Tweet
Can yens scan my PC to see if I’m infected or not please?
-
-
Please download the FRST 32 bit or FRST 64bit version to suit your operating system. It is important FRST is downloaded to your desktop.
If you are unsure if your operating system is 32 or 64 Bit please go HERE.
Once downloaded right click the FRST desktop icon and select “Run as administrator” from the menu.
If you receive any security warnings, or the User Account Control warning opens at any time whilst using FRST you can safely allow FRST to proceed.
Frst will open with two dialogue boxes, accept the disclaimer.
Accept the default whitelist options,
If the additions.txt options box is not checked please select it.
Then select “Scan”
Frst will take a few minutes to scan your computer, and when finished will produce two log files on your desktop, FRST.txt, and Addition.txt. They will display immediately on the desktop, but can be reopened later as a notepad file.
Please Copy and Paste the contents of these logs in your next post for review by our Security Team -
Here are the results.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-08-2017
Ran by eddie (administrator) on WIN10XP-1703PRO (16-08-2017 15:21:37)
Running from C:\Users\eddie\Desktop
Loaded Profiles: eddie (Available Profiles: eddie)
Platform: Windows 10 Pro Version 1703 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(SlimWare Utilities Holdings, Inc.) C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(COMODO) C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe
(The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Comodo) C:\Program Files (x86)\COMODO\Dragon\dragon_updater.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\Pres entationFontCache.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(Auslogics) C:\Program Files (x86)\Auslogics\Disk Defrag\DiskDefrag.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\RealTimeProtector.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw 5n1h2txyewy\RemindersServer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(pCloud AG) C:\Program Files (x86)\pCloud Drive\pCloud.exe
() C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.ex e
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(SlimWare Utilities, Inc.) C:\Program Files\DriverUpdate\DriverUpdate.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64. exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Suo10_SmartRAM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(SlimWare Utilities Holdings, Inc.) C:\Program Files\SlimWare Utilities\Services\SlimWare.Session.exe
(Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9231328 2017-08-02] (Realtek Semiconductor)
HKLM...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (IvoSoft)
HKLM...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1489088 2017-07-11] (COMODO)
HKLM...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM-x32...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [3632848 2017-07-05] (COMODO)
HKLM-x32...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [7690936 2017-06-30] (COMODO)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [pCloud] => C:\Program Files (x86)\pCloud Drive\pCloud.exe [3885832 2017-06-16] (pCloud AG)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [OpenVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [638592 2017-07-14] ()
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCEnhancer] => E:\CCEnhancer\CCEnhancer-4.4.1.exe [282112 2017-03-06] (SingularLabs)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [GoogleChromeAutoLaunch_E3F5740D1C7070D0CABB3741A4F 94C0C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1301848 2017-08-11] (Google Inc.)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [DriverUpdate] => C:\Program Files\DriverUpdate\DriverUpdate.exe [40742232 2017-07-31] (SlimWare Utilities, Inc.)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [Advanced SystemCare 10] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3924256 2017-05-17] (IObit)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [SmartRAM] => C:\Program Files (x86)\IObit\Advanced SystemCare\Suo10_SmartRAM.exe [560416 2017-07-26] (IObit)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Policies\Explorer: [NolowDiskSpaceChecks] 1
SSODL: EldosMountNotificator-cbfs6 - {401B8063-779B-4532-BEF0-41FCEE79B79C} - C:\WINDOWS\system32\cbfsMntNtf6.dll (/n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {401B8063-779B-4532-BEF0-41FCEE79B79C} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll (/n software, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
Tcpip..\Interfaces{27427e43-89c9-4d14-b85e-f8cbc9b59dfe}: [DhcpNameServer] 192.168.254.254
[HEADING=1]Internet Explorer:[/HEADING]
SearchScopes: HKU\S-1-5-21-2896426177-3843145535-1853849027-1001 → DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IeUrlFilter Class → {2DD257A3-5028-41AE-A1E7-A12F76A08893} → C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll [2017-06-30] (COMODO)
BHO: ExplorerBHO Class → {449D0D6E-2412-4E61-B68F-1CB625CD9E52} → C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
BHO: Java™ Plug-In SSV Helper → {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} → C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-14] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper → {DBC80044-A445-435b-BC74-9C25C1C588A9} → C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-14] (Oracle Corporation)
BHO: ClassicIEBHO Class → {EA801577-E6AD-4BD5-8F71-4BE0154331A4} → C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (IvoSoft)
BHO-x32: IeUrlFilter Class → {2DD257A3-5028-41AE-A1E7-A12F76A08893} → C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho32.dll [2017-06-30] (COMODO)
BHO-x32: ExplorerBHO Class → {449D0D6E-2412-4E61-B68F-1CB625CD9E52} → C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (IvoSoft)
BHO-x32: IObit Surfing Protection → {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} → C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2016-08-03] (IObit)
BHO-x32: ClassicIEBHO Class → {EA801577-E6AD-4BD5-8F71-4BE0154331A4} → C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (IvoSoft)
BHO-x32: IObit Ads Removal → {FFCB3198-32F3-4E8B-9539-4324694ED664} → C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\Adblock\Adblock.dll [2016-06-23] (IObit)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (IvoSoft)
[HEADING=1]FireFox:[/HEADING]
FF DefaultProfile: oomuvn3h.default
FF ProfilePath: C:\Users\eddie\AppData\Roaming\Mozilla\Firefox\Pro files\oomuvn3h.default [2017-08-16]
FF user.js: detected! => C:\Users\eddie\AppData\Roaming\Mozilla\Firefox\Pro files\oomuvn3h.default\user.js [2017-08-15]
FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\eddie\AppData\Roaming\Mozilla\Firefox\Pro files\oomuvn3h.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2017-07-03]
FF Extension: (Activity Stream) - C:\Program Files\Mozilla Firefox\browser\features\activity-stream@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Click-to-Play staged rollout) - C:\Program Files\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Follow-on Search Telemetry) - C:\Program Files\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2017-08-10] [not signed]
FF Extension: (Photon onboarding) - C:\Program Files\Mozilla Firefox\browser\features\onboarding@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Shield Recipe Client) - C:\Program Files\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi [2017-08-10] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.144.2 → C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1 .dll [2017-08-14] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 → C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-14] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 → C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 → C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-14] (Google Inc.)
[HEADING=1]Chrome:[/HEADING]
CHR HomePage: Default → hxxp://getchrome.eu/home/
CHR StartupUrls: Default → “hxxp://getchrome.eu/home”
CHR DefaultSearchKeyword: Default → wiki
CHR Profile: C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default [2017-08-16]
CHR Extension: (ProxFlow) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobj ifikek [2017-08-14]
CHR Extension: (Google Slides) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhon fmgoek [2017-08-14]
CHR Extension: (Security Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\abbpkdnljicgejmkndbncgpeam lcjhom [2017-08-14]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllm pfceif [2017-08-16]
CHR Extension: (GameShark) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\acmchkofncmmkabbadlofeffhc hdmkop [2017-08-14]
CHR Extension: (Movie4K) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\adkbpinkibeobfkgfoolfpnldi fjdedp [2017-08-14]
CHR Extension: (CB Channels) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afdeaaklpenijgadfgaljjnknl baphae [2017-08-14]
CHR Extension: (Microsoft Support) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afiaggegejgnhhkfjpbbplaiga eijppc [2017-08-14]
CHR Extension: (Microsoft Virtual Agent) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahhncecjhnalimedngnkpfacim kmlafh [2017-08-14]
CHR Extension: (My Win10 PC) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhdcannjobjjbbfabajjchlea ccalng [2017-08-14]
CHR Extension: (HD for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgih agponf [2017-08-14]
CHR Extension: (LR EShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akkmbnlaijgepeeldfglekgfaj oiklph [2017-08-14]
CHR Extension: (ToonGet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\almbnkdlegibjhcgfbflpemghh dmalmf [2017-08-14]
CHR Extension: (Google Docs) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfi lokake [2017-08-14]
CHR Extension: (Google Drive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigk jlhalf [2017-08-14]
CHR Extension: (ARChon4Chrome) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbooacojifhcpicigmefgdhaii hjhnmd [2017-08-14]
CHR Extension: (Open with Google Drive™ Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdkpinfdldjdngmgfbifbdbgao ampkan [2017-08-14]
CHR Extension: (Super Nintendo Emulator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\beogeghicacplhninfdmhiianh jimccp [2017-08-14]
CHR Extension: (Bitmoji) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfgdeiadkckfbkeigkoncpdiei iefpig [2017-08-14]
CHR Extension: (Google Groups) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfmbadcfdhiklafcdohpfphhha kmiakk [2017-08-14]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpb ikblnp [2017-08-14]
CHR Extension: (Mingle 2) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjeepgflngbnlkmfikinngokbc ijkean [2017-08-14]
CHR Extension: (Amazon Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjjmjgafamolafiboomfleccci peddim [2017-08-14]
CHR Extension: (Win10 ISO) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjlhajlpdpmfebiokogbjhdgmk ehgcbe [2017-08-14]
CHR Extension: (OpenDNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmeclafhfpefpfndaigmiojll fgmbcm [2017-08-14]
CHR Extension: (YouTube) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldk acnbeo [2017-08-14]
CHR Extension: (1M AppStore) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bminhbeeccgdnghnabbhiafpnd lbkedn [2017-08-14]
CHR Extension: (Facebook) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgd acljfm [2017-08-14]
CHR Extension: (MSN) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cagpfhohgbclhfgfggnbgfhnje hoknpk [2017-08-14]
CHR Extension: (History 2) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahejgbbfgmlmjgdjlibphdjel dhagkp [2017-08-14]
CHR Extension: (Amazon) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\camkdhjofheljkflfmfgbnajgj nhlopf [2017-08-14]
CHR Extension: (Update) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbkkihljhphdkjhiabaomgfnin kfihhe [2017-08-14]
CHR Extension: (Toons Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdibbihehmddkghfgiblbflocp hmmooc [2017-08-14]
CHR Extension: (Snoopy vs. The Red Baron) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfalonhgbljhcmcajnbdebedcj doblnl [2017-08-14]
CHR Extension: (Adblock Plus) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddi lifddb [2017-08-14]
CHR Extension: (Pushbullet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjl cfhogd [2017-08-14]
CHR Extension: (OneNote Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhf llbkmo [2017-08-14]
CHR Extension: (Monopoly Empire game | Play Kids Games Online | Hasbro) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjdhdhilfeoikokoiakkgnckkn aekled [2017-08-14]
CHR Extension: (YT2MP3) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjhmdjffbkdmddmdmmbabiaclo jaomeg [2017-08-14]
CHR Extension: (TechSupportGuy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckffimcpiheacclckfmmdcbhbm fmfikd [2017-08-14]
CHR Extension: (TWC Internet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckifgoknanfhclklbfjlpblncj pdfmfj [2017-08-14]
CHR Extension: (Microsoft Flow) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clldiedkmkolghagmnpmnoljbh ijiboi [2017-08-14]
CHR Extension: (HP ENVY) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clpdjjcfniihldhfchnjbilada pnbahi [2017-08-14]
CHR Extension: (MAFYT Settings) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmelobemnghobnlpdfmmbejdoa leajcf [2017-08-14]
CHR Extension: (SSF2 Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnlencpcagccinnhoijdgmobkm fhalcc [2017-08-14]
CHR Extension: (Harakirimail extension) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coaagmonnnldglbilekplfnphp dencce [2017-08-14]
CHR Extension: (ComputerHelpForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhjgghkoimcbpnbgjikmpgff kgajfk [2017-08-14]
CHR Extension: (Holy Bible) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\damfhmjfmeiigloagjpelmocjo eobdno [2017-08-14]
CHR Extension: (MSN) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dccnabnbnagheglhfmgdcjlcjb eibaje [2017-08-14]
CHR Extension: (Chase Online ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcofdmelmmjneoonenbhpagpbp iojkhf [2017-08-14]
CHR Extension: (Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeoh mmeldh [2017-08-14]
CHR Extension: (3DS Pedia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfkhponeglmiiobiihilahinlc kifjjh [2017-08-14]
CHR Extension: (Fus.Fall Legacy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmdnngojpofdigdidplfaebnj ohmfng [2017-08-14]
CHR Extension: (Tampermonkey) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmp obfkfo [2017-08-14]
CHR Extension: (Janifer Boston) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhpkkleekhaceehoigfcnaaidj oleflh [2017-08-14]
CHR Extension: (Glitch Game) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djahbfbhacphllgemcekmdnlil ahhmge [2017-08-14]
CHR Extension: (Nintendo Chat) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djeppnpeahmgfaohhidhjpipjk ahimfe [2017-08-14]
CHR Extension: (Google+) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdi dnckmm [2017-08-14]
CHR Extension: (NORAD Tracks Santa) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmkoneajelflpbfjpchjaiglip efmnki [2017-08-14]
CHR Extension: (Frontier DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnabfpdnbkmdmcoillihefhnjj knnona [2017-08-14]
CHR Extension: (Skype) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dolkddbfbhledadcdepacaljbg lglcoe [2017-08-14]
CHR Extension: (Sumo Paint) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpgjihldbpodlmnjolekemlfbc ajnmod [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebgecmolaheocnobalndebpehp imdghi [2017-08-14]
CHR Extension: (Inbox) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\edmijkelpnflahpdblkkobimcp lcgmgj [2017-08-14]
CHR Extension: (Amazon Shop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eecahhmlcjafclfkjodjjgllpm cmkgko [2017-08-14]
CHR Extension: (Novelty, OH Weather Forecast and Cond…) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eenemnbihadgbcjemdnobckofm iihfnk [2017-08-14]
CHR Extension: (Shortcut to Twitter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\efcdnfkhiiafogbhcainplbbge mgaaen [2017-08-14]
CHR Extension: (YouTubeDownloader) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eieafdgibiahkjdgdccmldmjid glnbjj [2017-08-14]
CHR Extension: (Google Fourms) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejiggjokppepehmfdngjefbhje heknmp [2017-08-14]
CHR Extension: (Cast Setup) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejliejcnhkkaaipdgkeiihbefh jeoemp [2017-08-14]
CHR Extension: (Outlook Calendar) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejppoecfdibjchmpdcphbanegd jebcgo [2017-08-14]
CHR Extension: (HelpSupport Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekimmgolelbekdhafemjekjhke mpbkfd [2017-08-14]
CHR Extension: (Comodo AdBlocker) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhcnbjoomhmifmfeggoalmplb lcmcin [2017-08-14]
CHR Extension: (Chrome Goodies) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\emmdmeocdlghmhbfjaldhjahnf bkbpck [2017-08-14]
CHR Extension: (Google Play) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\enffghkdjcgkndjodbaelocgmc bmbhpp [2017-08-14]
CHR Extension: (Filter by WOT) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eomhfalemadkajmgmppkoenihl ljdjoj [2017-08-14]
CHR Extension: (Update Windows 10) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\epejeipipakmkmdfnkpghcjfme igpggo [2017-08-14]
CHR Extension: (G SSH2 SWF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabhojopefodnkcighibfcnamg mplloh [2017-08-14]
CHR Extension: (Skype) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fajdleioencnfbnmiienoibkoi mkooli [2017-08-14]
CHR Extension: (Old EShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fanigphfdfepmnelohpfhcpeco ekibml [2017-08-14]
CHR Extension: (DiskImager) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdfeicageglnlelmohmkojdjcc gkdmcb [2017-08-14]
CHR Extension: (FREE App Creator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdhglomjccccgggpeabmiadbpm ofeedc [2017-08-14]
CHR Extension: (Motorola) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fekllafapcbanabhhooobibaan mndalm [2017-08-14]
CHR Extension: (Google Sheets) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpeb giejap [2017-08-14]
CHR Extension: (Assistance) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdhgdfhcclnmednjibbajgcpc pppknl [2017-08-14]
CHR Extension: (FB Game Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijlioglnahpdajepoinkodleg kolkam [2017-08-14]
CHR Extension: (Villionaire) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fimebapbdliodpciaalpoijonh dfhhkd [2017-08-14]
CHR Extension: (Word Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinb ehmajg [2017-08-14]
CHR Extension: (G SSH SWF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fipamjmedinmfclljanbjhhbdk finpkc [2017-08-14]
CHR Extension: (Nintendo ThemeShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkhaiaahhhomnfnnjhmnkkhloo gihnfa [2017-08-14]
CHR Extension: (EMails) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fknmbhaaehfdjpmooilcabjgoo ldjdoo [2017-08-14]
CHR Extension: (Google Voice ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fldbfpjncfkebegiobhnjanbok dlbnij [2017-08-14]
CHR Extension: (Rufus) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljfobnflghnobgffmkpjddbde hgmfol [2017-08-14]
CHR Extension: (Who’s on first?) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljmpldncihcmabdfjkgonhijj kpbgkl [2017-08-14]
CHR Extension: (Norton DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\focoenonfjfpphaadindagmhli jgklak [2017-08-14]
CHR Extension: (Nintendo CS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpdddhjdalfonhmejlkcfhjcck healoc [2017-08-14]
CHR Extension: (Chrome Remote Desktop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihen igjmpp [2017-08-14]
CHR Extension: (SPdate) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmnahlpnikhhgldfmeajheocd ileadd [2017-08-14]
CHR Extension: (Super Mario) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdljahompmnjdcmnlcfeobicdp epefbf [2017-08-14]
CHR Extension: (Outlook Calendar) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegmdadojdijhnemaeolhalohe lcagod [2017-08-14]
CHR Extension: (Network Test) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\geklcdelofkoldghehnhggalmo ahklbi [2017-08-14]
CHR Extension: (Homebrew Browser) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gffjnhndecndnepbjpmaloifck dmgcac [2017-08-14]
CHR Extension: (About GPG Services) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggaoeklfaibbbipibbalclmnll ojibkh [2017-08-14]
CHR Extension: (Google Docs Offline) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdl olhkhi [2017-08-14]
CHR Extension: (Click&Clean) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmame dcbeod [2017-08-14]
CHR Extension: (Anyfile Notepad) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghlichmdnegmcpafgmmlpkegmc ndlndi [2017-08-14]
CHR Extension: (Outlook People) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\giafdibgibbipnlecfckidkecm pkedho [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjaejhlejagppekogippmigjbk djmcdk [2017-08-14]
CHR Extension: (Open PayPal) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\glghgmejmmepalcnengjekjfmf bailbl [2017-08-14]
CHR Extension: (Google Wallet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\glhhiiglleiipdnodkaabbbbjh epnbcb [2017-08-14]
CHR Extension: (Save to Google Drive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeaba ddhgne [2017-08-14]
CHR Extension: (Bookmark Manager) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapj opfjik [2017-08-14]
CHR Extension: (UnRAR and RAR Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\goeclnlkhfoejbhdebemhjljlm cbhfkp [2017-08-14]
CHR Extension: (Drive Notepad) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgjomejfimnbmobcocilppikh ncegaj [2017-08-14]
CHR Extension: (Win10 Keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpjminmgekffdgiancflhaojkg jcdgmc [2017-08-14]
CHR Extension: (Microsoft Assistance) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplepoifohkaepkncehnpljcee ljlabi [2017-08-14]
CHR Extension: (WC Forums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbiinloenjigabpbdlogbimfgb opcfce [2017-08-14]
CHR Extension: (Bing) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfbcjnjfeolgeoddhcdjpogocm pkmncp [2017-08-14]
CHR Extension: (GSSH.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmckcabobcmbdlimkenccopfn pokmie [2017-08-14]
CHR Extension: (GV Phone) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmpoeaghekodfplkofpeabpni pphcjh [2017-08-14]
CHR Extension: (Outlook Tasks) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkaimcgnicopmhblimdmfjahhi fkfcoi [2017-08-14]
CHR Extension: (Dead Skin) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjjcekgbjlpiegjcdmmpojnda jlndok [2017-08-14]
CHR Extension: (RomsEShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hohhmomfljojjeaaehdcocalfp ejjccc [2017-08-14]
CHR Extension: (USPS Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\idammebdkcmcjhminehllfamif enkhbn [2017-08-14]
CHR Extension: (Android Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbnciaeojfhgeihkflgcgajop fjeohg [2017-08-14]
CHR Extension: (Get Human) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifcelejocgjieghblljgkemmnl ejjlep [2017-08-14]
CHR Extension: (CB Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igabecodgkgfkdhglpojbnbobb naajai [2017-08-14]
CHR Extension: (SEGA Bandonware) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igelfoafbodelegelfonpkaned mogdpm [2017-08-14]
CHR Extension: (OMG! Chrome!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igpknfbadalohcopbkaepbgblo mnbdma [2017-08-14]
CHR Extension: (Frontier Internet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihjgglhacdljfhmlinhcagchbk cgdhio [2017-08-14]
CHR Extension: (Zip, UnZip App) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiaianhgacnhnnhejddkghikgn hgpeaa [2017-08-14]
CHR Extension: (Bible Questions Answered) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiipijolbcononkgjpepkplcch majanm [2017-08-14]
CHR Extension: (Apps Launcher) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmgkhchjindcjamnckoiahage cjnkdc [2017-08-14]
CHR Extension: (Office Support) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikhblhjgapcilfennndodceemd oomngn [2017-08-14]
CHR Extension: (Excel Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijl fjfgnb [2017-08-14]
CHR Extension: (PC Help Forum) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\illdlgkhakmollnophmajedfbl hpijak [2017-08-14]
CHR Extension: (COSwallpapers) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\inpceamnbdnjkljfebkpdgfnnf ckopap [2017-08-14]
CHR Extension: (HTML5 Flash Warning Fix for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipdkokhdeppifjgcmhbfgmjmdl lfpkln [2017-08-14]
CHR Extension: (File System for OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfdfcehgafdbfpniaimfbfoma foadgo [2017-08-14]
CHR Extension: (OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbjamgmfdlbplimhkomcjjlemj addogn [2017-08-14]
CHR Extension: (PCTechForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jecdgjmkjbcagbkoifleegbplp naobfa [2017-08-14]
CHR Extension: (Microsoft Update Catalog) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgndoofkbbhhfcoldgjcakej ekefcd [2017-08-14]
CHR Extension: (SSF2 Game) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgplhfbmmkajpgnpldoaafagam bccjje [2017-08-14]
CHR Extension: (BibleGateway) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjmdfkmnphhfgilhfofaiffmhj lnopan [2017-08-14]
CHR Extension: (SM Trial Keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jljcdndcgbkbjonffogpnljgan habgmj [2017-08-14]
CHR Extension: (Save to Facebook) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhc lendgd [2017-08-14]
CHR Extension: (Holy Bible) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jomemcnjdjkjipodmcpfjhiolo ioplfh [2017-08-14]
CHR Extension: (CDFF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kahonebhcmapeomaemhjakphnp ffhhhf [2017-08-14]
CHR Extension: (My Sway) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnmjbpdljgcffbninlkelpbfm bbbohp [2017-08-14]
CHR Extension: (North Pole Radio) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdggiihhdpfglclmfghofjbiag onaplo [2017-08-14]
CHR Extension: (Chrome Web Store) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfknblmmckdmlklbncfodpomfo ejlbgm [2017-08-14]
CHR Extension: (Range Extender Setup) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgaimanaoiiecgbljbpjhkdica ogkinf [2017-08-14]
CHR Extension: (4Shared) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khdleokphdcnmagagajnchlcma cfphan [2017-08-14]
CHR Extension: (CB Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khomnbdfmhfppiemgglncdlbbn ppffdo [2017-08-14]
CHR Extension: (Pure Flix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kiiijkmmlfiofadnffcomgcmdl ppddhd [2017-08-14]
CHR Extension: (Novelty, OH Weather Conditions & Fore…) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkphahjiaiaahfhcbedhbgfpod bojbje [2017-08-14]
CHR Extension: (MyAptoideBU) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\klpdcjojlnaceggdkglndamdma onfnpi [2017-08-14]
CHR Extension: (Google Hangouts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgoln pehhpl [2017-08-14]
CHR Extension: (Google Play) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdi abikfi [2017-08-14]
CHR Extension: (GSSH2.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\laekopehhnfklajodmbbhdfhmk fbnblc [2017-08-14]
CHR Extension: (Wake Up!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbbcfplbfbmimpnlammmeaheak hcogke [2017-08-14]
CHR Extension: (AnimeDub Mobile) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbdcckpbjegpnhhdejaipegkab kofhla [2017-08-14]
CHR Extension: (Twitter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lddagfjihimnacaabfnfagjcok fmnekc [2017-08-14]
CHR Extension: (Aptoide) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhhjndfejaoaiaaokjmhoiedpp dmknki [2017-08-14]
CHR Extension: (AnimeDub) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhnnmimodonfbnmpgmcjahlbla enkgle [2017-08-14]
CHR Extension: (Files2Zip) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhoadfgjeimckjlphkdebfmhbp eniljo [2017-08-14]
CHR Extension: (USPS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\liocengmpmiiejdoebmlifecbm cpfigg [2017-08-14]
CHR Extension: (Wikipedia Search) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lipakennkogpodadpikgipnoga mhklmk [2017-08-14]
CHR Extension: (MSN Games - Free Online Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkbgddpallgbhlldcnnjomnodm ohpklf [2017-08-14]
CHR Extension: (IHeart Christmas) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndoiaoagbajoadpgmfgckfckm chepmj [2017-08-14]
CHR Extension: (Google Maps) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbea pigfbh [2017-08-14]
CHR Extension: (SSB) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lockfglcfjlaagpghflagedkkg ojipke [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\locmdgkcjcjacipaokcoochhjh pklbih [2017-08-14]
CHR Extension: (B1 File Extracter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbgobeedadfbponkgffobhpmok jmlhol [2017-08-14]
CHR Extension: (Documents Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbhgihpdipbgifogehncdehebk pehoap [2017-08-14]
CHR Extension: (GoogleDNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbogpnkehmjcidggfooapenefh ckeehd [2017-08-14]
CHR Extension: (PowerPoint Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkg cbpnhp [2017-08-14]
CHR Extension: (Messenger (Unofficial)) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngab fpibok [2017-08-14]
CHR Extension: (GoogleFuchsia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mejnaonfdocegokbjldkeafifp nfnpan [2017-08-14]
CHR Extension: (CN Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mekgfnmophledbpkmikhnfkimo ahjohn [2017-08-14]
CHR Extension: (CraigTechShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfbfebnljjciechbmlehdcmnmd hacgmi [2017-08-14]
CHR Extension: (COMODO DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfnnnpncpeeecbbdepenkkgpjo enkbbo [2017-08-14]
CHR Extension: (T-Mobile) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhpgceapcpooallmggianccbak egnhnb [2017-08-14]
CHR Extension: (V.FreeMovies) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkopchcfcbchhnbpldmdjfbdhg kcpgkn [2017-08-14]
CHR Extension: (CB Central) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlieflpkidahjkojakjlpnlnch obihbl [2017-08-14]
CHR Extension: (ZIP Extractor) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmfcakoljjhncfphlflcedhgog fhpbcd [2017-08-14]
CHR Extension: (GC Options) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmmanlicckcagdkabbemhccfpm gojncl [2017-08-14]
CHR Extension: (My Google Account) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnepgpaicadoimgdlajhkgokfe naadkh [2017-08-14]
CHR Extension: (PogoTM) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmklochmlghbgebbmkldomoih jbgfie [2017-08-14]
CHR Extension: (Nintendo Pedia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mogfngbfndeeecglaejajbioeg pimija [2017-08-14]
CHR Extension: (What’s on Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbeopbccnmkgdlbpicobflenbj ceoaka [2017-08-14]
CHR Extension: (Chrome OS Features) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbjdhanphhipjfkmicljakgnba icfojk [2017-08-14]
CHR Extension: (Ws on Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncjendjahmgpgjdeenknmdoeco fmfdod [2017-08-14]
CHR Extension: (Google Hangouts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanao iihapd [2017-08-14]
CHR Extension: (Reload It) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nconjighkgcoppohfilfinlimd fmjafg [2017-08-14]
CHR Extension: (Games4Summer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndphblldagopagiodebolhdjoh gindbm [2017-08-14]
CHR Extension: (OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoa bngedk [2017-08-14]
CHR Extension: (UNetbootin - Homepage and Downloads) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhanbcbjhjcgpccibphcicaink kinool [2017-08-14]
CHR Extension: (SupportSpace) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nigmaeimafjgjfodjfhnancnah feindg [2017-08-14]
CHR Extension: (FedEx Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikgcnimkfeopobooaahjpbdkd fhchao [2017-08-14]
CHR Extension: (SEGA Online Emulator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nilhogoffgcdfgmejcjpidfaie fpccpl [2017-08-14]
CHR Extension: (WeatherBug) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\njkkjobcechefaoknodniidfja pgfoco [2017-08-14]
CHR Extension: (Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nklbmhejmcjofglijalidajdli hahnpd [2017-08-14]
CHR Extension: (Archive Extractor) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nknadlalodfadgegkigkmbhofc mkhfnc [2017-08-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccm gmieda [2017-08-14]
CHR Extension: (Win10 Pro keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnelnnlfcdhjfbfglandknndlo nidojg [2017-08-14]
CHR Extension: (Toonova) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nobhijfkaffjbkocimaaembibg genkdc [2017-08-14]
CHR Extension: (Frontier) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nofcknkefjengmgmlnmdmgbmla khhnok [2017-08-14]
CHR Extension: (SM63.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\noijjjifnenaafboiipobhiflm iaimof [2017-08-14]
CHR Extension: (Chrome OS EOL) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\npmnpehbihaieehmoaifdkdlcg ndmpjn [2017-08-14]
CHR Extension: (System) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocjnemjmlhjkeilmaidemofakm pclcbi [2017-08-14]
CHR Extension: (COMODO GeekBuddy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oebmcdnandbcnfmpjecmmhcoog fneelj [2017-08-14]
CHR Extension: (Google Santa Tracker) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehagbcimlpafjbdijnjmabobl cfdnoh [2017-08-14]
CHR Extension: (PDF Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdf madadm [2017-08-14]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljb ihmemj [2017-08-15]
CHR Extension: (App Store) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogffnakkboiaoifjbhjbahamkd ojaemm [2017-08-14]
CHR Extension: (EPForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oimkklcnelpdlkkbjjablakand mmddio [2017-08-14]
CHR Extension: (Fullscreen Anything) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\olcfgpmjldkkjdclidhcboniei bfhhdh [2017-08-14]
CHR Extension: (SM 63) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldjcgpcnneleakkepogfghceh njcngf [2017-08-14]
CHR Extension: (YouTube™ Flash-HTML5) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\omimccinlhlkpjaeaocglgmkbe lejlhj [2017-08-14]
CHR Extension: (Christian Date) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompnolbokepechjidcgpaddaae oocajn [2017-08-14]
CHR Extension: (Consumer AV Providers) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ongfjpmgcneinonelpaljjdaig ppnneo [2017-08-14]
CHR Extension: (Putlocker ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ookjcnljofpnadeabapgadihfh ngblfe [2017-08-14]
CHR Extension: (Nintendo RomShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pahokmgpomeaakdfnahejklhci fhaige [2017-08-14]
CHR Extension: (Microsoft Office Home) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\palennhedgekbnbmokheidadmg hcncgl [2017-08-14]
CHR Extension: (I Heart Radio) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcbnpgdibikphcelmkjldlfjj epjipl [2017-08-14]
CHR Extension: (Click&Clean App) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidf mibmhp [2017-08-14]
CHR Extension: (Shortcuts for Google™ Products) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdlecffodcfabchelafoljcdph fpkpcl [2017-08-14]
CHR Extension: (Date Countdown) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfbpikfaigmikdjkghbkbapjhf oglipj [2017-08-14]
CHR Extension: (Data Saver) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmgfdlgomnbgkofeojodiodmg pgmkac [2017-08-14]
CHR Extension: (Outlook.com) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnik fnhoge [2017-08-14]
CHR Extension: (Bing) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\phfegmcgballapgnbppeeidcke jebknn [2017-08-14]
CHR Extension: (Super Smash Bros For NDS !!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pifamkpimegbfnakceigajiljj odcfla [2017-08-14]
CHR Extension: (Gmail) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoe jaedia [2017-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcj beemfm [2017-08-14]
CHR Extension: (OMG! Ubuntu!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmoodaljflkhbojjaiibgnlind bhebme [2017-08-14]
CHR Extension: (EBay) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppaellakmlibbcfkgkmbkkllnh cmghca [2017-08-14]
CHR Extension: (Google Contacts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppbiamkfhlcpgijakdgbbffikm kkofnl [2017-08-14]
CHR Extension: (Apps On Chrome) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppmdjabijijblhfhnbgcpnoamk ibcclm [2017-08-14]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [462624 2017-03-21] (IObit)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [10501104 2017-07-11] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2017-07-11] (COMODO)
R2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [3210936 2017-06-30] (COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2273432 2017-08-08] (Comodo)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [356352 2017-08-02] (Intel Corporation)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [133840 2017-07-05] (COMODO)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (The OpenVPN Project)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324576 2017-08-02] (Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-04-11] (Microsoft Corporation)
R2 SlimWareServices; C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe [79704 2017-07-31] (SlimWare Utilities Holdings, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269912 2017-01-17] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-19] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (/n software, Inc.)
