Page 1 of 9 123 ... LastLast
Results 1 to 10 of 81
  1. #1
    Member
    Join Date
    May 2016
    Posts
    52
    Points
    0

    Default problems on computer. have all loogs

    Hello
    Have just formated my computer and downgrade it from 10 to win7 ult *64 and lately i see some problems on my chrome browser. If clicking on a emty white space in chrome, chrome pops up new pages. Also some part of text becomes to links, if hover over it with mouse a window with add shows. Malwarebyte helps to keep some pages away but still get this "links" all over the text thats shown. Hope you understand my english.

    will post the hijackthis, malwarebytes and SUPERantispyware

    Logfile of Trend Micro HijackThis v2.0.5
    Scan saved at 19:37:19, on 2016-05-04
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v11.0 (11.00.9600.18283)


    Boot mode: Normal

    Running processes:
    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    C:\Program Files (x86)\Google\Drive\googledrivesync.exe
    C:\Program Files (x86)\Steam\Steam.exe
    C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
    C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
    C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
    C:\Program Files (x86)\Google\Drive\googledrivesync.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
    C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    C:\Program Files (x86)\iolo\System Checkup\SystemCheckup.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Users\Mitch\Downloads\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com - Hotmail, Outlook, Skype, Bing, Latest News, Photos & Videos
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com - Hotmail, Outlook, Skype, Bing, Latest News, Photos & Videos
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com - Hotmail, Outlook, Skype, Bing, Latest News, Photos & Videos
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe,
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
    O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
    O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe
    O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
    O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
    O4 - HKLM\..\Run: [Javafri løsning] "C:\Program Files (x86)\Buypass\Javafri løsning\Buypass.SCProxy.exe"
    O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
    O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
    O4 - HKCU\..\Run: [SteelSeries Engine] C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
    O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
    O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
    O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
    O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
    O4 - Startup: Fences.lnk = C:\Program Files (x86)\Stardock\Fences\Fences.exe
    O4 - Global Startup: HWiNFO64 Program.lnk = C:\Program Files\HWiNFO64\HWiNFO64.EXE
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
    O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
    O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    O23 - Service: McAfee Application Installer Cleanup (0136311462311555) (0136311462311555mcinstcleanup) - Unknown owner - C:\Users\Mitch\AppData\Local\Temp\013631~1.EXE (file missing)
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
    O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
    O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
    O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
    O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
    O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
    O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
    O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
    O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
    O23 - Service: Tjänsten Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Tjänsten Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
    O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
    O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
    O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
    O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
    O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
    O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
    O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
    O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
    O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

    --
    End of file - 13680 bytes

    Malwarebyte logg

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Skanningsdatum: 2016-05-04
    Skanningstid: 16:56
    Loggfil:
    Administratör: Ja

    Version: 2.2.1.1043
    Databas med skadliga program: v2016.05.04.04
    Databas med rootkit: v2016.04.17.01
    Licens: Utvärderingsversion
    Skydd mot skadliga program: Aktiverat
    Skydd mot skadliga webbplatser: Aktiverat
    Självförsvar: Inaktiverat

    OS: Windows 7 Service Pack 1
    CPU: x64
    Filsystem: NTFS
    Användare: Mitch

    Skanningstyp: Hotskanning
    Resultat: Slutförd
    Skannade objekt: 324827
    Förfluten tid: 2 min, 56 sek

    Minne: Aktiverat
    Autostart: Aktiverat
    Filsystem: Aktiverat
    Arkivfiler: Aktiverat
    Rootkits: Inaktiverat
    Heuristik: Aktiverat
    PUP: Aktiverat
    PUM: Aktiverat

    Processer: 0
    (Inga skadliga poster upptäckta)

    Moduler: 0
    (Inga skadliga poster upptäckta)

    Registernycklar: 0
    (Inga skadliga poster upptäckta)

    Registervärden: 0
    (Inga skadliga poster upptäckta)

    Registerdata: 0
    (Inga skadliga poster upptäckta)

    Mappar: 0
    (Inga skadliga poster upptäckta)

    Filer: 0
    (Inga skadliga poster upptäckta)

    Fysiska sektorer: 0
    (Inga skadliga poster upptäckta)


    (end)

    SUPERAntiSpyware Scan Log
    SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!

    Generated 05/04/2016 at 07:24 PM

    Application Version : 6.0.1218
    Database Version : 12646

    Scan type : Complete Scan
    Total Scan Time : 00:04:15

    Operating System Information
    Windows 7 Ultimate 64-bit, Service Pack 1 (Build 6.01.7601)
    UAC Off - Administrator

    Memory items scanned : 803
    Memory threats detected : 0
    Registry items scanned : 48585
    Registry threats detected : 0
    File items scanned : 21279
    File threats detected : 247

