore.dll
2016-06-15 07:02 - 2016-05-12 13:14 - 00096256 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2016-06-15 07:02 - 2016-05-12 13:14 - 00075776 _____ (Microsoft Corporation) C:\windows\system32\FwRemoteSvr.dll
2016-06-15 07:02 - 2016-05-12 11:18 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\polstore.dll
2016-06-15 07:02 - 2016-05-12 11:18 - 00079360 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpapi.dll
2016-06-15 07:02 - 2016-05-12 11:18 - 00070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\winipsec.dll
2016-06-15 07:02 - 2016-05-12 11:18 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\FwRemoteSvr.dll
2016-06-15 07:02 - 2016-05-12 11:18 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2016-06-15 07:02 - 2016-05-12 11:03 - 03217408 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-06-15 07:02 - 2016-05-11 13:02 - 00444928 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2016-06-15 07:02 - 2016-05-11 13:02 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2016-06-15 07:02 - 2016-05-11 13:02 - 00296448 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2016-06-15 07:02 - 2016-05-11 11:19 - 00351744 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttp.dll
2016-06-15 07:02 - 2016-05-11 11:19 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2016-06-15 07:02 - 2016-05-11 11:19 - 00206336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ws2_32.dll
2016-06-15 07:02 - 2016-05-11 11:11 - 00025088 _____ (Microsoft Corporation) C:\windows\system32\netbtugc.exe
2016-06-15 07:02 - 2016-05-11 11:01 - 00026624 _____ (Microsoft Corporation) C:\windows\SysWOW64\netbtugc.exe
2016-06-15 07:02 - 2016-05-11 10:58 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2016-06-15 07:02 - 2016-04-14 12:46 - 00114408 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2016-06-15 07:02 - 2016-04-14 12:42 - 03243520 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2016-06-15 07:02 - 2016-04-14 12:42 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-06-15 07:02 - 2016-04-14 12:42 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2016-06-15 07:02 - 2016-04-14 12:42 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2016-06-15 07:02 - 2016-04-14 12:42 - 00025088 _____ (Microsoft Corporation) C:\windows\system32\msimsg.dll
2016-06-15 07:02 - 2016-04-14 11:33 - 02365440 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2016-06-15 07:02 - 2016-04-14 11:33 - 01806848 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2016-06-15 07:02 - 2016-04-14 11:33 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2016-06-15 07:02 - 2016-04-14 11:33 - 00025088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimsg.dll
2016-06-15 07:02 - 2016-04-14 11:19 - 00128000 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe
2016-06-15 07:02 - 2016-04-14 11:11 - 00073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msiexec.exe
2016-06-15 07:02 - 2016-04-09 02:58 - 14186496 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2016-06-15 07:02 - 2016-04-09 02:57 - 01867776 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2016-06-15 07:02 - 2016-04-09 02:54 - 12881408 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2016-06-15 07:02 - 2016-04-09 02:54 - 01499648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2016-06-15 07:02 - 2016-04-09 01:53 - 03231232 _____ (Microsoft Corporation) C:\windows\explorer.exe