R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [126056 2017-03-31] (COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [40936 2017-06-02] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [831992 2017-06-02] (COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [50776 2017-06-02] (COMODO)
S3 dot4; C:\WINDOWS\System32\drivers\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [72584 2017-01-12] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [67976 2017-01-12] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77376 2017-06-27] ()
R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd64lp.sys [7407080 2017-08-02] (Intel Corporation)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [132880 2017-06-07] (COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [62208 2017-03-29] (COMODO)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [188352 2017-08-16] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [101784 2017-08-16] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [45472 2017-08-16] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-16] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [93600 2017-08-16] (Malwarebytes)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [947712 2017-02-15] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [420832 2017-08-02] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [6804480 2017-05-03] (Realtek Semiconductor Corporation )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [60504 2017-01-17] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [64088 2017-01-17] (Synaptics Incorporated)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [146200 2015-10-15] (Intel Corporation)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (/n software, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64 .sys [30392 2017-04-25] (HP)
S3 WiseUnlock; C:\WINDOWS\WiseUnlock64.sys [33864 2017-08-15] (WiseCleaner.com)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-08-16 15:21 - 2017-08-16 15:24 - 000054927 _____ C:\Users\eddie\Desktop\FRST.txt
2017-08-16 15:21 - 2017-08-16 15:21 - 000000000 ____D C:\FRST
2017-08-16 15:18 - 2017-08-16 15:19 - 002395648 _____ (Farbar) C:\Users\eddie\Desktop\FRST64.exe
2017-08-16 12:40 - 2017-08-16 12:40 - 009791816 _____ (Piriform Ltd) C:\Users\eddie\Downloads\ccsetup533.exe
2017-08-16 01:03 - 2017-08-16 01:03 - 000000000 ___HD C:\OneDriveTemp
2017-08-16 01:01 - 2017-08-16 01:01 - 000000180 _____ C:\WINDOWS\system32{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-08-16 00:53 - 2017-08-16 00:53 - 000003656 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnele vatedTask
2017-08-16 00:37 - 2017-08-16 00:37 - 000000000 ____D C:\Users\Default\AppData\Roaming\IObit
2017-08-16 00:37 - 2017-08-16 00:37 - 000000000 ____D C:\Users\Default User\AppData\Roaming\IObit
2017-08-16 00:29 - 2017-08-16 00:29 - 000188352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-08-16 00:28 - 2017-08-16 13:45 - 000093600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-08-16 00:28 - 2017-08-16 01:01 - 000101784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-08-16 00:27 - 2017-08-16 01:01 - 000045472 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-08-16 00:27 - 2017-08-16 00:27 - 000001927 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-08-16 00:27 - 2017-08-16 00:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-08-16 00:27 - 2017-08-16 00:27 - 000000000 ____D C:\Program Files\Malwarebytes
2017-08-16 00:27 - 2017-06-27 12:06 - 000077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-08-16 00:25 - 2017-08-16 01:01 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-08-16 00:24 - 2017-08-16 00:27 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-15 23:54 - 2017-06-19 22:05 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2017-08-15 23:54 - 2017-03-18 13:58 - 000587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2017-08-15 23:54 - 2017-03-18 13:58 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxinit.dll
2017-08-15 18:07 - 2017-08-15 18:13 - 000000000 ____D C:\Users\eddie\AppData\Local\PackageStaging
2017-08-15 12:57 - 2017-08-15 12:59 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Wise Force Deleter
2017-08-15 12:57 - 2017-08-15 12:57 - 000033864 _____ (WiseCleaner.com) C:\WINDOWS\WiseUnlock64.sys
2017-08-15 12:57 - 2017-08-15 12:57 - 000001287 _____ C:\Users\Public\Desktop\Wise Force Deleter.lnk
2017-08-15 12:57 - 2017-08-15 12:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Force Deleter
2017-08-15 12:57 - 2017-08-15 12:57 - 000000000 ____D C:\Program Files (x86)\Wise
2017-08-15 03:39 - 2017-08-15 03:39 - 000000000 ____D C:\WINDOWS\System32\Tasks\Games
2017-08-15 03:29 - 2017-08-15 03:29 - 000000000 ____D C:\WINDOWS\System32\Tasks\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000001357 _____ C:\Users\eddie\Desktop\Auslogics Disk Defrag.lnk
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\ProgramData\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\Program Files (x86)\Auslogics
2017-08-15 03:21 - 2017-08-15 03:21 - 000000000 ___HD C:\VTRoot
2017-08-15 02:25 - 2017-08-15 02:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-08-15 02:25 - 2017-08-15 02:25 - 000000000 ____D C:\Program Files (x86)\Realtek
2017-08-15 02:25 - 2017-02-15 21:50 - 000947712 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2017-08-15 02:25 - 2017-02-15 21:50 - 000082536 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-08-15 02:23 - 2017-08-15 02:23 - 000000000 ____D C:\ProgramData\SlimWare Utilities Inc
2017-08-15 01:46 - 2017-08-15 01:46 - 005373952 _____ C:\WINDOWS\system32\config\DRIVERS.iobit
2017-08-15 01:17 - 2017-08-15 01:30 - 000000000 ____D C:\Users\eddie\AppData\Local\CrashDumps
2017-08-15 00:48 - 2017-08-15 00:48 - 000001796 _____ C:\Users\eddie\Desktop\Virtual Kiosk.lnk
2017-08-15 00:31 - 2017-08-15 00:31 - 000002374 _____ C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\OneDrive.lnk
2017-08-14 22:18 - 2017-08-15 01:37 - 000003474 _____ C:\WINDOWS\System32\Tasks\ASC10_AutoCare
2017-08-14 22:09 - 2017-08-14 22:09 - 000000000 ____D C:\ProgramData{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2017-08-14 22:01 - 2017-08-14 22:01 - 000002908 _____ C:\WINDOWS\System32\Tasks\ASC10_SkipUac_eddie
2017-08-14 22:01 - 2017-08-14 22:01 - 000000000 ____D C:\ProgramData{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-08-14 22:00 - 2017-08-14 22:01 - 000002249 _____ C:\Users\Public\Desktop\Advanced SystemCare 10.lnk
2017-08-14 22:00 - 2017-08-14 22:00 - 000003114 _____ C:\WINDOWS\System32\Tasks\ASC10_PerformanceMonitor
2017-08-14 22:00 - 2017-08-14 22:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2017-08-14 21:54 - 2017-08-16 15:20 - 000062144 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2017-08-14 21:40 - 2017-08-14 21:40 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2017-08-14 21:40 - 2017-08-14 21:40 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2017-08-14 21:38 - 2017-08-14 21:48 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Comodo
2017-08-14 21:27 - 2017-08-16 15:21 - 001336640 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2017-08-14 21:27 - 2017-08-14 21:27 - 000000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2017-08-14 21:27 - 2017-08-14 21:27 - 000000000 ____D C:\Program Files\COMODO
2017-08-14 21:26 - 2017-06-30 07:08 - 000332472 _____ (COMODO) C:\WINDOWS\system32\cmdkbdcss64.dll
2017-08-14 21:26 - 2017-06-30 07:08 - 000263352 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbdcss32.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000432104 _____ (COMODO) C:\WINDOWS\system32\cssguard64.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000338560 _____ (COMODO) C:\WINDOWS\SysWOW64\cssguard32.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000048728 _____ (COMODO) C:\WINDOWS\system32\csscsr64.dll
2017-08-14 21:26 - 2017-03-31 23:15 - 000126056 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdcss.sys
2017-08-14 21:25 - 2017-08-14 21:25 - 000000000 ____D C:\Users\eddie\AppData\Local\Comodo
2017-08-14 21:21 - 2017-08-14 21:35 - 000000480 _____ C:\WINDOWS\Tasks\DriverUpdate Scan.job
2017-08-14 21:21 - 2017-08-14 21:21 - 000003258 _____ C:\WINDOWS\System32\Tasks\DriverUpdate Scan
2017-08-14 21:21 - 2017-08-14 21:21 - 000000000 ____D C:\ProgramData\Shared Space
2017-08-14 21:21 - 2017-08-14 21:21 - 000000000 ____D C:\ProgramData\Comodo Downloader
2017-08-14 21:20 - 2017-08-15 16:19 - 000000000 ____D C:\Program Files\DriverUpdate
2017-08-14 21:20 - 2017-08-14 21:20 - 000000000 ____D C:\Users\eddie\AppData\Local\SlimWare Utilities Inc
2017-08-14 21:20 - 2017-08-14 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverUpdate
2017-08-14 21:20 - 2017-08-14 21:20 - 000000000 ____D C:\Program Files\SlimWare Utilities
2017-08-14 21:19 - 2017-08-15 01:44 - 000000000 ____D C:\ProgramData\COMODO
2017-08-14 21:19 - 2017-08-15 00:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2017-08-14 21:19 - 2017-08-14 21:47 - 000000000 ____D C:\Program Files (x86)\COMODO
2017-08-14 21:19 - 2017-07-05 00:30 - 000256040 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2017-08-14 21:19 - 2017-07-05 00:29 - 000205536 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2017-08-14 21:19 - 2017-03-29 14:49 - 000062208 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2017-08-14 17:10 - 2017-08-14 17:11 - 000002676 _____ C:\Users\eddie\Desktop\PC Help Forum.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000001018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000001006 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Mozilla
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Mozilla
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-14 16:12 - 2017-08-14 16:12 - 000000859 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Explorer.lnk
2017-08-14 14:46 - 2017-08-14 15:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps
2017-08-14 14:41 - 2017-08-14 14:41 - 000002357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-14 14:41 - 2017-08-14 14:41 - 000002345 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-14 14:40 - 2017-08-14 14:40 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineU A
2017-08-14 14:40 - 2017-08-14 14:40 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineC ore
2017-08-14 14:28 - 2017-08-14 14:28 - 000000000 ____D C:\WINDOWS\Panther
2017-08-14 14:15 - 2017-08-14 14:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-08-14 14:15 - 2017-08-14 14:15 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-08-14 14:15 - 2017-08-14 14:15 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Sun
2017-08-14 14:15 - 2017-08-14 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-08-14 14:15 - 2017-08-14 14:14 - 000110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-08-14 14:14 - 2017-08-14 14:14 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-08-14 14:13 - 2017-08-14 14:13 - 000000000 ____D C:\ProgramData\Oracle
2017-08-14 14:13 - 2017-08-14 14:13 - 000000000 ____D C:\Program Files\Java
2017-08-14 04:00 - 2017-08-14 04:00 - 000041800 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2017-08-14 03:49 - 2017-08-14 03:49 - 000000000 ____D C:\Users\eddie\AppData\Local\PeerDistRepub
2017-08-14 02:55 - 2017-08-14 02:55 - 069640192 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000491520 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000065536 _____ C:\WINDOWS\system32\config\SAM.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2017-08-14 02:53 - 2017-08-16 02:56 - 000000000 ____D C:\Users\eddie\AppData\Local\ClassicShell
2017-08-14 02:53 - 2017-08-16 02:33 - 000000000 ____D C:\ProgramData\ClassicShell
2017-08-14 02:53 - 2017-08-14 02:53 - 000000000 ____D C:\Users\eddie\AppData\Roaming\ClassicShell
2017-08-14 02:52 - 2017-08-14 02:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2017-08-14 02:52 - 2017-08-14 02:52 - 000000000 ____D C:\Program Files\Classic Shell
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\ProgramData\BDLogging
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\ProgramData{D76294E6-03B8-4971-AF2E-3F846161A690}
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\ProgramData{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
2017-08-14 02:26 - 2017-08-14 02:26 - 000565416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-14 02:18 - 2017-08-14 04:54 - 000002956 _____ C:\WINDOWS\System32\Tasks\CCleanerClean
2017-08-14 02:18 - 2017-08-14 04:54 - 000000258 _____ C:\WINDOWS\Tasks\CCleanerClean.job
2017-08-14 02:05 - 2017-08-16 12:42 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-14 02:05 - 2017-08-16 12:39 - 000000000 ____D C:\Program Files\CCleaner
2017-08-14 02:05 - 2017-08-14 02:05 - 000002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-08-14 02:05 - 2017-08-14 02:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-08-14 01:52 - 2017-08-14 01:52 - 000001129 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\Users\eddie\AppData\Local\VS Revo Group
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\ProgramData\VS Revo Group
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\Program Files\VS Revo Group
2017-08-14 01:52 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2017-08-14 01:46 - 2017-08-14 01:46 - 000000000 ____D C:\Users\eddie\AppData\Local\MicrosoftEdge
2017-08-14 01:45 - 2017-08-14 21:59 - 000000000 ____D C:\ProgramData\IObit
2017-08-14 01:45 - 2017-08-14 04:53 - 000000000 ____D C:\Program Files (x86)\IObit
2017-08-14 01:45 - 2017-08-14 02:45 - 000000000 ____D C:\ProgramData\ProductData
2017-08-14 01:45 - 2017-08-14 02:33 - 000000000 ____D C:\Users\eddie\AppData\Roaming\IObit
2017-08-14 01:45 - 2017-08-14 01:45 - 000000000 ____D C:\ProgramData{EAAB5A83-3809-4B0E-83A6-E4B0DBF2157E}
2017-08-14 01:37 - 2017-08-14 01:37 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\3C64355F.sys
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\Program Files\TAP-Windows
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\Program Files\OpenVPN
2017-08-14 01:29 - 2017-08-14 01:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2017-08-14 01:23 - 2017-08-14 01:23 - 000001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2017-08-14 01:23 - 2017-08-14 01:23 - 000000000 ____D C:\Users\eddie\AppData\Roaming\WinRAR
2017-08-14 01:23 - 2017-08-14 01:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-08-14 01:22 - 2017-08-14 01:23 - 000000000 ____D C:\Program Files\WinRAR
2017-08-14 01:16 - 2017-08-14 01:16 - 000000634 _____ C:\Users\eddie\OneDrive\Documents\MagicActions-Options.json
2017-08-14 01:02 - 2017-08-14 04:57 - 000000000 ____D C:\Users\eddie\AppData\Local\pCloud
2017-08-14 00:56 - 2017-08-14 14:41 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Google
2017-08-14 00:56 - 2017-08-14 00:56 - 000000000 ____D C:\WINDOWS\InfusedApps
2017-08-14 00:54 - 2017-08-14 00:54 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-08-14 00:54 - 2017-08-13 23:58 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-08-14 00:52 - 2017-08-14 00:52 - 000000000 ____D C:\Program Files\Synaptics
2017-08-14 00:51 - 2017-08-14 00:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2017-08-14 00:51 - 2017-08-14 00:51 - 000000000 ____D C:\Program Files (x86)\HP
2017-08-14 00:50 - 2017-08-14 00:50 - 000000000 ____D C:\WINDOWS\Setup
2017-08-14 00:50 - 2017-08-14 00:50 - 000000000 ____D C:\Users\eddie\AppData\Local\DBG
2017-08-14 00:49 - 2017-08-14 14:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Google
2017-08-14 00:49 - 2017-08-14 14:40 - 000000000 ____D C:\Program Files (x86)\Google
2017-08-14 00:48 - 2017-08-14 00:49 - 000000000 ____D C:\Users\eddie\AppData\Local\Deployment
2017-08-14 00:48 - 2017-08-14 00:48 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Macromedia
2017-08-14 00:48 - 2017-08-14 00:48 - 000000000 ____D C:\Users\eddie\AppData\Local\Apps\2.0
2017-08-14 00:46 - 2017-08-16 12:16 - 000004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronizatio n-{FA13B12A-B6F1-4CA4-9E37-D55E2EE30D0B}
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\WINDOWS\OCR
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files\MSBuild
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\ProgramData\Package Cache
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pCloud
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\Program Files (x86)\pCloud Drive
2017-08-14 00:43 - 2016-09-09 16:33 - 000018848 _____ (/n software, Inc.) C:\WINDOWS\system32\elevtmsg.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000235424 _____ (/n software, Inc.) C:\WINDOWS\SysWOW64\cbfsNetRdr6.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000196000 _____ (/n software, Inc.) C:\WINDOWS\system32\cbfsMntNtf6.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000134560 _____ (/n software, Inc.) C:\WINDOWS\system32\cbfsNetRdr6.dll
2017-08-14 00:43 - 2016-09-09 16:31 - 000170400 _____ (/n software, Inc.) C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll
2017-08-14 00:43 - 2016-09-09 16:23 - 000460992 _____ (/n software, Inc.) C:\WINDOWS\system32\Drivers\cbfs6.sys
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\winrm
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\WCN
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\slmgr
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\0409
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\DigitalLocker
2017-08-14 00:37 - 2017-07-31 08:15 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-08-14 00:37 - 2017-07-31 08:15 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-08-14 00:32 - 2017-08-14 00:55 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-08-14 00:32 - 2017-08-14 00:27 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-08-14 00:32 - 2017-08-14 00:27 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2017-08-14 00:32 - 2017-08-14 00:27 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2017-08-14 00:32 - 2017-08-14 00:27 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2017-08-14 00:32 - 2017-08-14 00:27 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2017-08-14 00:32 - 2017-08-14 00:27 - 000015940 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2017-08-14 00:32 - 2017-08-14 00:27 - 000004096 _____ C:\WINDOWS\system32\config\VSMIDK
2017-08-14 00:32 - 2017-08-14 00:27 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2017-08-14 00:32 - 2017-08-14 00:27 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2017-08-14 00:32 - 2017-08-14 00:27 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2017-08-14 00:32 - 2017-08-14 00:27 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2017-08-14 00:32 - 2017-08-14 00:27 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2017-08-14 00:32 - 2017-08-14 00:27 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2017-08-14 00:32 - 2017-08-02 02:14 - 000103936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2017-08-14 00:31 - 2017-08-16 12:31 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-14 00:31 - 2017-08-16 12:31 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-14 00:31 - 2017-08-16 00:55 - 000000000 ___RD C:\Program Files (x86)
2017-08-14 00:31 - 2017-08-15 01:44 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2017-08-14 00:31 - 2017-08-14 14:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-14 00:31 - 2017-08-14 03:25 - 000000000 ____D C:\WINDOWS\appcompat
2017-08-14 00:31 - 2017-08-14 03:16 - 000000000 ____D C:\Program Files\Windows Sidebar
2017-08-14 00:31 - 2017-08-14 03:16 - 000000000 ____D C:\Program Files (x86)\Windows Sidebar
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\migwiz
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\Dism
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\Provisioning
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files\Windows Defender
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-08-14 00:31 - 2017-08-14 00:44 - 000000000 ____D C:\WINDOWS\SystemApps
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\system32\dsc
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\setup
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\MUI
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\Com
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\IME
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\Help
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Common Files\System
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 __RSD C:\WINDOWS\Media
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\system32\Nui
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\system32\AppV
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\icsxml
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\ias
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\downlevel
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\DDFs
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\Registration
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\L2Schemas
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Web
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Vss
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\tracing
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\TAPI
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SystemResources
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\winevt
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\ras
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\IME
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\System
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SKB
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\security
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\schemas
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SchCache
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Resources
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\RemotePackages
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\PLA
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Performance
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\ModemLogs
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Globalization
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Cursors
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Branding
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\bcastdvr
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\addins
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Security
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Portable Devices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows NT
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Common Files\Services
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows NT
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2017-08-14 00:31 - 2017-08-14 00:27 - 000000219 _____ C:\WINDOWS\system.ini
2017-08-14 00:31 - 2017-08-14 00:27 - 000000092 _____ C:\WINDOWS\win.ini
2017-08-14 00:31 - 2017-08-14 00:20 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-08-14 00:31 - 2017-08-14 00:19 - 000000000 __RHD C:\Users\Public\Libraries
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\system32\spool
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\CSC
2017-08-14 00:31 - 2017-08-14 00:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-08-14 00:31 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\USOPrivate
2017-08-14 00:31 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\PrintDialog
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\MiracastView
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-08-14 00:31 - 2017-08-14 00:05 - 000000000 ____D C:\WINDOWS\HoloShell
2017-08-14 00:30 - 2017-08-14 00:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Skype
2017-08-14 00:28 - 2017-08-15 23:08 - 000000000 ____D C:\WINDOWS\INF
2017-08-14 00:27 - 2017-08-14 00:27 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-08-14 00:26 - 2017-08-14 00:26 - 000000000 ____D C:\Users\eddie\AppData\Local\Comms
2017-08-14 00:25 - 2017-08-14 13:58 - 000908880 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-14 00:25 - 2017-08-14 00:25 - 000000000 ____D C:\Users\eddie\AppData\Local\Publishers
2017-08-14 00:24 - 2017-08-15 18:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Packages
2017-08-14 00:24 - 2017-08-14 04:56 - 000000000 ____D C:\Users\eddie\AppData\Local\ConnectedDevicesPlatf orm
2017-08-14 00:24 - 2017-08-14 00:24 - 000000020 ___SH C:\Users\eddie\ntuser.ini
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Synaptics
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Adobe
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Local\VirtualStore
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Local\TileDataLayer
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\ProgramData\Synaptics
2017-08-14 00:23 - 2017-08-14 00:23 - 000000000 _SHDL C:\Users\Default User
2017-08-14 00:23 - 2017-08-14 00:23 - 000000000 _SHDL C:\Users\All Users
2017-08-14 00:21 - 2017-08-16 01:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-14 00:20 - 2017-08-14 00:20 - 000026274 _____ C:\Users\eddie\OneDrive\Documents\Removed Apps.html
2017-08-14 00:18 - 2017-08-14 14:14 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-14 00:15 - 2017-08-15 22:52 - 000000000 ____D C:\Users\eddie
2017-08-14 00:12 - 2017-08-16 00:58 - 082051072 _____ C:\WINDOWS\system32\config\SYSTEM
2017-08-14 00:12 - 2017-08-16 00:58 - 071827456 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-08-14 00:12 - 2017-08-16 00:58 - 009175040 _____ C:\WINDOWS\system32\config\BBI
2017-08-14 00:12 - 2017-08-16 00:58 - 001572864 _____ C:\WINDOWS\system32\config\DEFAULT
2017-08-14 00:12 - 2017-08-16 00:58 - 000057344 _____ C:\WINDOWS\system32\config\SECURITY
2017-08-14 00:12 - 2017-08-14 00:54 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2017-08-14 00:12 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\servicing
2017-08-14 00:12 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\SMI
2017-08-14 00:12 - 2017-08-14 00:23 - 000000000 ___HD C:$Windows.~BT
2017-08-14 00:12 - 2017-08-14 00:22 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-08-14 00:09 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\USOShared
2017-08-14 00:04 - 2017-08-14 00:04 - 000021910 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2017-08-14 00:04 - 2017-08-14 00:04 - 000002065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DTS Audio Control.lnk
2017-08-14 00:04 - 2017-08-14 00:04 - 000000200 _____ C:\WINDOWS\system32{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\ProgramData\SRS Labs
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\Program Files\Realtek
2017-08-14 00:04 - 2017-08-02 02:14 - 000099840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_ 00.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_0101 1.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver _Intel_01011.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____D C:\Program Files\Intel
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-08-14 00:02 - 2017-03-18 13:56 - 002233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-08-13 23:58 - 2017-08-16 15:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-13 22:50 - 2017-08-14 00:57 - 000000000 ___HD C:$SysReset
2017-08-13 08:49 - 2017-08-13 08:49 - 000291128 _____ (IvoSoft) C:\WINDOWS\system32\StartMenuHelper64.dll
2017-08-13 08:49 - 2017-08-13 08:49 - 000248120 _____ (IvoSoft) C:\WINDOWS\SysWOW64\StartMenuHelper32.dll
2017-08-13 01:40 - 2017-08-15 00:06 - 000000000 ____D C:\Users\eddie\AppData\LocalLow\Mozilla
2017-08-12 23:19 - 2017-08-15 02:24 - 000000000 ___HD C:\SWSetup
2017-08-12 22:31 - 2017-08-14 00:19 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\System Restore Explorer
2017-08-09 02:19 - 2017-08-14 01:45 - 000000000 ____D C:\Users\eddie\AppData\LocalLow\IObit
2017-08-08 22:10 - 2017-07-31 19:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-08-08 22:10 - 2017-07-31 19:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-08-08 22:10 - 2017-07-31 19:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-08-08 22:10 - 2017-07-31 19:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-08-08 22:10 - 2017-07-31 19:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-08-08 22:10 - 2017-07-31 19:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-08-08 22:10 - 2017-07-31 19:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-08-08 22:10 - 2017-07-31 19:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-08-08 22:10 - 2017-07-31 19:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-08-08 22:10 - 2017-07-31 18:30 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-08-08 22:09 - 2017-07-31 19:39 - 008319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-08 22:09 - 2017-07-31 19:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-08-08 22:09 - 2017-07-31 19:38 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-08 22:09 - 2017-07-31 19:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-08-08 22:09 - 2017-07-31 19:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-08 22:09 - 2017-07-31 19:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-08-08 22:09 - 2017-07-31 19:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-08-08 22:09 - 2017-07-31 19:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-08-08 22:09 - 2017-07-31 19:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-08-08 22:09 - 2017-07-31 19:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-08-08 22:09 - 2017-07-31 19:33 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-08 22:09 - 2017-07-31 19:32 - 002444704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-08 22:09 - 2017-07-31 19:32 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-08 22:09 - 2017-07-31 19:32 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-08 22:09 - 2017-07-31 19:31 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 002645680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000723680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000410160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000315288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-08 22:09 - 2017-07-31 19:26 - 000204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-08 22:09 - 2017-07-31 19:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-08-08 22:09 - 2017-07-31 19:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-08-08 22:09 - 2017-07-31 19:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-08-08 22:09 - 2017-07-31 19:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-08-08 22:09 - 2017-07-31 19:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-08-08 22:09 - 2017-07-31 19:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-08-08 22:09 - 2017-07-31 19:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-08-08 22:09 - 2017-07-31 19:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-08-08 22:09 - 2017-07-31 19:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-08-08 22:09 - 2017-07-31 19:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-08-08 22:09 - 2017-07-31 19:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dl l
2017-08-08 22:09 - 2017-07-31 19:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-08-08 22:09 - 2017-07-31 19:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-08-08 22:09 - 2017-07-31 19:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-08-08 22:09 - 2017-07-31 19:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-08-08 22:09 - 2017-07-31 19:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-08-08 22:09 - 2017-07-31 18:57 - 023677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-08 22:09 - 2017-07-31 18:45 - 001275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-08 22:09 - 2017-07-31 18:44 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-08 22:09 - 2017-07-31 18:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-08-08 22:09 - 2017-07-31 18:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-08 22:09 - 2017-07-31 18:42 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-08 22:09 - 2017-07-31 18:40 - 017366528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-08 22:09 - 2017-07-31 18:40 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-08 22:09 - 2017-07-31 18:39 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-08 22:09 - 2017-07-31 18:38 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-08 22:09 - 2017-07-31 18:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-08 22:09 - 2017-07-31 18:36 - 023681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-08 22:09 - 2017-07-31 18:35 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-08-08 22:09 - 2017-07-31 18:34 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-08 22:09 - 2017-07-31 18:33 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-08 22:09 - 2017-07-31 18:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-08 22:09 - 2017-07-31 18:32 - 007336960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-08 22:09 - 2017-07-31 18:32 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 012786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 001396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 008209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 002055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-08 22:09 - 2017-07-31 18:30 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-08 22:09 - 2017-07-31 18:28 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-08 22:09 - 2017-07-31 18:28 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-08-08 22:09 - 2017-07-31 18:26 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-08 22:09 - 2017-07-31 18:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-08-08 22:09 - 2017-07-31 18:25 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-08-08 22:09 - 2017-07-31 18:25 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-08-08 16:27 - 2017-08-08 16:28 - 000000000 ___HD C:\7e1b197988dcf5ad4a9391ddfe6621
2017-08-03 10:27 - 2017-07-27 22:20 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-03 10:27 - 2017-07-27 21:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-08-03 10:27 - 2017-07-27 21:26 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-03 10:27 - 2017-07-27 21:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-08-03 10:27 - 2017-07-27 21:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-08-03 10:27 - 2017-07-27 21:08 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-03 10:26 - 2017-07-27 21:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-08-03 10:26 - 2017-07-27 21:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-08-03 10:26 - 2017-07-27 21:33 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-08-03 10:26 - 2017-07-27 21:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-03 10:26 - 2017-07-27 21:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-08-03 10:26 - 2017-07-27 21:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-08-03 10:26 - 2017-07-27 21:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-08-03 10:26 - 2017-07-27 21:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-08-03 10:26 - 2017-07-27 21:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-08-03 10:26 - 2017-07-27 21:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-08-03 10:26 - 2017-07-27 21:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-08-03 10:26 - 2017-07-27 21:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-08-03 10:26 - 2017-07-27 21:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-08-03 10:26 - 2017-07-27 21:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-08-03 10:26 - 2017-07-27 21:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-08-03 10:26 - 2017-07-27 21:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-08-03 10:25 - 2017-07-27 22:23 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-03 10:25 - 2017-07-27 22:15 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-03 10:25 - 2017-07-27 22:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-08-03 10:25 - 2017-07-27 21:48 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-08-03 10:25 - 2017-07-27 21:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-08-03 10:25 - 2017-07-27 21:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-08-03 10:25 - 2017-07-27 21:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayR eady.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-08-03 10:25 - 2017-07-27 21:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-08-03 10:25 - 2017-07-27 21:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-08-03 10:25 - 2017-07-27 21:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade .dll
2017-08-03 10:25 - 2017-07-27 21:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-08-03 10:25 - 2017-07-27 21:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authenticatio n.Web.Core.dll
2017-08-03 10:25 - 2017-07-27 21:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-08-03 10:25 - 2017-07-27 21:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-08-03 10:25 - 2017-07-27 21:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-08-03 10:25 - 2017-07-27 21:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-08-03 10:25 - 2017-07-27 21:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-08-03 10:25 - 2017-07-27 21:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-08-03 10:25 - 2017-07-27 21:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-08-03 10:25 - 2017-07-27 21:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-08-03 10:25 - 2017-07-27 21:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-08-03 10:24 - 2017-07-27 21:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-08-03 10:24 - 2017-07-27 21:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-08-03 10:24 - 2017-07-27 21:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-08-03 10:24 - 2017-07-27 21:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-08-03 10:24 - 2017-07-27 21:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-08-03 10:24 - 2017-07-27 21:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-08-03 10:24 - 2017-07-27 21:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-08-03 10:24 - 2017-07-27 21:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-08-03 10:24 - 2017-07-27 21:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-08-03 10:24 - 2017-07-27 21:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-08-03 10:24 - 2017-07-27 21:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-08-03 10:24 - 2017-07-27 21:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-08-03 10:24 - 2017-07-27 21:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-08-03 10:24 - 2017-07-27 21:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-08-03 10:23 - 2017-07-27 21:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-08-03 10:22 - 2017-07-27 21:24 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-03 10:21 - 2017-07-27 21:21 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-03 10:20 - 2017-07-27 22:10 - 002679200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-03 10:20 - 2017-07-27 21:19 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-03 10:20 - 2017-07-27 21:19 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-03 10:20 - 2017-07-27 21:16 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-03 10:18 - 2017-07-27 22:09 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-03 10:17 - 2017-07-27 22:25 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-03 10:17 - 2017-07-27 21:25 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-03 10:17 - 2017-07-27 21:19 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-03 10:16 - 2017-07-27 22:13 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-03 10:16 - 2017-07-27 22:13 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-03 10:16 - 2017-07-27 22:09 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-08-03 10:16 - 2017-07-27 21:21 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-03 10:16 - 2017-07-27 21:13 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-03 10:16 - 2017-07-27 21:12 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-03 10:14 - 2017-07-27 22:24 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-03 10:14 - 2017-07-27 22:24 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-03 10:14 - 2017-07-27 22:17 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-03 10:14 - 2017-07-27 22:09 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-03 10:14 - 2017-07-27 21:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-08-03 10:14 - 2017-07-27 21:22 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-03 10:14 - 2017-07-27 21:19 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-03 10:14 - 2017-07-27 21:18 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-03 10:14 - 2017-07-27 21:07 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-03 10:13 - 2017-07-27 22:24 - 002327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-03 10:13 - 2017-07-27 22:13 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-03 10:13 - 2017-07-27 21:21 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-03 10:13 - 2017-07-27 21:19 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-03 10:13 - 2017-07-27 21:07 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-03 10:13 - 2017-07-27 21:07 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dl l
2017-08-03 10:13 - 2017-07-27 21:07 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-03 10:12 - 2017-07-27 22:23 - 002969888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-03 10:12 - 2017-07-27 22:16 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-03 10:12 - 2017-07-27 22:15 - 005302968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-03 10:12 - 2017-07-27 22:14 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-03 10:12 - 2017-07-27 22:12 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-03 10:12 - 2017-07-27 21:26 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-03 10:12 - 2017-07-27 21:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade .dll
2017-08-03 10:12 - 2017-07-27 21:14 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-03 10:12 - 2017-07-27 21:12 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-03 10:12 - 2017-07-27 21:06 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-03 10:10 - 2017-07-27 22:24 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-03 10:10 - 2017-07-27 22:22 - 000923048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-03 10:10 - 2017-07-27 22:13 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-03 10:10 - 2017-07-27 22:13 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-03 10:10 - 2017-07-27 22:12 - 021353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-03 10:10 - 2017-07-27 21:29 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-03 10:10 - 2017-07-27 21:26 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-03 10:10 - 2017-07-27 21:26 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-03 10:10 - 2017-07-27 21:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-08-03 10:10 - 2017-07-27 21:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-08-03 10:10 - 2017-07-27 21:21 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-03 10:10 - 2017-07-27 21:19 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authenticatio n.Web.Core.dll
2017-08-03 10:10 - 2017-07-27 21:15 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-03 10:10 - 2017-07-27 21:08 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-03 10:09 - 2017-07-27 22:12 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-03 10:09 - 2017-07-27 21:25 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-03 10:09 - 2017-07-27 21:24 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-03 10:09 - 2017-07-27 21:23 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-03 10:09 - 2017-07-27 21:22 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-03 10:09 - 2017-07-27 21:21 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapReque stHandler.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-03 10:09 - 2017-07-27 21:17 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-03 10:09 - 2017-07-27 21:16 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-03 10:09 - 2017-07-27 21:14 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-03 10:09 - 2017-07-27 21:13 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-03 10:09 - 2017-07-27 21:12 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-03 10:09 - 2017-07-27 21:06 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-03 10:09 - 2017-07-27 21:05 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-03 10:08 - 2017-07-27 22:30 - 001068720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-03 10:08 - 2017-07-27 22:14 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-03 10:08 - 2017-07-27 22:10 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-03 10:08 - 2017-07-27 21:31 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-03 10:08 - 2017-07-27 21:29 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-03 10:08 - 2017-07-27 21:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-08-03 10:08 - 2017-07-27 21:25 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-03 10:08 - 2017-07-27 21:23 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReducti on.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-03 10:08 - 2017-07-27 21:22 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-03 10:08 - 2017-07-27 21:21 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications .dll
2017-08-03 10:08 - 2017-07-27 21:20 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-03 10:08 - 2017-07-27 21:18 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dl l
2017-08-03 10:08 - 2017-07-27 21:17 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-03 10:08 - 2017-07-27 21:17 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-03 10:08 - 2017-07-27 21:15 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-03 10:08 - 2017-07-27 21:10 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-03 10:07 - 2017-07-27 22:16 - 000961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-03 10:07 - 2017-07-27 22:15 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-03 10:07 - 2017-07-27 22:15 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-03 10:07 - 2017-07-27 22:13 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayR eady.dll
2017-08-03 10:07 - 2017-07-27 22:13 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-03 10:07 - 2017-07-27 22:12 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-03 10:07 - 2017-07-27 21:30 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-08-03 10:07 - 2017-07-27 21:26 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-03 10:07 - 2017-07-27 21:22 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-03 10:07 - 2017-07-27 21:20 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-03 10:07 - 2017-07-27 21:19 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-03 10:07 - 2017-07-27 21:18 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.deskt op.dll
2017-08-03 10:07 - 2017-07-27 21:17 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-03 10:07 - 2017-07-27 21:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.oneco re.dll
2017-08-03 10:07 - 2017-07-27 21:15 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.G att.dll
2017-08-03 10:07 - 2017-07-27 21:13 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-03 10:07 - 2017-07-27 21:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-03 10:07 - 2017-07-27 21:12 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-03 10:07 - 2017-07-27 21:12 - 002444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-03 10:07 - 2017-07-27 21:11 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-03 10:07 - 2017-07-27 21:10 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-03 10:07 - 2017-07-27 21:09 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-03 10:07 - 2017-07-27 21:09 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-03 10:07 - 2017-07-27 21:06 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-03 10:07 - 2017-07-27 21:05 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-03 10:07 - 2017-07-27 21:05 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-03 10:07 - 2017-07-27 21:05 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-03 10:07 - 2017-07-27 21:05 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-03 10:06 - 2017-07-27 21:23 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-02 02:45 - 2012-09-25 00:52 - 003867040 _____ C:\WINDOWS\system32\PortChanger.exe
2017-08-02 02:45 - 2012-09-25 00:52 - 002398112 _____ (Hewlett Packard) C:\WINDOWS\system32\hppldcoi.dll
2017-08-02 02:45 - 2012-09-25 00:52 - 000151968 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4.sys
2017-08-02 02:45 - 2012-09-25 00:52 - 000049056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4usb.sys
2017-08-02 02:45 - 2012-09-25 00:52 - 000019872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4Scan.sys
2017-08-02 02:29 - 2017-08-02 02:29 - 009891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2017-08-02 02:29 - 2017-08-02 02:29 - 004332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2017-08-02 02:29 - 2017-08-02 02:29 - 000420832 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2017-08-02 02:29 - 2017-08-02 02:29 - 000084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2017-08-02 02:20 - 2017-08-02 02:20 - 000831685 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2017-08-02 02:16 - 2017-08-02 02:16 - 005799386 _____ C:\WINDOWS\system32\igdclbif.bin
2017-08-02 02:16 - 2017-08-02 02:16 - 000225280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2017-08-02 02:15 - 2017-08-02 02:16 - 003972096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 019861504 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 005688832 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 004368896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000388608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000318464 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000266232 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2017-08-02 02:14 - 2017-08-02 02:15 - 029101560 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 004934144 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 002393160 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 001858632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000439288 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000416256 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000103936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000099840 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-08-02 02:13 - 2017-08-02 02:14 - 015488920 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2017-08-02 02:13 - 2017-08-02 02:13 - 013483192 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2017-08-02 02:12 - 2017-08-02 02:12 - 013655032 _____ (Intel Corporation) C:\WINDOWS\system32\ig8icd64.dll
2017-08-02 02:12 - 2017-08-02 02:12 - 010329088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig8icd32.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 005262848 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 002142208 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 001009664 _____ C:\WINDOWS\system32\igfxSDK.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000950784 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000947200 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000756224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000705024 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.d ll
2017-08-02 02:11 - 2017-08-02 02:11 - 000641530 _____ C:\WINDOWS\system32\FilmModeDetection.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000449536 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000403671 _____ C:\WINDOWS\system32\ImageStabilization.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000398848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000390144 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000384512 _____ C:\WINDOWS\system32\igfxTray.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000375173 _____ C:\WINDOWS\system32\ColorImageEnhancement.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000356352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000337408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000273408 _____ C:\WINDOWS\system32\igfxCPL.cpl
2017-08-02 02:11 - 2017-08-02 02:11 - 000254976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000251392 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000219648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000215040 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000214528 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000111616 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000103416 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000100864 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000095232 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000084992 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000055240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000052736 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000029184 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000029184 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000027648 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000027648 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000022528 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000022528 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000000935 _____ C:\WINDOWS\system32\Gfxv4_0.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000935 _____ C:\WINDOWS\system32\DPTopologyApp.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000895 _____ C:\WINDOWS\system32\Gfxv2_0.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000895 _____ C:\WINDOWS\system32\DPTopologyAppv2_0.exe.config
2017-08-02 02:10 - 2017-08-02 02:11 - 000220160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4624.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 006696824 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 005137296 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 002813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2017-08-02 02:10 - 2017-08-02 02:10 - 001816712 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001814056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001590784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001178624 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000511260 _____ C:\WINDOWS\system32\cp_resources.bin
2017-08-02 02:10 - 2017-08-02 02:10 - 000431104 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000284160 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000242152 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000223240 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000205344 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000193016 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000183968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000182944 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000181832 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000173568 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000160264 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000160256 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000157696 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2017-08-02 02:09 - 2017-08-02 02:10 - 039864472 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2017-08-02 02:08 - 2017-08-02 02:09 - 038903384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2017-08-02 02:07 - 2017-08-02 02:08 - 033479864 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 004270672 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 004240208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 000312296 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2017-08-02 02:06 - 2017-08-02 02:07 - 016457272 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2017-08-02 02:05 - 2017-08-02 02:06 - 034823448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 013070648 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 000297152 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 000005412 _____ C:\WINDOWS\system32\iglhxs64lp.vp
2017-08-02 02:04 - 2017-08-02 02:05 - 007407080 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64lp.sys
2017-08-02 02:00 - 2017-08-02 02:00 - 000877424 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2017-08-02 02:00 - 2017-08-02 02:00 - 000866640 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2017-08-02 02:00 - 2017-08-02 02:00 - 000737960 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2017-08-02 01:59 - 2017-08-02 02:00 - 001016928 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 003410832 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 003122656 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 001435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000984912 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000868176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000691680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000526280 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000381408 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000258856 _____ (TODO: ) C:\WINDOWS\system32\slprp64.dll
2017-08-02 01:57 - 2017-08-02 01:59 - 072520704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-08-02 01:57 - 2017-08-02 01:57 - 012951320 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-08-02 01:56 - 2017-08-02 01:56 - 003516984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 003509200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 003205120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 002210784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 001347136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-08-02 01:55 - 2017-08-02 01:55 - 005874144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-08-02 01:55 - 2017-08-02 01:55 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-08-02 01:55 - 2017-08-02 01:55 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-07-18 16:18 - 2017-07-18 16:19 - 000000000 ____D C:\Users\eddie\OpenVPN
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-08-16 01:03 - 2017-04-11 16:55 - 000000000 ___RD C:\Users\eddie\OneDrive
2017-08-16 01:01 - 2017-04-11 20:03 - 000000000 __SHD C:\Users\eddie\IntelGraphicsProfiles
2017-08-14 02:25 - 2017-04-11 20:15 - 000000000 __RDX C:\Users\eddie\OneDrive\Documents\Extra
2017-08-14 01:23 - 2017-04-11 20:16 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\WinRAR
2017-08-14 00:25 - 2017-03-18 13:57 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2017-08-14 00:24 - 2017-04-11 16:51 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-08-14 00:24 - 2017-03-18 13:57 - 000430848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-08-14 00:20 - 2017-04-13 18:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Games
2017-08-08 23:44 - 2017-06-26 14:45 - 000000779 _____ C:\Users\eddie\Desktop\SSF2.lnk
2017-07-18 13:30 - 2017-06-26 15:39 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Facebook
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-08-13 23:57
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-08-2017
Ran by eddie (administrator) on WIN10XP-1703PRO (16-08-2017 15:21:37)
Running from C:\Users\eddie\Desktop
Loaded Profiles: eddie (Available Profiles: eddie)
Platform: Windows 10 Pro Version 1703 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(SlimWare Utilities Holdings, Inc.) C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(COMODO) C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe
(The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Comodo) C:\Program Files (x86)\COMODO\Dragon\dragon_updater.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\Pres entationFontCache.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(Auslogics) C:\Program Files (x86)\Auslogics\Disk Defrag\DiskDefrag.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\RealTimeProtector.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw 5n1h2txyewy\RemindersServer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(pCloud AG) C:\Program Files (x86)\pCloud Drive\pCloud.exe
() C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.ex e
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(SlimWare Utilities, Inc.) C:\Program Files\DriverUpdate\DriverUpdate.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64. exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Suo10_SmartRAM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(SlimWare Utilities Holdings, Inc.) C:\Program Files\SlimWare Utilities\Services\SlimWare.Session.exe
(Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9231328 2017-08-02] (Realtek Semiconductor)
HKLM...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (IvoSoft)
HKLM...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1489088 2017-07-11] (COMODO)
HKLM...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM-x32...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [3632848 2017-07-05] (COMODO)
HKLM-x32...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [7690936 2017-06-30] (COMODO)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [pCloud] => C:\Program Files (x86)\pCloud Drive\pCloud.exe [3885832 2017-06-16] (pCloud AG)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [OpenVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [638592 2017-07-14] ()
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCEnhancer] => E:\CCEnhancer\CCEnhancer-4.4.1.exe [282112 2017-03-06] (SingularLabs)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [GoogleChromeAutoLaunch_E3F5740D1C7070D0CABB3741A4F 94C0C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1301848 2017-08-11] (Google Inc.)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [DriverUpdate] => C:\Program Files\DriverUpdate\DriverUpdate.exe [40742232 2017-07-31] (SlimWare Utilities, Inc.)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [Advanced SystemCare 10] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3924256 2017-05-17] (IObit)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [SmartRAM] => C:\Program Files (x86)\IObit\Advanced SystemCare\Suo10_SmartRAM.exe [560416 2017-07-26] (IObit)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Policies\Explorer: [NolowDiskSpaceChecks] 1
SSODL: EldosMountNotificator-cbfs6 - {401B8063-779B-4532-BEF0-41FCEE79B79C} - C:\WINDOWS\system32\cbfsMntNtf6.dll (/n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {401B8063-779B-4532-BEF0-41FCEE79B79C} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll (/n software, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
Tcpip..\Interfaces{27427e43-89c9-4d14-b85e-f8cbc9b59dfe}: [DhcpNameServer] 192.168.254.254
[HEADING=1]Internet Explorer:[/HEADING]
SearchScopes: HKU\S-1-5-21-2896426177-3843145535-1853849027-1001 → DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IeUrlFilter Class → {2DD257A3-5028-41AE-A1E7-A12F76A08893} → C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll [2017-06-30] (COMODO)
BHO: ExplorerBHO Class → {449D0D6E-2412-4E61-B68F-1CB625CD9E52} → C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
BHO: Java™ Plug-In SSV Helper → {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} → C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-14] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper → {DBC80044-A445-435b-BC74-9C25C1C588A9} → C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-14] (Oracle Corporation)
BHO: ClassicIEBHO Class → {EA801577-E6AD-4BD5-8F71-4BE0154331A4} → C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (IvoSoft)
BHO-x32: IeUrlFilter Class → {2DD257A3-5028-41AE-A1E7-A12F76A08893} → C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho32.dll [2017-06-30] (COMODO)
BHO-x32: ExplorerBHO Class → {449D0D6E-2412-4E61-B68F-1CB625CD9E52} → C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (IvoSoft)
BHO-x32: IObit Surfing Protection → {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} → C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2016-08-03] (IObit)
BHO-x32: ClassicIEBHO Class → {EA801577-E6AD-4BD5-8F71-4BE0154331A4} → C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (IvoSoft)
BHO-x32: IObit Ads Removal → {FFCB3198-32F3-4E8B-9539-4324694ED664} → C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\Adblock\Adblock.dll [2016-06-23] (IObit)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (IvoSoft)
[HEADING=1]FireFox:[/HEADING]
FF DefaultProfile: oomuvn3h.default
FF ProfilePath: C:\Users\eddie\AppData\Roaming\Mozilla\Firefox\Pro files\oomuvn3h.default [2017-08-16]
FF user.js: detected! => C:\Users\eddie\AppData\Roaming\Mozilla\Firefox\Pro files\oomuvn3h.default\user.js [2017-08-15]
FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\eddie\AppData\Roaming\Mozilla\Firefox\Pro files\oomuvn3h.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2017-07-03]
FF Extension: (Activity Stream) - C:\Program Files\Mozilla Firefox\browser\features\activity-stream@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Click-to-Play staged rollout) - C:\Program Files\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Follow-on Search Telemetry) - C:\Program Files\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2017-08-10] [not signed]
FF Extension: (Photon onboarding) - C:\Program Files\Mozilla Firefox\browser\features\onboarding@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Shield Recipe Client) - C:\Program Files\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi [2017-08-10] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.144.2 → C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1 .dll [2017-08-14] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 → C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-14] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 → C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 → C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-14] (Google Inc.)