    Adware.Tracking Cookie
    .doubleclick.net\id [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .doubleclick.net\IDE [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    cdn.taboola.com\akaas_abtesting [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .scorecardresearch.com\UID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .scorecardresearch.com\UIDR [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mathtag.com\uuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mathtag.com\uuidc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .bluekai.com\bkdc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\ses57 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\vis57 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\csi57 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\csc57 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\ruid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\rsid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\ses2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\vis2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\csi2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\csc2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .criteo.com\uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .abmr.net\01AI [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .imrworldwide.com\IMRID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mathtag.com\HRL8 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .bidswitch.net\c [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rlcdn.com\ck1 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .openx.net\i [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .262855726.log.optimizely.com\end_user_id [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .yieldlab.net\id [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pubmatic.com\KRTBCOOKIE_57 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com\CMSC [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .des.smartclip.net\uuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adrta.com\__aavi [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adrta.com\__aavt [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adrta.com\__aasi [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adrta.com\__aast [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    sync.richmetrics.com\id [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rfihub.com\u [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rfihub.com\euds [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rfihub.com\rud [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rfihub.com\eud [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rfihub.com\ruds [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .w55c.net\wfivefivec [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .w55c.net\matchan [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.stickyadstv.com\sessionId [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.stickyadstv.com\uid-bp-951 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.stickyadstv.com\OAID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.linkedin.com\BizoUserMatchHistory [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.flashback.org\ads_clicked [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .angsrvr.com\dspuuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .angsrvr.com\uuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .angsrvr.com\psyn [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atemda.com\UM1 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atemda.com\vi [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atemda.com\fid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .liverail.com\lr_uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .liverail.com\lr_uds [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .spotxchange.com\partner-1462367911_350a-0 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .spotxchange.com\user-0 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adaptv.advertising.com\rtbData0 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .optimatic.com\opt_cc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tremorhub.com\tv_UIAN [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    eas4.emediate.eu\eas_uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    eas4.emediate.eu\eas_geo [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .sxp.smartclip.net\uuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    track.adform.net\C [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .infolinks.com\cuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .infolinks.com\ANUSERCOOKIE [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    trc.taboola.com\taboola_session_id [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    trc.taboola.com\JSESSIONID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    trc.taboola.com\taboola_upci [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .taboola.com\t_vpub [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\ses10 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\vis10 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\csi10 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\csc10 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\ses15 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\vis15 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\csi15 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\csc15 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ebdr3.com\guid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ebdr3.com\duid_340 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media.net\visitor-id [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media.net\data [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    tap-secure.rubiconproject.com\pux [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    server.adformdsp.net\cid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adformdsp.net\uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .des.smartclip.net\psyn [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .des.smartclip.net\uup [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adform.net\TPC [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.360yield.com\tuuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.360yield.com\um [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.360yield.com\umeh [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ligadx.com\LIG_ULT [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ligadx.com\LIG_U16 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .clickfuse.com\CF_ID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .owneriq.net\si [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .smartadserver.com\pid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .smartadserver.com\TestIfCookieP [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .smartadserver.com\csync [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lfstmedia.com\adm_DLDdwoAvzlrj4hE36dBo-g [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .teads.tv\tt_viewer [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .infolinks.com\tv [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .afy11.net\a [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .afy11.net\s [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.nola.com\NSC_pbt.d18ef_wtfswfs_iuuq [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .1rx.io\_rxuuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lijit.com\_lijit_retarget_rtb_aee898f3-acb7-453e-af3c-54fd9e44af1e [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.comeon.com\NetRefer_CookieUniTrack_V [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .turn.com\uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adtechus.com\CfP [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lijit.com\ljt_reader [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .everesttech.net\gglck [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .everesttech.net\everest_session_v2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .everesttech.net\everest_g_v2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adadvisor.net\ab [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lijit.com\_lijit_retarget_rtb_f49c35a6-b6c4-411a-b551-e8d5508babe6 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .demdex.net\demdex [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adtechus.com\JEB2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_2249 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .dpm.demdex.net\dpm [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_3876 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lijit.com\_ljtrtb_12 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tidaltv.com\tidal_ttid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_1986 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .nexac.com\na_tc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .nexac.com\na_an [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net\NETID01 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net\rtc_AAAA [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .chango.com\_t [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .chango.com\_vt [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_2810 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_1512 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adkernel.com\ADKUID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_2307 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\cd [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\au [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    tap-t.rubiconproject.com\dq [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ibeu2.mookie1.com\ASP.NET_SessionId [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ibeu2.mookie1.com\ibkukiuno [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ibeu2.mookie1.com\ibkukinet [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .eyeviewads.com\__ev_uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adform.net\CM [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tubemogul.com\_tmid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_3778 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_3734 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_2974 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .sxp.smartclip.net\psyn [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .sxp.smartclip.net\uup [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adgrx.com\ADGRX_UID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .gwallet.com\ra1_uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adgrx.com\ADGRX_CM_APPNEXUS_BRIDGED [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .simpli.fi\uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .bluekai.com\bku [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .connexity.net\COu [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    10013539.track.convertexperiments.com\tr10013539 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    bs.serving-sys.com\S_17152494 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .skimresources.com\skimCSP [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .skimresources.com\skimGUID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .areyouahuman.com\aoc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .legolas-media.com\ui [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .legolas-media.com\udt [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_2909 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net\pudm_AAAA [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net\rts_AAAA [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adsrvr.org\TDID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adsrvr.org\TDCPM [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .sitescout.com\ssi [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adsymptotic.com\U [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tellapart.com\__cmbGU [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    t.tellapart.com\AWSELB [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .xiti.com\idrxvr [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    counter.scribblelive.com\SLStatUid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .aftonbladet.se\siteCatClickTrackString [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    track.adform.net\EBFCD14054804 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    track.adform.net\EBFC14054804 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .addthis.com\dt [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .addthis.com\di2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tapad.com\TapAd_TS [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tapad.com\TapAd_DID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .addthis.com\um [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .semasio.net\SEUNCY [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .addthis.com\uvc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .addthis.com\uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .addthis.com\vc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.ebmarine.no\slimstat_tracking_code [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .addthis.com\loc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    tags.mediaforge.com\SERVERID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com\ActivityInfo2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com\u2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaforge.com\uID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaforge.com\uid3 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaforge.com\pID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaforge.com\cID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mathtag.com\mt_mop [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .dpclk.com\__df_v1 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .dpclk.com\__df_v2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_3644 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .go.sonobi.com\__uin_bw [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .go.sonobi.com\__uig [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .go.sonobi.com\__uis [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    d.adroll.com\__adroll [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.linkedin.com\BizoID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.linkedin.com\BizoData [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .bidswitch.net\tuuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .3lift.com\tluid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .contextweb.com\V [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .contextweb.com\pb_rtb_ev [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .contextweb.com\sto-id-20480-bh [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.trendmicro.com\_bizo_np_stats [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pubmatic.com\KRTBCOOKIE_97 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pubmatic.com\PUBMDCID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adtechus.com\criteod4dr [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lijit.com\_lijit_retarget_rtb_dbbe693d-c205-4322-af3f-e40630ec89d7 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lijit.com\_ljtrtb_9 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.syracuse.com\NSC_pbt.d18ef_wtfswfs_iuuq [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.pennlive.com\NSC_pbt.d18ef_wtfswfs_iuuq [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    server.iad.liveperson.net\HumanClickKEY [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .liveperson.net\LivePersonID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .liveperson.net\LivePersonID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com\CMID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com\CMPS [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com\CMST [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com\CMDD [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com\CMRUM3 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adnxs.com\icu [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .taboola.com\t_gid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .taboola.com\taboola_usg [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adtechus.com\criteoastro [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\rpb [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\put_2054 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pixel.rubiconproject.com\rpx [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rubiconproject.com\khaos [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .agkn.com\uuid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .agkn.com\u [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rlcdn.com\rlas3 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rlcdn.com\rtn1 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rlcdn.com\dids515135619 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net\s_vi_nox60gboojxxdihc [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    track.adform.net\cid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adform.net\uid [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mookie1.com\id [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mookie1.com\mdata [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adnxs.com\anj [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adnxs.com\sess [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adnxs.com\uuid2 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    server.iad.liveperson.net\HumanClickSiteContainerID_19452074 [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .doubleclick.net\DSID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .googleadservices.com\AID [ C:\USERS\MITCH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

    ============
    End of Log
    ============

  2. #2
    Member
    Join Date
    May 2016
    Posts
    52
    Points
    0

    Default

    Dubbelpost
    Last edited by padidivinginstructor; 05-04-2016 at 03:08 PM. Reason: DUBBELPOST

  3. #3
    Member Spyware Fighter DonnaB's Avatar
    Join Date
    Apr 2009
    Location
    Illiana, Ill. USA
    Posts
    3,521
    Points
    563

    Default

    Hi padidivinginstructor,

    My apologies for the delay in responding.