2016-06-15 07:02 - 2016-04-09 01:44 - 02973184 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2016-06-15 07:02 - 2016-03-09 15:00 - 00396800 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2016-06-15 07:02 - 2016-03-09 14:40 - 00316416 _____ (Microsoft Corporation) C:\windows\SysWOW64\webio.dll
2016-06-15 07:01 - 2016-05-21 13:28 - 25802752 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-06-15 07:01 - 2016-05-20 18:09 - 00572416 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-06-15 07:01 - 2016-05-20 18:09 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2016-06-15 07:01 - 2016-05-20 18:08 - 02895360 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-06-15 07:01 - 2016-05-20 18:08 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2016-06-15 07:01 - 2016-05-20 18:02 - 06051328 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-06-15 07:01 - 2016-05-20 18:00 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2016-06-15 07:01 - 2016-05-20 17:56 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2016-06-15 07:01 - 2016-05-20 17:56 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2016-06-15 07:01 - 2016-05-20 17:54 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-06-15 07:01 - 2016-05-20 17:54 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2016-06-15 07:01 - 2016-05-20 17:54 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2016-06-15 07:01 - 2016-05-20 17:44 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2016-06-15 07:01 - 2016-05-20 17:41 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2016-06-15 07:01 - 2016-05-20 17:28 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2016-06-15 07:01 - 2016-05-20 17:27 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2016-06-15 07:01 - 2016-05-20 17:23 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2016-06-15 07:01 - 2016-05-20 17:14 - 04610048 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-06-15 07:01 - 2016-05-20 17:12 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2016-06-15 07:01 - 2016-05-20 17:11 - 15420928 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-06-15 07:01 - 2016-05-20 17:11 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2016-06-15 07:01 - 2016-05-20 17:07 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2016-06-15 07:01 - 2016-05-20 17:07 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2016-06-15 07:01 - 2016-05-20 16:46 - 02597888 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-06-15 07:01 - 2016-05-20 16:42 - 02121216 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-06-15 01:45 - 2016-06-15 01:45 - 00000000 ____D C:\ProgramData\Adobe.BackupByPhotoshopPortable
2016-06-14 15:03 - 2016-06-14 15:03 - 00089283 _____ C:\Users\GreenVue\Downloads\createboxlabels(76).pdf
2016-06-14 15:00 - 2016-06-14 15:00 - 00046989 _____ C:\Users\GreenVue\Downloads\createboxlabels(75).pdf
2016-06-13 09:32 - 2016-06-13 09:32 - 00074586 _____ C:\Users\GreenVue\Downloads\Labels-1744.pdf
2016-06-13 09:32 - 2016-06-13 09:32 - 00073034 _____ C:\Users\GreenVue\Downloads\Labels-1742.pdf