[HEADING=1]Chrome:[/HEADING]
CHR HomePage: Default → hxxp://getchrome.eu/home/
CHR StartupUrls: Default → “hxxp://getchrome.eu/home”
CHR DefaultSearchKeyword: Default → wiki
CHR Profile: C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default [2017-08-16]
CHR Extension: (ProxFlow) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobj ifikek [2017-08-14]
CHR Extension: (Google Slides) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhon fmgoek [2017-08-14]
CHR Extension: (Security Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\abbpkdnljicgejmkndbncgpeam lcjhom [2017-08-14]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllm pfceif [2017-08-16]
CHR Extension: (GameShark) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\acmchkofncmmkabbadlofeffhc hdmkop [2017-08-14]
CHR Extension: (Movie4K) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\adkbpinkibeobfkgfoolfpnldi fjdedp [2017-08-14]
CHR Extension: (CB Channels) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afdeaaklpenijgadfgaljjnknl baphae [2017-08-14]
CHR Extension: (Microsoft Support) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afiaggegejgnhhkfjpbbplaiga eijppc [2017-08-14]
CHR Extension: (Microsoft Virtual Agent) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahhncecjhnalimedngnkpfacim kmlafh [2017-08-14]
CHR Extension: (My Win10 PC) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhdcannjobjjbbfabajjchlea ccalng [2017-08-14]
CHR Extension: (HD for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgih agponf [2017-08-14]
CHR Extension: (LR EShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akkmbnlaijgepeeldfglekgfaj oiklph [2017-08-14]
CHR Extension: (ToonGet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\almbnkdlegibjhcgfbflpemghh dmalmf [2017-08-14]
CHR Extension: (Google Docs) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfi lokake [2017-08-14]
CHR Extension: (Google Drive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigk jlhalf [2017-08-14]
CHR Extension: (ARChon4Chrome) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbooacojifhcpicigmefgdhaii hjhnmd [2017-08-14]
CHR Extension: (Open with Google Drive™ Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdkpinfdldjdngmgfbifbdbgao ampkan [2017-08-14]
CHR Extension: (Super Nintendo Emulator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\beogeghicacplhninfdmhiianh jimccp [2017-08-14]
CHR Extension: (Bitmoji) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfgdeiadkckfbkeigkoncpdiei iefpig [2017-08-14]
CHR Extension: (Google Groups) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfmbadcfdhiklafcdohpfphhha kmiakk [2017-08-14]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpb ikblnp [2017-08-14]
CHR Extension: (Mingle 2) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjeepgflngbnlkmfikinngokbc ijkean [2017-08-14]
CHR Extension: (Amazon Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjjmjgafamolafiboomfleccci peddim [2017-08-14]
CHR Extension: (Win10 ISO) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjlhajlpdpmfebiokogbjhdgmk ehgcbe [2017-08-14]
CHR Extension: (OpenDNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmeclafhfpefpfndaigmiojll fgmbcm [2017-08-14]
CHR Extension: (YouTube) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldk acnbeo [2017-08-14]
CHR Extension: (1M AppStore) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bminhbeeccgdnghnabbhiafpnd lbkedn [2017-08-14]
CHR Extension: (Facebook) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgd acljfm [2017-08-14]
CHR Extension: (MSN) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cagpfhohgbclhfgfggnbgfhnje hoknpk [2017-08-14]
CHR Extension: (History 2) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahejgbbfgmlmjgdjlibphdjel dhagkp [2017-08-14]
CHR Extension: (Amazon) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\camkdhjofheljkflfmfgbnajgj nhlopf [2017-08-14]
CHR Extension: (Update) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbkkihljhphdkjhiabaomgfnin kfihhe [2017-08-14]
CHR Extension: (Toons Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdibbihehmddkghfgiblbflocp hmmooc [2017-08-14]
CHR Extension: (Snoopy vs. The Red Baron) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfalonhgbljhcmcajnbdebedcj doblnl [2017-08-14]
CHR Extension: (Adblock Plus) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddi lifddb [2017-08-14]
CHR Extension: (Pushbullet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjl cfhogd [2017-08-14]
CHR Extension: (OneNote Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhf llbkmo [2017-08-14]
CHR Extension: (Monopoly Empire game | Play Kids Games Online | Hasbro) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjdhdhilfeoikokoiakkgnckkn aekled [2017-08-14]
CHR Extension: (YT2MP3) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjhmdjffbkdmddmdmmbabiaclo jaomeg [2017-08-14]
CHR Extension: (TechSupportGuy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckffimcpiheacclckfmmdcbhbm fmfikd [2017-08-14]
CHR Extension: (TWC Internet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckifgoknanfhclklbfjlpblncj pdfmfj [2017-08-14]
CHR Extension: (Microsoft Flow) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clldiedkmkolghagmnpmnoljbh ijiboi [2017-08-14]
CHR Extension: (HP ENVY) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clpdjjcfniihldhfchnjbilada pnbahi [2017-08-14]
CHR Extension: (MAFYT Settings) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmelobemnghobnlpdfmmbejdoa leajcf [2017-08-14]
CHR Extension: (SSF2 Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnlencpcagccinnhoijdgmobkm fhalcc [2017-08-14]
CHR Extension: (Harakirimail extension) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coaagmonnnldglbilekplfnphp dencce [2017-08-14]
CHR Extension: (ComputerHelpForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhjgghkoimcbpnbgjikmpgff kgajfk [2017-08-14]
CHR Extension: (Holy Bible) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\damfhmjfmeiigloagjpelmocjo eobdno [2017-08-14]
CHR Extension: (MSN) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dccnabnbnagheglhfmgdcjlcjb eibaje [2017-08-14]
CHR Extension: (Chase Online ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcofdmelmmjneoonenbhpagpbp iojkhf [2017-08-14]
CHR Extension: (Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeoh mmeldh [2017-08-14]
CHR Extension: (3DS Pedia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfkhponeglmiiobiihilahinlc kifjjh [2017-08-14]
CHR Extension: (Fus.Fall Legacy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmdnngojpofdigdidplfaebnj ohmfng [2017-08-14]
CHR Extension: (Tampermonkey) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmp obfkfo [2017-08-14]
CHR Extension: (Janifer Boston) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhpkkleekhaceehoigfcnaaidj oleflh [2017-08-14]
CHR Extension: (Glitch Game) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djahbfbhacphllgemcekmdnlil ahhmge [2017-08-14]
CHR Extension: (Nintendo Chat) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djeppnpeahmgfaohhidhjpipjk ahimfe [2017-08-14]
CHR Extension: (Google+) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdi dnckmm [2017-08-14]
CHR Extension: (NORAD Tracks Santa) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmkoneajelflpbfjpchjaiglip efmnki [2017-08-14]
CHR Extension: (Frontier DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnabfpdnbkmdmcoillihefhnjj knnona [2017-08-14]
CHR Extension: (Skype) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dolkddbfbhledadcdepacaljbg lglcoe [2017-08-14]
CHR Extension: (Sumo Paint) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpgjihldbpodlmnjolekemlfbc ajnmod [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebgecmolaheocnobalndebpehp imdghi [2017-08-14]
CHR Extension: (Inbox) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\edmijkelpnflahpdblkkobimcp lcgmgj [2017-08-14]
CHR Extension: (Amazon Shop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eecahhmlcjafclfkjodjjgllpm cmkgko [2017-08-14]
CHR Extension: (Novelty, OH Weather Forecast and Cond…) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eenemnbihadgbcjemdnobckofm iihfnk [2017-08-14]
CHR Extension: (Shortcut to Twitter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\efcdnfkhiiafogbhcainplbbge mgaaen [2017-08-14]
CHR Extension: (YouTubeDownloader) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eieafdgibiahkjdgdccmldmjid glnbjj [2017-08-14]
CHR Extension: (Google Fourms) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejiggjokppepehmfdngjefbhje heknmp [2017-08-14]
CHR Extension: (Cast Setup) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejliejcnhkkaaipdgkeiihbefh jeoemp [2017-08-14]
CHR Extension: (Outlook Calendar) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejppoecfdibjchmpdcphbanegd jebcgo [2017-08-14]
CHR Extension: (HelpSupport Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekimmgolelbekdhafemjekjhke mpbkfd [2017-08-14]
CHR Extension: (Comodo AdBlocker) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhcnbjoomhmifmfeggoalmplb lcmcin [2017-08-14]
CHR Extension: (Chrome Goodies) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\emmdmeocdlghmhbfjaldhjahnf bkbpck [2017-08-14]
CHR Extension: (Google Play) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\enffghkdjcgkndjodbaelocgmc bmbhpp [2017-08-14]
CHR Extension: (Filter by WOT) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eomhfalemadkajmgmppkoenihl ljdjoj [2017-08-14]
CHR Extension: (Update Windows 10) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\epejeipipakmkmdfnkpghcjfme igpggo [2017-08-14]
CHR Extension: (G SSH2 SWF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabhojopefodnkcighibfcnamg mplloh [2017-08-14]
CHR Extension: (Skype) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fajdleioencnfbnmiienoibkoi mkooli [2017-08-14]
CHR Extension: (Old EShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fanigphfdfepmnelohpfhcpeco ekibml [2017-08-14]
CHR Extension: (DiskImager) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdfeicageglnlelmohmkojdjcc gkdmcb [2017-08-14]
CHR Extension: (FREE App Creator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdhglomjccccgggpeabmiadbpm ofeedc [2017-08-14]
CHR Extension: (Motorola) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fekllafapcbanabhhooobibaan mndalm [2017-08-14]
CHR Extension: (Google Sheets) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpeb giejap [2017-08-14]
CHR Extension: (Assistance) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdhgdfhcclnmednjibbajgcpc pppknl [2017-08-14]
CHR Extension: (FB Game Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijlioglnahpdajepoinkodleg kolkam [2017-08-14]
CHR Extension: (Villionaire) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fimebapbdliodpciaalpoijonh dfhhkd [2017-08-14]
CHR Extension: (Word Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinb ehmajg [2017-08-14]
CHR Extension: (G SSH SWF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fipamjmedinmfclljanbjhhbdk finpkc [2017-08-14]
CHR Extension: (Nintendo ThemeShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkhaiaahhhomnfnnjhmnkkhloo gihnfa [2017-08-14]
CHR Extension: (EMails) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fknmbhaaehfdjpmooilcabjgoo ldjdoo [2017-08-14]
CHR Extension: (Google Voice ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fldbfpjncfkebegiobhnjanbok dlbnij [2017-08-14]
CHR Extension: (Rufus) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljfobnflghnobgffmkpjddbde hgmfol [2017-08-14]
CHR Extension: (Who’s on first?) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljmpldncihcmabdfjkgonhijj kpbgkl [2017-08-14]
CHR Extension: (Norton DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\focoenonfjfpphaadindagmhli jgklak [2017-08-14]
CHR Extension: (Nintendo CS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpdddhjdalfonhmejlkcfhjcck healoc [2017-08-14]
CHR Extension: (Chrome Remote Desktop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihen igjmpp [2017-08-14]
CHR Extension: (SPdate) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmnahlpnikhhgldfmeajheocd ileadd [2017-08-14]
CHR Extension: (Super Mario) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdljahompmnjdcmnlcfeobicdp epefbf [2017-08-14]
CHR Extension: (Outlook Calendar) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegmdadojdijhnemaeolhalohe lcagod [2017-08-14]
CHR Extension: (Network Test) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\geklcdelofkoldghehnhggalmo ahklbi [2017-08-14]
CHR Extension: (Homebrew Browser) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gffjnhndecndnepbjpmaloifck dmgcac [2017-08-14]
CHR Extension: (About GPG Services) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggaoeklfaibbbipibbalclmnll ojibkh [2017-08-14]
CHR Extension: (Google Docs Offline) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdl olhkhi [2017-08-14]
CHR Extension: (Click&Clean) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmame dcbeod [2017-08-14]
CHR Extension: (Anyfile Notepad) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghlichmdnegmcpafgmmlpkegmc ndlndi [2017-08-14]
CHR Extension: (Outlook People) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\giafdibgibbipnlecfckidkecm pkedho [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjaejhlejagppekogippmigjbk djmcdk [2017-08-14]
CHR Extension: (Open PayPal) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\glghgmejmmepalcnengjekjfmf bailbl [2017-08-14]
CHR Extension: (Google Wallet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\glhhiiglleiipdnodkaabbbbjh epnbcb [2017-08-14]
CHR Extension: (Save to Google Drive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeaba ddhgne [2017-08-14]
CHR Extension: (Bookmark Manager) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapj opfjik [2017-08-14]
CHR Extension: (UnRAR and RAR Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\goeclnlkhfoejbhdebemhjljlm cbhfkp [2017-08-14]
CHR Extension: (Drive Notepad) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgjomejfimnbmobcocilppikh ncegaj [2017-08-14]
CHR Extension: (Win10 Keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpjminmgekffdgiancflhaojkg jcdgmc [2017-08-14]
CHR Extension: (Microsoft Assistance) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplepoifohkaepkncehnpljcee ljlabi [2017-08-14]
CHR Extension: (WC Forums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbiinloenjigabpbdlogbimfgb opcfce [2017-08-14]
CHR Extension: (Bing) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfbcjnjfeolgeoddhcdjpogocm pkmncp [2017-08-14]
CHR Extension: (GSSH.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmckcabobcmbdlimkenccopfn pokmie [2017-08-14]
CHR Extension: (GV Phone) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmpoeaghekodfplkofpeabpni pphcjh [2017-08-14]
CHR Extension: (Outlook Tasks) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkaimcgnicopmhblimdmfjahhi fkfcoi [2017-08-14]
CHR Extension: (Dead Skin) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjjcekgbjlpiegjcdmmpojnda jlndok [2017-08-14]
CHR Extension: (RomsEShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hohhmomfljojjeaaehdcocalfp ejjccc [2017-08-14]
CHR Extension: (USPS Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\idammebdkcmcjhminehllfamif enkhbn [2017-08-14]
CHR Extension: (Android Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbnciaeojfhgeihkflgcgajop fjeohg [2017-08-14]
CHR Extension: (Get Human) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifcelejocgjieghblljgkemmnl ejjlep [2017-08-14]
CHR Extension: (CB Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igabecodgkgfkdhglpojbnbobb naajai [2017-08-14]
CHR Extension: (SEGA Bandonware) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igelfoafbodelegelfonpkaned mogdpm [2017-08-14]
CHR Extension: (OMG! Chrome!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igpknfbadalohcopbkaepbgblo mnbdma [2017-08-14]
CHR Extension: (Frontier Internet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihjgglhacdljfhmlinhcagchbk cgdhio [2017-08-14]
CHR Extension: (Zip, UnZip App) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiaianhgacnhnnhejddkghikgn hgpeaa [2017-08-14]
CHR Extension: (Bible Questions Answered) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiipijolbcononkgjpepkplcch majanm [2017-08-14]
CHR Extension: (Apps Launcher) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmgkhchjindcjamnckoiahage cjnkdc [2017-08-14]
CHR Extension: (Office Support) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikhblhjgapcilfennndodceemd oomngn [2017-08-14]
CHR Extension: (Excel Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijl fjfgnb [2017-08-14]
CHR Extension: (PC Help Forum) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\illdlgkhakmollnophmajedfbl hpijak [2017-08-14]
CHR Extension: (COSwallpapers) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\inpceamnbdnjkljfebkpdgfnnf ckopap [2017-08-14]
CHR Extension: (HTML5 Flash Warning Fix for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipdkokhdeppifjgcmhbfgmjmdl lfpkln [2017-08-14]
CHR Extension: (File System for OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfdfcehgafdbfpniaimfbfoma foadgo [2017-08-14]
CHR Extension: (OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbjamgmfdlbplimhkomcjjlemj addogn [2017-08-14]
CHR Extension: (PCTechForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jecdgjmkjbcagbkoifleegbplp naobfa [2017-08-14]
CHR Extension: (Microsoft Update Catalog) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgndoofkbbhhfcoldgjcakej ekefcd [2017-08-14]
CHR Extension: (SSF2 Game) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgplhfbmmkajpgnpldoaafagam bccjje [2017-08-14]
CHR Extension: (BibleGateway) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjmdfkmnphhfgilhfofaiffmhj lnopan [2017-08-14]
CHR Extension: (SM Trial Keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jljcdndcgbkbjonffogpnljgan habgmj [2017-08-14]
CHR Extension: (Save to Facebook) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhc lendgd [2017-08-14]
CHR Extension: (Holy Bible) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jomemcnjdjkjipodmcpfjhiolo ioplfh [2017-08-14]
CHR Extension: (CDFF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kahonebhcmapeomaemhjakphnp ffhhhf [2017-08-14]
CHR Extension: (My Sway) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnmjbpdljgcffbninlkelpbfm bbbohp [2017-08-14]
CHR Extension: (North Pole Radio) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdggiihhdpfglclmfghofjbiag onaplo [2017-08-14]
CHR Extension: (Chrome Web Store) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfknblmmckdmlklbncfodpomfo ejlbgm [2017-08-14]
CHR Extension: (Range Extender Setup) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgaimanaoiiecgbljbpjhkdica ogkinf [2017-08-14]
CHR Extension: (4Shared) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khdleokphdcnmagagajnchlcma cfphan [2017-08-14]
CHR Extension: (CB Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khomnbdfmhfppiemgglncdlbbn ppffdo [2017-08-14]
CHR Extension: (Pure Flix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kiiijkmmlfiofadnffcomgcmdl ppddhd [2017-08-14]
CHR Extension: (Novelty, OH Weather Conditions & Fore…) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkphahjiaiaahfhcbedhbgfpod bojbje [2017-08-14]
CHR Extension: (MyAptoideBU) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\klpdcjojlnaceggdkglndamdma onfnpi [2017-08-14]
CHR Extension: (Google Hangouts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgoln pehhpl [2017-08-14]
CHR Extension: (Google Play) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdi abikfi [2017-08-14]
CHR Extension: (GSSH2.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\laekopehhnfklajodmbbhdfhmk fbnblc [2017-08-14]
CHR Extension: (Wake Up!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbbcfplbfbmimpnlammmeaheak hcogke [2017-08-14]
CHR Extension: (AnimeDub Mobile) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbdcckpbjegpnhhdejaipegkab kofhla [2017-08-14]
CHR Extension: (Twitter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lddagfjihimnacaabfnfagjcok fmnekc [2017-08-14]
CHR Extension: (Aptoide) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhhjndfejaoaiaaokjmhoiedpp dmknki [2017-08-14]
CHR Extension: (AnimeDub) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhnnmimodonfbnmpgmcjahlbla enkgle [2017-08-14]
CHR Extension: (Files2Zip) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhoadfgjeimckjlphkdebfmhbp eniljo [2017-08-14]
CHR Extension: (USPS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\liocengmpmiiejdoebmlifecbm cpfigg [2017-08-14]
CHR Extension: (Wikipedia Search) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lipakennkogpodadpikgipnoga mhklmk [2017-08-14]
CHR Extension: (MSN Games - Free Online Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkbgddpallgbhlldcnnjomnodm ohpklf [2017-08-14]
CHR Extension: (IHeart Christmas) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndoiaoagbajoadpgmfgckfckm chepmj [2017-08-14]
CHR Extension: (Google Maps) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbea pigfbh [2017-08-14]
CHR Extension: (SSB) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lockfglcfjlaagpghflagedkkg ojipke [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\locmdgkcjcjacipaokcoochhjh pklbih [2017-08-14]
CHR Extension: (B1 File Extracter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbgobeedadfbponkgffobhpmok jmlhol [2017-08-14]
CHR Extension: (Documents Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbhgihpdipbgifogehncdehebk pehoap [2017-08-14]
CHR Extension: (GoogleDNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbogpnkehmjcidggfooapenefh ckeehd [2017-08-14]
CHR Extension: (PowerPoint Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkg cbpnhp [2017-08-14]
CHR Extension: (Messenger (Unofficial)) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngab fpibok [2017-08-14]
CHR Extension: (GoogleFuchsia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mejnaonfdocegokbjldkeafifp nfnpan [2017-08-14]
CHR Extension: (CN Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mekgfnmophledbpkmikhnfkimo ahjohn [2017-08-14]
CHR Extension: (CraigTechShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfbfebnljjciechbmlehdcmnmd hacgmi [2017-08-14]
CHR Extension: (COMODO DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfnnnpncpeeecbbdepenkkgpjo enkbbo [2017-08-14]
CHR Extension: (T-Mobile) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhpgceapcpooallmggianccbak egnhnb [2017-08-14]
CHR Extension: (V.FreeMovies) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkopchcfcbchhnbpldmdjfbdhg kcpgkn [2017-08-14]
CHR Extension: (CB Central) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlieflpkidahjkojakjlpnlnch obihbl [2017-08-14]
CHR Extension: (ZIP Extractor) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmfcakoljjhncfphlflcedhgog fhpbcd [2017-08-14]
CHR Extension: (GC Options) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmmanlicckcagdkabbemhccfpm gojncl [2017-08-14]
CHR Extension: (My Google Account) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnepgpaicadoimgdlajhkgokfe naadkh [2017-08-14]
CHR Extension: (PogoTM) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmklochmlghbgebbmkldomoih jbgfie [2017-08-14]
CHR Extension: (Nintendo Pedia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mogfngbfndeeecglaejajbioeg pimija [2017-08-14]
CHR Extension: (What’s on Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbeopbccnmkgdlbpicobflenbj ceoaka [2017-08-14]
CHR Extension: (Chrome OS Features) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbjdhanphhipjfkmicljakgnba icfojk [2017-08-14]
CHR Extension: (Ws on Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncjendjahmgpgjdeenknmdoeco fmfdod [2017-08-14]
CHR Extension: (Google Hangouts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanao iihapd [2017-08-14]
CHR Extension: (Reload It) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nconjighkgcoppohfilfinlimd fmjafg [2017-08-14]
CHR Extension: (Games4Summer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndphblldagopagiodebolhdjoh gindbm [2017-08-14]
CHR Extension: (OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoa bngedk [2017-08-14]
CHR Extension: (UNetbootin - Homepage and Downloads) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhanbcbjhjcgpccibphcicaink kinool [2017-08-14]
CHR Extension: (SupportSpace) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nigmaeimafjgjfodjfhnancnah feindg [2017-08-14]
CHR Extension: (FedEx Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikgcnimkfeopobooaahjpbdkd fhchao [2017-08-14]
CHR Extension: (SEGA Online Emulator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nilhogoffgcdfgmejcjpidfaie fpccpl [2017-08-14]
CHR Extension: (WeatherBug) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\njkkjobcechefaoknodniidfja pgfoco [2017-08-14]
CHR Extension: (Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nklbmhejmcjofglijalidajdli hahnpd [2017-08-14]
CHR Extension: (Archive Extractor) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nknadlalodfadgegkigkmbhofc mkhfnc [2017-08-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccm gmieda [2017-08-14]
CHR Extension: (Win10 Pro keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnelnnlfcdhjfbfglandknndlo nidojg [2017-08-14]
CHR Extension: (Toonova) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nobhijfkaffjbkocimaaembibg genkdc [2017-08-14]
CHR Extension: (Frontier) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nofcknkefjengmgmlnmdmgbmla khhnok [2017-08-14]
CHR Extension: (SM63.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\noijjjifnenaafboiipobhiflm iaimof [2017-08-14]
CHR Extension: (Chrome OS EOL) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\npmnpehbihaieehmoaifdkdlcg ndmpjn [2017-08-14]
CHR Extension: (System) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocjnemjmlhjkeilmaidemofakm pclcbi [2017-08-14]
CHR Extension: (COMODO GeekBuddy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oebmcdnandbcnfmpjecmmhcoog fneelj [2017-08-14]
CHR Extension: (Google Santa Tracker) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehagbcimlpafjbdijnjmabobl cfdnoh [2017-08-14]
CHR Extension: (PDF Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdf madadm [2017-08-14]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljb ihmemj [2017-08-15]
CHR Extension: (App Store) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogffnakkboiaoifjbhjbahamkd ojaemm [2017-08-14]
CHR Extension: (EPForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oimkklcnelpdlkkbjjablakand mmddio [2017-08-14]
CHR Extension: (Fullscreen Anything) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\olcfgpmjldkkjdclidhcboniei bfhhdh [2017-08-14]
CHR Extension: (SM 63) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldjcgpcnneleakkepogfghceh njcngf [2017-08-14]
CHR Extension: (YouTube™ Flash-HTML5) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\omimccinlhlkpjaeaocglgmkbe lejlhj [2017-08-14]
CHR Extension: (Christian Date) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompnolbokepechjidcgpaddaae oocajn [2017-08-14]
CHR Extension: (Consumer AV Providers) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ongfjpmgcneinonelpaljjdaig ppnneo [2017-08-14]
CHR Extension: (Putlocker ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ookjcnljofpnadeabapgadihfh ngblfe [2017-08-14]
CHR Extension: (Nintendo RomShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pahokmgpomeaakdfnahejklhci fhaige [2017-08-14]
CHR Extension: (Microsoft Office Home) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\palennhedgekbnbmokheidadmg hcncgl [2017-08-14]
CHR Extension: (I Heart Radio) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcbnpgdibikphcelmkjldlfjj epjipl [2017-08-14]
CHR Extension: (Click&Clean App) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidf mibmhp [2017-08-14]
CHR Extension: (Shortcuts for Google™ Products) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdlecffodcfabchelafoljcdph fpkpcl [2017-08-14]
CHR Extension: (Date Countdown) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfbpikfaigmikdjkghbkbapjhf oglipj [2017-08-14]
CHR Extension: (Data Saver) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmgfdlgomnbgkofeojodiodmg pgmkac [2017-08-14]
CHR Extension: (Outlook.com) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnik fnhoge [2017-08-14]
CHR Extension: (Bing) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\phfegmcgballapgnbppeeidcke jebknn [2017-08-14]
CHR Extension: (Super Smash Bros For NDS !!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pifamkpimegbfnakceigajiljj odcfla [2017-08-14]
CHR Extension: (Gmail) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoe jaedia [2017-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcj beemfm [2017-08-14]
CHR Extension: (OMG! Ubuntu!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmoodaljflkhbojjaiibgnlind bhebme [2017-08-14]
CHR Extension: (EBay) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppaellakmlibbcfkgkmbkkllnh cmghca [2017-08-14]
CHR Extension: (Google Contacts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppbiamkfhlcpgijakdgbbffikm kkofnl [2017-08-14]
CHR Extension: (Apps On Chrome) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppmdjabijijblhfhnbgcpnoamk ibcclm [2017-08-14]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [462624 2017-03-21] (IObit)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [10501104 2017-07-11] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2017-07-11] (COMODO)
R2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [3210936 2017-06-30] (COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2273432 2017-08-08] (Comodo)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [356352 2017-08-02] (Intel Corporation)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [133840 2017-07-05] (COMODO)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (The OpenVPN Project)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324576 2017-08-02] (Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-04-11] (Microsoft Corporation)
R2 SlimWareServices; C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe [79704 2017-07-31] (SlimWare Utilities Holdings, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269912 2017-01-17] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-19] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (/n software, Inc.)