    Thank you for the logs. I am going to have you perform a scan using the following tool. The resultant log may show me a bit more than the 3 you logs you provided above..

    Download Farbar Recovery Scan Tool to your desktop from the link below:

    For x64 bit systems download Farbar Recovery Scan Tool x64. < link

    • Right click on the FRST.exe and choose Run as administrator.
    • When the tool opens click Yes to disclaimer.
    • Under Optional Scan make sure there is a checkmark in the box for Addition.txt to ensure it creates that 2nd log.
    • Press Scan button.
    • Please attach both logs in your next reply.
    If you think you might be infected with malware or have recently cleansed your computer of malware without the help of an expert, please read and follow the instructions in How to Start Removing Viruses and Spyware from your Computer. This can alleviate time consumed in trouble shooting your current computer problems.

    If your problem is solved, here's how to say thanks!

    Very proud parent of a U.S. Navy "CB"



    "People may forget what you say,
    People may forget what you did,
    but People will never forget how you made them feel!"

  4. #4
    Member
    Join Date
    May 2016
    Posts
    52
    Points
    0

    Default

    No worries. Thank you for your time instead!

    nr1

    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:06-05-2016 02
    Ran by Mitch (administrator) on MITCH-PC (06-05-2016 01:15:23)
    Running from C:\Users\Mitch\Downloads
    Loaded Profiles: Mitch (Available Profiles: Mitch)
    Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Engelska (USA)
    Internet Explorer Version 11 (Default browser: Chrome)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
    (Microsoft Corporation) C:\Windows\System32\wlanext.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
    (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
    (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
    (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
    (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
    (Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
    (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
    (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    (Microsoft Corporation) C:\Windows\System32\rundll32.exe
    (SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
    (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
    (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    (REALiX) C:\Program Files\HWiNFO64\HWiNFO64.EXE
    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
    (CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
    (Buypass AS) C:\Program Files (x86)\Buypass\Javafri løsning\Buypass.SCProxy.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
    (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
    (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
    (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
    (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
    (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (Intel Corporation) C:\Windows\System32\igfxEM.exe
    (Intel Corporation) C:\Windows\System32\igfxHK.exe
    () C:\Windows\System32\igfxTray.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
    (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
    (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
    (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
    (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (BitTorrent Inc.) C:\Users\Mitch\AppData\Roaming\BitTorrent\BitTorrent.exe
    (BitTorrent Inc.) C:\Users\Mitch\AppData\Roaming\BitTorrent\updates\7.9.6_42095\utorrentie.exe
    (BitTorrent Inc.) C:\Users\Mitch\AppData\Roaming\BitTorrent\updates\7.9.6_42095\utorrentie.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
    (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


    ==================== Registry (Whitelisted) ===========================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
    HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2396096 2016-03-30] (NVIDIA Corporation)
    HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
    HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-01-20] (Realtek Semiconductor)
    HKLM\...\Run: [Fences] => C:\Program Files (x86)\Stardock\Fences\Fences.exe [4017368 2012-10-29] (Stardock Corporation)
    HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
    HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-04-14] (AVG Technologies CZ, s.r.o.)
    HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [4883216 2016-04-20] (AVG Technologies CZ, s.r.o.)
    HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
    HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1298456 2015-04-20] (CANON INC.)
    HKLM-x32\...\Run: [Javafri l�sning] => C:\Program Files (x86)\Buypass\Javafri løsning\Buypass.SCProxy.exe [315624 2015-09-10] (Buypass AS)
    HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-12-20] (Intel Corporation)
    HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
    Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23484296 2016-04-25] (Google)
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4289728 2016-04-04] (Disc Soft Ltd)
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation)
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7943072 2016-04-20] (SUPERAntiSpyware)
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\MountPoints2: {6a85df77-0bc5-11e6-a710-7c7a919a6b44} - E:\CDSetup.exe
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\MountPoints2: {a77a485f-0bd4-11e6-b2b4-7c7a919a6b44} - G:\setup.exe
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\MountPoints2: {d0b165ee-0d75-11e6-a68c-7c7a919a6b44} - G:\setup64.exe
    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\MountPoints2: {d9704040-0c78-11e6-b5a8-806e6f6e6963} - G:\setup.exe
    AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2016-03-22] (NVIDIA Corporation)
    AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [153392 2016-03-22] (NVIDIA Corporation)
    ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
    ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
    ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HWiNFO64 Program.lnk [2016-04-30]
    ShortcutTarget: HWiNFO64 Program.lnk -> C:\Program Files\HWiNFO64\HWiNFO64.EXE (REALiX)
    Startup: C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Fences.lnk [2016-04-26]
    ShortcutTarget: Fences.lnk -> C:\Program Files (x86)\Stardock\Fences\Fences.exe (Stardock Corporation)
    BootExecute: autocheck autochk * sdnclean64.exe

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    Tcpip\Parameters: [DhcpNameServer] 192.168.80.1
    Tcpip\..\Interfaces\{DC578F30-A562-4F13-9370-35364D338AFE}: [DhcpNameServer] 192.168.80.1

    Internet Explorer:
    ==================
    SearchScopes: HKU\S-1-5-21-3214680165-297868778-3278915397-1000 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL =
    BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
    BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
    Toolbar: HKLM - DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll No File

    FireFox:
    ========
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
    FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
    FF Plugin-x32: @bankid.com/BankID säkerhetsprogram,version=6.0.1.5 -> C:\Program Files (x86)\BankID\npBispBrowser.dll [No File]
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-09] (Intel Corporation)
    FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-09] (Intel Corporation)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-26] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-26] (Google Inc.)
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-02-26] (Adobe Systems Inc.)