2016-06-12 09:59 - 2016-06-12 09:59 - 00469568 _____ C:\Users\GreenVue\Downloads\2075843155016964.txt
2016-06-11 09:55 - 2016-06-11 09:55 - 00021828 _____ C:\Users\GreenVue\Downloads\MyScriptFont.ttf
2016-06-11 09:45 - 2016-06-11 09:45 - 00061364 _____ C:\Users\GreenVue\Downloads\ScriptTemplate.pdf
2016-06-10 17:25 - 2016-06-10 17:25 - 00044167 _____ C:\Users\GreenVue\Downloads\createboxlabels(74).pdf
2016-06-10 16:59 - 2016-06-10 16:59 - 00044263 _____ C:\Users\GreenVue\Downloads\createboxlabels(73).pdf
2016-06-10 16:19 - 2016-06-10 16:19 - 00046358 _____ C:\Users\GreenVue\Downloads\createboxlabels(72).pdf
2016-06-10 15:36 - 2016-06-10 15:36 - 00043416 _____ C:\Users\GreenVue\Downloads\createboxlabels(71).pdf
2016-06-10 14:59 - 2016-06-10 14:59 - 00089416 _____ C:\Users\GreenVue\Downloads\createboxlabels(70).pdf
2016-06-10 14:55 - 2016-06-10 14:55 - 00047544 _____ C:\Users\GreenVue\Downloads\createboxlabels(69).pdf
2016-06-10 10:36 - 2016-06-12 08:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-10 10:06 - 2016-06-10 10:06 - 00464240 _____ C:\Users\GreenVue\Downloads\2058600095016962.txt
2016-06-09 15:58 - 2016-06-09 15:58 - 00044532 _____ C:\Users\GreenVue\Downloads\createboxlabels(68).pdf
2016-06-09 14:59 - 2016-06-09 14:59 - 00044027 _____ C:\Users\GreenVue\Downloads\createboxlabels(67).pdf
2016-06-09 14:07 - 2016-06-09 14:07 - 00043403 _____ C:\Users\GreenVue\Downloads\createboxlabels(66).pdf
2016-06-09 13:33 - 2016-06-09 13:33 - 00048600 _____ C:\Users\GreenVue\Downloads\createboxlabels(65).pdf
2016-06-09 13:31 - 2016-06-09 13:31 - 00045615 _____ C:\Users\GreenVue\Downloads\createboxlabels(64).pdf
2016-06-08 18:02 - 2016-06-08 18:02 - 00031749 _____ C:\Users\GreenVue\Downloads\package(16).pdf
2016-06-08 16:18 - 2016-06-08 16:18 - 00062946 _____ C:\Users\GreenVue\Downloads\package(15).pdf
2016-06-08 16:12 - 2016-06-08 16:12 - 00031088 _____ C:\Users\GreenVue\Downloads\package(14).pdf
2016-06-08 15:14 - 2016-06-08 15:14 - 00031624 _____ C:\Users\GreenVue\Downloads\package(13).pdf
2016-06-08 15:10 - 2016-06-08 15:10 - 00031046 _____ C:\Users\GreenVue\Downloads\package(12).pdf
2016-06-08 14:35 - 2016-06-08 14:35 - 00063044 _____ C:\Users\GreenVue\Downloads\package(11).pdf
2016-06-08 11:53 - 2016-06-08 11:53 - 00045538 _____ C:\Users\GreenVue\Downloads\createboxlabels(63).pdf
2016-06-08 11:52 - 2016-06-08 11:52 - 00045675 _____ C:\Users\GreenVue\Downloads\createboxlabels(62).pdf
2016-06-08 10:27 - 2016-06-08 10:27 - 00074305 _____ C:\Users\GreenVue\Downloads\Labels-1701.pdf
2016-06-08 10:26 - 2016-06-08 10:26 - 00074290 _____ C:\Users\GreenVue\Downloads\Labels-1700.pdf
2016-06-08 10:25 - 2016-06-08 10:25 - 00095274 _____ C:\Users\GreenVue\Downloads\Labels-1699.pdf
2016-06-08 10:22 - 2016-06-08 10:22 - 00072052 _____ C:\Users\GreenVue\Downloads\Labels-1697.pdf
2016-06-08 10:16 - 2016-06-08 10:16 - 00071661 _____ C:\Users\GreenVue\Downloads\Labels-1696.pdf
2016-06-08 10:13 - 2016-06-08 10:13 - 00074919 _____ C:\Users\GreenVue\Downloads\Labels-1694.pdf
2016-06-08 10:13 - 2016-06-08 10:13 - 00073425 _____ C:\Users\GreenVue\Downloads\Labels-1695.pdf
2016-06-08 10:12 - 2016-06-08 10:12 - 00073289 _____ C:\Users\GreenVue\Downloads\Labels-1693.pdf