R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [126056 2017-03-31] (COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [40936 2017-06-02] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [831992 2017-06-02] (COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [50776 2017-06-02] (COMODO)
S3 dot4; C:\WINDOWS\System32\drivers\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [72584 2017-01-12] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [67976 2017-01-12] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77376 2017-06-27] ()
R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd64lp.sys [7407080 2017-08-02] (Intel Corporation)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [132880 2017-06-07] (COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [62208 2017-03-29] (COMODO)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [188352 2017-08-16] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [101784 2017-08-16] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [45472 2017-08-16] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-16] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [93600 2017-08-16] (Malwarebytes)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [947712 2017-02-15] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [420832 2017-08-02] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [6804480 2017-05-03] (Realtek Semiconductor Corporation )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [60504 2017-01-17] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [64088 2017-01-17] (Synaptics Incorporated)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [146200 2015-10-15] (Intel Corporation)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (/n software, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64 .sys [30392 2017-04-25] (HP)
S3 WiseUnlock; C:\WINDOWS\WiseUnlock64.sys [33864 2017-08-15] (WiseCleaner.com)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-08-16 15:21 - 2017-08-16 15:24 - 000054927 _____ C:\Users\eddie\Desktop\FRST.txt
2017-08-16 15:21 - 2017-08-16 15:21 - 000000000 ____D C:\FRST
2017-08-16 15:18 - 2017-08-16 15:19 - 002395648 _____ (Farbar) C:\Users\eddie\Desktop\FRST64.exe
2017-08-16 12:40 - 2017-08-16 12:40 - 009791816 _____ (Piriform Ltd) C:\Users\eddie\Downloads\ccsetup533.exe
2017-08-16 01:03 - 2017-08-16 01:03 - 000000000 ___HD C:\OneDriveTemp
2017-08-16 01:01 - 2017-08-16 01:01 - 000000180 _____ C:\WINDOWS\system32{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-08-16 00:53 - 2017-08-16 00:53 - 000003656 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnele vatedTask
2017-08-16 00:37 - 2017-08-16 00:37 - 000000000 ____D C:\Users\Default\AppData\Roaming\IObit
2017-08-16 00:37 - 2017-08-16 00:37 - 000000000 ____D C:\Users\Default User\AppData\Roaming\IObit
2017-08-16 00:29 - 2017-08-16 00:29 - 000188352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-08-16 00:28 - 2017-08-16 13:45 - 000093600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-08-16 00:28 - 2017-08-16 01:01 - 000101784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-08-16 00:27 - 2017-08-16 01:01 - 000045472 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-08-16 00:27 - 2017-08-16 00:27 - 000001927 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-08-16 00:27 - 2017-08-16 00:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-08-16 00:27 - 2017-08-16 00:27 - 000000000 ____D C:\Program Files\Malwarebytes
2017-08-16 00:27 - 2017-06-27 12:06 - 000077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-08-16 00:25 - 2017-08-16 01:01 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-08-16 00:24 - 2017-08-16 00:27 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-15 23:54 - 2017-06-19 22:05 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2017-08-15 23:54 - 2017-03-18 13:58 - 000587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2017-08-15 23:54 - 2017-03-18 13:58 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxinit.dll
2017-08-15 18:07 - 2017-08-15 18:13 - 000000000 ____D C:\Users\eddie\AppData\Local\PackageStaging
2017-08-15 12:57 - 2017-08-15 12:59 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Wise Force Deleter
2017-08-15 12:57 - 2017-08-15 12:57 - 000033864 _____ (WiseCleaner.com) C:\WINDOWS\WiseUnlock64.sys
2017-08-15 12:57 - 2017-08-15 12:57 - 000001287 _____ C:\Users\Public\Desktop\Wise Force Deleter.lnk
2017-08-15 12:57 - 2017-08-15 12:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Force Deleter
2017-08-15 12:57 - 2017-08-15 12:57 - 000000000 ____D C:\Program Files (x86)\Wise
2017-08-15 03:39 - 2017-08-15 03:39 - 000000000 ____D C:\WINDOWS\System32\Tasks\Games
2017-08-15 03:29 - 2017-08-15 03:29 - 000000000 ____D C:\WINDOWS\System32\Tasks\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000001357 _____ C:\Users\eddie\Desktop\Auslogics Disk Defrag.lnk
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\ProgramData\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\Program Files (x86)\Auslogics
2017-08-15 03:21 - 2017-08-15 03:21 - 000000000 ___HD C:\VTRoot
2017-08-15 02:25 - 2017-08-15 02:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-08-15 02:25 - 2017-08-15 02:25 - 000000000 ____D C:\Program Files (x86)\Realtek
2017-08-15 02:25 - 2017-02-15 21:50 - 000947712 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2017-08-15 02:25 - 2017-02-15 21:50 - 000082536 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-08-15 02:23 - 2017-08-15 02:23 - 000000000 ____D C:\ProgramData\SlimWare Utilities Inc
2017-08-15 01:46 - 2017-08-15 01:46 - 005373952 _____ C:\WINDOWS\system32\config\DRIVERS.iobit
2017-08-15 01:17 - 2017-08-15 01:30 - 000000000 ____D C:\Users\eddie\AppData\Local\CrashDumps
2017-08-15 00:48 - 2017-08-15 00:48 - 000001796 _____ C:\Users\eddie\Desktop\Virtual Kiosk.lnk
2017-08-15 00:31 - 2017-08-15 00:31 - 000002374 _____ C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\OneDrive.lnk
2017-08-14 22:18 - 2017-08-15 01:37 - 000003474 _____ C:\WINDOWS\System32\Tasks\ASC10_AutoCare
2017-08-14 22:09 - 2017-08-14 22:09 - 000000000 ____D C:\ProgramData{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2017-08-14 22:01 - 2017-08-14 22:01 - 000002908 _____ C:\WINDOWS\System32\Tasks\ASC10_SkipUac_eddie
2017-08-14 22:01 - 2017-08-14 22:01 - 000000000 ____D C:\ProgramData{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-08-14 22:00 - 2017-08-14 22:01 - 000002249 _____ C:\Users\Public\Desktop\Advanced SystemCare 10.lnk
2017-08-14 22:00 - 2017-08-14 22:00 - 000003114 _____ C:\WINDOWS\System32\Tasks\ASC10_PerformanceMonitor
2017-08-14 22:00 - 2017-08-14 22:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2017-08-14 21:54 - 2017-08-16 15:20 - 000062144 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2017-08-14 21:40 - 2017-08-14 21:40 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2017-08-14 21:40 - 2017-08-14 21:40 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2017-08-14 21:38 - 2017-08-14 21:48 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Comodo
2017-08-14 21:27 - 2017-08-16 15:21 - 001336640 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2017-08-14 21:27 - 2017-08-14 21:27 - 000000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2017-08-14 21:27 - 2017-08-14 21:27 - 000000000 ____D C:\Program Files\COMODO
2017-08-14 21:26 - 2017-06-30 07:08 - 000332472 _____ (COMODO) C:\WINDOWS\system32\cmdkbdcss64.dll
2017-08-14 21:26 - 2017-06-30 07:08 - 000263352 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbdcss32.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000432104 _____ (COMODO) C:\WINDOWS\system32\cssguard64.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000338560 _____ (COMODO) C:\WINDOWS\SysWOW64\cssguard32.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000048728 _____ (COMODO) C:\WINDOWS\system32\csscsr64.dll
2017-08-14 21:26 - 2017-03-31 23:15 - 000126056 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdcss.sys
2017-08-14 21:25 - 2017-08-14 21:25 - 000000000 ____D C:\Users\eddie\AppData\Local\Comodo
2017-08-14 21:21 - 2017-08-14 21:35 - 000000480 _____ C:\WINDOWS\Tasks\DriverUpdate Scan.job
2017-08-14 21:21 - 2017-08-14 21:21 - 000003258 _____ C:\WINDOWS\System32\Tasks\DriverUpdate Scan
2017-08-14 21:21 - 2017-08-14 21:21 - 000000000 ____D C:\ProgramData\Shared Space
2017-08-14 21:21 - 2017-08-14 21:21 - 000000000 ____D C:\ProgramData\Comodo Downloader
2017-08-14 21:20 - 2017-08-15 16:19 - 000000000 ____D C:\Program Files\DriverUpdate
2017-08-14 21:20 - 2017-08-14 21:20 - 000000000 ____D C:\Users\eddie\AppData\Local\SlimWare Utilities Inc
2017-08-14 21:20 - 2017-08-14 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverUpdate
2017-08-14 21:20 - 2017-08-14 21:20 - 000000000 ____D C:\Program Files\SlimWare Utilities
2017-08-14 21:19 - 2017-08-15 01:44 - 000000000 ____D C:\ProgramData\COMODO
2017-08-14 21:19 - 2017-08-15 00:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2017-08-14 21:19 - 2017-08-14 21:47 - 000000000 ____D C:\Program Files (x86)\COMODO
2017-08-14 21:19 - 2017-07-05 00:30 - 000256040 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2017-08-14 21:19 - 2017-07-05 00:29 - 000205536 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2017-08-14 21:19 - 2017-03-29 14:49 - 000062208 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2017-08-14 17:10 - 2017-08-14 17:11 - 000002676 _____ C:\Users\eddie\Desktop\PC Help Forum.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000001018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000001006 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Mozilla
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Mozilla
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-14 16:12 - 2017-08-14 16:12 - 000000859 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Explorer.lnk
2017-08-14 14:46 - 2017-08-14 15:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps
2017-08-14 14:41 - 2017-08-14 14:41 - 000002357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-14 14:41 - 2017-08-14 14:41 - 000002345 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-14 14:40 - 2017-08-14 14:40 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineU A
2017-08-14 14:40 - 2017-08-14 14:40 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineC ore
2017-08-14 14:28 - 2017-08-14 14:28 - 000000000 ____D C:\WINDOWS\Panther
2017-08-14 14:15 - 2017-08-14 14:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-08-14 14:15 - 2017-08-14 14:15 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-08-14 14:15 - 2017-08-14 14:15 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Sun
2017-08-14 14:15 - 2017-08-14 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-08-14 14:15 - 2017-08-14 14:14 - 000110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-08-14 14:14 - 2017-08-14 14:14 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-08-14 14:13 - 2017-08-14 14:13 - 000000000 ____D C:\ProgramData\Oracle
2017-08-14 14:13 - 2017-08-14 14:13 - 000000000 ____D C:\Program Files\Java
2017-08-14 04:00 - 2017-08-14 04:00 - 000041800 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2017-08-14 03:49 - 2017-08-14 03:49 - 000000000 ____D C:\Users\eddie\AppData\Local\PeerDistRepub
2017-08-14 02:55 - 2017-08-14 02:55 - 069640192 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000491520 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000065536 _____ C:\WINDOWS\system32\config\SAM.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2017-08-14 02:53 - 2017-08-16 02:56 - 000000000 ____D C:\Users\eddie\AppData\Local\ClassicShell
2017-08-14 02:53 - 2017-08-16 02:33 - 000000000 ____D C:\ProgramData\ClassicShell
2017-08-14 02:53 - 2017-08-14 02:53 - 000000000 ____D C:\Users\eddie\AppData\Roaming\ClassicShell
2017-08-14 02:52 - 2017-08-14 02:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2017-08-14 02:52 - 2017-08-14 02:52 - 000000000 ____D C:\Program Files\Classic Shell
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\ProgramData\BDLogging
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\ProgramData{D76294E6-03B8-4971-AF2E-3F846161A690}
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\ProgramData{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
2017-08-14 02:26 - 2017-08-14 02:26 - 000565416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-14 02:18 - 2017-08-14 04:54 - 000002956 _____ C:\WINDOWS\System32\Tasks\CCleanerClean
2017-08-14 02:18 - 2017-08-14 04:54 - 000000258 _____ C:\WINDOWS\Tasks\CCleanerClean.job
2017-08-14 02:05 - 2017-08-16 12:42 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-14 02:05 - 2017-08-16 12:39 - 000000000 ____D C:\Program Files\CCleaner
2017-08-14 02:05 - 2017-08-14 02:05 - 000002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-08-14 02:05 - 2017-08-14 02:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-08-14 01:52 - 2017-08-14 01:52 - 000001129 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\Users\eddie\AppData\Local\VS Revo Group
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\ProgramData\VS Revo Group
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\Program Files\VS Revo Group
2017-08-14 01:52 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2017-08-14 01:46 - 2017-08-14 01:46 - 000000000 ____D C:\Users\eddie\AppData\Local\MicrosoftEdge
2017-08-14 01:45 - 2017-08-14 21:59 - 000000000 ____D C:\ProgramData\IObit
2017-08-14 01:45 - 2017-08-14 04:53 - 000000000 ____D C:\Program Files (x86)\IObit
2017-08-14 01:45 - 2017-08-14 02:45 - 000000000 ____D C:\ProgramData\ProductData
2017-08-14 01:45 - 2017-08-14 02:33 - 000000000 ____D C:\Users\eddie\AppData\Roaming\IObit
2017-08-14 01:45 - 2017-08-14 01:45 - 000000000 ____D C:\ProgramData{EAAB5A83-3809-4B0E-83A6-E4B0DBF2157E}
2017-08-14 01:37 - 2017-08-14 01:37 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\3C64355F.sys
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\Program Files\TAP-Windows
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\Program Files\OpenVPN
2017-08-14 01:29 - 2017-08-14 01:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2017-08-14 01:23 - 2017-08-14 01:23 - 000001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2017-08-14 01:23 - 2017-08-14 01:23 - 000000000 ____D C:\Users\eddie\AppData\Roaming\WinRAR
2017-08-14 01:23 - 2017-08-14 01:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-08-14 01:22 - 2017-08-14 01:23 - 000000000 ____D C:\Program Files\WinRAR
2017-08-14 01:16 - 2017-08-14 01:16 - 000000634 _____ C:\Users\eddie\OneDrive\Documents\MagicActions-Options.json
2017-08-14 01:02 - 2017-08-14 04:57 - 000000000 ____D C:\Users\eddie\AppData\Local\pCloud
2017-08-14 00:56 - 2017-08-14 14:41 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Google
2017-08-14 00:56 - 2017-08-14 00:56 - 000000000 ____D C:\WINDOWS\InfusedApps
2017-08-14 00:54 - 2017-08-14 00:54 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-08-14 00:54 - 2017-08-13 23:58 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-08-14 00:52 - 2017-08-14 00:52 - 000000000 ____D C:\Program Files\Synaptics
2017-08-14 00:51 - 2017-08-14 00:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2017-08-14 00:51 - 2017-08-14 00:51 - 000000000 ____D C:\Program Files (x86)\HP
2017-08-14 00:50 - 2017-08-14 00:50 - 000000000 ____D C:\WINDOWS\Setup
2017-08-14 00:50 - 2017-08-14 00:50 - 000000000 ____D C:\Users\eddie\AppData\Local\DBG
2017-08-14 00:49 - 2017-08-14 14:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Google
2017-08-14 00:49 - 2017-08-14 14:40 - 000000000 ____D C:\Program Files (x86)\Google
2017-08-14 00:48 - 2017-08-14 00:49 - 000000000 ____D C:\Users\eddie\AppData\Local\Deployment
2017-08-14 00:48 - 2017-08-14 00:48 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Macromedia
2017-08-14 00:48 - 2017-08-14 00:48 - 000000000 ____D C:\Users\eddie\AppData\Local\Apps\2.0
2017-08-14 00:46 - 2017-08-16 12:16 - 000004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronizatio n-{FA13B12A-B6F1-4CA4-9E37-D55E2EE30D0B}
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\WINDOWS\OCR
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files\MSBuild
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\ProgramData\Package Cache
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pCloud
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\Program Files (x86)\pCloud Drive
2017-08-14 00:43 - 2016-09-09 16:33 - 000018848 _____ (/n software, Inc.) C:\WINDOWS\system32\elevtmsg.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000235424 _____ (/n software, Inc.) C:\WINDOWS\SysWOW64\cbfsNetRdr6.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000196000 _____ (/n software, Inc.) C:\WINDOWS\system32\cbfsMntNtf6.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000134560 _____ (/n software, Inc.) C:\WINDOWS\system32\cbfsNetRdr6.dll
2017-08-14 00:43 - 2016-09-09 16:31 - 000170400 _____ (/n software, Inc.) C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll
2017-08-14 00:43 - 2016-09-09 16:23 - 000460992 _____ (/n software, Inc.) C:\WINDOWS\system32\Drivers\cbfs6.sys
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\winrm
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\WCN
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\slmgr
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\0409
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\DigitalLocker
2017-08-14 00:37 - 2017-07-31 08:15 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-08-14 00:37 - 2017-07-31 08:15 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-08-14 00:32 - 2017-08-14 00:55 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-08-14 00:32 - 2017-08-14 00:27 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-08-14 00:32 - 2017-08-14 00:27 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2017-08-14 00:32 - 2017-08-14 00:27 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2017-08-14 00:32 - 2017-08-14 00:27 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2017-08-14 00:32 - 2017-08-14 00:27 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2017-08-14 00:32 - 2017-08-14 00:27 - 000015940 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2017-08-14 00:32 - 2017-08-14 00:27 - 000004096 _____ C:\WINDOWS\system32\config\VSMIDK
2017-08-14 00:32 - 2017-08-14 00:27 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2017-08-14 00:32 - 2017-08-14 00:27 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2017-08-14 00:32 - 2017-08-14 00:27 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2017-08-14 00:32 - 2017-08-14 00:27 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2017-08-14 00:32 - 2017-08-14 00:27 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2017-08-14 00:32 - 2017-08-14 00:27 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2017-08-14 00:32 - 2017-08-02 02:14 - 000103936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2017-08-14 00:31 - 2017-08-16 12:31 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-14 00:31 - 2017-08-16 12:31 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-14 00:31 - 2017-08-16 00:55 - 000000000 ___RD C:\Program Files (x86)
2017-08-14 00:31 - 2017-08-15 01:44 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2017-08-14 00:31 - 2017-08-14 14:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-14 00:31 - 2017-08-14 03:25 - 000000000 ____D C:\WINDOWS\appcompat
2017-08-14 00:31 - 2017-08-14 03:16 - 000000000 ____D C:\Program Files\Windows Sidebar
2017-08-14 00:31 - 2017-08-14 03:16 - 000000000 ____D C:\Program Files (x86)\Windows Sidebar
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\migwiz
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\Dism
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\Provisioning
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files\Windows Defender
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-08-14 00:31 - 2017-08-14 00:44 - 000000000 ____D C:\WINDOWS\SystemApps
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\system32\dsc
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\setup
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\MUI
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\Com
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\IME
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\Help
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Common Files\System
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 __RSD C:\WINDOWS\Media
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\system32\Nui
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\system32\AppV
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\icsxml
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\ias
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\downlevel
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\DDFs
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\Registration
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\L2Schemas
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Web
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Vss
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\tracing
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\TAPI
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SystemResources
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\winevt
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\ras
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\IME
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\System
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SKB
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\security
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\schemas
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SchCache
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Resources
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\RemotePackages
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\PLA
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Performance
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\ModemLogs
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Globalization
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Cursors
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Branding
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\bcastdvr
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\addins
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Security
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Portable Devices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows NT
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Common Files\Services
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows NT
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2017-08-14 00:31 - 2017-08-14 00:27 - 000000219 _____ C:\WINDOWS\system.ini
2017-08-14 00:31 - 2017-08-14 00:27 - 000000092 _____ C:\WINDOWS\win.ini
2017-08-14 00:31 - 2017-08-14 00:20 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-08-14 00:31 - 2017-08-14 00:19 - 000000000 __RHD C:\Users\Public\Libraries
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\system32\spool
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\CSC
2017-08-14 00:31 - 2017-08-14 00:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-08-14 00:31 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\USOPrivate
2017-08-14 00:31 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\PrintDialog
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\MiracastView
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-08-14 00:31 - 2017-08-14 00:05 - 000000000 ____D C:\WINDOWS\HoloShell
2017-08-14 00:30 - 2017-08-14 00:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Skype
2017-08-14 00:28 - 2017-08-15 23:08 - 000000000 ____D C:\WINDOWS\INF
2017-08-14 00:27 - 2017-08-14 00:27 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-08-14 00:26 - 2017-08-14 00:26 - 000000000 ____D C:\Users\eddie\AppData\Local\Comms
2017-08-14 00:25 - 2017-08-14 13:58 - 000908880 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-14 00:25 - 2017-08-14 00:25 - 000000000 ____D C:\Users\eddie\AppData\Local\Publishers
2017-08-14 00:24 - 2017-08-15 18:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Packages
2017-08-14 00:24 - 2017-08-14 04:56 - 000000000 ____D C:\Users\eddie\AppData\Local\ConnectedDevicesPlatf orm
2017-08-14 00:24 - 2017-08-14 00:24 - 000000020 ___SH C:\Users\eddie\ntuser.ini
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Synaptics
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Adobe
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Local\VirtualStore
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Local\TileDataLayer
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\ProgramData\Synaptics
2017-08-14 00:23 - 2017-08-14 00:23 - 000000000 _SHDL C:\Users\Default User
2017-08-14 00:23 - 2017-08-14 00:23 - 000000000 _SHDL C:\Users\All Users
2017-08-14 00:21 - 2017-08-16 01:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-14 00:20 - 2017-08-14 00:20 - 000026274 _____ C:\Users\eddie\OneDrive\Documents\Removed Apps.html
2017-08-14 00:18 - 2017-08-14 14:14 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-14 00:15 - 2017-08-15 22:52 - 000000000 ____D C:\Users\eddie
2017-08-14 00:12 - 2017-08-16 00:58 - 082051072 _____ C:\WINDOWS\system32\config\SYSTEM
2017-08-14 00:12 - 2017-08-16 00:58 - 071827456 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-08-14 00:12 - 2017-08-16 00:58 - 009175040 _____ C:\WINDOWS\system32\config\BBI
2017-08-14 00:12 - 2017-08-16 00:58 - 001572864 _____ C:\WINDOWS\system32\config\DEFAULT
2017-08-14 00:12 - 2017-08-16 00:58 - 000057344 _____ C:\WINDOWS\system32\config\SECURITY
2017-08-14 00:12 - 2017-08-14 00:54 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2017-08-14 00:12 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\servicing
2017-08-14 00:12 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\SMI
2017-08-14 00:12 - 2017-08-14 00:23 - 000000000 ___HD C:$Windows.~BT
2017-08-14 00:12 - 2017-08-14 00:22 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-08-14 00:09 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\USOShared
2017-08-14 00:04 - 2017-08-14 00:04 - 000021910 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2017-08-14 00:04 - 2017-08-14 00:04 - 000002065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DTS Audio Control.lnk
2017-08-14 00:04 - 2017-08-14 00:04 - 000000200 _____ C:\WINDOWS\system32{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\ProgramData\SRS Labs
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\Program Files\Realtek
2017-08-14 00:04 - 2017-08-02 02:14 - 000099840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_ 00.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_0101 1.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver _Intel_01011.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____D C:\Program Files\Intel
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-08-14 00:02 - 2017-03-18 13:56 - 002233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-08-13 23:58 - 2017-08-16 15:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-13 22:50 - 2017-08-14 00:57 - 000000000 ___HD C:$SysReset
2017-08-13 08:49 - 2017-08-13 08:49 - 000291128 _____ (IvoSoft) C:\WINDOWS\system32\StartMenuHelper64.dll
2017-08-13 08:49 - 2017-08-13 08:49 - 000248120 _____ (IvoSoft) C:\WINDOWS\SysWOW64\StartMenuHelper32.dll
2017-08-13 01:40 - 2017-08-15 00:06 - 000000000 ____D C:\Users\eddie\AppData\LocalLow\Mozilla
2017-08-12 23:19 - 2017-08-15 02:24 - 000000000 ___HD C:\SWSetup
2017-08-12 22:31 - 2017-08-14 00:19 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\System Restore Explorer
2017-08-09 02:19 - 2017-08-14 01:45 - 000000000 ____D C:\Users\eddie\AppData\LocalLow\IObit
2017-08-08 22:10 - 2017-07-31 19:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-08-08 22:10 - 2017-07-31 19:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-08-08 22:10 - 2017-07-31 19:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-08-08 22:10 - 2017-07-31 19:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-08-08 22:10 - 2017-07-31 19:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-08-08 22:10 - 2017-07-31 19:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-08-08 22:10 - 2017-07-31 19:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-08-08 22:10 - 2017-07-31 19:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-08-08 22:10 - 2017-07-31 19:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-08-08 22:10 - 2017-07-31 18:30 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-08-08 22:09 - 2017-07-31 19:39 - 008319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-08 22:09 - 2017-07-31 19:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-08-08 22:09 - 2017-07-31 19:38 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-08 22:09 - 2017-07-31 19:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-08-08 22:09 - 2017-07-31 19:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-08 22:09 - 2017-07-31 19:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-08-08 22:09 - 2017-07-31 19:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-08-08 22:09 - 2017-07-31 19:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-08-08 22:09 - 2017-07-31 19:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-08-08 22:09 - 2017-07-31 19:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-08-08 22:09 - 2017-07-31 19:33 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-08 22:09 - 2017-07-31 19:32 - 002444704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-08 22:09 - 2017-07-31 19:32 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-08 22:09 - 2017-07-31 19:32 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-08 22:09 - 2017-07-31 19:31 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 002645680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000723680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000410160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000315288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-08 22:09 - 2017-07-31 19:26 - 000204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-08 22:09 - 2017-07-31 19:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-08-08 22:09 - 2017-07-31 19:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-08-08 22:09 - 2017-07-31 19:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-08-08 22:09 - 2017-07-31 19:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-08-08 22:09 - 2017-07-31 19:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-08-08 22:09 - 2017-07-31 19:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-08-08 22:09 - 2017-07-31 19:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-08-08 22:09 - 2017-07-31 19:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-08-08 22:09 - 2017-07-31 19:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-08-08 22:09 - 2017-07-31 19:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-08-08 22:09 - 2017-07-31 19:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dl l
2017-08-08 22:09 - 2017-07-31 19:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-08-08 22:09 - 2017-07-31 19:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-08-08 22:09 - 2017-07-31 19:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-08-08 22:09 - 2017-07-31 19:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-08-08 22:09 - 2017-07-31 19:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-08-08 22:09 - 2017-07-31 18:57 - 023677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-08 22:09 - 2017-07-31 18:45 - 001275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-08 22:09 - 2017-07-31 18:44 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-08 22:09 - 2017-07-31 18:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-08-08 22:09 - 2017-07-31 18:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-08 22:09 - 2017-07-31 18:42 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-08 22:09 - 2017-07-31 18:40 - 017366528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-08 22:09 - 2017-07-31 18:40 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-08 22:09 - 2017-07-31 18:39 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-08 22:09 - 2017-07-31 18:38 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-08 22:09 - 2017-07-31 18:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-08 22:09 - 2017-07-31 18:36 - 023681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-08 22:09 - 2017-07-31 18:35 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-08-08 22:09 - 2017-07-31 18:34 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-08 22:09 - 2017-07-31 18:33 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-08 22:09 - 2017-07-31 18:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-08 22:09 - 2017-07-31 18:32 - 007336960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-08 22:09 - 2017-07-31 18:32 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 012786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 001396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 008209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 002055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-08 22:09 - 2017-07-31 18:30 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-08 22:09 - 2017-07-31 18:28 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-08 22:09 - 2017-07-31 18:28 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-08-08 22:09 - 2017-07-31 18:26 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-08 22:09 - 2017-07-31 18:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-08-08 22:09 - 2017-07-31 18:25 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-08-08 22:09 - 2017-07-31 18:25 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-08-08 16:27 - 2017-08-08 16:28 - 000000000 ___HD C:\7e1b197988dcf5ad4a9391ddfe6621
2017-08-03 10:27 - 2017-07-27 22:20 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-03 10:27 - 2017-07-27 21:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-08-03 10:27 - 2017-07-27 21:26 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-03 10:27 - 2017-07-27 21:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-08-03 10:27 - 2017-07-27 21:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-08-03 10:27 - 2017-07-27 21:08 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-03 10:26 - 2017-07-27 21:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-08-03 10:26 - 2017-07-27 21:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-08-03 10:26 - 2017-07-27 21:33 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-08-03 10:26 - 2017-07-27 21:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-03 10:26 - 2017-07-27 21:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-08-03 10:26 - 2017-07-27 21:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-08-03 10:26 - 2017-07-27 21:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-08-03 10:26 - 2017-07-27 21:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-08-03 10:26 - 2017-07-27 21:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-08-03 10:26 - 2017-07-27 21:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-08-03 10:26 - 2017-07-27 21:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-08-03 10:26 - 2017-07-27 21:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-08-03 10:26 - 2017-07-27 21:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-08-03 10:26 - 2017-07-27 21:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-08-03 10:26 - 2017-07-27 21:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-08-03 10:26 - 2017-07-27 21:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-08-03 10:25 - 2017-07-27 22:23 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-03 10:25 - 2017-07-27 22:15 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-03 10:25 - 2017-07-27 22:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-08-03 10:25 - 2017-07-27 21:48 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-08-03 10:25 - 2017-07-27 21:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-08-03 10:25 - 2017-07-27 21:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-08-03 10:25 - 2017-07-27 21:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayR eady.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-08-03 10:25 - 2017-07-27 21:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-08-03 10:25 - 2017-07-27 21:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-08-03 10:25 - 2017-07-27 21:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade .dll
2017-08-03 10:25 - 2017-07-27 21:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-08-03 10:25 - 2017-07-27 21:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authenticatio n.Web.Core.dll
2017-08-03 10:25 - 2017-07-27 21:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-08-03 10:25 - 2017-07-27 21:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-08-03 10:25 - 2017-07-27 21:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-08-03 10:25 - 2017-07-27 21:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-08-03 10:25 - 2017-07-27 21:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-08-03 10:25 - 2017-07-27 21:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-08-03 10:25 - 2017-07-27 21:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-08-03 10:25 - 2017-07-27 21:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-08-03 10:25 - 2017-07-27 21:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-08-03 10:24 - 2017-07-27 21:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-08-03 10:24 - 2017-07-27 21:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-08-03 10:24 - 2017-07-27 21:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-08-03 10:24 - 2017-07-27 21:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-08-03 10:24 - 2017-07-27 21:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-08-03 10:24 - 2017-07-27 21:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-08-03 10:24 - 2017-07-27 21:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-08-03 10:24 - 2017-07-27 21:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-08-03 10:24 - 2017-07-27 21:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-08-03 10:24 - 2017-07-27 21:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-08-03 10:24 - 2017-07-27 21:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-08-03 10:24 - 2017-07-27 21:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-08-03 10:24 - 2017-07-27 21:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-08-03 10:24 - 2017-07-27 21:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-08-03 10:23 - 2017-07-27 21:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-08-03 10:22 - 2017-07-27 21:24 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-03 10:21 - 2017-07-27 21:21 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-03 10:20 - 2017-07-27 22:10 - 002679200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-03 10:20 - 2017-07-27 21:19 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-03 10:20 - 2017-07-27 21:19 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-03 10:20 - 2017-07-27 21:16 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-03 10:18 - 2017-07-27 22:09 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-03 10:17 - 2017-07-27 22:25 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-03 10:17 - 2017-07-27 21:25 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-03 10:17 - 2017-07-27 21:19 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-03 10:16 - 2017-07-27 22:13 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-03 10:16 - 2017-07-27 22:13 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-03 10:16 - 2017-07-27 22:09 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-08-03 10:16 - 2017-07-27 21:21 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-03 10:16 - 2017-07-27 21:13 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-03 10:16 - 2017-07-27 21:12 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-03 10:14 - 2017-07-27 22:24 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-03 10:14 - 2017-07-27 22:24 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-03 10:14 - 2017-07-27 22:17 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-03 10:14 - 2017-07-27 22:09 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-03 10:14 - 2017-07-27 21:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-08-03 10:14 - 2017-07-27 21:22 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-03 10:14 - 2017-07-27 21:19 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-03 10:14 - 2017-07-27 21:18 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-03 10:14 - 2017-07-27 21:07 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-03 10:13 - 2017-07-27 22:24 - 002327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-03 10:13 - 2017-07-27 22:13 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-03 10:13 - 2017-07-27 21:21 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-03 10:13 - 2017-07-27 21:19 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-03 10:13 - 2017-07-27 21:07 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-03 10:13 - 2017-07-27 21:07 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dl l
2017-08-03 10:13 - 2017-07-27 21:07 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-03 10:12 - 2017-07-27 22:23 - 002969888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-03 10:12 - 2017-07-27 22:16 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-03 10:12 - 2017-07-27 22:15 - 005302968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-03 10:12 - 2017-07-27 22:14 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-03 10:12 - 2017-07-27 22:12 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-03 10:12 - 2017-07-27 21:26 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-03 10:12 - 2017-07-27 21:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade .dll
2017-08-03 10:12 - 2017-07-27 21:14 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-03 10:12 - 2017-07-27 21:12 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-03 10:12 - 2017-07-27 21:06 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-03 10:10 - 2017-07-27 22:24 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-03 10:10 - 2017-07-27 22:22 - 000923048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-03 10:10 - 2017-07-27 22:13 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-03 10:10 - 2017-07-27 22:13 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-03 10:10 - 2017-07-27 22:12 - 021353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-03 10:10 - 2017-07-27 21:29 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-03 10:10 - 2017-07-27 21:26 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-03 10:10 - 2017-07-27 21:26 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-03 10:10 - 2017-07-27 21:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-08-03 10:10 - 2017-07-27 21:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-08-03 10:10 - 2017-07-27 21:21 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-03 10:10 - 2017-07-27 21:19 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authenticatio n.Web.Core.dll
2017-08-03 10:10 - 2017-07-27 21:15 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-03 10:10 - 2017-07-27 21:08 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-03 10:09 - 2017-07-27 22:12 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-03 10:09 - 2017-07-27 21:25 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-03 10:09 - 2017-07-27 21:24 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-03 10:09 - 2017-07-27 21:23 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-03 10:09 - 2017-07-27 21:22 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-03 10:09 - 2017-07-27 21:21 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapReque stHandler.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-03 10:09 - 2017-07-27 21:17 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-03 10:09 - 2017-07-27 21:16 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-03 10:09 - 2017-07-27 21:14 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-03 10:09 - 2017-07-27 21:13 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-03 10:09 - 2017-07-27 21:12 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-03 10:09 - 2017-07-27 21:06 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-03 10:09 - 2017-07-27 21:05 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-03 10:08 - 2017-07-27 22:30 - 001068720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-03 10:08 - 2017-07-27 22:14 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-03 10:08 - 2017-07-27 22:10 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-03 10:08 - 2017-07-27 21:31 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-03 10:08 - 2017-07-27 21:29 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-03 10:08 - 2017-07-27 21:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-08-03 10:08 - 2017-07-27 21:25 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-03 10:08 - 2017-07-27 21:23 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReducti on.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-03 10:08 - 2017-07-27 21:22 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-03 10:08 - 2017-07-27 21:21 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications .dll
2017-08-03 10:08 - 2017-07-27 21:20 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-03 10:08 - 2017-07-27 21:18 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dl l
2017-08-03 10:08 - 2017-07-27 21:17 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-03 10:08 - 2017-07-27 21:17 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-03 10:08 - 2017-07-27 21:15 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-03 10:08 - 2017-07-27 21:10 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-03 10:07 - 2017-07-27 22:16 - 000961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-03 10:07 - 2017-07-27 22:15 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-03 10:07 - 2017-07-27 22:15 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-03 10:07 - 2017-07-27 22:13 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayR eady.dll
2017-08-03 10:07 - 2017-07-27 22:13 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-03 10:07 - 2017-07-27 22:12 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-03 10:07 - 2017-07-27 21:30 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-08-03 10:07 - 2017-07-27 21:26 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-03 10:07 - 2017-07-27 21:22 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-03 10:07 - 2017-07-27 21:20 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-03 10:07 - 2017-07-27 21:19 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-03 10:07 - 2017-07-27 21:18 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.deskt op.dll
2017-08-03 10:07 - 2017-07-27 21:17 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-03 10:07 - 2017-07-27 21:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.oneco re.dll
2017-08-03 10:07 - 2017-07-27 21:15 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.G att.dll
2017-08-03 10:07 - 2017-07-27 21:13 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-03 10:07 - 2017-07-27 21:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-03 10:07 - 2017-07-27 21:12 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-03 10:07 - 2017-07-27 21:12 - 002444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-03 10:07 - 2017-07-27 21:11 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-03 10:07 - 2017-07-27 21:10 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-03 10:07 - 2017-07-27 21:09 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-03 10:07 - 2017-07-27 21:09 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-03 10:07 - 2017-07-27 21:06 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-03 10:07 - 2017-07-27 21:05 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-03 10:07 - 2017-07-27 21:05 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-03 10:07 - 2017-07-27 21:05 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-03 10:07 - 2017-07-27 21:05 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-03 10:06 - 2017-07-27 21:23 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-02 02:45 - 2012-09-25 00:52 - 003867040 _____ C:\WINDOWS\system32\PortChanger.exe
2017-08-02 02:45 - 2012-09-25 00:52 - 002398112 _____ (Hewlett Packard) C:\WINDOWS\system32\hppldcoi.dll
2017-08-02 02:45 - 2012-09-25 00:52 - 000151968 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4.sys
2017-08-02 02:45 - 2012-09-25 00:52 - 000049056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4usb.sys
2017-08-02 02:45 - 2012-09-25 00:52 - 000019872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4Scan.sys
2017-08-02 02:29 - 2017-08-02 02:29 - 009891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2017-08-02 02:29 - 2017-08-02 02:29 - 004332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2017-08-02 02:29 - 2017-08-02 02:29 - 000420832 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2017-08-02 02:29 - 2017-08-02 02:29 - 000084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2017-08-02 02:20 - 2017-08-02 02:20 - 000831685 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2017-08-02 02:16 - 2017-08-02 02:16 - 005799386 _____ C:\WINDOWS\system32\igdclbif.bin
2017-08-02 02:16 - 2017-08-02 02:16 - 000225280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2017-08-02 02:15 - 2017-08-02 02:16 - 003972096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 019861504 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 005688832 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 004368896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000388608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000318464 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000266232 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2017-08-02 02:14 - 2017-08-02 02:15 - 029101560 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 004934144 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 002393160 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 001858632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000439288 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000416256 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000103936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000099840 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-08-02 02:13 - 2017-08-02 02:14 - 015488920 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2017-08-02 02:13 - 2017-08-02 02:13 - 013483192 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2017-08-02 02:12 - 2017-08-02 02:12 - 013655032 _____ (Intel Corporation) C:\WINDOWS\system32\ig8icd64.dll
2017-08-02 02:12 - 2017-08-02 02:12 - 010329088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig8icd32.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 005262848 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 002142208 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 001009664 _____ C:\WINDOWS\system32\igfxSDK.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000950784 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000947200 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000756224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000705024 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.d ll
2017-08-02 02:11 - 2017-08-02 02:11 - 000641530 _____ C:\WINDOWS\system32\FilmModeDetection.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000449536 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000403671 _____ C:\WINDOWS\system32\ImageStabilization.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000398848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000390144 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000384512 _____ C:\WINDOWS\system32\igfxTray.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000375173 _____ C:\WINDOWS\system32\ColorImageEnhancement.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000356352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000337408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000273408 _____ C:\WINDOWS\system32\igfxCPL.cpl
2017-08-02 02:11 - 2017-08-02 02:11 - 000254976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000251392 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000219648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000215040 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000214528 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000111616 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000103416 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000100864 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000095232 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000084992 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000055240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000052736 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000029184 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000029184 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000027648 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000027648 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000022528 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000022528 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000000935 _____ C:\WINDOWS\system32\Gfxv4_0.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000935 _____ C:\WINDOWS\system32\DPTopologyApp.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000895 _____ C:\WINDOWS\system32\Gfxv2_0.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000895 _____ C:\WINDOWS\system32\DPTopologyAppv2_0.exe.config
2017-08-02 02:10 - 2017-08-02 02:11 - 000220160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4624.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 006696824 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 005137296 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 002813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2017-08-02 02:10 - 2017-08-02 02:10 - 001816712 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001814056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001590784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001178624 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000511260 _____ C:\WINDOWS\system32\cp_resources.bin
2017-08-02 02:10 - 2017-08-02 02:10 - 000431104 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000284160 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000242152 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000223240 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000205344 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000193016 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000183968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000182944 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000181832 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000173568 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000160264 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000160256 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000157696 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2017-08-02 02:09 - 2017-08-02 02:10 - 039864472 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2017-08-02 02:08 - 2017-08-02 02:09 - 038903384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2017-08-02 02:07 - 2017-08-02 02:08 - 033479864 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 004270672 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 004240208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 000312296 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2017-08-02 02:06 - 2017-08-02 02:07 - 016457272 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2017-08-02 02:05 - 2017-08-02 02:06 - 034823448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 013070648 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 000297152 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 000005412 _____ C:\WINDOWS\system32\iglhxs64lp.vp
2017-08-02 02:04 - 2017-08-02 02:05 - 007407080 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64lp.sys
2017-08-02 02:00 - 2017-08-02 02:00 - 000877424 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2017-08-02 02:00 - 2017-08-02 02:00 - 000866640 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2017-08-02 02:00 - 2017-08-02 02:00 - 000737960 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2017-08-02 01:59 - 2017-08-02 02:00 - 001016928 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 003410832 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 003122656 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 001435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000984912 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000868176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000691680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000526280 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000381408 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000258856 _____ (TODO: ) C:\WINDOWS\system32\slprp64.dll
2017-08-02 01:57 - 2017-08-02 01:59 - 072520704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-08-02 01:57 - 2017-08-02 01:57 - 012951320 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-08-02 01:56 - 2017-08-02 01:56 - 003516984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 003509200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 003205120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 002210784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 001347136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-08-02 01:55 - 2017-08-02 01:55 - 005874144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-08-02 01:55 - 2017-08-02 01:55 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-08-02 01:55 - 2017-08-02 01:55 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-07-18 16:18 - 2017-07-18 16:19 - 000000000 ____D C:\Users\eddie\OpenVPN
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-08-16 01:03 - 2017-04-11 16:55 - 000000000 ___RD C:\Users\eddie\OneDrive
2017-08-16 01:01 - 2017-04-11 20:03 - 000000000 __SHD C:\Users\eddie\IntelGraphicsProfiles
2017-08-14 02:25 - 2017-04-11 20:15 - 000000000 __RDX C:\Users\eddie\OneDrive\Documents\Extra
2017-08-14 01:23 - 2017-04-11 20:16 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\WinRAR
2017-08-14 00:25 - 2017-03-18 13:57 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2017-08-14 00:24 - 2017-04-11 16:51 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-08-14 00:24 - 2017-03-18 13:57 - 000430848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-08-14 00:20 - 2017-04-13 18:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Games
2017-08-08 23:44 - 2017-06-26 14:45 - 000000779 _____ C:\Users\eddie\Desktop\SSF2.lnk
2017-07-18 13:30 - 2017-06-26 15:39 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Facebook
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-08-13 23:57
==================== End of FRST.txt ============================
[HEADING=1]Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-08-2017
Ran by eddie (16-08-2017 15:27:57)
Running from C:\Users\eddie\Desktop
Windows 10 Pro Version 1703 (X64) (2017-08-14 07:23:51)
Boot Mode: Normal[/HEADING]
==================== Accounts: =============================
Administrator (S-1-5-21-2896426177-3843145535-1853849027-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2896426177-3843145535-1853849027-503 - Limited - Disabled)
eddie (S-1-5-21-2896426177-3843145535-1853849027-1001 - Administrator - Enabled) => C:\Users\eddie
Guest (S-1-5-21-2896426177-3843145535-1853849027-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {0C515E80-E355-69BD-3445-A511E5C186FD}
AS: COMODO Advanced Protection (Enabled - Up to date) {B730BF64-C56F-6633-0EF5-9E639E46CC40}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Enabled) {346ADFA5-A93A-68E5-1F1A-0C241B12C186}
==================== Installed Programs ======================
(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Advanced SystemCare 10 (HKLM-x32...\Advanced SystemCare_is1) (Version: 10.5.0 - IObit)
Auslogics Disk Defrag (HKLM-x32...{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 7.1.5.0 - Auslogics Labs Pty Ltd)
CCleaner (HKLM...\CCleaner) (Version: 5.33 - Piriform)
Classic Shell (HKLM...{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Comodo Dragon (HKLM-x32...\Comodo Dragon) (Version: 58.0.3029.113 - Comodo)
COMODO Internet Security Premium (HKLM...{8E048D96-59B5-4BD8-A5D0-8FFCFC161A5A}) (Version: 10.0.1.6258 - COMODO Security Solutions Inc.) Hidden
COMODO Internet Security Premium (HKLM...\COMODO Internet Security) (Version: 10.0.1.6258 - COMODO Security Solutions Inc.)