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://www.google.se/
    CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3319434&octid=EB_ORIGINAL_CTID&ISID=MFC7E5F02-513C-49AD-A0D6-EF3F96B03B33&SearchSource=55&CUI=&UM=5&UP=SP103338AE-E2C1-48C4-95E8-F0B1CEB088F0&SSPV=","hxxp://mysearch.avg.com?cid={7B668F9C-B378-4467-B0E6-257D6A4DC38D}&mid=3ff380f5246447d29c47ad33d77e82b7-f9731dea6457587c352af4e9518e8de3f73c8fba&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-14 16:26:25&v=18.1.0.443&pid=safeguard&sg=&sap=hp","hxxp://mysearch.avg.com?cid={7B668F9C-B378-4467-B0E6-257D6A4DC38D}&mid=3ff380f5246447d29c47ad33d77e82b7-f9731dea6457587c352af4e9518e8de3f73c8fba&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-14 16:26:25&v=18.1.7.598&pid=safeguard&sg=&sap=hp","hxxps://mysearch.avg.com?cid={7B668F9C-B378-4467-B0E6-257D6A4DC38D}&mid=3ff380f5246447d29c47ad33d77e82b7-f9731dea6457587c352af4e9518e8de3f73c8fba&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-14 16:26:25&v=18.1.9.786&pid=safeguard&sg=&sap=hp","hxxps://mysearch.avg.com?cid={7B668F9C-B378-4467-B0E6-257D6A4DC38D}&mid=3ff380f5246447d29c47ad33d77e82b7-f9731dea6457587c352af4e9518e8de3f73c8fba&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-14 16:26:25&v=18.1.9.799&pid=safeguard&sg=&sap=hp","hxxps://no.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_togoo_16_16&param1=1&param2=f%3D7%26b%3Dchmm%26cc%3Dno%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzuzy0E0A0DzyyBzy0FyEyEtAtC0D0AyB0BtN0D0Tzu0StCyDyByEtN1L2XzutAtFtBtCtFtCtFtCtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StDtA0DzytByDyB0CtGtDtA0DtCtGzztC0A0AtGyBzz0CzytGyCyB0C0AyE0F0C0F0FyE0Fzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0E0F0FtDyD0D0DtG0BtAzztDtGyEtCzzzytG0AyD0BtBtG0AyE0C0C0C0D0CyCyBtD0Dzz2QtN0A0LzuyE%26cr%3D1207381214%26a%3Dwbf_togoo_16_16%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&uref=chmm"
    CHR Session Restore: Default -> is enabled.
    CHR Profile: C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Google Presentationer) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-26]
    CHR Extension: (Google Dokument) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-26]
    CHR Extension: (Google Drive) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-26]
    CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2016-04-26]
    CHR Extension: (YouTube) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-26]
    CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2016-04-26]
    CHR Extension: (Google Kalkylark) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-26]
    CHR Extension: (Cloud SWF, Flash Player with Drive) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffhhaadihgfcgmlefioblaahpnglnkbk [2016-04-29]
    CHR Extension: (Flash Player & Playlist) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbajclanpfajnmiiihhnllgfobjbhpem [2016-04-29]
    CHR Extension: (Chrome Remote Desktop) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2016-05-05]
    CHR Extension: (Google Dokument Offline) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-26]
    CHR Extension: (Goo Create) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkhabjffjaooaefhbodphgflhdnhooea [2016-04-26]
    CHR Extension: (Bing2Google) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoehlfmhfafaiepckjikpphoklijedl [2016-04-26]
    CHR Extension: (Google Ritningar) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkaakpdehdafacodkgkpghoibnmamcme [2016-04-26]
    CHR Extension: (Betalning via Chrome Web Store) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-26]
    CHR Extension: (Gmail) - C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-26]
    CHR HKU\S-1-5-21-3214680165-297868778-3278915397-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) ========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
    S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [638968 2016-04-20] (AVG Technologies CZ, s.r.o.)
    R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5155904 2016-04-20] (AVG Technologies CZ, s.r.o.)
    R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1074448 2016-04-14] (AVG Technologies CZ, s.r.o.)
    R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [710232 2016-04-20] (AVG Technologies CZ, s.r.o.)
    R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
    R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-03-30] (NVIDIA Corporation)
    R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
    R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [134760 2015-09-11] (Intel Corporation)
    R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
    R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
    S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
    R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-09] (Intel Corporation)
    R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-09] (Intel Corporation)
    R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
    R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
    S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-05-29] ()
    R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-03-30] (NVIDIA Corporation)
    R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-03-30] (NVIDIA Corporation)
    R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-03-30] (NVIDIA Corporation)
    R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2013-12-09] (Qualcomm Atheros) [File not signed]
    R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
    R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
    R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
    S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
    R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-05-29] (Intel® Corporation)
    S2 0136311462311555mcinstcleanup; C:\Users\Mitch\AppData\Local\Temp\013631~1.EXE -cleanup -nolog [X]

    ===================== Drivers (Whitelisted) ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162592 2016-02-16] (AVG Technologies CZ, s.r.o.)
    R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [307456 2016-04-20] (AVG Technologies CZ, s.r.o.)
    R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272304 2016-01-26] (AVG Technologies CZ, s.r.o.)
    R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [284080 2015-10-21] (AVG Technologies CZ, s.r.o.)
    R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
    R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [248576 2016-03-29] (AVG Technologies CZ, s.r.o.)
    R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [51968 2016-04-14] (AVG Technologies CZ, s.r.o.)
    R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [302000 2015-10-08] (AVG Technologies CZ, s.r.o.)
    R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [71936 2016-04-18] (AVG Technologies CZ, s.r.o.)
    R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc.)
    R3 btmaudio; C:\Windows\System32\drivers\btmaud.sys [87864 2015-04-08] (Motorola Solutions, Inc.)
    R3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [153616 2016-04-11] (Motorola Solutions, Inc.)
    R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-04-27] (Disc Soft Ltd)
    R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-04-27] (Disc Soft Ltd)
    S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
    S3 GemCCID; C:\Windows\System32\Drivers\GemCCID.sys [119680 2009-08-10] (Gemalto)
    R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2016-04-30] (REALiX(tm))
    R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
    R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)
    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
    R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-05-06] (Malwarebytes)
    R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
    R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2013-12-09] (Intel Corporation)
    R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw02.sys [3442144 2014-06-18] (Intel Corporation)
    R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-03-30] (NVIDIA Corporation)
    R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
    S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [466648 2014-02-21] (Realsil Semiconductor Corporation)
    R3 SAlphaPS2; C:\Windows\System32\DRIVERS\SAlphaPS264.sys [27520 2014-10-08] (SteelSeries Corporation)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R0 sptd; C:\Windows\System32\Drivers\sptd.sys [394296 2016-04-27] (Duplex Secure Ltd.)
    S3 VGPU; System32\drivers\rdvgkmd.sys [X]

  5. #5
    Member
    Join Date
    May 2016
    Posts
    52
    Points
    0

    Default

    ==================== NetSvcs (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