2016-06-08 09:02 - 2016-06-08 09:02 - 00455889 _____ C:\Users\GreenVue\Downloads\2049670969016960.txt
2016-06-07 21:02 - 2016-06-07 21:03 - 04596296 _____ (UltimateOutsider) C:\Users\GreenVue\Downloads\GWX_control_panel.exe
2016-06-07 11:39 - 2016-06-07 11:39 - 00268324 _____ C:\Users\GreenVue\Downloads\f31ffbbc3-47b1-4905-a077-194fc3c1b65f.pdf
2016-06-07 11:39 - 2016-06-07 11:39 - 00268324 _____ C:\Users\GreenVue\Downloads\f31ffbbc3-47b1-4905-a077-194fc3c1b65f(1).pdf
2016-06-07 11:33 - 2016-06-07 11:33 - 00073802 _____ C:\Users\GreenVue\Downloads\Labels-1691.pdf
2016-06-07 11:33 - 2016-06-07 11:33 - 00073154 _____ C:\Users\GreenVue\Downloads\Labels-1689.pdf
2016-06-07 11:32 - 2016-06-07 11:32 - 00073448 _____ C:\Users\GreenVue\Downloads\Labels-1688.pdf
2016-06-07 11:31 - 2016-06-07 11:31 - 00073411 _____ C:\Users\GreenVue\Downloads\Labels-1690.pdf
2016-06-07 11:30 - 2016-06-07 11:30 - 00075327 _____ C:\Users\GreenVue\Downloads\Labels-1687.pdf
2016-06-07 11:29 - 2016-06-07 11:29 - 00073833 _____ C:\Users\GreenVue\Downloads\Labels-1685.pdf
2016-06-07 11:29 - 2016-06-07 11:29 - 00073255 _____ C:\Users\GreenVue\Downloads\Labels-1686.pdf
2016-06-07 11:22 - 2016-06-07 11:22 - 00455830 _____ C:\Users\GreenVue\Downloads\2038203393016959.txt
2016-06-06 12:36 - 2016-06-06 12:36 - 00455771 _____ C:\Users\GreenVue\Downloads\2028660104016958.txt
2016-06-02 10:03 - 2016-06-02 10:03 - 00073137 _____ C:\Users\GreenVue\Downloads\Labels-1684.pdf
2016-06-01 20:20 - 2016-06-01 20:20 - 00455356 _____ C:\Users\GreenVue\Downloads\1996753318016953.txt
2016-05-31 16:03 - 2016-05-31 16:03 - 01329053 _____ C:\Users\GreenVue\Downloads\2016Apr_MonthlySummary.pdf
2016-05-31 11:57 - 2016-05-31 11:57 - 00274786 _____ C:\Users\GreenVue\Downloads\ff765c0bb-600a-4834-903f-622cfba9713d.pdf
2016-05-31 11:05 - 2016-05-31 11:05 - 00072075 _____ C:\Users\GreenVue\Downloads\Labels-1656.pdf
2016-05-31 11:04 - 2016-05-31 11:04 - 00072896 _____ C:\Users\GreenVue\Downloads\Labels-1654.pdf
2016-05-31 11:03 - 2016-05-31 11:03 - 00072765 _____ C:\Users\GreenVue\Downloads\Labels-1658.pdf
2016-05-31 09:17 - 2016-05-31 09:17 - 00061578 _____ C:\Users\GreenVue\Downloads\Pick List-636002722481451239.pdf
2016-05-30 17:37 - 2016-05-30 17:37 - 00045817 _____ C:\Users\GreenVue\Downloads\createboxlabels(61).pdf
2016-05-30 16:46 - 2016-05-30 16:46 - 00043166 _____ C:\Users\GreenVue\Downloads\createboxlabels(60).pdf
2016-05-30 15:44 - 2016-05-30 15:44 - 00089127 _____ C:\Users\GreenVue\Downloads\createboxlabels(59).pdf
2016-05-30 14:34 - 2016-05-30 14:34 - 00043834 _____ C:\Users\GreenVue\Downloads\createboxlabels(58).pdf
2016-05-30 13:30 - 2016-05-30 13:30 - 00044586 _____ C:\Users\GreenVue\Downloads\createboxlabels(57).pdf
2016-05-30 13:23 - 2016-05-30 13:23 - 00044694 _____ C:\Users\GreenVue\Downloads\createboxlabels(56).pdf
2016-05-30 13:23 - 2016-05-30 13:23 - 00031029 _____ C:\Users\GreenVue\Downloads\package(10).pdf
2016-05-30 12:02 - 2016-05-30 12:02 - 00045136 _____ C:\Users\GreenVue\Downloads\createboxlabels(55).pdf
2016-05-29 18:01 - 2016-05-29 18:01 - 00000000 ____D C:\Users\GreenVue\Desktop\names
2016-05-29 17:06 - 2016-05-29 17:06 - 00282181 _____ C:\Users\GreenVue\Downloads\kate new escort card.pdf