COMODO Secure Shopping (HKLM-x32...{D15DF9B0-3A98-4BEF-B7D5-FC3AEA421657}) (Version: 1.1.99.0 - COMODO) Hidden
COMODO Secure Shopping (HKLM-x32...\Comodo Secure_Shopping_list_uninstall) (Version: 1.1.421657.99 - Comodo)
DriverUpdate (HKLM...{C2A1552C-0027-4E26-9E81-78CD02DEB71F}) (Version: 4.1.2 - Slimware Utilities Holdings, Inc.) Hidden
DriverUpdate (HKLM...\DriverUpdate) (Version: 4.1.2 - Slimware Utilities Holdings, Inc.)
Google Chrome (HKLM-x32...\Google Chrome) (Version: 60.0.3112.101 - Google Inc.)
Google Update Helper (HKLM-x32...{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Internet Security Essentials (HKLM-x32...\ComodoIse) (Version: 1.2.422025.92 - Comodo)
Java 8 Update 144 (64-bit) (HKLM...{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Malwarebytes version 3.1.2.1733 (HKLM...{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\OneDriveSetup.exe) (Version: 17.3.6963.0807 - Microsoft Corporation)
Mozilla Firefox 56.0 (x64 en-US) (HKLM...\Mozilla Firefox 56.0 (x64 en-US)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM...\MozillaMaintenanceService) (Version: 56.0 - Mozilla)
OpenVPN 2.4.3-I602 (HKLM...\OpenVPN) (Version: 2.4.3-I602 - OpenVPN Technologies, Inc.)
pCloud Drive (HKLM-x32...{5824F8F8-E59E-42CB-98FA-B1F329A58BB9}) (Version: 3.5.7 - pCloud AG) Hidden
pCloud Drive (HKLM-x32...{d8e9b125-0436-4a92-94b8-0097dbf23a3d}) (Version: 3.5.7.0 - pCloud AG)
Realtek Card Reader (HKLM-x32...{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.31235 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32...{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.13.1223.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32...{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8216 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.9 (HKLM...{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
Synaptics Pointing Device Driver (HKLM...\SynTPDeinstKey) (Version: 19.3.31.6 - Synaptics Incorporated)
TAP-Windows 9.21.2 (HKLM...\TAP-Windows) (Version: 9.21.2 - )
Windows Desktop Gadgets (HKLM...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
WinRAR 5.50 beta 6 (64-bit) (HKLM...\WinRAR archiver) (Version: 5.50.6 - win.rar GmbH)
Wise Force Deleter 1.4.6 (HKLM-x32...\Wise Force Deleter_is1) (Version: 1.4.6 - WiseCleaner.com, Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ pCloudINPROGRESS] → {D8BFAFBD-B670-4252-9C17-9CF1C64C2BAF} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2016-11-17] (TODO: )
ShellIconOverlayIdentifiers: [ pCloudINSYNC] → {8D0C0582-552A-4A6B-9455-DA63E1F329C0} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2016-11-17] (TODO: )
ShellIconOverlayIdentifiers: [ pCloudNOSYNC] → {3858ED1B-8F1C-42ED-A8A9-FDBF591E3C6B} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2016-11-17] (TODO: )
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] → {AB8F5A1D-F87B-4E34-9D77-65D2615BEB3A} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (/n software, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] → {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] → {AB8F5A1D-F87B-4E34-9D77-65D2615BEB3A} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (/n software, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] → {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
ContextMenuHandlers1: [Advanced SystemCare] → {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2016-09-20] (IObit)
ContextMenuHandlers1: [Comodo Antivirus] → {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO)
ContextMenuHandlers1: [ContextMenuExtension] → {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] → {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-02] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] → {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-02] (Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] → {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2016-09-20] (IObit)
ContextMenuHandlers2: [Auslogics Disk Defrag Shell Context Menu 7.x] → {CC89327D-D094-5D27-82CB-F989EE26FC51} => C:\Program Files (x86)\Auslogics\Disk Defrag\ShellExtension.ContextMenu.x64.dll [2017-07-27] (Auslogics)
ContextMenuHandlers2: [Comodo Antivirus] → {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO)
ContextMenuHandlers3: [Auslogics Disk Defrag Shell Context Menu 7.x] → {CC89327D-D094-5D27-82CB-F989EE26FC51} => C:\Program Files (x86)\Auslogics\Disk Defrag\ShellExtension.ContextMenu.x64.dll [2017-07-27] (Auslogics)
ContextMenuHandlers3: [MBAMShlExt] → {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers4: [Advanced SystemCare] → {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2016-09-20] (IObit)
ContextMenuHandlers4: [Auslogics Disk Defrag Shell Context Menu 7.x] → {CC89327D-D094-5D27-82CB-F989EE26FC51} => C:\Program Files (x86)\Auslogics\Disk Defrag\ShellExtension.ContextMenu.x64.dll [2017-07-27] (Auslogics)
ContextMenuHandlers4: [ContextMenuExtension] → {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] → {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => → No File
ContextMenuHandlers5: [igfxDTCM] → {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-08-02] (Intel Corporation)
ContextMenuHandlers6: [Comodo Antivirus] → {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO)
ContextMenuHandlers6: [MBAMShlExt] → {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [RUShellExt] → {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
ContextMenuHandlers6: [StartMenuExt] → {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2017-08-13] (IvoSoft)
ContextMenuHandlers6: [WinRAR] → {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-02] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] → {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-02] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0B959917-3528-44FA-A618-DD66F24691D5} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {2529B177-0509-4702-BA49-FF1D8C59A7DC} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {50515B46-7D9D-4A7F-803A-045867D0AD30} - System32\Tasks\ASC10_SkipUac_eddie => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2017-08-07] (IObit)
Task: {7B0F3311-DDDF-4F52-9C4B-7310D1F63587} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {7BB95E82-52B7-432E-AD5F-CEEA54A2B32F} - System32\Tasks\Auslogics\Disk Defrag\Start Disk Defrag On eddie Logon => C:\Program Files (x86)\Auslogics\Disk Defrag\DiskDefrag.exe [2017-07-27] (Auslogics)
Task: {8E812564-8E75-4BF8-A3F2-4AF73053B39F} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {90E61B0B-4158-42F4-84A3-FA8401A03CEC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-14] (Google Inc.)
Task: {9123AC40-7DC0-4EF3-847D-C25074057FFC} - System32\Tasks\DriverUpdate Scan => C:\Program Files\DriverUpdate\DriverUpdate.exe [2017-07-31] (SlimWare Utilities, Inc.)
Task: {9686D31E-04B5-4290-B6BA-28F14BC714DE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {9E7F93F7-887A-4FF5-A842-0D33D45729AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-14] (Google Inc.)
Task: {A24BA1E2-81E7-4CDC-9AE1-FA20784F9388} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2896426177-3843145535-1853849027-1001
Task: {B09219E1-52F8-4B5B-A864-94C93E4E341D} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2017-07-11] (COMODO)
Task: {B73AF37E-9221-4E5F-8FD2-470DE8020F2A} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {D781C52C-6FC0-4FDA-8180-0F8BEFE6681C} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {D955C4AD-0427-4EB9-BF2B-D0B59756D047} - System32\Tasks\Auslogics\Disk Defrag\Scheduled Defragmentation => rundll32.exe TaskSchedulerHelper.dll,RunTask “DiskDefrag.exe” “/UseTray /Scheduler”
Task: {EE84B776-442E-4FC1-A069-80F265E7B26E} - System32\Tasks\ASC10_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2017-07-24] (IObit)
Task: {F55CA907-44A0-4B1D-BA8B-7DB45D5E9FCE} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {FB279480-44E8-4B72-867F-D7C566531A1E} - System32\Tasks\ASC10_AutoCare => C:\Program Files (x86)\IObit\Advanced SystemCare\AutoCare.exe [2017-05-23] (IObit)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\DriverUpdate Scan.job => C:\Program Files\DriverUpdate\DriverUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\eddie\Desktop\PC Help Forum.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=illdlgkhakmollnophmajedfblhpijak
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\Chrome Remote Desktop.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\File System for OneDrive.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=jbfdfcehgafdbfpniaimfbfomafoadgo
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\Google Hangouts.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\System.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=ocjnemjmlhjkeilmaidemofakmpclcbi
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\Wake Up!.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=lbbcfplbfbmimpnlammmeaheakhcogke
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\WeatherBug.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=njkkjobcechefaoknodniidfjapgfoco
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gmail.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=pjkljhegncpnkpknbcohdijeoejaedia
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Web Store.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=ahfgeienlihckogmohjhadlkjgocpleb
==================== Loaded Modules (Whitelisted) ==============
2017-08-16 00:27 - 2017-06-27 12:06 - 002260432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-07-11 12:42 - 2017-07-11 12:42 - 000156352 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdwrhlp.dll
2017-07-11 12:40 - 2017-07-11 12:40 - 000107200 _____ () C:\Program Files\COMODO\COMODO Internet Security\cavwpps.dll
2017-07-11 12:41 - 2017-07-11 12:41 - 000244928 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll
2016-03-16 11:25 - 2016-03-16 11:25 - 000073912 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2017-03-18 13:58 - 2017-03-18 13:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000384512 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-03-18 13:59 - 2017-03-18 19:31 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw 5n1h2txyewy\Cortana.Core.dll
2017-07-14 06:26 - 2017-07-14 06:26 - 000638592 _____ () C:\Program Files\OpenVPN\bin\openvpn-gui.exe
2017-08-14 14:41 - 2017-08-11 00:40 - 003824472 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.101\libg lesv2.dll
2017-08-14 14:41 - 2017-08-11 00:40 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.101\libe gl.dll
2017-08-14 02:16 - 2017-08-14 02:16 - 000054488 _____ () C:\Program Files\CCleaner\branding.dll
2017-08-03 10:12 - 2017-07-27 22:18 - 004125088 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDel iveryManager_cw5n1h2txyewy\ContentDeliveryManager. Background.dll
2017-03-18 13:59 - 2017-03-18 19:31 - 002487712 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDel iveryManager_cw5n1h2txyewy\ContentManagementSDK.dl l
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Min imal\MBAMService => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Net work\MBAMService => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Net work\str => “”=“service”
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-08-15 01:30 - 2017-08-15 16:41 - 000001359 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 keystone.mwbsys.com
0.0.0.0 telemetry.malwarebytes.com
91.209.196.83 download.comodo.com
91.209.196.83 www.download.comodo.com
127.0.0.1 idb.iobit.com
127.0.0.1 asc55.iobit.com
127.0.0.1 is360.iobit.com
127.0.0.1 www.asc55.iobit.com
127.0.0.1 asc.iobit.com
127.0.0.1 pf.iobit.com
127.0.0.1 98.129.229.186
0.0.0.0 keystone.mwbsys.com
0.0.0.0 telemetry.malwarebytes.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001\Control Panel\Desktop\Wallpaper → C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.254.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Pol icies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Exp lorer => (SmartScreenEnabled: Warn)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM...\StartupApproved\Run: => “SecurityHealth”
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{FCFE65AB-2442-4A73-B8FF-8B12810382E6}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{42BC09F9-68F9-49B5-86A6-54FA904E5B9D}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{6818C011-599B-437F-BFEA-0DFD8D69923F}C:\program files (x86)\pcloud drive\pcloud.exe] => (Allow) C:\program files (x86)\pcloud drive\pcloud.exe
FirewallRules: [UDP Query User{71C348A0-5C57-4F71-B870-DB5012115947}C:\program files (x86)\pcloud drive\pcloud.exe] => (Allow) C:\program files (x86)\pcloud drive\pcloud.exe
FirewallRules: [{F8B36C69-0C6C-4ECD-891A-B1C1CEAAD1EB}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{CEFED888-4883-47A5-850E-E0DCA6383D80}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
==================== Restore Points =========================
14-08-2017 02:50:40 Installed Classic Shell
15-08-2017 00:32:17 System Checkpoint
15-08-2017 03:35:37 System Checkpoint
16-08-2017 02:22:18 System Checkpoint
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click “Update Driver”, which starts the Hardware Update wizard.
==================== Event log errors: =========================
[HEADING=1]Application errors:[/HEADING]
Error: (08/16/2017 12:28:38 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.
Context: Windows Application, SystemIndex Catalog
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
Error: (08/16/2017 12:28:26 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: The search service has detected corrupted data files in the index {id=3800}. The service will attempt to automatically correct this problem by rebuilding the index.
Context: Windows Application, SystemIndex Catalog
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
[HEADING=1]System errors:[/HEADING]
Error: (08/16/2017 12:17:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Software Protection service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Error: (08/16/2017 12:17:35 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Software Protection service to connect.
[HEADING=1]CodeIntegrity:[/HEADING]
Date: 2017-08-16 14:58:00.750
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
Date: 2017-08-16 14:58:00.718
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.d ll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-16 13:58:06.430
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
Date: 2017-08-16 13:58:06.361
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.d ll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-16 12:58:03.287
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
Date: 2017-08-16 12:58:03.266
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.d ll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-16 12:51:31.062
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
Date: 2017-08-16 12:51:31.040
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.d ll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-16 12:22:31.349
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-08-16 12:19:22.223
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) CPU N3700 @ 1.60GHz
Percentage of memory in use: 81%
Total physical RAM: 3938.3 MB
Available physical RAM: 732.46 MB
Total Virtual: 6494.65 MB
Available Virtual: 1125.83 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:447.82 GB) (Free:389.05 GB) NTFS
Drive d: (Recovery Warranty) (Fixed) (Total:4.88 GB) (Free:1.52 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (UNTITLED) (Removable) (Total:119.08 GB) (Free:95.78 GB) exFAT
Drive p: (pCloud Drive) (Removable) (Total:500 GB) (Free:461.93 GB) exFAT
==================== MBR & Partition Table ==================
================================================== ======
Disk: 0 (Size: 465.8 GB) (Disk ID: F3CF06FA)
Partition: GPT.
================================================== ======
Disk: 1 (Size: 119.1 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================Comment
-
Have anything bad been found or is it all clean?Comment
-
Please download Junkware Removal Tool and save it on your desktop.
[ul]
[li]Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts.[/li][/ul]
[ul]
[li]Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator.[/li][/ul]
[ul]
[li]The tool will open and start scanning your system.[/li][/ul]
[ul]
[li]Please be patient as this can take a while to complete depending on your system’s specifications.[/li][/ul]
[ul]
[li]On completion, a log is saved to your desktop and will automatically open.[/li][/ul]
[ul]
[li]Please post the JRT log.[/li][/ul]
We will need a log from AdwCleaner for further information.
Please download a copy of AdwCleaner from HERE, it is important to download it to your desktop.
Once downloaded to the desktop AdwCleaner will create an icon https://pchelpforum.net/attachments/...160702-jpg.828
Should you receive any security warnings or your User Account Control warning appears whilst you are using this application you can safely allow AdwCleaner to continue.
Before running AdwCleaner please ensure all other programs and browsers are closed, then double left click the icon to open it.
AdwCleaner will open, click the scan button to start searching.
The scan may take some time to complete, and when it has any malware found will be automatically selected for quarantining. Click the “Cleaning” button.
After a few seconds a message should tell you your computer will now reboot. Allow the reboot.
When the computer restarts a log file will be displayed, but if its closed for any reason before copying the contents, you will find a copy of the file if you navigate to C:\AdwCleaner[s#].txt
Please Copy and Paste the contents of the log file with your next reply.Comment
-
Here’s the results.
File System: 9Code:Junkware Removal Tool (JRT) by Malwarebytes Version: 8.1.4 (07.09.2017) Operating System: Windows 10 Pro x64 Ran by eddie (Administrator) on Wed 08/16/2017 at 21:15:11.22
Failed to delete: C:\Program Files\driverupdate (Folder)
Successfully deleted: C:\ProgramData\productdata (Folder)
Successfully deleted: C:\ProgramData\slimware utilities inc (Folder)
Successfully deleted: C:\ProgramData\Start Menu\Programs\driverupdate (Folder)
Successfully deleted: C:\Users\eddie\AppData\Local\slimware utilities inc (Folder)
Successfully deleted: C:\Users\eddie\AppData\Roaming\Mozilla\Firefox\Pro files\oomuvn3h.default\user.js (File)
Successfully deleted: C:\users\Public\Documents\downloaded installers (Folder)
Successfully deleted: C:\WINDOWS\system32\Tasks\DriverUpdate Scan (Task)
Successfully deleted: C:\WINDOWS\Tasks\DriverUpdate Scan.job (Task)
Registry: 5
Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run \GoogleChromeAutoLaunch_E3F5740D1C7070D0CABB3741A4 F94C0C (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects{2DD257A3-5028-41AE-A1E7-A12F76A08893} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\Curren tVersion\Explorer\Browser Helper Objects{2DD257A3-5028-41AE-A1E7-A12F76A08893} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\Curren tVersion\Explorer\Browser Helper Objects{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} (Registry Key)
[HEADING=1]AdwCleaner 7.0.1.0 - Logfile created on Thu Aug 17 04:34:07 2017[/HEADING]Code:Scan was completed on Wed 08/16/2017 at 21:25:50.77 End of JRT log
[HEADING=1]Updated on 2017/05/08 by Malwarebytes[/HEADING]
[HEADING=1]Database: 07-31-2017.1[/HEADING]
[HEADING=1]Running on Windows 10 Pro (X64)[/HEADING]
[HEADING=1]Mode: scan[/HEADING]
[HEADING=1]Support: https://www.malwarebytes.com/support[/HEADING]
***** [ Services ] *****
PUP.Optional.Legacy, AdvancedSystemCareService10
***** [ Folders ] *****
PUP.Optional.AdvancedSystemCare, C:\ProgramData\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\ProgramData\Application Data\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Windows\System32\config\systemprofile\AppData\R oaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files (x86)\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Windows\SysWOW64\config\systemprofile\AppData\R oaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\All Users\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Default\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Default User\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\eddie\AppData\LocalLow\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\eddie\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.Legacy, C:\ProgramData\IObit\ASCDownloader
PUP.Optional.Legacy, C:\ProgramData\Application Data\IObit\ASCDownloader
PUP.Optional.Legacy, C:\Users\All Users\IObit\ASCDownloader
PUP.Optional.Legacy, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
PUP.Optional.DriverUpdate, C:\Program Files\DriverUpdate
PUP.Optional.AuslogicsDriverUpdater, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
PUP.Optional.AuslogicsDriverUpdater, C:\ProgramData\Auslogics
PUP.Optional.AuslogicsDriverUpdater, C:\ProgramData\Application Data\Auslogics
PUP.Optional.AuslogicsDriverUpdater, C:\Program Files (x86)\Auslogics
PUP.Optional.AuslogicsDriverUpdater, C:\Windows\SysNative\Tasks\Auslogics
PUP.Optional.AuslogicsDriverUpdater, C:\Users\All Users\Auslogics
PUP.Adware.Heuristic, C:\ProgramData{74E9F814-C737-42CC-B721-DBBC4059367A}
PUP.Adware.Heuristic, C:\ProgramData{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
PUP.Adware.Heuristic, C:\ProgramData{D76294E6-03B8-4971-AF2E-3F846161A690}
PUP.Adware.Heuristic, C:\ProgramData{EAAB5A83-3809-4B0E-83A6-E4B0DBF2157E}
PUP.Adware.Heuristic, C:\ProgramData{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
***** [ Files ] *****
PUP.Optional.Legacy, C:\Users\All Users\Desktop\Advanced SystemCare 10.lnk
PUP.Optional.Legacy, C:\Users\Public\Desktop\Advanced SystemCare 10.lnk
PUP.Optional.AuslogicsDiskDefrag, C:\Users\eddie\Desktop\Auslogics Disk Defrag.lnk
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Optional.Legacy, ASC10_PerformanceMonitor
PUP.Adware.Heuristic, ASC10_SkipUac_eddie
***** [ Registry ] *****
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IOBIT\ASC
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMEN UHANDLERS\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHAN DLERS\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUH ANDLERS\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\c om.ascplugin.protect
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAcces s\Parameters\FirewallPolicy\FirewallRules | {F8B36C69-0C6C-4ECD-891A-B1C1CEAAD1EB}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAcces s\Parameters\FirewallPolicy\FirewallRules | {CEFED888-4883-47A5-850E-E0DCA6383D80}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2896426177-3843145535-1853849027-1001\Software\SlimWare Utilities Inc
PUP.Optional.Legacy, [Key] - HKCU\Software\SlimWare Utilities Inc
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\Advanced SystemCare_is1
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\50D2B AFD096C90345A82B25A790BDF69
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ins taller\UpgradeCodes\50D2BAFD096C90345A82B25A790BDF 69
PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2896426177-3843145535-1853849027-1001\Software\Microsoft\Windows\CurrentVersion\Run | Advanced SystemCare 10
PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2896426177-3843145535-1853849027-1001\Software\Microsoft\Windows\CurrentVersion\Exp lorer\StartupApproved\Run | Advanced SystemCare 10
PUP.Optional.Legacy, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | Advanced SystemCare 10
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL
PUP.Optional.TenorShare, [Key] - HKLM\SOFTWARE\WISECLEANER
PUP.Optional.DriverUpdate, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\DriverUpdate
PUP.Optional.AuslogicsDriverUpdater, [Key] - HKLM\SOFTWARE\Auslogics
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########Comment
-
I need the AdwCleaner Clean log too pleaseComment
-
Is this it?
[HEADING=1]AdwCleaner 7.0.1.0 - Logfile created on Thu Aug 17 04:35:51 2017[/HEADING]
[HEADING=1]Updated on 2017/05/08 by Malwarebytes[/HEADING]
[HEADING=1]Running on Windows 10 Pro (X64)[/HEADING]
[HEADING=1]Mode: clean[/HEADING]
[HEADING=1]Support: https://www.malwarebytes.com/support[/HEADING]
***** [ Services ] *****
Deleted: AdvancedSystemCareService10
***** [ Folders ] *****
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\ProgramData\Application Data\IObit\ASCDownloader
Deleted: C:\Users\All Users\IObit\ASCDownloader
Deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
Deleted: C:\Program Files\DriverUpdate
Deleted: C:\ProgramData{74E9F814-C737-42CC-B721-DBBC4059367A}
Deleted: C:\ProgramData{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
Deleted: C:\ProgramData{D76294E6-03B8-4971-AF2E-3F846161A690}
Deleted: C:\ProgramData{EAAB5A83-3809-4B0E-83A6-E4B0DBF2157E}
Deleted: C:\ProgramData{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
***** [ Files ] *****
Deleted: C:\Users\All Users\Desktop\Advanced SystemCare 10.lnk
Deleted: C:\Users\Public\Desktop\Advanced SystemCare 10.lnk
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
Deleted: ASC10_PerformanceMonitor
Deleted: ASC10_SkipUac_eddie
***** [ Registry ] *****
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAcces s\Parameters\FirewallPolicy\FirewallRules|{F8B36C6 9-0C6C-4ECD-891A-B1C1CEAAD1EB}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAcces s\Parameters\FirewallPolicy\FirewallRules|{CEFED88 8-4883-47A5-850E-E0DCA6383D80}
Deleted: [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc
Deleted: [Key] - HKU\S-1-5-21-2896426177-3843145535-1853849027-1001\Software\SlimWare Utilities Inc
Deleted: [Key] - HKCU\Software\SlimWare Utilities Inc
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\Advanced SystemCare_is1
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\50D2B AFD096C90345A82B25A790BDF69
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ins taller\UpgradeCodes\50D2BAFD096C90345A82B25A790BDF 69
Deleted: [Value] - HKU\S-1-5-21-2896426177-3843145535-1853849027-1001\Software\Microsoft\Windows\CurrentVersion\Run |Advanced SystemCare 10
Deleted: [Value] - HKU\S-1-5-21-2896426177-3843145535-1853849027-1001\Software\Microsoft\Windows\CurrentVersion\Exp lorer\StartupApproved\Run|Advanced SystemCare 10
Deleted: [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run |Advanced SystemCare 10
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL
Deleted: [Key] - HKLM\SOFTWARE\WISECLEANER
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\DriverUpdate
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
C:/AdwCleaner/AdwCleaner[S0].txt - [6042 B] - [2017/8/17 4:34:7]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########Comment
-
We recommend doing the following:
Please download Geek Uninstaller or use Revo Uninstaller and uninstall the following programs:
IOBit Advanced System Care
SlimWare Utilities
IOBit has since been flagged as PUP due to them stealing MBAM’s databases a long time ago and we do not approve of such devious practices. Slimware installs adware along with their products. CCleaner is a better and free alternative.