    ==================== One Month Created files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2016-05-06 01:15 - 2016-05-06 01:15 - 00026412 _____ C:\Users\Mitch\Downloads\FRST.txt
    2016-05-06 01:14 - 2016-05-06 01:15 - 00000000 ____D C:\FRST
    2016-05-06 01:14 - 2016-05-06 01:14 - 02379776 _____ (Farbar) C:\Users\Mitch\Downloads\FRST64.exe
    2016-05-04 16:52 - 2016-05-06 00:25 - 00024050 _____ C:\Windows\ntbtlog.txt
    2016-05-04 16:49 - 2016-05-04 16:49 - 00014048 _____ C:\Users\Mitch\Downloads\hijackthis1
    2016-05-04 15:18 - 2016-05-04 15:18 - 25692616 _____ (SUPERAntiSpyware) C:\Users\Mitch\Downloads\Obekräftade 84592.crdownload
    2016-05-04 12:51 - 2016-05-04 12:51 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\SUPERAntiSpyware.com
    2016-05-04 12:50 - 2016-05-04 12:51 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
    2016-05-04 12:50 - 2016-05-04 12:50 - 25692616 _____ (SUPERAntiSpyware) C:\Users\Mitch\Downloads\SUPERAntiSpyware.exe
    2016-05-04 12:50 - 2016-05-04 12:50 - 00001808 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
    2016-05-04 12:50 - 2016-05-04 12:50 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
    2016-05-04 12:50 - 2016-05-04 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    2016-05-04 12:36 - 2016-05-04 14:00 - 00000000 ____D C:\ProgramData\iolo
    2016-05-04 12:36 - 2016-05-04 12:36 - 07497800 _____ C:\Users\Mitch\Downloads\SCUDownloader (1).exe
    2016-05-04 12:36 - 2016-05-04 12:36 - 00074703 _____ C:\Windows\SysWOW64\mfc45.dat
    2016-05-04 12:36 - 2016-05-04 12:36 - 00003528 _____ C:\Windows\System32\Tasks\iolo System Checkup
    2016-05-04 12:36 - 2016-05-04 12:36 - 00001175 _____ C:\Users\Mitch\Desktop\System Checkup.lnk
    2016-05-04 12:36 - 2016-05-04 12:36 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Macromedia
    2016-05-04 12:36 - 2016-05-04 12:36 - 00000000 ____D C:\Program Files (x86)\iolo
    2016-05-04 11:35 - 2016-05-04 16:55 - 00000342 _____ C:\Windows\Tasks\AVG-SSU_0516av.job
    2016-05-04 11:35 - 2016-05-04 16:53 - 00000426 _____ C:\Windows\Tasks\AVG-SSU_0516av_DELETE.job
    2016-05-04 11:35 - 2016-05-04 11:35 - 00002928 _____ C:\Windows\System32\Tasks\AVG-SSU_0516av_DELETE
    2016-05-04 11:35 - 2016-05-04 11:35 - 00002638 _____ C:\Windows\System32\Tasks\AVG-SSU_0516av
    2016-05-04 11:35 - 2016-05-04 11:35 - 00000000 ____D C:\ProgramData\Avg_Update_0516av
    2016-05-03 18:07 - 2016-05-03 18:07 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
    2016-05-03 18:07 - 2016-05-03 18:07 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
    2016-05-03 14:23 - 2016-05-03 14:23 - 00000218 _____ C:\Users\Mitch\Desktop\Counter-Strike Condition Zero.url
    2016-05-02 23:23 - 2016-05-06 00:25 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2016-05-02 23:23 - 2016-05-02 23:23 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2016-05-02 23:23 - 2016-05-02 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
    2016-05-02 23:23 - 2016-05-02 23:23 - 00000000 ____D C:\ProgramData\Malwarebytes
    2016-05-02 23:23 - 2016-05-02 23:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
    2016-05-02 23:23 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
    2016-05-02 23:23 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
    2016-05-02 23:23 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
    2016-05-02 22:46 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
    2016-05-02 22:42 - 2016-05-02 22:42 - 22851472 _____ (Malwarebytes ) C:\Users\Mitch\Downloads\mbam-setup-FileHippo.19901-2.2.1.1043.exe
    2016-05-02 22:37 - 2016-05-04 00:51 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
    2016-05-02 22:37 - 2016-05-02 22:46 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
    2016-05-02 22:37 - 2016-05-02 22:37 - 00388608 _____ (Trend Micro Inc.) C:\Users\Mitch\Downloads\HijackThis.exe
    2016-05-02 22:37 - 2016-05-02 22:37 - 00001391 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
    2016-05-02 22:37 - 2016-05-02 22:37 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
    2016-05-02 22:37 - 2016-05-02 22:37 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
    2016-05-02 22:37 - 2016-05-02 22:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
    2016-05-02 22:37 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
    2016-05-02 22:36 - 2016-05-02 22:36 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Mitch\Downloads\spybot-2.4.exe
    2016-05-02 00:56 - 2016-05-02 00:56 - 00000323 _____ C:\Users\Mitch\BullseyeCoverageError.txt
    2016-05-02 00:52 - 2016-05-02 00:53 - 00000000 ____D C:\Users\Mitch\Downloads\realtek_bluetooth_a2dp_device_driver
    2016-05-01 23:53 - 2016-05-03 14:23 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
    2016-05-01 23:53 - 2016-05-01 23:53 - 00000219 _____ C:\Users\Mitch\Desktop\Counter-Strike Global Offensive.url
    2016-05-01 23:14 - 2016-05-01 23:14 - 00000000 ____D C:\Users\Mitch\AppData\Local\Steam
    2016-05-01 23:13 - 2016-05-05 14:40 - 00000000 ____D C:\Program Files (x86)\Steam
    2016-05-01 23:13 - 2016-05-01 23:13 - 01380712 _____ C:\Users\Mitch\Downloads\SteamSetup.exe
    2016-05-01 23:13 - 2016-05-01 23:13 - 00000963 _____ C:\Users\Public\Desktop\Steam.lnk
    2016-05-01 23:13 - 2016-05-01 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
    2016-05-01 00:19 - 2016-04-30 23:43 - 00061847 _____ C:\Users\Mitch\Downloads\Triple.9.2016.REPACK.Custom.DKsubs.1080p.HDRip.x264-UNiTY.srt
    2016-05-01 00:19 - 2016-04-30 23:43 - 00006271 _____ C:\Users\Mitch\Downloads\triple.9.(6605658).nfo
    2016-05-01 00:18 - 2016-05-01 00:18 - 00026086 _____ C:\Users\Mitch\Downloads\triple.9.(2016).dan.1cd.(6605658).zip
    2016-04-30 23:44 - 2016-05-03 14:15 - 00000000 ____D C:\Users\Mitch\AppData\Local\ElevatedDiagnostics
    2016-04-30 22:58 - 2016-04-30 22:58 - 00059360 _____ C:\Users\Mitch\Downloads\Triple 9.English.srt
    2016-04-30 20:20 - 2016-05-03 14:33 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\NVIDIA
    2016-04-30 20:20 - 2016-04-30 20:20 - 00000886 _____ C:\Users\Mitch\Desktop\MSI Kombustor 3.lnk
    2016-04-30 20:20 - 2016-04-30 20:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3
    2016-04-30 20:20 - 2016-04-30 20:20 - 00000000 ____D C:\Program Files\MSI Kombustor 3
    2016-04-30 20:19 - 2016-04-30 20:19 - 19635058 _____ (MSI Co., LTD ) C:\Users\Mitch\Downloads\MSI_Kombustor_Setup_3.5.1.0_x64.exe
    2016-04-30 20:18 - 2016-04-30 20:18 - 00000000 ____D C:\Windows\SysWOW64\directx
    2016-04-30 20:18 - 2016-04-30 20:18 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
    2016-04-30 20:18 - 2016-04-30 20:18 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
    2016-04-30 20:17 - 2016-04-30 20:18 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
    2016-04-30 20:17 - 2016-04-30 20:17 - 00001086 _____ C:\Users\Mitch\Desktop\MSI Afterburner.lnk
    2016-04-30 20:17 - 2016-04-30 20:17 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
    2016-04-30 20:17 - 2015-12-09 10:00 - 38325080 _____ C:\Users\Mitch\Downloads\MSIAfterburnerSetup420.exe
    2016-04-30 20:16 - 2016-04-30 20:17 - 38094793 _____ C:\Users\Mitch\Downloads\MSIAfterburnerSetup.zip
    2016-04-30 19:51 - 2016-05-02 23:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
    2016-04-30 19:51 - 2016-04-30 19:51 - 00027552 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS
    2016-04-30 19:51 - 2016-04-30 19:51 - 00000000 ____D C:\Program Files\HWiNFO64
    2016-04-30 19:50 - 2016-04-30 19:50 - 02883728 _____ (Martin Malík - REALiX ) C:\Users\Mitch\Downloads\hw64_524.exe
    2016-04-30 14:16 - 2016-05-01 18:31 - 00000000 ____D C:\Program Files (x86)\McAfee
    2016-04-30 13:53 - 2016-04-30 13:53 - 00431888 _____ C:\Users\Mitch\Downloads\skjema-m2-o-m4.pdf
    2016-04-30 02:28 - 2016-05-05 14:15 - 00033077 _____ C:\IFRToolLog.txt
    2016-04-30 02:19 - 2016-04-30 02:19 - 00000000 ____D C:\Program Files\Strogino CS Portal