2016-05-29 17:06 - 2016-05-29 17:06 - 00132899 _____ C:\Users\GreenVue\Downloads\table 10 final.pdf
2016-05-29 17:06 - 2016-05-29 17:06 - 00129451 _____ C:\Users\GreenVue\Downloads\table 3 final.pdf
2016-05-29 17:03 - 2016-05-29 17:03 - 00000000 ____D C:\Users\GreenVue\AppData\Roaming\canon
2016-05-29 17:02 - 2016-05-29 17:02 - 00000000 ___HD C:\ProgramData\CanonIJFAX
2016-05-29 17:02 - 2016-05-29 17:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2016-05-29 17:02 - 2016-05-29 17:02 - 00000000 ____D C:\ProgramData\Canon IJ Network Tool
2016-05-29 17:02 - 2012-09-21 09:33 - 00321024 _____ (CANON INC.) C:\windows\SysWOW64\CNC_BLL.dll
2016-05-29 17:02 - 2012-05-25 09:21 - 00103936 _____ (CANON INC.) C:\windows\SysWOW64\CNC_BLU.dll
2016-05-29 17:02 - 2012-05-15 15:58 - 00098048 _____ C:\windows\SysWOW64\CNC176BD.TBL
2016-05-29 17:02 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\windows\SysWOW64\CNHMCA.dll
2016-05-29 17:01 - 2016-05-29 17:01 - 00000000 ___HD C:\ProgramData\CanonBJ
2016-05-29 17:01 - 2016-05-29 17:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX920 series User Registration
2016-05-29 17:01 - 2016-05-29 17:01 - 00000000 ____D C:\ProgramData\CanonIJWSpt
2016-05-29 17:00 - 2016-05-29 17:01 - 00000000 ___HD C:\Program Files\CanonBJ
2016-05-29 17:00 - 2016-05-29 17:00 - 00000000 ____D C:\windows\system32\STRING
2016-05-29 17:00 - 2012-09-21 05:00 - 00303104 _____ (CANON INC.) C:\windows\system32\CNCALBL.DLL
2016-05-29 17:00 - 2012-09-20 05:00 - 00390656 _____ (CANON INC.) C:\windows\system32\CNMLMBL.DLL
2016-05-29 17:00 - 2012-07-31 04:48 - 00359936 _____ (CANON INC.) C:\windows\system32\CNMN6PPM.DLL
2016-05-29 17:00 - 2012-07-31 04:48 - 00039424 _____ (CANON INC.) C:\windows\system32\CNMN6UI.DLL
2016-05-29 16:56 - 2016-05-29 17:06 - 00000000 ____D C:\Program Files (x86)\Canon
2016-05-29 11:27 - 2016-05-29 11:27 - 00449105 _____ C:\Users\GreenVue\Downloads\1972489669016950.txt
2016-05-28 10:15 - 2016-05-28 10:15 - 00081484 _____ C:\Users\GreenVue\Downloads\Labels-636000165153032775.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-27 19:27 - 2013-10-05 12:20 - 00000898 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA1cec1e6cf143811.job
2016-06-27 19:25 - 2013-03-15 14:08 - 00000896 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-27 18:25 - 2013-03-15 14:08 - 00000892 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-27 17:06 - 2009-07-14 00:45 - 00028848 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-27 17:06 - 2009-07-14 00:45 - 00028848 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-27 17:01 - 2015-07-22 23:55 - 00000000 ____D C:\Users\GreenVue\AppData\Local\CrashDumps
2016-06-27 17:01 - 2014-09-21 13:36 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-06-27 17:01 - 2013-10-05 12:20 - 00000894 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore1cec1e6c03e3de4.job
2016-06-27 16:19 - 2009-07-14 01:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-06-27 15:14 - 2013-01-10 22:24 - 142482544 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-06-27 14:13 - 2015-07-21 15:49 - 00000000 ____D C:\Users\GreenVue\AppData\Local\Deployment
2016-06-27 14:13 - 2013-08-31 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-06-27 13:00 - 2015-11-21 23:21 - 00000000 ____D C:\Users\GreenVue\AppData\Local\ElevatedDiagnostics