After doing so please provide us with fresh FRST logs (Addition.txt and FRST.txt). Please Copy and Paste, do not uploadComment
-
FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-08-2017
Ran by eddie (administrator) on WIN10XP-1703PRO (16-08-2017 22:26:41)
Running from C:\Users\eddie\Desktop
Loaded Profiles: eddie (Available Profiles: eddie)
Platform: Windows 10 Pro Version 1703 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(COMODO) C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(Comodo) C:\Program Files (x86)\COMODO\Dragon\dragon_updater.exe
(The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\Pres entationFontCache.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(Auslogics) C:\Program Files (x86)\Auslogics\Disk Defrag\DiskDefrag.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.ex e
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64. exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw 5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(pCloud AG) C:\Program Files (x86)\pCloud Drive\pCloud.exe
() C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9231328 2017-08-02] (Realtek Semiconductor)
HKLM...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (IvoSoft)
HKLM...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1489088 2017-07-11] (COMODO)
HKLM...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM-x32...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [3632848 2017-07-05] (COMODO)
HKLM-x32...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [7690936 2017-06-30] (COMODO)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [pCloud] => C:\Program Files (x86)\pCloud Drive\pCloud.exe [3885832 2017-06-16] (pCloud AG)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [OpenVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [638592 2017-07-14] ()
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCEnhancer] => E:\CCEnhancer\CCEnhancer-4.4.1.exe [282112 2017-03-06] (SingularLabs)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [GoogleChromeAutoLaunch_E3F5740D1C7070D0CABB3741A4F 94C0C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1301848 2017-08-11] (Google Inc.)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\Policies\Explorer: [NolowDiskSpaceChecks] 1
SSODL: EldosMountNotificator-cbfs6 - {401B8063-779B-4532-BEF0-41FCEE79B79C} - C:\WINDOWS\system32\cbfsMntNtf6.dll (/n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {401B8063-779B-4532-BEF0-41FCEE79B79C} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll (/n software, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
Tcpip..\Interfaces{27427e43-89c9-4d14-b85e-f8cbc9b59dfe}: [DhcpNameServer] 192.168.254.254
[HEADING=1]Internet Explorer:[/HEADING]
SearchScopes: HKU\S-1-5-21-2896426177-3843145535-1853849027-1001 → DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IeUrlFilter Class → {2DD257A3-5028-41AE-A1E7-A12F76A08893} → C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll [2017-06-30] (COMODO)
BHO: ExplorerBHO Class → {449D0D6E-2412-4E61-B68F-1CB625CD9E52} → C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
BHO: Java™ Plug-In SSV Helper → {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} → C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-14] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper → {DBC80044-A445-435b-BC74-9C25C1C588A9} → C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-14] (Oracle Corporation)
BHO: ClassicIEBHO Class → {EA801577-E6AD-4BD5-8F71-4BE0154331A4} → C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (IvoSoft)
BHO-x32: ExplorerBHO Class → {449D0D6E-2412-4E61-B68F-1CB625CD9E52} → C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (IvoSoft)
BHO-x32: ClassicIEBHO Class → {EA801577-E6AD-4BD5-8F71-4BE0154331A4} → C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (IvoSoft)
[HEADING=1]FireFox:[/HEADING]
FF DefaultProfile: oomuvn3h.default
FF ProfilePath: C:\Users\eddie\AppData\Roaming\Mozilla\Firefox\Pro files\oomuvn3h.default [2017-08-16]
FF Extension: (Activity Stream) - C:\Program Files\Mozilla Firefox\browser\features\activity-stream@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Click-to-Play staged rollout) - C:\Program Files\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Follow-on Search Telemetry) - C:\Program Files\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2017-08-10] [not signed]
FF Extension: (Photon onboarding) - C:\Program Files\Mozilla Firefox\browser\features\onboarding@mozilla.org.xpi [2017-08-10] [not signed]
FF Extension: (Shield Recipe Client) - C:\Program Files\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi [2017-08-10] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.144.2 → C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1 .dll [2017-08-14] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 → C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-14] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 → C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 → C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-2896426177-3843145535-1853849027-1001: @unity3d.com/UnityPlayer,version=1.0 → C:\Users\eddie\AppData\LocalLow\Unity\WebPlayer\lo ader\npUnity3D32.dll [2012-05-11] (Unity Technologies ApS)
[HEADING=1]Chrome:[/HEADING]
CHR HomePage: Default → hxxp://getchrome.eu/home/
CHR StartupUrls: Default → “hxxp://getchrome.eu/home”
CHR DefaultSearchKeyword: Default → wiki
CHR Profile: C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default [2017-08-16]
CHR Extension: (ProxFlow) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobj ifikek [2017-08-14]
CHR Extension: (Google Slides) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhon fmgoek [2017-08-14]
CHR Extension: (Security Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\abbpkdnljicgejmkndbncgpeam lcjhom [2017-08-14]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllm pfceif [2017-08-16]
CHR Extension: (GameShark) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\acmchkofncmmkabbadlofeffhc hdmkop [2017-08-14]
CHR Extension: (Movie4K) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\adkbpinkibeobfkgfoolfpnldi fjdedp [2017-08-14]
CHR Extension: (CB Channels) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afdeaaklpenijgadfgaljjnknl baphae [2017-08-14]
CHR Extension: (Microsoft Support) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afiaggegejgnhhkfjpbbplaiga eijppc [2017-08-14]
CHR Extension: (Microsoft Virtual Agent) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahhncecjhnalimedngnkpfacim kmlafh [2017-08-14]
CHR Extension: (My Win10 PC) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhdcannjobjjbbfabajjchlea ccalng [2017-08-14]
CHR Extension: (HD for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgih agponf [2017-08-14]
CHR Extension: (LR EShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akkmbnlaijgepeeldfglekgfaj oiklph [2017-08-14]
CHR Extension: (ToonGet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\almbnkdlegibjhcgfbflpemghh dmalmf [2017-08-14]
CHR Extension: (Google Docs) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfi lokake [2017-08-14]
CHR Extension: (Google Drive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigk jlhalf [2017-08-14]
CHR Extension: (ARChon4Chrome) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbooacojifhcpicigmefgdhaii hjhnmd [2017-08-14]
CHR Extension: (Open with Google Drive™ Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdkpinfdldjdngmgfbifbdbgao ampkan [2017-08-14]
CHR Extension: (Super Nintendo Emulator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\beogeghicacplhninfdmhiianh jimccp [2017-08-14]
CHR Extension: (Bitmoji) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfgdeiadkckfbkeigkoncpdiei iefpig [2017-08-14]
CHR Extension: (Google Groups) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfmbadcfdhiklafcdohpfphhha kmiakk [2017-08-14]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpb ikblnp [2017-08-14]
CHR Extension: (Mingle 2) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjeepgflngbnlkmfikinngokbc ijkean [2017-08-14]
CHR Extension: (Amazon Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjjmjgafamolafiboomfleccci peddim [2017-08-14]
CHR Extension: (Win10 ISO) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjlhajlpdpmfebiokogbjhdgmk ehgcbe [2017-08-14]
CHR Extension: (OpenDNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmeclafhfpefpfndaigmiojll fgmbcm [2017-08-14]
CHR Extension: (YouTube) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldk acnbeo [2017-08-14]
CHR Extension: (1M AppStore) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bminhbeeccgdnghnabbhiafpnd lbkedn [2017-08-14]
CHR Extension: (Facebook) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgd acljfm [2017-08-14]
CHR Extension: (MSN) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cagpfhohgbclhfgfggnbgfhnje hoknpk [2017-08-14]
CHR Extension: (History 2) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahejgbbfgmlmjgdjlibphdjel dhagkp [2017-08-14]
CHR Extension: (Amazon) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\camkdhjofheljkflfmfgbnajgj nhlopf [2017-08-14]
CHR Extension: (Update) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbkkihljhphdkjhiabaomgfnin kfihhe [2017-08-14]
CHR Extension: (Toons Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdibbihehmddkghfgiblbflocp hmmooc [2017-08-14]
CHR Extension: (Snoopy vs. The Red Baron) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfalonhgbljhcmcajnbdebedcj doblnl [2017-08-14]
CHR Extension: (Adblock Plus) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddi lifddb [2017-08-14]
CHR Extension: (Pushbullet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjl cfhogd [2017-08-14]
CHR Extension: (OneNote Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhf llbkmo [2017-08-14]
CHR Extension: (Monopoly Empire game | Play Kids Games Online | Hasbro) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjdhdhilfeoikokoiakkgnckkn aekled [2017-08-14]
CHR Extension: (YT2MP3) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjhmdjffbkdmddmdmmbabiaclo jaomeg [2017-08-14]
CHR Extension: (TechSupportGuy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckffimcpiheacclckfmmdcbhbm fmfikd [2017-08-14]
CHR Extension: (TWC Internet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckifgoknanfhclklbfjlpblncj pdfmfj [2017-08-14]
CHR Extension: (Microsoft Flow) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clldiedkmkolghagmnpmnoljbh ijiboi [2017-08-14]
CHR Extension: (HP ENVY) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clpdjjcfniihldhfchnjbilada pnbahi [2017-08-14]
CHR Extension: (MAFYT Settings) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmelobemnghobnlpdfmmbejdoa leajcf [2017-08-14]
CHR Extension: (SSF2 Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnlencpcagccinnhoijdgmobkm fhalcc [2017-08-14]
CHR Extension: (Harakirimail extension) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coaagmonnnldglbilekplfnphp dencce [2017-08-14]
CHR Extension: (ComputerHelpForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhjgghkoimcbpnbgjikmpgff kgajfk [2017-08-14]
CHR Extension: (Holy Bible) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\damfhmjfmeiigloagjpelmocjo eobdno [2017-08-14]
CHR Extension: (MSN) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dccnabnbnagheglhfmgdcjlcjb eibaje [2017-08-14]
CHR Extension: (Chase Online ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcofdmelmmjneoonenbhpagpbp iojkhf [2017-08-14]
CHR Extension: (Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeoh mmeldh [2017-08-14]
CHR Extension: (3DS Pedia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfkhponeglmiiobiihilahinlc kifjjh [2017-08-14]
CHR Extension: (Fus.Fall Legacy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmdnngojpofdigdidplfaebnj ohmfng [2017-08-14]
CHR Extension: (Tampermonkey) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmp obfkfo [2017-08-14]
CHR Extension: (Janifer Boston) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhpkkleekhaceehoigfcnaaidj oleflh [2017-08-14]
CHR Extension: (Glitch Game) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djahbfbhacphllgemcekmdnlil ahhmge [2017-08-14]
CHR Extension: (Nintendo Chat) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djeppnpeahmgfaohhidhjpipjk ahimfe [2017-08-14]
CHR Extension: (Google+) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdi dnckmm [2017-08-14]
CHR Extension: (NORAD Tracks Santa) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmkoneajelflpbfjpchjaiglip efmnki [2017-08-14]
CHR Extension: (Frontier DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnabfpdnbkmdmcoillihefhnjj knnona [2017-08-14]
CHR Extension: (Skype) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dolkddbfbhledadcdepacaljbg lglcoe [2017-08-14]
CHR Extension: (Sumo Paint) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpgjihldbpodlmnjolekemlfbc ajnmod [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebgecmolaheocnobalndebpehp imdghi [2017-08-14]
CHR Extension: (Inbox) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\edmijkelpnflahpdblkkobimcp lcgmgj [2017-08-14]
CHR Extension: (Amazon Shop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eecahhmlcjafclfkjodjjgllpm cmkgko [2017-08-14]
CHR Extension: (Novelty, OH Weather Forecast and Cond…) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eenemnbihadgbcjemdnobckofm iihfnk [2017-08-14]
CHR Extension: (Shortcut to Twitter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\efcdnfkhiiafogbhcainplbbge mgaaen [2017-08-14]
CHR Extension: (YouTubeDownloader) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eieafdgibiahkjdgdccmldmjid glnbjj [2017-08-14]
CHR Extension: (Google Fourms) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejiggjokppepehmfdngjefbhje heknmp [2017-08-14]
CHR Extension: (Cast Setup) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejliejcnhkkaaipdgkeiihbefh jeoemp [2017-08-14]
CHR Extension: (Outlook Calendar) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejppoecfdibjchmpdcphbanegd jebcgo [2017-08-14]
CHR Extension: (HelpSupport Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekimmgolelbekdhafemjekjhke mpbkfd [2017-08-14]
CHR Extension: (Comodo AdBlocker) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhcnbjoomhmifmfeggoalmplb lcmcin [2017-08-14]
CHR Extension: (Chrome Goodies) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\emmdmeocdlghmhbfjaldhjahnf bkbpck [2017-08-14]
CHR Extension: (Google Play) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\enffghkdjcgkndjodbaelocgmc bmbhpp [2017-08-14]
CHR Extension: (Filter by WOT) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eomhfalemadkajmgmppkoenihl ljdjoj [2017-08-14]
CHR Extension: (Update Windows 10) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\epejeipipakmkmdfnkpghcjfme igpggo [2017-08-14]
CHR Extension: (G SSH2 SWF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabhojopefodnkcighibfcnamg mplloh [2017-08-14]
CHR Extension: (Skype) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fajdleioencnfbnmiienoibkoi mkooli [2017-08-14]
CHR Extension: (Old EShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fanigphfdfepmnelohpfhcpeco ekibml [2017-08-14]
CHR Extension: (DiskImager) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdfeicageglnlelmohmkojdjcc gkdmcb [2017-08-14]
CHR Extension: (FREE App Creator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdhglomjccccgggpeabmiadbpm ofeedc [2017-08-14]
CHR Extension: (Motorola) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fekllafapcbanabhhooobibaan mndalm [2017-08-14]
CHR Extension: (Google Sheets) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpeb giejap [2017-08-14]
CHR Extension: (Assistance) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdhgdfhcclnmednjibbajgcpc pppknl [2017-08-14]
CHR Extension: (FB Game Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijlioglnahpdajepoinkodleg kolkam [2017-08-14]
CHR Extension: (Villionaire) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fimebapbdliodpciaalpoijonh dfhhkd [2017-08-14]
CHR Extension: (Word Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinb ehmajg [2017-08-14]
CHR Extension: (G SSH SWF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fipamjmedinmfclljanbjhhbdk finpkc [2017-08-14]
CHR Extension: (Nintendo ThemeShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkhaiaahhhomnfnnjhmnkkhloo gihnfa [2017-08-14]
CHR Extension: (EMails) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fknmbhaaehfdjpmooilcabjgoo ldjdoo [2017-08-14]
CHR Extension: (Google Voice ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fldbfpjncfkebegiobhnjanbok dlbnij [2017-08-14]
CHR Extension: (Rufus) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljfobnflghnobgffmkpjddbde hgmfol [2017-08-14]
CHR Extension: (Who’s on first?) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljmpldncihcmabdfjkgonhijj kpbgkl [2017-08-14]
CHR Extension: (Norton DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\focoenonfjfpphaadindagmhli jgklak [2017-08-14]
CHR Extension: (Nintendo CS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpdddhjdalfonhmejlkcfhjcck healoc [2017-08-14]
CHR Extension: (Chrome Remote Desktop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihen igjmpp [2017-08-14]
CHR Extension: (SPdate) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmnahlpnikhhgldfmeajheocd ileadd [2017-08-14]
CHR Extension: (Super Mario) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdljahompmnjdcmnlcfeobicdp epefbf [2017-08-14]
CHR Extension: (Outlook Calendar) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegmdadojdijhnemaeolhalohe lcagod [2017-08-14]
CHR Extension: (Network Test) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\geklcdelofkoldghehnhggalmo ahklbi [2017-08-14]
CHR Extension: (Homebrew Browser) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gffjnhndecndnepbjpmaloifck dmgcac [2017-08-14]
CHR Extension: (About GPG Services) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggaoeklfaibbbipibbalclmnll ojibkh [2017-08-14]
CHR Extension: (Google Docs Offline) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdl olhkhi [2017-08-14]
CHR Extension: (Click&Clean) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmame dcbeod [2017-08-14]
CHR Extension: (Anyfile Notepad) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghlichmdnegmcpafgmmlpkegmc ndlndi [2017-08-14]
CHR Extension: (Outlook People) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\giafdibgibbipnlecfckidkecm pkedho [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjaejhlejagppekogippmigjbk djmcdk [2017-08-14]
CHR Extension: (Open PayPal) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\glghgmejmmepalcnengjekjfmf bailbl [2017-08-14]
CHR Extension: (Google Wallet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\glhhiiglleiipdnodkaabbbbjh epnbcb [2017-08-14]
CHR Extension: (Save to Google Drive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeaba ddhgne [2017-08-14]
CHR Extension: (Bookmark Manager) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapj opfjik [2017-08-14]
CHR Extension: (UnRAR and RAR Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\goeclnlkhfoejbhdebemhjljlm cbhfkp [2017-08-14]
CHR Extension: (Drive Notepad) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgjomejfimnbmobcocilppikh ncegaj [2017-08-14]
CHR Extension: (Win10 Keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpjminmgekffdgiancflhaojkg jcdgmc [2017-08-14]
CHR Extension: (Microsoft Assistance) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplepoifohkaepkncehnpljcee ljlabi [2017-08-14]
CHR Extension: (WC Forums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbiinloenjigabpbdlogbimfgb opcfce [2017-08-14]
CHR Extension: (Bing) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfbcjnjfeolgeoddhcdjpogocm pkmncp [2017-08-14]
CHR Extension: (GSSH.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmckcabobcmbdlimkenccopfn pokmie [2017-08-14]
CHR Extension: (GV Phone) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmpoeaghekodfplkofpeabpni pphcjh [2017-08-14]
CHR Extension: (Outlook Tasks) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkaimcgnicopmhblimdmfjahhi fkfcoi [2017-08-14]
CHR Extension: (Dead Skin) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjjcekgbjlpiegjcdmmpojnda jlndok [2017-08-14]
CHR Extension: (RomsEShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hohhmomfljojjeaaehdcocalfp ejjccc [2017-08-14]
CHR Extension: (USPS Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\idammebdkcmcjhminehllfamif enkhbn [2017-08-14]
CHR Extension: (Android Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbnciaeojfhgeihkflgcgajop fjeohg [2017-08-14]
CHR Extension: (Get Human) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifcelejocgjieghblljgkemmnl ejjlep [2017-08-14]
CHR Extension: (CB Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igabecodgkgfkdhglpojbnbobb naajai [2017-08-14]
CHR Extension: (SEGA Bandonware) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igelfoafbodelegelfonpkaned mogdpm [2017-08-14]
CHR Extension: (OMG! Chrome!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igpknfbadalohcopbkaepbgblo mnbdma [2017-08-14]
CHR Extension: (Frontier Internet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihjgglhacdljfhmlinhcagchbk cgdhio [2017-08-14]
CHR Extension: (Zip, UnZip App) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiaianhgacnhnnhejddkghikgn hgpeaa [2017-08-14]
CHR Extension: (Bible Questions Answered) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiipijolbcononkgjpepkplcch majanm [2017-08-14]
CHR Extension: (Apps Launcher) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmgkhchjindcjamnckoiahage cjnkdc [2017-08-14]
CHR Extension: (Office Support) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikhblhjgapcilfennndodceemd oomngn [2017-08-14]
CHR Extension: (Excel Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijl fjfgnb [2017-08-14]
CHR Extension: (PC Help Forum) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\illdlgkhakmollnophmajedfbl hpijak [2017-08-14]
CHR Extension: (COSwallpapers) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\inpceamnbdnjkljfebkpdgfnnf ckopap [2017-08-14]
CHR Extension: (HTML5 Flash Warning Fix for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipdkokhdeppifjgcmhbfgmjmdl lfpkln [2017-08-14]
CHR Extension: (File System for OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfdfcehgafdbfpniaimfbfoma foadgo [2017-08-14]
CHR Extension: (OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbjamgmfdlbplimhkomcjjlemj addogn [2017-08-14]
CHR Extension: (PCTechForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jecdgjmkjbcagbkoifleegbplp naobfa [2017-08-14]
CHR Extension: (Microsoft Update Catalog) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgndoofkbbhhfcoldgjcakej ekefcd [2017-08-14]
CHR Extension: (SSF2 Game) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgplhfbmmkajpgnpldoaafagam bccjje [2017-08-14]
CHR Extension: (BibleGateway) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjmdfkmnphhfgilhfofaiffmhj lnopan [2017-08-14]
CHR Extension: (SM Trial Keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jljcdndcgbkbjonffogpnljgan habgmj [2017-08-14]
CHR Extension: (Save to Facebook) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhc lendgd [2017-08-14]
CHR Extension: (Holy Bible) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jomemcnjdjkjipodmcpfjhiolo ioplfh [2017-08-14]
CHR Extension: (CDFF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kahonebhcmapeomaemhjakphnp ffhhhf [2017-08-14]
CHR Extension: (My Sway) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnmjbpdljgcffbninlkelpbfm bbbohp [2017-08-14]
CHR Extension: (North Pole Radio) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdggiihhdpfglclmfghofjbiag onaplo [2017-08-14]
CHR Extension: (Chrome Web Store) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfknblmmckdmlklbncfodpomfo ejlbgm [2017-08-14]
CHR Extension: (Range Extender Setup) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgaimanaoiiecgbljbpjhkdica ogkinf [2017-08-14]
CHR Extension: (4Shared) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khdleokphdcnmagagajnchlcma cfphan [2017-08-14]
CHR Extension: (CB Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khomnbdfmhfppiemgglncdlbbn ppffdo [2017-08-14]
CHR Extension: (Pure Flix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kiiijkmmlfiofadnffcomgcmdl ppddhd [2017-08-14]
CHR Extension: (Novelty, OH Weather Conditions & Fore…) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkphahjiaiaahfhcbedhbgfpod bojbje [2017-08-14]
CHR Extension: (MyAptoideBU) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\klpdcjojlnaceggdkglndamdma onfnpi [2017-08-14]
CHR Extension: (Google Hangouts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgoln pehhpl [2017-08-14]
CHR Extension: (Google Play) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdi abikfi [2017-08-14]
CHR Extension: (GSSH2.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\laekopehhnfklajodmbbhdfhmk fbnblc [2017-08-14]
CHR Extension: (Wake Up!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbbcfplbfbmimpnlammmeaheak hcogke [2017-08-14]
CHR Extension: (AnimeDub Mobile) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbdcckpbjegpnhhdejaipegkab kofhla [2017-08-14]
CHR Extension: (Twitter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lddagfjihimnacaabfnfagjcok fmnekc [2017-08-14]
CHR Extension: (Aptoide) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhhjndfejaoaiaaokjmhoiedpp dmknki [2017-08-14]
CHR Extension: (AnimeDub) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhnnmimodonfbnmpgmcjahlbla enkgle [2017-08-14]
CHR Extension: (Files2Zip) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhoadfgjeimckjlphkdebfmhbp eniljo [2017-08-14]
CHR Extension: (USPS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\liocengmpmiiejdoebmlifecbm cpfigg [2017-08-14]
CHR Extension: (Wikipedia Search) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lipakennkogpodadpikgipnoga mhklmk [2017-08-14]
CHR Extension: (MSN Games - Free Online Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkbgddpallgbhlldcnnjomnodm ohpklf [2017-08-14]
CHR Extension: (IHeart Christmas) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndoiaoagbajoadpgmfgckfckm chepmj [2017-08-14]
CHR Extension: (Google Maps) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbea pigfbh [2017-08-14]
CHR Extension: (SSB) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lockfglcfjlaagpghflagedkkg ojipke [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\locmdgkcjcjacipaokcoochhjh pklbih [2017-08-14]
CHR Extension: (B1 File Extracter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbgobeedadfbponkgffobhpmok jmlhol [2017-08-14]
CHR Extension: (Documents Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbhgihpdipbgifogehncdehebk pehoap [2017-08-14]
CHR Extension: (GoogleDNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbogpnkehmjcidggfooapenefh ckeehd [2017-08-14]
CHR Extension: (PowerPoint Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkg cbpnhp [2017-08-14]
CHR Extension: (Messenger (Unofficial)) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngab fpibok [2017-08-14]
CHR Extension: (GoogleFuchsia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mejnaonfdocegokbjldkeafifp nfnpan [2017-08-14]
CHR Extension: (CN Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mekgfnmophledbpkmikhnfkimo ahjohn [2017-08-14]
CHR Extension: (CraigTechShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfbfebnljjciechbmlehdcmnmd hacgmi [2017-08-14]
CHR Extension: (COMODO DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfnnnpncpeeecbbdepenkkgpjo enkbbo [2017-08-14]
CHR Extension: (T-Mobile) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhpgceapcpooallmggianccbak egnhnb [2017-08-14]
CHR Extension: (V.FreeMovies) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkopchcfcbchhnbpldmdjfbdhg kcpgkn [2017-08-14]
CHR Extension: (CB Central) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlieflpkidahjkojakjlpnlnch obihbl [2017-08-14]
CHR Extension: (ZIP Extractor) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmfcakoljjhncfphlflcedhgog fhpbcd [2017-08-14]
CHR Extension: (GC Options) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmmanlicckcagdkabbemhccfpm gojncl [2017-08-14]
CHR Extension: (My Google Account) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnepgpaicadoimgdlajhkgokfe naadkh [2017-08-14]
CHR Extension: (PogoTM) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmklochmlghbgebbmkldomoih jbgfie [2017-08-14]
CHR Extension: (Nintendo Pedia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mogfngbfndeeecglaejajbioeg pimija [2017-08-14]
CHR Extension: (What’s on Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbeopbccnmkgdlbpicobflenbj ceoaka [2017-08-14]
CHR Extension: (Chrome OS Features) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbjdhanphhipjfkmicljakgnba icfojk [2017-08-14]
CHR Extension: (Ws on Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncjendjahmgpgjdeenknmdoeco fmfdod [2017-08-14]
CHR Extension: (Google Hangouts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanao iihapd [2017-08-14]
CHR Extension: (Reload It) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nconjighkgcoppohfilfinlimd fmjafg [2017-08-14]
CHR Extension: (Games4Summer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndphblldagopagiodebolhdjoh gindbm [2017-08-14]
CHR Extension: (OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoa bngedk [2017-08-14]
CHR Extension: (UNetbootin - Homepage and Downloads) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhanbcbjhjcgpccibphcicaink kinool [2017-08-14]
CHR Extension: (SupportSpace) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nigmaeimafjgjfodjfhnancnah feindg [2017-08-14]
CHR Extension: (FedEx Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikgcnimkfeopobooaahjpbdkd fhchao [2017-08-14]
CHR Extension: (SEGA Online Emulator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nilhogoffgcdfgmejcjpidfaie fpccpl [2017-08-14]
CHR Extension: (WeatherBug) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\njkkjobcechefaoknodniidfja pgfoco [2017-08-14]
CHR Extension: (Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nklbmhejmcjofglijalidajdli hahnpd [2017-08-14]
CHR Extension: (Archive Extractor) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nknadlalodfadgegkigkmbhofc mkhfnc [2017-08-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccm gmieda [2017-08-14]
CHR Extension: (Win10 Pro keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnelnnlfcdhjfbfglandknndlo nidojg [2017-08-14]
CHR Extension: (Toonova) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nobhijfkaffjbkocimaaembibg genkdc [2017-08-14]
CHR Extension: (Frontier) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nofcknkefjengmgmlnmdmgbmla khhnok [2017-08-14]
CHR Extension: (SM63.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\noijjjifnenaafboiipobhiflm iaimof [2017-08-14]
CHR Extension: (Chrome OS EOL) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\npmnpehbihaieehmoaifdkdlcg ndmpjn [2017-08-14]
CHR Extension: (System) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocjnemjmlhjkeilmaidemofakm pclcbi [2017-08-14]
CHR Extension: (COMODO GeekBuddy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oebmcdnandbcnfmpjecmmhcoog fneelj [2017-08-14]
CHR Extension: (Google Santa Tracker) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehagbcimlpafjbdijnjmabobl cfdnoh [2017-08-14]
CHR Extension: (PDF Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdf madadm [2017-08-14]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljb ihmemj [2017-08-15]
CHR Extension: (App Store) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogffnakkboiaoifjbhjbahamkd ojaemm [2017-08-14]
CHR Extension: (EPForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oimkklcnelpdlkkbjjablakand mmddio [2017-08-14]
CHR Extension: (Fullscreen Anything) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\olcfgpmjldkkjdclidhcboniei bfhhdh [2017-08-14]
CHR Extension: (SM 63) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldjcgpcnneleakkepogfghceh njcngf [2017-08-14]
CHR Extension: (YouTube™ Flash-HTML5) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\omimccinlhlkpjaeaocglgmkbe lejlhj [2017-08-14]
CHR Extension: (Christian Date) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompnolbokepechjidcgpaddaae oocajn [2017-08-14]
CHR Extension: (Consumer AV Providers) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ongfjpmgcneinonelpaljjdaig ppnneo [2017-08-14]
CHR Extension: (Putlocker ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ookjcnljofpnadeabapgadihfh ngblfe [2017-08-14]
CHR Extension: (Nintendo RomShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pahokmgpomeaakdfnahejklhci fhaige [2017-08-14]
CHR Extension: (Microsoft Office Home) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\palennhedgekbnbmokheidadmg hcncgl [2017-08-14]
CHR Extension: (I Heart Radio) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcbnpgdibikphcelmkjldlfjj epjipl [2017-08-14]
CHR Extension: (Click&Clean App) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidf mibmhp [2017-08-14]
CHR Extension: (Shortcuts for Google™ Products) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdlecffodcfabchelafoljcdph fpkpcl [2017-08-14]
CHR Extension: (Date Countdown) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfbpikfaigmikdjkghbkbapjhf oglipj [2017-08-14]
CHR Extension: (Data Saver) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmgfdlgomnbgkofeojodiodmg pgmkac [2017-08-14]
CHR Extension: (Outlook.com) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnik fnhoge [2017-08-14]
CHR Extension: (Bing) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\phfegmcgballapgnbppeeidcke jebknn [2017-08-14]
CHR Extension: (Super Smash Bros For NDS !!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pifamkpimegbfnakceigajiljj odcfla [2017-08-14]
CHR Extension: (Gmail) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoe jaedia [2017-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcj beemfm [2017-08-14]
CHR Extension: (OMG! Ubuntu!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmoodaljflkhbojjaiibgnlind bhebme [2017-08-14]
CHR Extension: (EBay) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppaellakmlibbcfkgkmbkkllnh cmghca [2017-08-14]
CHR Extension: (Google Contacts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppbiamkfhlcpgijakdgbbffikm kkofnl [2017-08-14]
CHR Extension: (Apps On Chrome) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppmdjabijijblhfhnbgcpnoamk ibcclm [2017-08-14]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [10501104 2017-07-11] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2017-07-11] (COMODO)
R2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [3210936 2017-06-30] (COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2273432 2017-08-08] (Comodo)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [356352 2017-08-02] (Intel Corporation)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [133840 2017-07-05] (COMODO)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (The OpenVPN Project)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324576 2017-08-02] (Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-04-11] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269912 2017-01-17] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-19] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (/n software, Inc.)
R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [126056 2017-03-31] (COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [40936 2017-06-02] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [831992 2017-06-02] (COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [50776 2017-06-02] (COMODO)
S3 dot4; C:\WINDOWS\System32\drivers\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [72584 2017-01-12] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [67976 2017-01-12] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77376 2017-06-27] ()
R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd64lp.sys [7407080 2017-08-02] (Intel Corporation)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [132880 2017-06-07] (COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [62208 2017-03-29] (COMODO)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [188352 2017-08-16] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [101784 2017-08-16] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [45472 2017-08-16] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-16] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [93600 2017-08-16] (Malwarebytes)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [947712 2017-02-15] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [420832 2017-08-02] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [6804480 2017-05-03] (Realtek Semiconductor Corporation )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [60504 2017-01-17] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [64088 2017-01-17] (Synaptics Incorporated)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [146200 2015-10-15] (Intel Corporation)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (/n software, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64 .sys [30392 2017-04-25] (HP)
S3 WiseUnlock; C:\WINDOWS\WiseUnlock64.sys [33864 2017-08-15] (WiseCleaner.com)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-08-16 22:26 - 2017-08-16 22:28 - 000052421 _____ C:\Users\eddie\Desktop\FRST.txt
2017-08-16 22:26 - 2017-08-16 22:26 - 000000000 ____D C:\FRST
2017-08-16 22:24 - 2017-08-16 22:24 - 002395648 _____ (Farbar) C:\Users\eddie\Desktop\FRST64.exe
2017-08-16 22:21 - 2017-08-16 22:21 - 000000000 ___HD C:\OneDriveTemp
2017-08-16 22:19 - 2017-08-16 22:19 - 000000180 _____ C:\WINDOWS\system32{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-08-16 21:53 - 2017-08-16 21:53 - 000000000 ____D C:\ProgramData{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-08-16 21:28 - 2017-08-16 21:53 - 000000000 ____D C:\ProgramData\ProductData
2017-08-16 21:27 - 2017-08-16 21:35 - 000000000 ____D C:\AdwCleaner
2017-08-16 21:08 - 2017-08-16 21:08 - 000003656 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnele vatedTask
2017-08-16 20:40 - 2017-08-16 20:40 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2017-08-16 20:40 - 2017-08-16 20:40 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxinit.dll
2017-08-16 20:40 - 2017-08-16 20:40 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\UltraUXThemePatcher
2017-08-16 20:40 - 2017-08-16 20:40 - 000000000 ____D C:\Program Files (x86)\UltraUXThemePatcher
2017-08-16 20:40 - 2017-06-19 22:05 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll.backup
2017-08-16 20:40 - 2017-03-18 13:58 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxinit.dll.backup
2017-08-16 20:39 - 2017-08-16 20:39 - 000587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2017-08-16 20:39 - 2017-03-18 13:58 - 000587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll.backup
2017-08-16 18:43 - 2017-08-16 18:43 - 000000000 ____D C:\Users\eddie\AppData\Local\Unity
2017-08-16 00:37 - 2017-08-16 00:37 - 000000000 ____D C:\Users\Default\AppData\Roaming\IObit
2017-08-16 00:37 - 2017-08-16 00:37 - 000000000 ____D C:\Users\Default User\AppData\Roaming\IObit
2017-08-16 00:29 - 2017-08-16 00:29 - 000188352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-08-16 00:28 - 2017-08-16 22:19 - 000101784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-08-16 00:28 - 2017-08-16 22:19 - 000093600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-08-16 00:27 - 2017-08-16 22:19 - 000045472 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-08-16 00:27 - 2017-08-16 00:27 - 000001927 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-08-16 00:27 - 2017-08-16 00:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-08-16 00:27 - 2017-08-16 00:27 - 000000000 ____D C:\Program Files\Malwarebytes
2017-08-16 00:27 - 2017-06-27 12:06 - 000077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-08-16 00:25 - 2017-08-16 22:19 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-08-16 00:24 - 2017-08-16 00:27 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-15 18:07 - 2017-08-15 18:13 - 000000000 ____D C:\Users\eddie\AppData\Local\PackageStaging
2017-08-15 12:57 - 2017-08-15 12:59 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Wise Force Deleter
2017-08-15 12:57 - 2017-08-15 12:57 - 000033864 _____ (WiseCleaner.com) C:\WINDOWS\WiseUnlock64.sys
2017-08-15 12:57 - 2017-08-15 12:57 - 000001287 _____ C:\Users\Public\Desktop\Wise Force Deleter.lnk
2017-08-15 12:57 - 2017-08-15 12:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Force Deleter
2017-08-15 12:57 - 2017-08-15 12:57 - 000000000 ____D C:\Program Files (x86)\Wise
2017-08-15 03:39 - 2017-08-15 03:39 - 000000000 ____D C:\WINDOWS\System32\Tasks\Games
2017-08-15 03:29 - 2017-08-15 03:29 - 000000000 ____D C:\WINDOWS\System32\Tasks\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000001357 _____ C:\Users\eddie\Desktop\Auslogics Disk Defrag.lnk
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\ProgramData\Auslogics
2017-08-15 03:24 - 2017-08-15 03:24 - 000000000 ____D C:\Program Files (x86)\Auslogics
2017-08-15 03:21 - 2017-08-15 03:21 - 000000000 ___HD C:\VTRoot
2017-08-15 02:25 - 2017-08-15 02:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-08-15 02:25 - 2017-08-15 02:25 - 000000000 ____D C:\Program Files (x86)\Realtek
2017-08-15 02:25 - 2017-02-15 21:50 - 000947712 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2017-08-15 02:25 - 2017-02-15 21:50 - 000082536 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-08-15 01:46 - 2017-08-15 01:46 - 005373952 _____ C:\WINDOWS\system32\config\DRIVERS.iobit
2017-08-15 01:17 - 2017-08-15 01:30 - 000000000 ____D C:\Users\eddie\AppData\Local\CrashDumps
2017-08-15 00:48 - 2017-08-15 00:48 - 000001796 _____ C:\Users\eddie\Desktop\Virtual Kiosk.lnk
2017-08-15 00:31 - 2017-08-15 00:31 - 000002374 _____ C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\OneDrive.lnk
2017-08-14 21:54 - 2017-08-16 22:25 - 000063760 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2017-08-14 21:40 - 2017-08-14 21:40 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2017-08-14 21:40 - 2017-08-14 21:40 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2017-08-14 21:38 - 2017-08-14 21:48 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Comodo
2017-08-14 21:27 - 2017-08-16 22:28 - 001413201 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2017-08-14 21:27 - 2017-08-14 21:27 - 000000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2017-08-14 21:27 - 2017-08-14 21:27 - 000000000 ____D C:\Program Files\COMODO
2017-08-14 21:26 - 2017-06-30 07:08 - 000332472 _____ (COMODO) C:\WINDOWS\system32\cmdkbdcss64.dll
2017-08-14 21:26 - 2017-06-30 07:08 - 000263352 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbdcss32.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000432104 _____ (COMODO) C:\WINDOWS\system32\cssguard64.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000338560 _____ (COMODO) C:\WINDOWS\SysWOW64\cssguard32.dll
2017-08-14 21:26 - 2017-06-30 07:07 - 000048728 _____ (COMODO) C:\WINDOWS\system32\csscsr64.dll
2017-08-14 21:26 - 2017-03-31 23:15 - 000126056 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdcss.sys
2017-08-14 21:25 - 2017-08-14 21:25 - 000000000 ____D C:\Users\eddie\AppData\Local\Comodo
2017-08-14 21:21 - 2017-08-14 21:21 - 000000000 ____D C:\ProgramData\Shared Space
2017-08-14 21:21 - 2017-08-14 21:21 - 000000000 ____D C:\ProgramData\Comodo Downloader
2017-08-14 21:19 - 2017-08-15 01:44 - 000000000 ____D C:\ProgramData\COMODO
2017-08-14 21:19 - 2017-08-15 00:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2017-08-14 21:19 - 2017-08-14 21:47 - 000000000 ____D C:\Program Files (x86)\COMODO
2017-08-14 21:19 - 2017-07-05 00:30 - 000256040 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2017-08-14 21:19 - 2017-07-05 00:29 - 000205536 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2017-08-14 21:19 - 2017-03-29 14:49 - 000062208 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2017-08-14 17:10 - 2017-08-14 17:11 - 000002676 _____ C:\Users\eddie\Desktop\PC Help Forum.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000001018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000001006 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Mozilla
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Mozilla
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-14 16:41 - 2017-08-14 16:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-14 16:12 - 2017-08-14 16:12 - 000000859 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Explorer.lnk
2017-08-14 14:46 - 2017-08-14 15:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps
2017-08-14 14:41 - 2017-08-14 14:41 - 000002357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-14 14:41 - 2017-08-14 14:41 - 000002345 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-14 14:40 - 2017-08-14 14:40 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineU A
2017-08-14 14:40 - 2017-08-14 14:40 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineC ore
2017-08-14 14:28 - 2017-08-14 14:28 - 000000000 ____D C:\WINDOWS\Panther
2017-08-14 14:15 - 2017-08-14 14:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-08-14 14:15 - 2017-08-14 14:15 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-08-14 14:15 - 2017-08-14 14:15 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Sun
2017-08-14 14:15 - 2017-08-14 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-08-14 14:15 - 2017-08-14 14:14 - 000110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-08-14 14:14 - 2017-08-14 14:14 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-08-14 14:13 - 2017-08-14 14:13 - 000000000 ____D C:\ProgramData\Oracle
2017-08-14 14:13 - 2017-08-14 14:13 - 000000000 ____D C:\Program Files\Java
2017-08-14 04:00 - 2017-08-14 04:00 - 000041800 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2017-08-14 03:49 - 2017-08-14 03:49 - 000000000 ____D C:\Users\eddie\AppData\Local\PeerDistRepub
2017-08-14 02:55 - 2017-08-14 02:55 - 069640192 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000491520 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000065536 _____ C:\WINDOWS\system32\config\SAM.iobit
2017-08-14 02:55 - 2017-08-14 02:55 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2017-08-14 02:53 - 2017-08-16 22:16 - 000000000 ____D C:\Users\eddie\AppData\Local\ClassicShell
2017-08-14 02:53 - 2017-08-16 02:33 - 000000000 ____D C:\ProgramData\ClassicShell
2017-08-14 02:53 - 2017-08-14 02:53 - 000000000 ____D C:\Users\eddie\AppData\Roaming\ClassicShell
2017-08-14 02:52 - 2017-08-14 02:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2017-08-14 02:52 - 2017-08-14 02:52 - 000000000 ____D C:\Program Files\Classic Shell
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-08-14 02:33 - 2017-08-14 02:33 - 000000000 ____D C:\ProgramData\BDLogging
2017-08-14 02:26 - 2017-08-14 02:26 - 000565416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-14 02:18 - 2017-08-14 04:54 - 000002956 _____ C:\WINDOWS\System32\Tasks\CCleanerClean
2017-08-14 02:18 - 2017-08-14 04:54 - 000000258 _____ C:\WINDOWS\Tasks\CCleanerClean.job
2017-08-14 02:05 - 2017-08-16 12:42 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-14 02:05 - 2017-08-16 12:39 - 000000000 ____D C:\Program Files\CCleaner
2017-08-14 02:05 - 2017-08-14 02:05 - 000002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-08-14 02:05 - 2017-08-14 02:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-08-14 01:52 - 2017-08-14 01:52 - 000001129 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\Users\eddie\AppData\Local\VS Revo Group
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\ProgramData\VS Revo Group
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-08-14 01:52 - 2017-08-14 01:52 - 000000000 ____D C:\Program Files\VS Revo Group
2017-08-14 01:52 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2017-08-14 01:46 - 2017-08-14 01:46 - 000000000 ____D C:\Users\eddie\AppData\Local\MicrosoftEdge
2017-08-14 01:45 - 2017-08-16 22:07 - 000000000 ____D C:\Users\eddie\AppData\Roaming\IObit
2017-08-14 01:45 - 2017-08-16 22:07 - 000000000 ____D C:\ProgramData\IObit
2017-08-14 01:45 - 2017-08-14 04:53 - 000000000 ____D C:\Program Files (x86)\IObit
2017-08-14 01:37 - 2017-08-14 01:37 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\3C64355F.sys
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\Program Files\TAP-Windows
2017-08-14 01:29 - 2017-08-14 01:30 - 000000000 ____D C:\Program Files\OpenVPN
2017-08-14 01:29 - 2017-08-14 01:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2017-08-14 01:23 - 2017-08-14 01:23 - 000001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2017-08-14 01:23 - 2017-08-14 01:23 - 000000000 ____D C:\Users\eddie\AppData\Roaming\WinRAR
2017-08-14 01:23 - 2017-08-14 01:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-08-14 01:22 - 2017-08-14 01:23 - 000000000 ____D C:\Program Files\WinRAR