    2016-04-29 23:31 - 2016-04-29 23:33 - 00015872 ___SH C:\Users\Mitch\Thumbs.db
    2016-04-29 20:47 - 2016-04-29 20:47 - 00000000 ____D C:\Users\Mitch\Documents\My Games
    2016-04-29 20:46 - 2016-04-29 20:46 - 00000000 ____D C:\ProgramData\Orbit
    2016-04-29 20:45 - 2016-03-30 03:06 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
    2016-04-29 20:45 - 2016-03-30 03:05 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
    2016-04-29 20:45 - 2016-03-30 03:05 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll
    2016-04-29 20:44 - 2016-04-29 20:44 - 00000000 ____D C:\Windows\SysWOW64\NV
    2016-04-29 20:44 - 2016-04-29 20:44 - 00000000 ____D C:\Windows\system32\NV
    2016-04-29 20:44 - 2016-04-29 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan
    2016-04-29 20:44 - 2016-04-29 20:44 - 00000000 ____D C:\Program Files (x86)\VulkanRT
    2016-04-29 20:44 - 2016-03-16 23:30 - 00128792 _____ C:\Windows\SysWOW64\vulkan-1.dll
    2016-04-29 20:44 - 2016-03-16 23:29 - 00127768 _____ C:\Windows\system32\vulkan-1.dll
    2016-04-29 20:44 - 2016-03-16 23:29 - 00041752 _____ C:\Windows\SysWOW64\vulkaninfo.exe
    2016-04-29 20:44 - 2016-03-16 23:28 - 00045848 _____ C:\Windows\system32\vulkaninfo.exe
    2016-04-29 20:43 - 2016-03-22 06:12 - 42923576 _____ C:\Windows\system32\nvcompiler.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 37567424 _____ C:\Windows\SysWOW64\nvcompiler.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 31555008 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 25321408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 21355248 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 20897416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 19004040 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 17748712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 17342392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 17248408 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 16446032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 14128840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 12567608 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
    2016-04-29 20:43 - 2016-03-22 06:12 - 10550736 _____ C:\Windows\system32\nvptxJitCompiler.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 08659472 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 03286992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 03235896 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 02809280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436472.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436472.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00959544 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00889400 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00753208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00695864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00678520 _____ C:\Windows\system32\nvfatbinaryLoader.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00571912 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00501896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00425016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00423080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00377792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00129208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
    2016-04-29 20:43 - 2016-03-22 06:12 - 00039992 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
    2016-04-29 20:43 - 2016-03-22 06:12 - 00000139 _____ C:\Windows\SysWOW64\nv-vk32.json
    2016-04-29 20:43 - 2016-03-22 06:12 - 00000139 _____ C:\Windows\system32\nv-vk64.json
    2016-04-29 20:43 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
    2016-04-29 20:43 - 2016-03-21 22:01 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
    2016-04-29 20:39 - 2016-04-29 20:42 - 360454008 _____ (NVIDIA Corporation) C:\Users\Mitch\Downloads\364.72-desktop-win8-win7-winvista-64bit-international-whql.exe
    2016-04-29 20:10 - 2016-04-29 20:12 - 363140224 _____ (NVIDIA Corporation) C:\Users\Mitch\Downloads\364.72-desktop-win10-64bit-international-whql.exe
    2016-04-28 23:16 - 2016-04-28 23:16 - 00001773 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
    2016-04-28 23:16 - 2016-04-28 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
    2016-04-28 23:16 - 2016-04-28 23:16 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
    2016-04-28 23:15 - 2016-04-28 23:15 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Mitch\Downloads\DTLiteInstaller.exe
    2016-04-28 23:10 - 2016-04-28 23:10 - 00003198 _____ C:\Windows\System32\Tasks\{FFE04B69-FFE8-44EB-B842-CEC15662B1D2}
    2016-04-28 22:27 - 2016-04-28 22:27 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\DAEMON Tools Pro
    2016-04-28 22:26 - 2016-04-28 22:41 - 00000000 ____D C:\ProgramData\DAEMON Tools Pro
    2016-04-28 21:17 - 2016-05-04 16:51 - 00000000 ____D C:\Windows\Minidump
    2016-04-28 20:32 - 2016-04-28 20:32 - 03319424 _____ C:\Users\Mitch\Downloads\Windows6.1-KB3138612-x64 (1).msu
    2016-04-28 19:46 - 2016-04-28 19:46 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btmaux_01009.Wdf
    2016-04-28 19:46 - 2016-04-28 19:46 - 00000000 ____D C:\Users\Mitch\Documents\Mina mottagna filer
    2016-04-28 19:46 - 2015-08-05 07:58 - 00580584 _____ C:\Windows\system32\Drivers\370b10060002220e00.sfi
    2016-04-28 19:46 - 2015-08-05 07:58 - 00576800 _____ C:\Windows\system32\Drivers\370b12060002340e00.sfi
    2016-04-28 19:46 - 2015-08-05 07:58 - 00576800 _____ C:\Windows\system32\Drivers\020b0006000c200f00.sfi
    2016-04-28 19:46 - 2015-08-05 07:58 - 00576800 _____ C:\Windows\system32\Drivers\010b0006000c200f00.sfi
    2016-04-28 19:46 - 2015-08-05 07:58 - 00549376 _____ C:\Windows\system32\Drivers\000b0006000c200f00.sfi
    2016-04-28 19:46 - 2015-08-05 07:58 - 00009504 _____ C:\Windows\system32\Drivers\370b12060002340e00_selftest.sfi
    2016-04-28 19:46 - 2015-08-05 07:58 - 00009504 _____ C:\Windows\system32\Drivers\370b10060002220e00_selftest.sfi
    2016-04-28 19:46 - 2015-08-05 07:40 - 00000039 _____ C:\Windows\system32\Drivers\370b1223000c200f00.bseq
    2016-04-28 19:46 - 2015-08-05 07:40 - 00000039 _____ C:\Windows\system32\Drivers\370b1023000c200f00.bseq
    2016-04-28 19:46 - 2015-08-05 07:40 - 00000035 _____ C:\Windows\system32\Drivers\370b1223000c200f00_Android.bseq
    2016-04-28 19:46 - 2015-08-05 07:40 - 00000035 _____ C:\Windows\system32\Drivers\370b1023000c200f00_Android.bseq
    2016-04-28 19:46 - 2015-08-05 07:40 - 00000017 _____ C:\Windows\system32\Drivers\020b0023000c200f00.bseq
    2016-04-28 19:46 - 2015-08-05 07:40 - 00000017 _____ C:\Windows\system32\Drivers\010b0023000c200f00.bseq
    2016-04-28 19:46 - 2015-08-05 07:40 - 00000017 _____ C:\Windows\system32\Drivers\000b0023000c200f00.bseq
    2016-04-28 19:46 - 2015-08-05 07:39 - 00597839 _____ C:\Windows\system32\Drivers\370b10060002220e00.bseq
    2016-04-28 19:46 - 2015-08-05 07:39 - 00593936 _____ C:\Windows\system32\Drivers\370b12060002340e00.bseq
    2016-04-28 19:46 - 2015-08-05 07:39 - 00593936 _____ C:\Windows\system32\Drivers\020b0006000c200f00.bseq
    2016-04-28 19:46 - 2015-08-05 07:39 - 00593936 _____ C:\Windows\system32\Drivers\010b0006000c200f00.bseq
    2016-04-28 19:46 - 2015-08-05 07:39 - 00565662 _____ C:\Windows\system32\Drivers\000b0006000c200f00.bseq
    2016-04-28 19:46 - 2015-08-05 07:39 - 00009121 _____ C:\Windows\system32\Drivers\370b12060002340e00_selftest.bseq
    2016-04-28 19:46 - 2015-08-05 07:39 - 00009121 _____ C:\Windows\system32\Drivers\370b10060002220e00_selftest.bseq
    2016-04-28 19:40 - 2016-04-28 19:40 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
    2016-04-28 19:40 - 2013-12-20 17:38 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
    2016-04-28 19:15 - 2016-04-28 19:15 - 03319424 _____ C:\Users\Mitch\Downloads\Windows6.1-KB3138612-x64.msu