2016-06-27 13:00 - 2009-07-13 23:20 - 00000000 ____D C:\windows\system32\NDF
2016-06-27 11:32 - 2012-12-29 12:07 - 00027944 _____ C:\Users\owner\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-27 11:22 - 2015-07-21 17:06 - 00000000 ____D C:\Users\GreenVue\Desktop\GreenVue
2016-06-27 11:18 - 2015-07-21 15:49 - 00027944 _____ C:\Users\GreenVue\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-27 11:18 - 2015-07-21 15:48 - 00000000 ____D C:\Users\GreenVue
2016-06-27 11:03 - 2015-08-27 15:41 - 00000000 ____D C:\Users\GreenVue\SEP
2016-06-27 11:03 - 2015-07-21 16:18 - 00000000 ____D C:\Users\GreenVue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Private Internet Access
2016-06-27 11:03 - 2015-06-22 12:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DYMO
2016-06-27 11:03 - 2015-04-05 03:01 - 00000000 ___SD C:\windows\system32\GWX
2016-06-27 11:03 - 2014-12-19 14:26 - 00000000 ____D C:\ProgramData\FitbitConnect
2016-06-27 11:03 - 2014-12-10 04:30 - 00000000 ____D C:\windows\system32\appraiser
2016-06-27 11:03 - 2013-09-16 18:14 - 00000000 ____D C:\Users\Amazon
2016-06-27 11:03 - 2013-07-12 12:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-06-27 11:03 - 2013-03-13 14:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-27 11:03 - 2012-12-29 09:22 - 00000000 ____D C:\Users\owner
2016-06-27 11:03 - 2009-07-13 23:20 - 00000000 ____D C:\windows\rescache
2016-06-27 11:03 - 2009-07-13 23:20 - 00000000 ____D C:\windows\inf
2016-06-27 11:02 - 2015-06-22 12:32 - 00000000 ____D C:\Program Files (x86)\DYMO
2016-06-27 11:02 - 2013-03-13 14:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-27 11:02 - 2009-07-13 23:20 - 00000000 ____D C:\windows\registration
2016-06-27 11:01 - 2016-03-07 10:47 - 00000000 ____D C:\Users\GreenVue\AppData\Roaming\Adobe
2016-06-25 23:48 - 2015-07-25 18:36 - 00000000 ____D C:\Users\GreenVue\AppData\Roaming\tixati
2016-06-23 10:45 - 2015-12-07 23:53 - 00000000 ____D C:\Users\GreenVue\AppData\Local\ShipStation Connect
2016-06-16 11:31 - 2009-07-14 00:45 - 00147304 _____ C:\windows\system32\FNTCACHE.DAT
2016-06-16 10:25 - 2013-07-21 03:00 - 00000000 ____D C:\windows\system32\MRT
2016-06-15 16:40 - 2010-11-20 23:27 - 00484008 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2016-06-14 13:02 - 2016-03-29 11:38 - 00000000 ____D C:\Users\GreenVue\Desktop\Download
2016-06-12 08:25 - 2012-12-29 21:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-07 19:07 - 2014-10-24 18:43 - 00003164 _____ C:\windows\System32\Tasks\Private Internet Access Startup
2016-06-07 19:07 - 2014-10-24 18:43 - 00000000 ____D C:\Program Files\pia_manager
2016-05-29 17:02 - 2009-07-13 23:20 - 00000000 __RSD C:\windows\Media

==================== Files in the root of some directories =======

2015-12-28 19:53 - 2016-03-29 17:21 - 0000112 _____ () C:\Users\GreenVue\AppData\Roaming\JP2K CS6 Prefs
2016-04-30 22:17 - 2016-04-30 22:17 - 0000000 ____H () C:\Users\GreenVue\AppData\Local\BIT32D7.tmp
2015-07-24 19:27 - 2015-07-24 19:27 - 0000000 _____ () C:\Users\GreenVue\AppData\Local\{2240F21E-73A6-4B1E-914B-EEDE4BD65C8A}
2015-07-24 19:27 - 2015-07-24 19:27 - 0000000 _____ () C:\Users\GreenVue\AppData\Local\{79CDC639-8B4D-4E47-83A1-6742BB9620B0}