2017-08-14 01:16 - 2017-08-14 01:16 - 000000634 _____ C:\Users\eddie\OneDrive\Documents\MagicActions-Options.json
2017-08-14 01:02 - 2017-08-14 04:57 - 000000000 ____D C:\Users\eddie\AppData\Local\pCloud
2017-08-14 00:56 - 2017-08-14 14:41 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Google
2017-08-14 00:56 - 2017-08-14 00:56 - 000000000 ____D C:\WINDOWS\InfusedApps
2017-08-14 00:54 - 2017-08-14 00:54 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-08-14 00:54 - 2017-08-13 23:58 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-08-14 00:52 - 2017-08-14 00:52 - 000000000 ____D C:\Program Files\Synaptics
2017-08-14 00:51 - 2017-08-14 00:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2017-08-14 00:51 - 2017-08-14 00:51 - 000000000 ____D C:\Program Files (x86)\HP
2017-08-14 00:50 - 2017-08-14 00:50 - 000000000 ____D C:\WINDOWS\Setup
2017-08-14 00:50 - 2017-08-14 00:50 - 000000000 ____D C:\Users\eddie\AppData\Local\DBG
2017-08-14 00:49 - 2017-08-14 14:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Google
2017-08-14 00:49 - 2017-08-14 14:40 - 000000000 ____D C:\Program Files (x86)\Google
2017-08-14 00:48 - 2017-08-14 00:49 - 000000000 ____D C:\Users\eddie\AppData\Local\Deployment
2017-08-14 00:48 - 2017-08-14 00:48 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Macromedia
2017-08-14 00:48 - 2017-08-14 00:48 - 000000000 ____D C:\Users\eddie\AppData\Local\Apps\2.0
2017-08-14 00:46 - 2017-08-16 19:02 - 000004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronizatio n-{FA13B12A-B6F1-4CA4-9E37-D55E2EE30D0B}
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\WINDOWS\OCR
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files\MSBuild
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-08-14 00:44 - 2017-08-14 00:44 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\ProgramData\Package Cache
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pCloud
2017-08-14 00:43 - 2017-08-14 00:43 - 000000000 ____D C:\Program Files (x86)\pCloud Drive
2017-08-14 00:43 - 2016-09-09 16:33 - 000018848 _____ (/n software, Inc.) C:\WINDOWS\system32\elevtmsg.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000235424 _____ (/n software, Inc.) C:\WINDOWS\SysWOW64\cbfsNetRdr6.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000196000 _____ (/n software, Inc.) C:\WINDOWS\system32\cbfsMntNtf6.dll
2017-08-14 00:43 - 2016-09-09 16:32 - 000134560 _____ (/n software, Inc.) C:\WINDOWS\system32\cbfsNetRdr6.dll
2017-08-14 00:43 - 2016-09-09 16:31 - 000170400 _____ (/n software, Inc.) C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll
2017-08-14 00:43 - 2016-09-09 16:23 - 000460992 _____ (/n software, Inc.) C:\WINDOWS\system32\Drivers\cbfs6.sys
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\winrm
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\WCN
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\slmgr
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\0409
2017-08-14 00:42 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\DigitalLocker
2017-08-14 00:37 - 2017-07-31 08:15 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-08-14 00:37 - 2017-07-31 08:15 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-08-14 00:32 - 2017-08-14 00:55 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-08-14 00:32 - 2017-08-14 00:27 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-08-14 00:32 - 2017-08-14 00:27 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2017-08-14 00:32 - 2017-08-14 00:27 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2017-08-14 00:32 - 2017-08-14 00:27 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2017-08-14 00:32 - 2017-08-14 00:27 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2017-08-14 00:32 - 2017-08-14 00:27 - 000015940 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2017-08-14 00:32 - 2017-08-14 00:27 - 000004096 _____ C:\WINDOWS\system32\config\VSMIDK
2017-08-14 00:32 - 2017-08-14 00:27 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2017-08-14 00:32 - 2017-08-14 00:27 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2017-08-14 00:32 - 2017-08-14 00:27 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2017-08-14 00:32 - 2017-08-14 00:27 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2017-08-14 00:32 - 2017-08-14 00:27 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2017-08-14 00:32 - 2017-08-14 00:27 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2017-08-14 00:32 - 2017-08-02 02:14 - 000103936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2017-08-14 00:31 - 2017-08-16 20:49 - 000000000 ___RD C:\Program Files (x86)
2017-08-14 00:31 - 2017-08-16 12:31 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-14 00:31 - 2017-08-16 12:31 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-14 00:31 - 2017-08-15 01:44 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2017-08-14 00:31 - 2017-08-14 14:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-14 00:31 - 2017-08-14 03:25 - 000000000 ____D C:\WINDOWS\appcompat
2017-08-14 00:31 - 2017-08-14 03:16 - 000000000 ____D C:\Program Files\Windows Sidebar
2017-08-14 00:31 - 2017-08-14 03:16 - 000000000 ____D C:\Program Files (x86)\Windows Sidebar
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\migwiz
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\Dism
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\Provisioning
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files\Windows Defender
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-08-14 00:31 - 2017-08-14 00:49 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2017-08-14 00:31 - 2017-08-14 00:44 - 000000000 ____D C:\WINDOWS\SystemApps
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\system32\dsc
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\setup
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\MUI
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\system32\Com
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\IME
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\Help
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Common Files\System
2017-08-14 00:31 - 2017-08-14 00:42 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 __RSD C:\WINDOWS\Media
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\system32\Nui
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___SD C:\WINDOWS\system32\AppV
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\icsxml
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\ias
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\downlevel
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\DDFs
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\Registration
2017-08-14 00:31 - 2017-08-14 00:32 - 000000000 ____D C:\WINDOWS\L2Schemas
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Web
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Vss
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\tracing
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\TAPI
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SystemResources
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\winevt
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\ras
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\IME
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\System
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SKB
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\security
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\schemas
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\SchCache
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Resources
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\RemotePackages
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\PLA
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Performance
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\ModemLogs
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\InputMethod
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Globalization
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Cursors
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\Branding
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\bcastdvr
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\addins
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Security
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Portable Devices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows NT
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files\Common Files\Services
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows NT
2017-08-14 00:31 - 2017-08-14 00:31 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2017-08-14 00:31 - 2017-08-14 00:27 - 000000219 _____ C:\WINDOWS\system.ini
2017-08-14 00:31 - 2017-08-14 00:27 - 000000092 _____ C:\WINDOWS\win.ini
2017-08-14 00:31 - 2017-08-14 00:20 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-08-14 00:31 - 2017-08-14 00:19 - 000000000 __RHD C:\Users\Public\Libraries
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\system32\spool
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2017-08-14 00:31 - 2017-08-14 00:16 - 000000000 ____D C:\WINDOWS\CSC
2017-08-14 00:31 - 2017-08-14 00:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-08-14 00:31 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\USOPrivate
2017-08-14 00:31 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\PrintDialog
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\MiracastView
2017-08-14 00:31 - 2017-08-14 00:06 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-08-14 00:31 - 2017-08-14 00:05 - 000000000 ____D C:\WINDOWS\HoloShell
2017-08-14 00:30 - 2017-08-14 00:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Skype
2017-08-14 00:28 - 2017-08-15 23:08 - 000000000 ____D C:\WINDOWS\INF
2017-08-14 00:27 - 2017-08-14 00:27 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-08-14 00:26 - 2017-08-14 00:26 - 000000000 ____D C:\Users\eddie\AppData\Local\Comms
2017-08-14 00:25 - 2017-08-14 13:58 - 000908880 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-14 00:25 - 2017-08-14 00:25 - 000000000 ____D C:\Users\eddie\AppData\Local\Publishers
2017-08-14 00:24 - 2017-08-15 18:41 - 000000000 ____D C:\Users\eddie\AppData\Local\Packages
2017-08-14 00:24 - 2017-08-14 04:56 - 000000000 ____D C:\Users\eddie\AppData\Local\ConnectedDevicesPlatf orm
2017-08-14 00:24 - 2017-08-14 00:24 - 000000020 ___SH C:\Users\eddie\ntuser.ini
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Synaptics
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Adobe
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Local\VirtualStore
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\Users\eddie\AppData\Local\TileDataLayer
2017-08-14 00:24 - 2017-08-14 00:24 - 000000000 ____D C:\ProgramData\Synaptics
2017-08-14 00:23 - 2017-08-14 00:23 - 000000000 _SHDL C:\Users\Default User
2017-08-14 00:23 - 2017-08-14 00:23 - 000000000 _SHDL C:\Users\All Users
2017-08-14 00:21 - 2017-08-16 22:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-14 00:20 - 2017-08-14 00:20 - 000026274 _____ C:\Users\eddie\OneDrive\Documents\Removed Apps.html
2017-08-14 00:18 - 2017-08-14 14:14 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-14 00:15 - 2017-08-16 18:54 - 000000000 ____D C:\Users\eddie
2017-08-14 00:12 - 2017-08-16 22:18 - 082051072 _____ C:\WINDOWS\system32\config\SYSTEM
2017-08-14 00:12 - 2017-08-16 22:18 - 071827456 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-08-14 00:12 - 2017-08-16 22:18 - 009175040 _____ C:\WINDOWS\system32\config\BBI
2017-08-14 00:12 - 2017-08-16 22:18 - 001572864 _____ C:\WINDOWS\system32\config\DEFAULT
2017-08-14 00:12 - 2017-08-16 22:18 - 000057344 _____ C:\WINDOWS\system32\config\SECURITY
2017-08-14 00:12 - 2017-08-14 00:54 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2017-08-14 00:12 - 2017-08-14 00:42 - 000000000 ____D C:\WINDOWS\servicing
2017-08-14 00:12 - 2017-08-14 00:31 - 000000000 ____D C:\WINDOWS\system32\SMI
2017-08-14 00:12 - 2017-08-14 00:23 - 000000000 ___HD C:$Windows.~BT
2017-08-14 00:12 - 2017-08-14 00:22 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-08-14 00:09 - 2017-08-14 00:09 - 000000000 ____D C:\ProgramData\USOShared
2017-08-14 00:04 - 2017-08-14 00:04 - 000021910 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2017-08-14 00:04 - 2017-08-14 00:04 - 000002065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DTS Audio Control.lnk
2017-08-14 00:04 - 2017-08-14 00:04 - 000000200 _____ C:\WINDOWS\system32{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\ProgramData\SRS Labs
2017-08-14 00:04 - 2017-08-14 00:04 - 000000000 ____D C:\Program Files\Realtek
2017-08-14 00:04 - 2017-08-02 02:14 - 000099840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_ 00.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_0101 1.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver _Intel_01011.Wdf
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 ____D C:\Program Files\Intel
2017-08-14 00:03 - 2017-08-14 00:03 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-08-14 00:02 - 2017-03-18 13:56 - 002233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-08-13 23:58 - 2017-08-16 18:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-13 22:50 - 2017-08-14 00:57 - 000000000 ___HD C:$SysReset
2017-08-13 08:49 - 2017-08-13 08:49 - 000291128 _____ (IvoSoft) C:\WINDOWS\system32\StartMenuHelper64.dll
2017-08-13 08:49 - 2017-08-13 08:49 - 000248120 _____ (IvoSoft) C:\WINDOWS\SysWOW64\StartMenuHelper32.dll
2017-08-13 01:40 - 2017-08-15 00:06 - 000000000 ____D C:\Users\eddie\AppData\LocalLow\Mozilla
2017-08-12 23:19 - 2017-08-15 02:24 - 000000000 ___HD C:\SWSetup
2017-08-12 22:31 - 2017-08-14 00:19 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\System Restore Explorer
2017-08-09 02:19 - 2017-08-14 01:45 - 000000000 ____D C:\Users\eddie\AppData\LocalLow\IObit
2017-08-08 22:10 - 2017-07-31 19:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-08-08 22:10 - 2017-07-31 19:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-08-08 22:10 - 2017-07-31 19:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-08-08 22:10 - 2017-07-31 19:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-08-08 22:10 - 2017-07-31 19:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-08-08 22:10 - 2017-07-31 19:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-08-08 22:10 - 2017-07-31 19:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-08-08 22:10 - 2017-07-31 19:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-08-08 22:10 - 2017-07-31 19:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-08-08 22:10 - 2017-07-31 18:30 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-08-08 22:10 - 2017-07-31 15:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-08-08 22:09 - 2017-07-31 19:39 - 008319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-08 22:09 - 2017-07-31 19:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-08-08 22:09 - 2017-07-31 19:38 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-08 22:09 - 2017-07-31 19:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-08-08 22:09 - 2017-07-31 19:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-08 22:09 - 2017-07-31 19:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-08-08 22:09 - 2017-07-31 19:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-08-08 22:09 - 2017-07-31 19:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-08-08 22:09 - 2017-07-31 19:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-08-08 22:09 - 2017-07-31 19:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-08-08 22:09 - 2017-07-31 19:33 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-08 22:09 - 2017-07-31 19:32 - 002444704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-08 22:09 - 2017-07-31 19:32 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-08 22:09 - 2017-07-31 19:32 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-08 22:09 - 2017-07-31 19:31 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 002645680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-08 22:09 - 2017-07-31 19:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000723680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000410160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-08 22:09 - 2017-07-31 19:30 - 000315288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-08 22:09 - 2017-07-31 19:30 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-08 22:09 - 2017-07-31 19:26 - 000204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-08 22:09 - 2017-07-31 19:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-08-08 22:09 - 2017-07-31 19:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-08-08 22:09 - 2017-07-31 19:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-08-08 22:09 - 2017-07-31 19:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-08-08 22:09 - 2017-07-31 19:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-08-08 22:09 - 2017-07-31 19:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-08-08 22:09 - 2017-07-31 19:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-08-08 22:09 - 2017-07-31 19:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-08-08 22:09 - 2017-07-31 19:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-08-08 22:09 - 2017-07-31 19:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-08-08 22:09 - 2017-07-31 19:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dl l
2017-08-08 22:09 - 2017-07-31 19:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-08-08 22:09 - 2017-07-31 19:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-08-08 22:09 - 2017-07-31 19:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-08-08 22:09 - 2017-07-31 19:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-08-08 22:09 - 2017-07-31 19:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-08-08 22:09 - 2017-07-31 18:57 - 023677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-08 22:09 - 2017-07-31 18:45 - 001275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-08 22:09 - 2017-07-31 18:45 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-08 22:09 - 2017-07-31 18:44 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-08 22:09 - 2017-07-31 18:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-08-08 22:09 - 2017-07-31 18:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-08 22:09 - 2017-07-31 18:42 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-08 22:09 - 2017-07-31 18:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-08 22:09 - 2017-07-31 18:40 - 017366528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-08 22:09 - 2017-07-31 18:40 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-08 22:09 - 2017-07-31 18:39 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-08 22:09 - 2017-07-31 18:38 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-08 22:09 - 2017-07-31 18:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-08 22:09 - 2017-07-31 18:37 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-08 22:09 - 2017-07-31 18:36 - 023681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-08 22:09 - 2017-07-31 18:35 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-08-08 22:09 - 2017-07-31 18:34 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-08 22:09 - 2017-07-31 18:33 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-08 22:09 - 2017-07-31 18:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-08 22:09 - 2017-07-31 18:32 - 007336960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-08 22:09 - 2017-07-31 18:32 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 012786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-08 22:09 - 2017-07-31 18:31 - 001396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 008209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 002055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-08 22:09 - 2017-07-31 18:30 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-08 22:09 - 2017-07-31 18:30 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-08 22:09 - 2017-07-31 18:28 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-08 22:09 - 2017-07-31 18:28 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-08-08 22:09 - 2017-07-31 18:27 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-08-08 22:09 - 2017-07-31 18:26 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-08 22:09 - 2017-07-31 18:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-08-08 22:09 - 2017-07-31 18:25 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-08-08 22:09 - 2017-07-31 18:25 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-08-08 22:09 - 2017-07-31 15:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-08-08 16:27 - 2017-08-08 16:28 - 000000000 ___HD C:\7e1b197988dcf5ad4a9391ddfe6621
2017-08-03 10:27 - 2017-07-27 22:20 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-03 10:27 - 2017-07-27 21:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-08-03 10:27 - 2017-07-27 21:26 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-03 10:27 - 2017-07-27 21:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-08-03 10:27 - 2017-07-27 21:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-08-03 10:27 - 2017-07-27 21:08 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-03 10:26 - 2017-07-27 21:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-08-03 10:26 - 2017-07-27 21:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-08-03 10:26 - 2017-07-27 21:33 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-08-03 10:26 - 2017-07-27 21:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-03 10:26 - 2017-07-27 21:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-08-03 10:26 - 2017-07-27 21:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-08-03 10:26 - 2017-07-27 21:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-08-03 10:26 - 2017-07-27 21:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-08-03 10:26 - 2017-07-27 21:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-08-03 10:26 - 2017-07-27 21:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-08-03 10:26 - 2017-07-27 21:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-08-03 10:26 - 2017-07-27 21:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-08-03 10:26 - 2017-07-27 21:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-08-03 10:26 - 2017-07-27 21:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-08-03 10:26 - 2017-07-27 21:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-08-03 10:26 - 2017-07-27 21:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-08-03 10:25 - 2017-07-27 22:23 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-03 10:25 - 2017-07-27 22:15 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-03 10:25 - 2017-07-27 22:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-08-03 10:25 - 2017-07-27 21:48 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-08-03 10:25 - 2017-07-27 21:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-08-03 10:25 - 2017-07-27 21:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-08-03 10:25 - 2017-07-27 21:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayR eady.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-08-03 10:25 - 2017-07-27 21:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-08-03 10:25 - 2017-07-27 21:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-08-03 10:25 - 2017-07-27 21:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-08-03 10:25 - 2017-07-27 21:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade .dll
2017-08-03 10:25 - 2017-07-27 21:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-08-03 10:25 - 2017-07-27 21:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authenticatio n.Web.Core.dll
2017-08-03 10:25 - 2017-07-27 21:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-08-03 10:25 - 2017-07-27 21:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-08-03 10:25 - 2017-07-27 21:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-08-03 10:25 - 2017-07-27 21:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-08-03 10:25 - 2017-07-27 21:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-08-03 10:25 - 2017-07-27 21:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-08-03 10:25 - 2017-07-27 21:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-08-03 10:25 - 2017-07-27 21:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-08-03 10:25 - 2017-07-27 21:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-08-03 10:24 - 2017-07-27 21:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-08-03 10:24 - 2017-07-27 21:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-08-03 10:24 - 2017-07-27 21:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-08-03 10:24 - 2017-07-27 21:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-08-03 10:24 - 2017-07-27 21:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-08-03 10:24 - 2017-07-27 21:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-08-03 10:24 - 2017-07-27 21:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-08-03 10:24 - 2017-07-27 21:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-08-03 10:24 - 2017-07-27 21:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-08-03 10:24 - 2017-07-27 21:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-08-03 10:24 - 2017-07-27 21:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-08-03 10:24 - 2017-07-27 21:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-08-03 10:24 - 2017-07-27 21:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-08-03 10:24 - 2017-07-27 21:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-08-03 10:24 - 2017-07-27 21:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-08-03 10:24 - 2017-07-27 21:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-08-03 10:23 - 2017-07-27 21:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-08-03 10:22 - 2017-07-27 21:24 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-03 10:21 - 2017-07-27 21:21 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-03 10:20 - 2017-07-27 22:10 - 002679200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-03 10:20 - 2017-07-27 21:19 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-03 10:20 - 2017-07-27 21:19 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-03 10:20 - 2017-07-27 21:16 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-03 10:18 - 2017-07-27 22:09 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-03 10:17 - 2017-07-27 22:25 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-03 10:17 - 2017-07-27 21:25 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-03 10:17 - 2017-07-27 21:19 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-03 10:16 - 2017-07-27 22:13 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-03 10:16 - 2017-07-27 22:13 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-03 10:16 - 2017-07-27 22:09 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-08-03 10:16 - 2017-07-27 21:21 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-03 10:16 - 2017-07-27 21:13 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-03 10:16 - 2017-07-27 21:12 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-03 10:14 - 2017-07-27 22:24 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-03 10:14 - 2017-07-27 22:24 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-03 10:14 - 2017-07-27 22:17 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-03 10:14 - 2017-07-27 22:09 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-03 10:14 - 2017-07-27 21:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-08-03 10:14 - 2017-07-27 21:22 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-03 10:14 - 2017-07-27 21:19 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-03 10:14 - 2017-07-27 21:18 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-03 10:14 - 2017-07-27 21:07 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-03 10:13 - 2017-07-27 22:24 - 002327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-03 10:13 - 2017-07-27 22:13 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-03 10:13 - 2017-07-27 21:21 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-03 10:13 - 2017-07-27 21:19 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-03 10:13 - 2017-07-27 21:07 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-03 10:13 - 2017-07-27 21:07 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dl l
2017-08-03 10:13 - 2017-07-27 21:07 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-03 10:12 - 2017-07-27 22:23 - 002969888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-03 10:12 - 2017-07-27 22:16 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-03 10:12 - 2017-07-27 22:15 - 005302968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-03 10:12 - 2017-07-27 22:14 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-03 10:12 - 2017-07-27 22:12 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-03 10:12 - 2017-07-27 21:26 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-03 10:12 - 2017-07-27 21:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade .dll
2017-08-03 10:12 - 2017-07-27 21:14 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-03 10:12 - 2017-07-27 21:12 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-03 10:12 - 2017-07-27 21:06 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-03 10:10 - 2017-07-27 22:24 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-03 10:10 - 2017-07-27 22:22 - 000923048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-03 10:10 - 2017-07-27 22:13 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-03 10:10 - 2017-07-27 22:13 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-03 10:10 - 2017-07-27 22:12 - 021353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-03 10:10 - 2017-07-27 21:29 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-03 10:10 - 2017-07-27 21:26 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-03 10:10 - 2017-07-27 21:26 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-03 10:10 - 2017-07-27 21:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-08-03 10:10 - 2017-07-27 21:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-08-03 10:10 - 2017-07-27 21:21 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-03 10:10 - 2017-07-27 21:19 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authenticatio n.Web.Core.dll
2017-08-03 10:10 - 2017-07-27 21:15 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-03 10:10 - 2017-07-27 21:08 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-03 10:09 - 2017-07-27 22:12 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-03 10:09 - 2017-07-27 21:25 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-03 10:09 - 2017-07-27 21:24 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-03 10:09 - 2017-07-27 21:23 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-03 10:09 - 2017-07-27 21:22 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-03 10:09 - 2017-07-27 21:21 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapReque stHandler.dll
2017-08-03 10:09 - 2017-07-27 21:19 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-03 10:09 - 2017-07-27 21:17 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-03 10:09 - 2017-07-27 21:16 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-03 10:09 - 2017-07-27 21:14 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-03 10:09 - 2017-07-27 21:13 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-03 10:09 - 2017-07-27 21:12 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-03 10:09 - 2017-07-27 21:06 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-03 10:09 - 2017-07-27 21:05 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-03 10:08 - 2017-07-27 22:30 - 001068720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-03 10:08 - 2017-07-27 22:14 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-03 10:08 - 2017-07-27 22:10 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-03 10:08 - 2017-07-27 21:31 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-03 10:08 - 2017-07-27 21:29 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-03 10:08 - 2017-07-27 21:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-08-03 10:08 - 2017-07-27 21:25 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-03 10:08 - 2017-07-27 21:23 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReducti on.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-03 10:08 - 2017-07-27 21:22 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-03 10:08 - 2017-07-27 21:22 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-03 10:08 - 2017-07-27 21:21 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications .dll
2017-08-03 10:08 - 2017-07-27 21:20 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-03 10:08 - 2017-07-27 21:18 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-03 10:08 - 2017-07-27 21:18 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dl l
2017-08-03 10:08 - 2017-07-27 21:17 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-03 10:08 - 2017-07-27 21:17 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-03 10:08 - 2017-07-27 21:15 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-03 10:08 - 2017-07-27 21:10 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-03 10:07 - 2017-07-27 22:16 - 000961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-03 10:07 - 2017-07-27 22:15 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-03 10:07 - 2017-07-27 22:15 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-03 10:07 - 2017-07-27 22:13 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayR eady.dll
2017-08-03 10:07 - 2017-07-27 22:13 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-03 10:07 - 2017-07-27 22:12 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-03 10:07 - 2017-07-27 21:30 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-08-03 10:07 - 2017-07-27 21:26 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-03 10:07 - 2017-07-27 21:22 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-03 10:07 - 2017-07-27 21:20 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-03 10:07 - 2017-07-27 21:19 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-03 10:07 - 2017-07-27 21:18 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.deskt op.dll
2017-08-03 10:07 - 2017-07-27 21:17 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-03 10:07 - 2017-07-27 21:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.oneco re.dll
2017-08-03 10:07 - 2017-07-27 21:15 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.G att.dll
2017-08-03 10:07 - 2017-07-27 21:13 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-03 10:07 - 2017-07-27 21:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-03 10:07 - 2017-07-27 21:12 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-03 10:07 - 2017-07-27 21:12 - 002444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-03 10:07 - 2017-07-27 21:11 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-03 10:07 - 2017-07-27 21:10 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-03 10:07 - 2017-07-27 21:09 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-03 10:07 - 2017-07-27 21:09 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-03 10:07 - 2017-07-27 21:06 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-03 10:07 - 2017-07-27 21:05 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-03 10:07 - 2017-07-27 21:05 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-03 10:07 - 2017-07-27 21:05 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-03 10:07 - 2017-07-27 21:05 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-03 10:06 - 2017-07-27 21:23 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-02 02:45 - 2012-09-25 00:52 - 003867040 _____ C:\WINDOWS\system32\PortChanger.exe
2017-08-02 02:45 - 2012-09-25 00:52 - 002398112 _____ (Hewlett Packard) C:\WINDOWS\system32\hppldcoi.dll
2017-08-02 02:45 - 2012-09-25 00:52 - 000151968 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4.sys
2017-08-02 02:45 - 2012-09-25 00:52 - 000049056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4usb.sys
2017-08-02 02:45 - 2012-09-25 00:52 - 000019872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4Scan.sys
2017-08-02 02:29 - 2017-08-02 02:29 - 009891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2017-08-02 02:29 - 2017-08-02 02:29 - 004332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2017-08-02 02:29 - 2017-08-02 02:29 - 000420832 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2017-08-02 02:29 - 2017-08-02 02:29 - 000084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2017-08-02 02:20 - 2017-08-02 02:20 - 000831685 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2017-08-02 02:16 - 2017-08-02 02:16 - 005799386 _____ C:\WINDOWS\system32\igdclbif.bin
2017-08-02 02:16 - 2017-08-02 02:16 - 000225280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2017-08-02 02:15 - 2017-08-02 02:16 - 003972096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 019861504 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 005688832 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 004368896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000388608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000318464 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2017-08-02 02:15 - 2017-08-02 02:15 - 000266232 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2017-08-02 02:14 - 2017-08-02 02:15 - 029101560 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 004934144 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 002393160 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 001858632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000439288 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000416256 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000103936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-08-02 02:14 - 2017-08-02 02:14 - 000099840 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-08-02 02:13 - 2017-08-02 02:14 - 015488920 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2017-08-02 02:13 - 2017-08-02 02:13 - 013483192 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2017-08-02 02:12 - 2017-08-02 02:12 - 013655032 _____ (Intel Corporation) C:\WINDOWS\system32\ig8icd64.dll
2017-08-02 02:12 - 2017-08-02 02:12 - 010329088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig8icd32.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 005262848 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 002142208 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 001009664 _____ C:\WINDOWS\system32\igfxSDK.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000950784 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000947200 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000756224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000705024 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.d ll
2017-08-02 02:11 - 2017-08-02 02:11 - 000641530 _____ C:\WINDOWS\system32\FilmModeDetection.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000449536 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000403671 _____ C:\WINDOWS\system32\ImageStabilization.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000398848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000390144 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000384512 _____ C:\WINDOWS\system32\igfxTray.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000375173 _____ C:\WINDOWS\system32\ColorImageEnhancement.wmv
2017-08-02 02:11 - 2017-08-02 02:11 - 000356352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000337408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000273408 _____ C:\WINDOWS\system32\igfxCPL.cpl
2017-08-02 02:11 - 2017-08-02 02:11 - 000254976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000251392 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000219648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000215040 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000214528 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2017-08-02 02:11 - 2017-08-02 02:11 - 000111616 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000103416 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000100864 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000095232 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000084992 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000055240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000052736 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000029184 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000029184 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000027648 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000027648 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000022528 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000022528 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000000935 _____ C:\WINDOWS\system32\Gfxv4_0.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000935 _____ C:\WINDOWS\system32\DPTopologyApp.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000895 _____ C:\WINDOWS\system32\Gfxv2_0.exe.config
2017-08-02 02:11 - 2017-08-02 02:11 - 000000895 _____ C:\WINDOWS\system32\DPTopologyAppv2_0.exe.config
2017-08-02 02:10 - 2017-08-02 02:11 - 000220160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4624.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 006696824 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 005137296 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 002813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2017-08-02 02:10 - 2017-08-02 02:10 - 001816712 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001814056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001590784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 001178624 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000511260 _____ C:\WINDOWS\system32\cp_resources.bin
2017-08-02 02:10 - 2017-08-02 02:10 - 000431104 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000284160 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000242152 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000223240 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000205344 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000193016 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000183968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000182944 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000181832 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000173568 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000160264 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000160256 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2017-08-02 02:10 - 2017-08-02 02:10 - 000157696 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2017-08-02 02:10 - 2017-08-02 02:10 - 000041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2017-08-02 02:10 - 2017-08-02 02:10 - 000001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2017-08-02 02:09 - 2017-08-02 02:10 - 039864472 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2017-08-02 02:08 - 2017-08-02 02:09 - 038903384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2017-08-02 02:07 - 2017-08-02 02:08 - 033479864 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 004270672 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 004240208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2017-08-02 02:07 - 2017-08-02 02:07 - 000312296 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2017-08-02 02:06 - 2017-08-02 02:07 - 016457272 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2017-08-02 02:05 - 2017-08-02 02:06 - 034823448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 013070648 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 000297152 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2017-08-02 02:05 - 2017-08-02 02:05 - 000005412 _____ C:\WINDOWS\system32\iglhxs64lp.vp
2017-08-02 02:04 - 2017-08-02 02:05 - 007407080 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64lp.sys
2017-08-02 02:00 - 2017-08-02 02:00 - 000877424 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2017-08-02 02:00 - 2017-08-02 02:00 - 000866640 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2017-08-02 02:00 - 2017-08-02 02:00 - 000737960 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2017-08-02 01:59 - 2017-08-02 02:00 - 001016928 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 003410832 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 003122656 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 001435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000984912 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000868176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000691680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000526280 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000381408 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2017-08-02 01:59 - 2017-08-02 01:59 - 000258856 _____ (TODO: ) C:\WINDOWS\system32\slprp64.dll
2017-08-02 01:57 - 2017-08-02 01:59 - 072520704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-08-02 01:57 - 2017-08-02 01:57 - 012951320 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-08-02 01:56 - 2017-08-02 01:56 - 003516984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 003509200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 003205120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 002210784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 001347136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-08-02 01:56 - 2017-08-02 01:56 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-08-02 01:55 - 2017-08-02 01:55 - 005874144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-08-02 01:55 - 2017-08-02 01:55 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-08-02 01:55 - 2017-08-02 01:55 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-07-18 16:18 - 2017-07-18 16:19 - 000000000 ____D C:\Users\eddie\OpenVPN
2017-07-17 10:30 - 2017-07-17 10:30 - 000863744 _____ (Farbar) C:\WINDOWS\mod_frst.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-08-16 22:21 - 2017-04-11 16:55 - 000000000 ___RD C:\Users\eddie\OneDrive
2017-08-16 22:20 - 2017-04-11 20:03 - 000000000 __SHD C:\Users\eddie\IntelGraphicsProfiles
2017-08-14 02:25 - 2017-04-11 20:15 - 000000000 __RDX C:\Users\eddie\OneDrive\Documents\Extra
2017-08-14 01:23 - 2017-04-11 20:16 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\WinRAR
2017-08-14 00:25 - 2017-03-18 13:57 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2017-08-14 00:24 - 2017-04-11 16:51 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-08-14 00:24 - 2017-03-18 13:57 - 000430848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-08-14 00:20 - 2017-04-13 18:30 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Games
2017-08-08 23:44 - 2017-06-26 14:45 - 000000779 _____ C:\Users\eddie\Desktop\SSF2.lnk
2017-07-18 13:30 - 2017-06-26 15:39 - 000000000 ____D C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Facebook
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-08-13 23:57
==================== End of FRST.txt ============================
[HEADING=1]Addition
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-08-2017
Ran by eddie (16-08-2017 22:29:49)
Running from C:\Users\eddie\Desktop
Windows 10 Pro Version 1703 (X64) (2017-08-14 07:23:51)
Boot Mode: Normal[/HEADING]
==================== Accounts: =============================
Administrator (S-1-5-21-2896426177-3843145535-1853849027-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2896426177-3843145535-1853849027-503 - Limited - Disabled)
eddie (S-1-5-21-2896426177-3843145535-1853849027-1001 - Administrator - Enabled) => C:\Users\eddie
Guest (S-1-5-21-2896426177-3843145535-1853849027-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {0C515E80-E355-69BD-3445-A511E5C186FD}
AS: COMODO Advanced Protection (Enabled - Up to date) {B730BF64-C56F-6633-0EF5-9E639E46CC40}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Enabled) {346ADFA5-A93A-68E5-1F1A-0C241B12C186}
==================== Installed Programs ======================
(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
CCleaner (HKLM...\CCleaner) (Version: 5.33 - Piriform)
Classic Shell (HKLM...{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Comodo Dragon (HKLM-x32...\Comodo Dragon) (Version: 58.0.3029.113 - Comodo)
COMODO Internet Security Premium (HKLM...{8E048D96-59B5-4BD8-A5D0-8FFCFC161A5A}) (Version: 10.0.1.6258 - COMODO Security Solutions Inc.) Hidden
COMODO Internet Security Premium (HKLM...\COMODO Internet Security) (Version: 10.0.1.6258 - COMODO Security Solutions Inc.)
COMODO Secure Shopping (HKLM-x32...{D15DF9B0-3A98-4BEF-B7D5-FC3AEA421657}) (Version: 1.1.99.0 - COMODO) Hidden
COMODO Secure Shopping (HKLM-x32...\Comodo Secure_Shopping_list_uninstall) (Version: 1.1.421657.99 - Comodo)
DriverUpdate (HKLM...{C2A1552C-0027-4E26-9E81-78CD02DEB71F}) (Version: 4.1.2 - Slimware Utilities Holdings, Inc.) Hidden
Google Chrome (HKLM-x32...\Google Chrome) (Version: 60.0.3112.101 - Google Inc.)