    2016-04-28 14:01 - 2016-05-05 18:51 - 00664316 _____ C:\Windows\system32\perfh01D.dat
    2016-04-28 14:01 - 2016-05-05 18:51 - 00142596 _____ C:\Windows\system32\perfc01D.dat
    2016-04-28 14:01 - 2016-04-28 14:01 - 00294764 _____ C:\Windows\system32\perfi01D.dat
    2016-04-28 14:01 - 2016-04-28 14:01 - 00037052 _____ C:\Windows\system32\perfd01D.dat
    2016-04-28 14:01 - 2016-04-28 14:01 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
    2016-04-28 14:01 - 2016-04-28 14:01 - 00000000 ____D C:\Windows\SysWOW64\sv
    2016-04-28 14:01 - 2016-04-28 14:01 - 00000000 ____D C:\Windows\system32\sv
    2016-04-28 00:28 - 2016-05-05 18:54 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\vlc
    2016-04-28 00:28 - 2016-04-28 00:28 - 00000871 _____ C:\Users\Public\Desktop\VLC media player.lnk
    2016-04-28 00:28 - 2016-04-28 00:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
    2016-04-28 00:28 - 2016-04-28 00:28 - 00000000 ____D C:\Program Files\VideoLAN
    2016-04-28 00:27 - 2016-04-28 00:28 - 31367109 _____ C:\Users\Mitch\Downloads\vlc-2.2.2-win64.exe
    2016-04-27 18:31 - 2016-04-27 18:31 - 00000000 ____D C:\Windows\PCHEALTH
    2016-04-27 18:31 - 2016-04-27 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
    2016-04-27 18:30 - 2016-04-27 18:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
    2016-04-27 18:30 - 2016-04-27 18:30 - 00000000 __RHD C:\MSOCache
    2016-04-27 17:37 - 2016-04-27 17:37 - 00000000 ____D C:\Program Files (x86)\Buypass
    2016-04-27 17:35 - 2016-04-27 17:35 - 00000000 ____D C:\Program Files (x86)\Gemalto
    2016-04-27 17:32 - 2016-04-27 17:32 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
    2016-04-27 15:09 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
    2016-04-27 15:09 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
    2016-04-27 15:09 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
    2016-04-27 15:09 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
    2016-04-27 15:09 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
    2016-04-27 15:09 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
    2016-04-27 15:09 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
    2016-04-27 15:09 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
    2016-04-27 15:09 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
    2016-04-27 15:09 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
    2016-04-27 15:09 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
    2016-04-27 15:09 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
    2016-04-27 15:09 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
    2016-04-27 15:09 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
    2016-04-27 15:09 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
    2016-04-27 15:09 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
    2016-04-27 15:09 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
    2016-04-27 15:09 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
    2016-04-27 15:09 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
    2016-04-27 15:09 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
    2016-04-27 15:09 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
    2016-04-27 15:09 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
    2016-04-27 15:09 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
    2016-04-27 15:09 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
    2016-04-27 15:09 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
    2016-04-27 15:09 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
    2016-04-27 15:09 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
    2016-04-27 15:09 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
    2016-04-27 15:09 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
    2016-04-27 15:09 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
    2016-04-27 15:09 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
    2016-04-27 15:09 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
    2016-04-27 15:09 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
    2016-04-27 15:09 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
    2016-04-27 15:09 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
    2016-04-27 15:09 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
    2016-04-27 15:09 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
    2016-04-27 15:09 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
    2016-04-27 15:09 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
    2016-04-27 15:09 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
    2016-04-27 15:09 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
    2016-04-27 15:09 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
    2016-04-27 15:09 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
    2016-04-27 15:09 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
    2016-04-27 15:09 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
    2016-04-27 15:09 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
    2016-04-27 15:09 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
    2016-04-27 15:09 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
    2016-04-27 15:09 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
    2016-04-27 15:09 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
    2016-04-27 15:09 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
    2016-04-27 15:09 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
    2016-04-27 15:09 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
    2016-04-27 15:09 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
    2016-04-27 15:09 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
    2016-04-27 15:09 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
    2016-04-27 15:09 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
    2016-04-27 15:09 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
    2016-04-27 15:09 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
    2016-04-27 15:09 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
    2016-04-27 15:09 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
    2016-04-27 15:09 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
    2016-04-27 15:09 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
    2016-04-27 15:09 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
    2016-04-27 15:09 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
    2016-04-27 15:09 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
    2016-04-27 15:09 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
    2016-04-27 15:09 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
    2016-04-27 15:09 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
    2016-04-27 15:09 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
    2016-04-27 15:09 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
    2016-04-27 15:09 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
    2016-04-27 15:09 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
    2016-04-27 15:09 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
    2016-04-27 15:09 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
    2016-04-27 15:09 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
    2016-04-27 15:09 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
    2016-04-27 15:09 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
    2016-04-27 15:09 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
    2016-04-27 15:09 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
    2016-04-27 15:09 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
    2016-04-27 15:09 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
    2016-04-27 15:09 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
    2016-04-27 15:09 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