2016-04-30 22:16 - 2016-04-30 22:16 - 0000000 _____ () C:\Users\GreenVue\AppData\Local\{D8BA9B08-CC8D-4516-A75F-2968962CCAAF}
2013-01-27 18:21 - 2013-01-27 18:21 - 0197482 _____ () C:\ProgramData\1359324964.bdinstall.bin
2013-03-12 16:02 - 2013-03-12 16:02 - 0375086 _____ () C:\ProgramData\1363115417.bdinstall.bin
2013-03-12 16:55 - 2013-03-12 16:55 - 0158909 _____ () C:\ProgramData\1363118582.bdinstall.bin
2013-03-19 00:46 - 2013-03-19 00:46 - 0022959 _____ () C:\ProgramData\1363668364.bdinstall.bin
2013-03-19 00:46 - 2013-03-19 00:48 - 0009046 _____ () C:\ProgramData\1363668367.4808.bin
2013-03-19 00:46 - 2013-03-19 00:48 - 0027494 _____ () C:\ProgramData\1363668367.6932.bin
2013-03-19 00:46 - 2013-03-19 00:48 - 0001827 _____ () C:\ProgramData\1363668367.7088.bin
2013-03-19 00:46 - 2013-03-19 00:48 - 0001804 _____ () C:\ProgramData\1363668367.7092.bin
2013-03-19 11:00 - 2013-03-19 11:00 - 0073132 _____ () C:\ProgramData\1363705238.bdinstall.bin
2013-03-19 23:08 - 2013-03-19 23:08 - 2248214 _____ () C:\ProgramData\1363748609.bdinstall.bin
2013-09-25 19:32 - 2013-09-25 19:32 - 0212303 _____ () C:\ProgramData\1380151875.bdinstall.bin
2013-10-01 13:44 - 2013-10-01 13:44 - 0169004 _____ () C:\ProgramData\1380649380.bdinstall.bin
2013-10-01 15:04 - 2013-10-01 15:04 - 0549896 _____ () C:\ProgramData\1380649774.bdinstall.bin
2014-01-07 16:50 - 2014-01-07 16:50 - 0250073 _____ () C:\ProgramData\1389126474.bdinstall.bin
2016-06-27 16:20 - 2016-06-27 16:20 - 0000000 ____H () C:\ProgramData\cm-lock
2013-01-25 16:25 - 2013-01-27 18:20 - 0003131 _____ () C:\ProgramData\hpzinstall.log
2013-05-20 14:08 - 2016-04-16 11:34 - 0000635 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2011-11-21 00:07 - 2011-11-21 00:07 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2011-11-21 00:02 - 2011-11-21 00:03 - 0000113 _____ () C:\ProgramData\{34FBC7C4-CD31-4D93-A428-0E524EAC4586}.log
2011-11-21 00:05 - 2011-11-21 00:06 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2011-11-21 00:03 - 2011-11-21 00:05 - 0000106 _____ () C:\ProgramData\{80E158EA-7181-40FE-A701-301CE6BE64AB}.log
2011-11-21 00:06 - 2011-11-21 00:07 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log

Some files in TEMP:
====================
C:\Users\Amazon\AppData\Local\Temp\cct.dll
C:\Users\Amazon\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbe9yry.dll
C:\Users\Amazon\AppData\Local\Temp\JavaIC.dll
C:\Users\Amazon\AppData\Local\Temp\jre-8u51-windows-au.exe
C:\Users\Amazon\AppData\Local\Temp\msscct32.dll
C:\Users\Amazon\AppData\Local\Temp\YSearchUtil.dll
C:\Users\GreenVue\AppData\Local\Temp\0vqizye-.dll
C:\Users\GreenVue\AppData\Local\Temp\MSETUP4.EXE


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-06-17 09:18

==================== End of FRST.txt ============================



#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,703 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:05 PM

Posted 02 July 2016 - 06:45 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/618414 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,703 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:05 PM

Posted 07 July 2016 - 06:50 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users