Google Update Helper (HKLM-x32...{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Internet Security Essentials (HKLM-x32...\ComodoIse) (Version: 1.2.422025.92 - Comodo)
Java 8 Update 144 (64-bit) (HKLM...{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Malwarebytes version 3.1.2.1733 (HKLM...{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\OneDriveSetup.exe) (Version: 17.3.6963.0807 - Microsoft Corporation)
Mozilla Firefox 56.0 (x64 en-US) (HKLM...\Mozilla Firefox 56.0 (x64 en-US)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM...\MozillaMaintenanceService) (Version: 56.0 - Mozilla)
OpenVPN 2.4.3-I602 (HKLM...\OpenVPN) (Version: 2.4.3-I602 - OpenVPN Technologies, Inc.)
pCloud Drive (HKLM-x32...{5824F8F8-E59E-42CB-98FA-B1F329A58BB9}) (Version: 3.5.7 - pCloud AG) Hidden
pCloud Drive (HKLM-x32...{d8e9b125-0436-4a92-94b8-0097dbf23a3d}) (Version: 3.5.7.0 - pCloud AG)
Realtek Card Reader (HKLM-x32...{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.31235 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32...{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.13.1223.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32...{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8216 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.9 (HKLM...{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
Synaptics Pointing Device Driver (HKLM...\SynTPDeinstKey) (Version: 19.3.31.6 - Synaptics Incorporated)
TAP-Windows 9.21.2 (HKLM...\TAP-Windows) (Version: 9.21.2 - )
UltraUXThemePatcher (HKLM-x32...\UltraUXThemePatcher) (Version: 3.2.0.0 - Manuel Hoefs (Zottel))
Unity Web Player (HKU\S-1-5-21-2896426177-3843145535-1853849027-1001...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Windows Desktop Gadgets (HKLM...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
WinRAR 5.50 beta 6 (64-bit) (HKLM...\WinRAR archiver) (Version: 5.50.6 - win.rar GmbH)
Wise Force Deleter 1.4.6 (HKLM-x32...\Wise Force Deleter_is1) (Version: 1.4.6 - WiseCleaner.com, Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ pCloudINPROGRESS] → {D8BFAFBD-B670-4252-9C17-9CF1C64C2BAF} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2016-11-17] (TODO: )
ShellIconOverlayIdentifiers: [ pCloudINSYNC] → {8D0C0582-552A-4A6B-9455-DA63E1F329C0} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2016-11-17] (TODO: )
ShellIconOverlayIdentifiers: [ pCloudNOSYNC] → {3858ED1B-8F1C-42ED-A8A9-FDBF591E3C6B} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2016-11-17] (TODO: )
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] → {AB8F5A1D-F87B-4E34-9D77-65D2615BEB3A} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (/n software, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] → {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] → {AB8F5A1D-F87B-4E34-9D77-65D2615BEB3A} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-09] (/n software, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] → {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
ContextMenuHandlers1: [Advanced SystemCare] → {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll → No File
ContextMenuHandlers1: [Comodo Antivirus] → {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO)
ContextMenuHandlers1: [ContextMenuExtension] → {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] → {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-02] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] → {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-02] (Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] → {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll → No File
ContextMenuHandlers2: [Auslogics Disk Defrag Shell Context Menu 7.x] → {CC89327D-D094-5D27-82CB-F989EE26FC51} => C:\Program Files (x86)\Auslogics\Disk Defrag\ShellExtension.ContextMenu.x64.dll [2017-07-27] (Auslogics)
ContextMenuHandlers2: [Comodo Antivirus] → {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO)
ContextMenuHandlers3: [Auslogics Disk Defrag Shell Context Menu 7.x] → {CC89327D-D094-5D27-82CB-F989EE26FC51} => C:\Program Files (x86)\Auslogics\Disk Defrag\ShellExtension.ContextMenu.x64.dll [2017-07-27] (Auslogics)
ContextMenuHandlers3: [MBAMShlExt] → {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers4: [Advanced SystemCare] → {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll → No File
ContextMenuHandlers4: [Auslogics Disk Defrag Shell Context Menu 7.x] → {CC89327D-D094-5D27-82CB-F989EE26FC51} => C:\Program Files (x86)\Auslogics\Disk Defrag\ShellExtension.ContextMenu.x64.dll [2017-07-27] (Auslogics)
ContextMenuHandlers4: [ContextMenuExtension] → {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] → {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => → No File
ContextMenuHandlers5: [igfxDTCM] → {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-08-02] (Intel Corporation)
ContextMenuHandlers6: [Comodo Antivirus] → {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO)
ContextMenuHandlers6: [MBAMShlExt] → {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [RUShellExt] → {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
ContextMenuHandlers6: [StartMenuExt] → {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2017-08-13] (IvoSoft)
ContextMenuHandlers6: [WinRAR] → {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-02] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] → {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-02] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0B959917-3528-44FA-A618-DD66F24691D5} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {2529B177-0509-4702-BA49-FF1D8C59A7DC} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {7B0F3311-DDDF-4F52-9C4B-7310D1F63587} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {7BB95E82-52B7-432E-AD5F-CEEA54A2B32F} - System32\Tasks\Auslogics\Disk Defrag\Start Disk Defrag On eddie Logon => C:\Program Files (x86)\Auslogics\Disk Defrag\DiskDefrag.exe [2017-07-27] (Auslogics)
Task: {8E812564-8E75-4BF8-A3F2-4AF73053B39F} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {90E61B0B-4158-42F4-84A3-FA8401A03CEC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-14] (Google Inc.)
Task: {9686D31E-04B5-4290-B6BA-28F14BC714DE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {9E7F93F7-887A-4FF5-A842-0D33D45729AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-14] (Google Inc.)
Task: {A24BA1E2-81E7-4CDC-9AE1-FA20784F9388} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2896426177-3843145535-1853849027-1001
Task: {B09219E1-52F8-4B5B-A864-94C93E4E341D} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2017-07-11] (COMODO)
Task: {B73AF37E-9221-4E5F-8FD2-470DE8020F2A} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO)
Task: {D781C52C-6FC0-4FDA-8180-0F8BEFE6681C} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {D955C4AD-0427-4EB9-BF2B-D0B59756D047} - System32\Tasks\Auslogics\Disk Defrag\Scheduled Defragmentation => rundll32.exe TaskSchedulerHelper.dll,RunTask “DiskDefrag.exe” “/UseTray /Scheduler”
Task: {E8DAA569-AFB7-40EF-9C40-71FFAD4BA1DD} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\eddie\Desktop\PC Help Forum.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=illdlgkhakmollnophmajedfblhpijak
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\Chrome Remote Desktop.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\File System for OneDrive.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=jbfdfcehgafdbfpniaimfbfomafoadgo
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\Google Hangouts.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\System.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=ocjnemjmlhjkeilmaidemofakmpclcbi
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\Wake Up!.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=lbbcfplbfbmimpnlammmeaheakhcogke
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Chrome Apps\WeatherBug.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=njkkjobcechefaoknodniidfjapgfoco
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gmail.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=pjkljhegncpnkpknbcohdijeoejaedia
ShortcutWithArgument: C:\Users\eddie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Web Store.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) → --profile-directory=Default --app-id=ahfgeienlihckogmohjhadlkjgocpleb
==================== Loaded Modules (Whitelisted) ==============
2017-07-11 12:42 - 2017-07-11 12:42 - 000156352 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdwrhlp.dll
2017-07-11 12:40 - 2017-07-11 12:40 - 000107200 _____ () C:\Program Files\COMODO\COMODO Internet Security\cavwpps.dll
2017-07-11 12:41 - 2017-07-11 12:41 - 000244928 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll
2017-08-16 00:27 - 2017-06-27 12:06 - 002260432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-03-16 11:25 - 2016-03-16 11:25 - 000073912 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2017-03-18 13:58 - 2017-03-18 13:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-08-02 02:11 - 2017-08-02 02:11 - 000384512 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-03-18 13:59 - 2017-03-18 19:31 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw 5n1h2txyewy\Cortana.Core.dll
2017-07-14 06:26 - 2017-07-14 06:26 - 000638592 _____ () C:\Program Files\OpenVPN\bin\openvpn-gui.exe
2017-08-14 14:41 - 2017-08-11 00:40 - 003824472 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.101\libg lesv2.dll
2017-08-14 14:41 - 2017-08-11 00:40 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.101\libe gl.dll
2017-08-14 02:16 - 2017-08-14 02:16 - 000054488 _____ () C:\Program Files\CCleaner\branding.dll
2017-06-16 11:33 - 2017-06-16 11:33 - 001763328 _____ () C:\Program Files (x86)\pCloud Drive\pSyncLib.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Min imal\MBAMService => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Net work\MBAMService => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Net work\str => “”=“service”
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-08-15 01:30 - 2017-08-15 16:41 - 000001359 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 keystone.mwbsys.com
0.0.0.0 telemetry.malwarebytes.com
91.209.196.83 download.comodo.com
91.209.196.83 www.download.comodo.com
127.0.0.1 idb.iobit.com
127.0.0.1 asc55.iobit.com
127.0.0.1 is360.iobit.com
127.0.0.1 www.asc55.iobit.com
127.0.0.1 asc.iobit.com
127.0.0.1 pf.iobit.com
127.0.0.1 98.129.229.186
0.0.0.0 keystone.mwbsys.com
0.0.0.0 telemetry.malwarebytes.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2896426177-3843145535-1853849027-1001\Control Panel\Desktop\Wallpaper → C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.254.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Pol icies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Exp lorer => (SmartScreenEnabled: Warn)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM...\StartupApproved\Run: => “SecurityHealth”
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{FCFE65AB-2442-4A73-B8FF-8B12810382E6}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{42BC09F9-68F9-49B5-86A6-54FA904E5B9D}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{6818C011-599B-437F-BFEA-0DFD8D69923F}C:\program files (x86)\pcloud drive\pcloud.exe] => (Allow) C:\program files (x86)\pcloud drive\pcloud.exe
FirewallRules: [UDP Query User{71C348A0-5C57-4F71-B870-DB5012115947}C:\program files (x86)\pcloud drive\pcloud.exe] => (Allow) C:\program files (x86)\pcloud drive\pcloud.exe
==================== Restore Points =========================
14-08-2017 02:50:40 Installed Classic Shell
15-08-2017 00:32:17 System Checkpoint
15-08-2017 03:35:37 System Checkpoint
16-08-2017 02:22:18 System Checkpoint
16-08-2017 21:15:17 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click “Update Driver”, which starts the Hardware Update wizard.
==================== Event log errors: =========================
[HEADING=1]Application errors:[/HEADING]
Error: (08/16/2017 10:27:21 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.
Context: Windows Application, SystemIndex Catalog
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
Error: (08/16/2017 10:27:14 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: The search service has detected corrupted data files in the index {id=3800}. The service will attempt to automatically correct this problem by rebuilding the index.
Context: Windows Application, SystemIndex Catalog
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
[HEADING=1]System errors:[/HEADING]
Error: (08/16/2017 10:24:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Defender Antivirus Service service failed to start due to the following error:
Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
[HEADING=1]CodeIntegrity:[/HEADING]
Date: 2017-08-16 22:29:44.395
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
Date: 2017-08-16 22:29:44.376
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.d ll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-16 22:29:44.006
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
Date: 2017-08-16 22:29:43.929
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.d ll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-16 22:24:16.063
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-16 22:24:04.618
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-08-16 22:19:40.220
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\Security HealthService.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
Date: 2017-08-16 22:19:39.919
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.d ll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-08-16 22:19:37.165
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Windows\System32\cssguard6 4.dll that did not meet the Windows signing level requirements.
Date: 2017-08-16 22:19:36.737
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.d ll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) CPU N3700 @ 1.60GHz
Percentage of memory in use: 79%
Total physical RAM: 3938.3 MB
Available physical RAM: 809.9 MB
Total Virtual: 5346.3 MB
Available Virtual: 1732.47 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:447.82 GB) (Free:389.78 GB) NTFS
Drive d: (Recovery Warranty) (Fixed) (Total:4.88 GB) (Free:1.52 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (UNTITLED) (Removable) (Total:119.08 GB) (Free:95.78 GB) exFAT
Drive p: (pCloud Drive) (Removable) (Total:500 GB) (Free:461.81 GB) exFAT
==================== MBR & Partition Table ==================
================================================== ======
Disk: 0 (Size: 465.8 GB) (Disk ID: F3CF06FA)
Partition: GPT.
================================================== ======
Disk: 1 (Size: 119.1 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================Comment
-
Above is the results of FRST.Comment
-
Anything else you would like me 2 do?Comment
-
I will let you know when I get home. Patience is keyComment
-
Okay.Originally posted by jmarketComment
-
ZHP Diag Scan
Download ZHP Diag to your desktop.- Right Click Run as Admin.
- Click the Options button.
Click on Check All
Then Click Validate
Then click close.
2. Click the Scanner button.
When complete please push the report button.
A notepad will open… copy and paste the report in your next reply.
Also you have a crap ton of extensions. Do you use all of them?
CHR Extension: (ProxFlow) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobj ifikek [2017-08-14]
CHR Extension: (Google Slides) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhon fmgoek [2017-08-14]
CHR Extension: (Security Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\abbpkdnljicgejmkndbncgpeam lcjhom [2017-08-14]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllm pfceif [2017-08-16]
CHR Extension: (GameShark) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\acmchkofncmmkabbadlofeffhc hdmkop [2017-08-14]
CHR Extension: (Movie4K) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\adkbpinkibeobfkgfoolfpnldi fjdedp [2017-08-14]
CHR Extension: (CB Channels) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afdeaaklpenijgadfgaljjnknl baphae [2017-08-14]
CHR Extension: (Microsoft Support) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\afiaggegejgnhhkfjpbbplaiga eijppc [2017-08-14]
CHR Extension: (Microsoft Virtual Agent) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahhncecjhnalimedngnkpfacim kmlafh [2017-08-14]
CHR Extension: (My Win10 PC) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhdcannjobjjbbfabajjchlea ccalng [2017-08-14]
CHR Extension: (HD for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgih agponf [2017-08-14]
CHR Extension: (LR EShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\akkmbnlaijgepeeldfglekgfaj oiklph [2017-08-14]
CHR Extension: (ToonGet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\almbnkdlegibjhcgfbflpemghh dmalmf [2017-08-14]
CHR Extension: (Google Docs) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfi lokake [2017-08-14]
CHR Extension: (Google Drive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigk jlhalf [2017-08-14]
CHR Extension: (ARChon4Chrome) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbooacojifhcpicigmefgdhaii hjhnmd [2017-08-14]
CHR Extension: (Open with Google Drive™ Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdkpinfdldjdngmgfbifbdbgao ampkan [2017-08-14]
CHR Extension: (Super Nintendo Emulator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\beogeghicacplhninfdmhiianh jimccp [2017-08-14]
CHR Extension: (Bitmoji) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfgdeiadkckfbkeigkoncpdiei iefpig [2017-08-14]
CHR Extension: (Google Groups) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfmbadcfdhiklafcdohpfphhha kmiakk [2017-08-14]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpb ikblnp [2017-08-14]
CHR Extension: (Mingle 2) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjeepgflngbnlkmfikinngokbc ijkean [2017-08-14]
CHR Extension: (Amazon Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjjmjgafamolafiboomfleccci peddim [2017-08-14]
CHR Extension: (Win10 ISO) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjlhajlpdpmfebiokogbjhdgmk ehgcbe [2017-08-14]
CHR Extension: (OpenDNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmeclafhfpefpfndaigmiojll fgmbcm [2017-08-14]
CHR Extension: (YouTube) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldk acnbeo [2017-08-14]
CHR Extension: (1M AppStore) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bminhbeeccgdnghnabbhiafpnd lbkedn [2017-08-14]
CHR Extension: (Facebook) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgd acljfm [2017-08-14]
CHR Extension: (MSN) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cagpfhohgbclhfgfggnbgfhnje hoknpk [2017-08-14]
CHR Extension: (History 2) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahejgbbfgmlmjgdjlibphdjel dhagkp [2017-08-14]
CHR Extension: (Amazon) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\camkdhjofheljkflfmfgbnajgj nhlopf [2017-08-14]
CHR Extension: (Update) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbkkihljhphdkjhiabaomgfnin kfihhe [2017-08-14]
CHR Extension: (Toons Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdibbihehmddkghfgiblbflocp hmmooc [2017-08-14]
CHR Extension: (Snoopy vs. The Red Baron) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfalonhgbljhcmcajnbdebedcj doblnl [2017-08-14]
CHR Extension: (Adblock Plus) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddi lifddb [2017-08-14]
CHR Extension: (Pushbullet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjl cfhogd [2017-08-14]
CHR Extension: (OneNote Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhf llbkmo [2017-08-14]
CHR Extension: (Monopoly Empire game | Play Kids Games Online | Hasbro) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjdhdhilfeoikokoiakkgnckkn aekled [2017-08-14]
CHR Extension: (YT2MP3) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjhmdjffbkdmddmdmmbabiaclo jaomeg [2017-08-14]
CHR Extension: (TechSupportGuy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckffimcpiheacclckfmmdcbhbm fmfikd [2017-08-14]
CHR Extension: (TWC Internet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckifgoknanfhclklbfjlpblncj pdfmfj [2017-08-14]
CHR Extension: (Microsoft Flow) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clldiedkmkolghagmnpmnoljbh ijiboi [2017-08-14]
CHR Extension: (HP ENVY) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\clpdjjcfniihldhfchnjbilada pnbahi [2017-08-14]
CHR Extension: (MAFYT Settings) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmelobemnghobnlpdfmmbejdoa leajcf [2017-08-14]
CHR Extension: (SSF2 Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnlencpcagccinnhoijdgmobkm fhalcc [2017-08-14]
CHR Extension: (Harakirimail extension) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coaagmonnnldglbilekplfnphp dencce [2017-08-14]
CHR Extension: (ComputerHelpForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhjgghkoimcbpnbgjikmpgff kgajfk [2017-08-14]
CHR Extension: (Holy Bible) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\damfhmjfmeiigloagjpelmocjo eobdno [2017-08-14]
CHR Extension: (MSN) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dccnabnbnagheglhfmgdcjlcjb eibaje [2017-08-14]
CHR Extension: (Chase Online ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcofdmelmmjneoonenbhpagpbp iojkhf [2017-08-14]
CHR Extension: (Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeoh mmeldh [2017-08-14]
CHR Extension: (3DS Pedia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfkhponeglmiiobiihilahinlc kifjjh [2017-08-14]
CHR Extension: (Fus.Fall Legacy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmdnngojpofdigdidplfaebnj ohmfng [2017-08-14]
CHR Extension: (Tampermonkey) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmp obfkfo [2017-08-14]
CHR Extension: (Janifer Boston) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhpkkleekhaceehoigfcnaaidj oleflh [2017-08-14]
CHR Extension: (Glitch Game) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djahbfbhacphllgemcekmdnlil ahhmge [2017-08-14]
CHR Extension: (Nintendo Chat) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\djeppnpeahmgfaohhidhjpipjk ahimfe [2017-08-14]
CHR Extension: (Google+) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdi dnckmm [2017-08-14]
CHR Extension: (NORAD Tracks Santa) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmkoneajelflpbfjpchjaiglip efmnki [2017-08-14]
CHR Extension: (Frontier DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnabfpdnbkmdmcoillihefhnjj knnona [2017-08-14]
CHR Extension: (Skype) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dolkddbfbhledadcdepacaljbg lglcoe [2017-08-14]
CHR Extension: (Sumo Paint) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpgjihldbpodlmnjolekemlfbc ajnmod [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebgecmolaheocnobalndebpehp imdghi [2017-08-14]
CHR Extension: (Inbox) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\edmijkelpnflahpdblkkobimcp lcgmgj [2017-08-14]
CHR Extension: (Amazon Shop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eecahhmlcjafclfkjodjjgllpm cmkgko [2017-08-14]
CHR Extension: (Novelty, OH Weather Forecast and Cond…) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eenemnbihadgbcjemdnobckofm iihfnk [2017-08-14]
CHR Extension: (Shortcut to Twitter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\efcdnfkhiiafogbhcainplbbge mgaaen [2017-08-14]
CHR Extension: (YouTubeDownloader) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eieafdgibiahkjdgdccmldmjid glnbjj [2017-08-14]
CHR Extension: (Google Fourms) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejiggjokppepehmfdngjefbhje heknmp [2017-08-14]
CHR Extension: (Cast Setup) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejliejcnhkkaaipdgkeiihbefh jeoemp [2017-08-14]
CHR Extension: (Outlook Calendar) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejppoecfdibjchmpdcphbanegd jebcgo [2017-08-14]
CHR Extension: (HelpSupport Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekimmgolelbekdhafemjekjhke mpbkfd [2017-08-14]
CHR Extension: (Comodo AdBlocker) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhcnbjoomhmifmfeggoalmplb lcmcin [2017-08-14]
CHR Extension: (Chrome Goodies) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\emmdmeocdlghmhbfjaldhjahnf bkbpck [2017-08-14]
CHR Extension: (Google Play) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\enffghkdjcgkndjodbaelocgmc bmbhpp [2017-08-14]
CHR Extension: (Filter by WOT) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eomhfalemadkajmgmppkoenihl ljdjoj [2017-08-14]
CHR Extension: (Update Windows 10) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\epejeipipakmkmdfnkpghcjfme igpggo [2017-08-14]
CHR Extension: (G SSH2 SWF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabhojopefodnkcighibfcnamg mplloh [2017-08-14]
CHR Extension: (Skype) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fajdleioencnfbnmiienoibkoi mkooli [2017-08-14]
CHR Extension: (Old EShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fanigphfdfepmnelohpfhcpeco ekibml [2017-08-14]
CHR Extension: (DiskImager) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdfeicageglnlelmohmkojdjcc gkdmcb [2017-08-14]
CHR Extension: (FREE App Creator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdhglomjccccgggpeabmiadbpm ofeedc [2017-08-14]
CHR Extension: (Motorola) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fekllafapcbanabhhooobibaan mndalm [2017-08-14]
CHR Extension: (Google Sheets) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpeb giejap [2017-08-14]
CHR Extension: (Assistance) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdhgdfhcclnmednjibbajgcpc pppknl [2017-08-14]
CHR Extension: (FB Game Center) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijlioglnahpdajepoinkodleg kolkam [2017-08-14]
CHR Extension: (Villionaire) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fimebapbdliodpciaalpoijonh dfhhkd [2017-08-14]
CHR Extension: (Word Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinb ehmajg [2017-08-14]
CHR Extension: (G SSH SWF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fipamjmedinmfclljanbjhhbdk finpkc [2017-08-14]
CHR Extension: (Nintendo ThemeShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkhaiaahhhomnfnnjhmnkkhloo gihnfa [2017-08-14]
CHR Extension: (EMails) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fknmbhaaehfdjpmooilcabjgoo ldjdoo [2017-08-14]
CHR Extension: (Google Voice ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fldbfpjncfkebegiobhnjanbok dlbnij [2017-08-14]
CHR Extension: (Rufus) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljfobnflghnobgffmkpjddbde hgmfol [2017-08-14]
CHR Extension: (Who’s on first?) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljmpldncihcmabdfjkgonhijj kpbgkl [2017-08-14]
CHR Extension: (Norton DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\focoenonfjfpphaadindagmhli jgklak [2017-08-14]
CHR Extension: (Nintendo CS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpdddhjdalfonhmejlkcfhjcck healoc [2017-08-14]
CHR Extension: (Chrome Remote Desktop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihen igjmpp [2017-08-14]
CHR Extension: (SPdate) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmnahlpnikhhgldfmeajheocd ileadd [2017-08-14]
CHR Extension: (Super Mario) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdljahompmnjdcmnlcfeobicdp epefbf [2017-08-14]
CHR Extension: (Outlook Calendar) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegmdadojdijhnemaeolhalohe lcagod [2017-08-14]
CHR Extension: (Network Test) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\geklcdelofkoldghehnhggalmo ahklbi [2017-08-14]
CHR Extension: (Homebrew Browser) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gffjnhndecndnepbjpmaloifck dmgcac [2017-08-14]
CHR Extension: (About GPG Services) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggaoeklfaibbbipibbalclmnll ojibkh [2017-08-14]
CHR Extension: (Google Docs Offline) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdl olhkhi [2017-08-14]
CHR Extension: (Click&Clean) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmame dcbeod [2017-08-14]
CHR Extension: (Anyfile Notepad) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghlichmdnegmcpafgmmlpkegmc ndlndi [2017-08-14]
CHR Extension: (Outlook People) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\giafdibgibbipnlecfckidkecm pkedho [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjaejhlejagppekogippmigjbk djmcdk [2017-08-14]
CHR Extension: (Open PayPal) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\glghgmejmmepalcnengjekjfmf bailbl [2017-08-14]
CHR Extension: (Google Wallet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\glhhiiglleiipdnodkaabbbbjh epnbcb [2017-08-14]
CHR Extension: (Save to Google Drive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeaba ddhgne [2017-08-14]
CHR Extension: (Bookmark Manager) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapj opfjik [2017-08-14]
CHR Extension: (UnRAR and RAR Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\goeclnlkhfoejbhdebemhjljlm cbhfkp [2017-08-14]
CHR Extension: (Drive Notepad) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgjomejfimnbmobcocilppikh ncegaj [2017-08-14]
CHR Extension: (Win10 Keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpjminmgekffdgiancflhaojkg jcdgmc [2017-08-14]
CHR Extension: (Microsoft Assistance) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplepoifohkaepkncehnpljcee ljlabi [2017-08-14]
CHR Extension: (WC Forums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbiinloenjigabpbdlogbimfgb opcfce [2017-08-14]
CHR Extension: (Bing) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfbcjnjfeolgeoddhcdjpogocm pkmncp [2017-08-14]
CHR Extension: (GSSH.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmckcabobcmbdlimkenccopfn pokmie [2017-08-14]
CHR Extension: (GV Phone) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmpoeaghekodfplkofpeabpni pphcjh [2017-08-14]
CHR Extension: (Outlook Tasks) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkaimcgnicopmhblimdmfjahhi fkfcoi [2017-08-14]
CHR Extension: (Dead Skin) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjjcekgbjlpiegjcdmmpojnda jlndok [2017-08-14]
CHR Extension: (RomsEShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hohhmomfljojjeaaehdcocalfp ejjccc [2017-08-14]
CHR Extension: (USPS Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\idammebdkcmcjhminehllfamif enkhbn [2017-08-14]
CHR Extension: (Android Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbnciaeojfhgeihkflgcgajop fjeohg [2017-08-14]
CHR Extension: (Get Human) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifcelejocgjieghblljgkemmnl ejjlep [2017-08-14]
CHR Extension: (CB Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igabecodgkgfkdhglpojbnbobb naajai [2017-08-14]
CHR Extension: (SEGA Bandonware) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igelfoafbodelegelfonpkaned mogdpm [2017-08-14]
CHR Extension: (OMG! Chrome!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\igpknfbadalohcopbkaepbgblo mnbdma [2017-08-14]
CHR Extension: (Frontier Internet) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihjgglhacdljfhmlinhcagchbk cgdhio [2017-08-14]
CHR Extension: (Zip, UnZip App) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiaianhgacnhnnhejddkghikgn hgpeaa [2017-08-14]
CHR Extension: (Bible Questions Answered) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiipijolbcononkgjpepkplcch majanm [2017-08-14]
CHR Extension: (Apps Launcher) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmgkhchjindcjamnckoiahage cjnkdc [2017-08-14]
CHR Extension: (Office Support) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikhblhjgapcilfennndodceemd oomngn [2017-08-14]
CHR Extension: (Excel Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijl fjfgnb [2017-08-14]
CHR Extension: (PC Help Forum) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\illdlgkhakmollnophmajedfbl hpijak [2017-08-14]
CHR Extension: (COSwallpapers) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\inpceamnbdnjkljfebkpdgfnnf ckopap [2017-08-14]
CHR Extension: (HTML5 Flash Warning Fix for YouTube™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipdkokhdeppifjgcmhbfgmjmdl lfpkln [2017-08-14]
CHR Extension: (File System for OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfdfcehgafdbfpniaimfbfoma foadgo [2017-08-14]
CHR Extension: (OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbjamgmfdlbplimhkomcjjlemj addogn [2017-08-14]
CHR Extension: (PCTechForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jecdgjmkjbcagbkoifleegbplp naobfa [2017-08-14]
CHR Extension: (Microsoft Update Catalog) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgndoofkbbhhfcoldgjcakej ekefcd [2017-08-14]
CHR Extension: (SSF2 Game) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgplhfbmmkajpgnpldoaafagam bccjje [2017-08-14]
CHR Extension: (BibleGateway) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjmdfkmnphhfgilhfofaiffmhj lnopan [2017-08-14]
CHR Extension: (SM Trial Keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jljcdndcgbkbjonffogpnljgan habgmj [2017-08-14]
CHR Extension: (Save to Facebook) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhc lendgd [2017-08-14]
CHR Extension: (Holy Bible) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jomemcnjdjkjipodmcpfjhiolo ioplfh [2017-08-14]
CHR Extension: (CDFF) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kahonebhcmapeomaemhjakphnp ffhhhf [2017-08-14]
CHR Extension: (My Sway) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnmjbpdljgcffbninlkelpbfm bbbohp [2017-08-14]
CHR Extension: (North Pole Radio) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdggiihhdpfglclmfghofjbiag onaplo [2017-08-14]
CHR Extension: (Chrome Web Store) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfknblmmckdmlklbncfodpomfo ejlbgm [2017-08-14]
CHR Extension: (Range Extender Setup) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgaimanaoiiecgbljbpjhkdica ogkinf [2017-08-14]
CHR Extension: (4Shared) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khdleokphdcnmagagajnchlcma cfphan [2017-08-14]
CHR Extension: (CB Help) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khomnbdfmhfppiemgglncdlbbn ppffdo [2017-08-14]
CHR Extension: (Pure Flix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kiiijkmmlfiofadnffcomgcmdl ppddhd [2017-08-14]
CHR Extension: (Novelty, OH Weather Conditions & Fore…) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkphahjiaiaahfhcbedhbgfpod bojbje [2017-08-14]
CHR Extension: (MyAptoideBU) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\klpdcjojlnaceggdkglndamdma onfnpi [2017-08-14]
CHR Extension: (Google Hangouts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgoln pehhpl [2017-08-14]
CHR Extension: (Google Play) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdi abikfi [2017-08-14]
CHR Extension: (GSSH2.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\laekopehhnfklajodmbbhdfhmk fbnblc [2017-08-14]
CHR Extension: (Wake Up!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbbcfplbfbmimpnlammmeaheak hcogke [2017-08-14]
CHR Extension: (AnimeDub Mobile) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbdcckpbjegpnhhdejaipegkab kofhla [2017-08-14]
CHR Extension: (Twitter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lddagfjihimnacaabfnfagjcok fmnekc [2017-08-14]
CHR Extension: (Aptoide) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhhjndfejaoaiaaokjmhoiedpp dmknki [2017-08-14]
CHR Extension: (AnimeDub) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhnnmimodonfbnmpgmcjahlbla enkgle [2017-08-14]
CHR Extension: (Files2Zip) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhoadfgjeimckjlphkdebfmhbp eniljo [2017-08-14]
CHR Extension: (USPS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\liocengmpmiiejdoebmlifecbm cpfigg [2017-08-14]
CHR Extension: (Wikipedia Search) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lipakennkogpodadpikgipnoga mhklmk [2017-08-14]
CHR Extension: (MSN Games - Free Online Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkbgddpallgbhlldcnnjomnodm ohpklf [2017-08-14]
CHR Extension: (IHeart Christmas) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndoiaoagbajoadpgmfgckfckm chepmj [2017-08-14]
CHR Extension: (Google Maps) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbea pigfbh [2017-08-14]
CHR Extension: (SSB) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lockfglcfjlaagpghflagedkkg ojipke [2017-08-14]
CHR Extension: (Office Upgrade) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\locmdgkcjcjacipaokcoochhjh pklbih [2017-08-14]
CHR Extension: (B1 File Extracter) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbgobeedadfbponkgffobhpmok jmlhol [2017-08-14]
CHR Extension: (Documents Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbhgihpdipbgifogehncdehebk pehoap [2017-08-14]
CHR Extension: (GoogleDNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbogpnkehmjcidggfooapenefh ckeehd [2017-08-14]
CHR Extension: (PowerPoint Online) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkg cbpnhp [2017-08-14]
CHR Extension: (Messenger (Unofficial)) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngab fpibok [2017-08-14]
CHR Extension: (GoogleFuchsia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mejnaonfdocegokbjldkeafifp nfnpan [2017-08-14]
CHR Extension: (CN Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mekgfnmophledbpkmikhnfkimo ahjohn [2017-08-14]
CHR Extension: (CraigTechShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfbfebnljjciechbmlehdcmnmd hacgmi [2017-08-14]
CHR Extension: (COMODO DNS) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfnnnpncpeeecbbdepenkkgpjo enkbbo [2017-08-14]
CHR Extension: (T-Mobile) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhpgceapcpooallmggianccbak egnhnb [2017-08-14]
CHR Extension: (V.FreeMovies) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkopchcfcbchhnbpldmdjfbdhg kcpgkn [2017-08-14]
CHR Extension: (CB Central) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlieflpkidahjkojakjlpnlnch obihbl [2017-08-14]
CHR Extension: (ZIP Extractor) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmfcakoljjhncfphlflcedhgog fhpbcd [2017-08-14]
CHR Extension: (GC Options) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmmanlicckcagdkabbemhccfpm gojncl [2017-08-14]
CHR Extension: (My Google Account) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnepgpaicadoimgdlajhkgokfe naadkh [2017-08-14]
CHR Extension: (PogoTM) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmklochmlghbgebbmkldomoih jbgfie [2017-08-14]
CHR Extension: (Nintendo Pedia) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mogfngbfndeeecglaejajbioeg pimija [2017-08-14]
CHR Extension: (What’s on Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbeopbccnmkgdlbpicobflenbj ceoaka [2017-08-14]
CHR Extension: (Chrome OS Features) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbjdhanphhipjfkmicljakgnba icfojk [2017-08-14]
CHR Extension: (Ws on Netflix) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncjendjahmgpgjdeenknmdoeco fmfdod [2017-08-14]
CHR Extension: (Google Hangouts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanao iihapd [2017-08-14]
CHR Extension: (Reload It) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nconjighkgcoppohfilfinlimd fmjafg [2017-08-14]
CHR Extension: (Games4Summer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndphblldagopagiodebolhdjoh gindbm [2017-08-14]
CHR Extension: (OneDrive) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoa bngedk [2017-08-14]
CHR Extension: (UNetbootin - Homepage and Downloads) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhanbcbjhjcgpccibphcicaink kinool [2017-08-14]
CHR Extension: (SupportSpace) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nigmaeimafjgjfodjfhnancnah feindg [2017-08-14]
CHR Extension: (FedEx Tracking) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikgcnimkfeopobooaahjpbdkd fhchao [2017-08-14]
CHR Extension: (SEGA Online Emulator) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nilhogoffgcdfgmejcjpidfaie fpccpl [2017-08-14]
CHR Extension: (WeatherBug) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\njkkjobcechefaoknodniidfja pgfoco [2017-08-14]
CHR Extension: (Games) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nklbmhejmcjofglijalidajdli hahnpd [2017-08-14]
CHR Extension: (Archive Extractor) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nknadlalodfadgegkigkmbhofc mkhfnc [2017-08-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccm gmieda [2017-08-14]
CHR Extension: (Win10 Pro keys) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnelnnlfcdhjfbfglandknndlo nidojg [2017-08-14]
CHR Extension: (Toonova) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nobhijfkaffjbkocimaaembibg genkdc [2017-08-14]
CHR Extension: (Frontier) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nofcknkefjengmgmlnmdmgbmla khhnok [2017-08-14]
CHR Extension: (SM63.swf) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\noijjjifnenaafboiipobhiflm iaimof [2017-08-14]
CHR Extension: (Chrome OS EOL) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\npmnpehbihaieehmoaifdkdlcg ndmpjn [2017-08-14]
CHR Extension: (System) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocjnemjmlhjkeilmaidemofakm pclcbi [2017-08-14]
CHR Extension: (COMODO GeekBuddy) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oebmcdnandbcnfmpjecmmhcoog fneelj [2017-08-14]
CHR Extension: (Google Santa Tracker) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehagbcimlpafjbdijnjmabobl cfdnoh [2017-08-14]
CHR Extension: (PDF Viewer) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdf madadm [2017-08-14]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljb ihmemj [2017-08-15]
CHR Extension: (App Store) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogffnakkboiaoifjbhjbahamkd ojaemm [2017-08-14]
CHR Extension: (EPForums) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oimkklcnelpdlkkbjjablakand mmddio [2017-08-14]
CHR Extension: (Fullscreen Anything) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\olcfgpmjldkkjdclidhcboniei bfhhdh [2017-08-14]
CHR Extension: (SM 63) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldjcgpcnneleakkepogfghceh njcngf [2017-08-14]
CHR Extension: (YouTube™ Flash-HTML5) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\omimccinlhlkpjaeaocglgmkbe lejlhj [2017-08-14]
CHR Extension: (Christian Date) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompnolbokepechjidcgpaddaae oocajn [2017-08-14]
CHR Extension: (Consumer AV Providers) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ongfjpmgcneinonelpaljjdaig ppnneo [2017-08-14]
CHR Extension: (Putlocker ) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ookjcnljofpnadeabapgadihfh ngblfe [2017-08-14]
CHR Extension: (Nintendo RomShop) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pahokmgpomeaakdfnahejklhci fhaige [2017-08-14]
CHR Extension: (Microsoft Office Home) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\palennhedgekbnbmokheidadmg hcncgl [2017-08-14]
CHR Extension: (I Heart Radio) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcbnpgdibikphcelmkjldlfjj epjipl [2017-08-14]
CHR Extension: (Click&Clean App) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidf mibmhp [2017-08-14]
CHR Extension: (Shortcuts for Google™ Products) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdlecffodcfabchelafoljcdph fpkpcl [2017-08-14]
CHR Extension: (Date Countdown) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfbpikfaigmikdjkghbkbapjhf oglipj [2017-08-14]
CHR Extension: (Data Saver) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmgfdlgomnbgkofeojodiodmg pgmkac [2017-08-14]
CHR Extension: (Outlook.com) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnik fnhoge [2017-08-14]
CHR Extension: (Bing) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\phfegmcgballapgnbppeeidcke jebknn [2017-08-14]
CHR Extension: (Super Smash Bros For NDS !!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pifamkpimegbfnakceigajiljj odcfla [2017-08-14]
CHR Extension: (Gmail) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoe jaedia [2017-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcj beemfm [2017-08-14]
CHR Extension: (OMG! Ubuntu!) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmoodaljflkhbojjaiibgnlind bhebme [2017-08-14]
CHR Extension: (EBay) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppaellakmlibbcfkgkmbkkllnh cmghca [2017-08-14]
CHR Extension: (Google Contacts) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppbiamkfhlcpgijakdgbbffikm kkofnl [2017-08-14]
CHR Extension: (Apps On Chrome) - C:\Users\eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppmdjabijijblhfhnbgcpnoamk ibcclm [2017-08-14]Comment
Comment