    2016-04-27 15:09 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
    2016-04-27 15:09 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
    2016-04-27 15:09 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
    2016-04-27 15:09 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
    2016-04-27 15:09 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
    2016-04-27 15:09 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
    2016-04-27 15:09 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
    2016-04-27 15:09 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
    2016-04-27 15:09 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
    2016-04-27 15:09 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
    2016-04-27 15:09 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
    2016-04-27 15:09 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
    2016-04-27 15:09 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
    2016-04-27 15:09 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
    2016-04-27 15:09 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
    2016-04-27 15:09 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
    2016-04-27 15:09 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
    2016-04-27 15:09 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
    2016-04-27 15:09 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
    2016-04-27 15:09 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
    2016-04-27 15:09 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
    2016-04-27 15:09 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
    2016-04-27 15:09 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
    2016-04-27 15:09 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
    2016-04-27 15:09 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
    2016-04-27 15:09 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
    2016-04-27 15:09 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
    2016-04-27 15:09 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
    2016-04-27 15:09 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
    2016-04-27 15:09 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
    2016-04-27 15:09 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
    2016-04-27 15:09 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
    2016-04-27 15:09 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
    2016-04-27 15:09 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
    2016-04-27 15:09 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
    2016-04-27 15:09 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
    2016-04-27 15:09 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
    2016-04-27 15:09 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
    2016-04-27 15:09 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
    2016-04-27 15:09 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
    2016-04-27 15:09 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
    2016-04-27 15:09 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
    2016-04-27 15:09 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
    2016-04-27 15:09 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
    2016-04-27 15:09 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
    2016-04-27 15:09 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
    2016-04-27 15:09 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
    2016-04-27 15:09 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
    2016-04-27 15:09 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
    2016-04-27 15:09 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
    2016-04-27 15:09 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
    2016-04-27 15:09 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
    2016-04-27 15:09 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
    2016-04-27 15:09 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
    2016-04-27 15:09 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
    2016-04-27 15:09 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
    2016-04-27 15:09 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
    2016-04-27 15:09 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
    2016-04-27 15:09 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
    2016-04-27 15:09 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
    2016-04-27 15:09 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
    2016-04-27 15:09 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
    2016-04-27 15:09 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
    2016-04-27 15:09 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
    2016-04-27 15:09 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
    2016-04-27 15:08 - 2016-04-27 15:08 - 00002164 _____ C:\Users\Public\Desktop\Sniper Ghost Warrior 2.lnk
    2016-04-27 15:08 - 2016-04-27 15:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Ghost Warrior 2
    2016-04-27 15:08 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
    2016-04-27 15:08 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
    2016-04-27 15:08 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
    2016-04-27 15:08 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
    2016-04-27 15:08 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
    2016-04-27 15:08 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
    2016-04-27 15:08 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
    2016-04-27 15:08 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
    2016-04-27 15:08 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
    2016-04-27 15:08 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
    2016-04-27 15:08 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
    2016-04-27 15:08 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
    2016-04-27 15:08 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
    2016-04-27 15:08 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
    2016-04-27 15:08 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
    2016-04-27 15:08 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
    2016-04-27 15:08 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
    2016-04-27 15:08 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
    2016-04-27 15:07 - 2016-04-27 15:08 - 00000000 ____D C:\Program Files (x86)\Sniper Ghost Warrior 2
    2016-04-27 15:05 - 2016-04-28 23:16 - 00000000 ____D C:\Users\Mitch\AppData\Local\Disc_Soft_Ltd
    2016-04-27 15:03 - 2016-04-27 15:03 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
    2016-04-27 15:03 - 2016-04-27 15:03 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
    2016-04-27 14:59 - 2016-04-27 14:59 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
    2016-04-27 02:56 - 2016-04-27 02:56 - 00001857 _____ C:\Users\Public\Desktop\BankID säkerhetsprogram.lnk
    2016-04-27 02:56 - 2016-04-27 02:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BankID säkerhetsprogram
    2016-04-27 02:56 - 2016-04-27 02:56 - 00000000 ____D C:\Program Files (x86)\BankID
    2016-04-27 02:10 - 2016-04-27 02:10 - 00034739 _____ C:\Users\Mitch\Documents\IMG_20160427_0001.pdf
    2016-04-27 02:09 - 2016-04-27 02:11 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Canon
    2016-04-27 02:09 - 2016-04-27 02:10 - 00000000 ___HD C:\ProgramData\CanonIJScan
    2016-04-27 02:08 - 2016-04-27 02:08 - 00002021 _____ C:\Users\Public\Desktop\Canon Quick Menu.lnk
    2016-04-27 02:07 - 2016-04-27 02:07 - 00000000 ____D C:\ProgramData\CanonIJWSpt
    2016-04-27 02:05 - 2016-04-27 02:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
    2016-04-27 02:05 - 2016-04-27 02:05 - 00002009 _____ C:\Users\Public\Desktop\Canon IJ Network Tool.lnk
    2016-04-27 02:05 - 2016-04-27 02:05 - 00000000 ____D C:\ProgramData\Canon IJ Network Tool
    2016-04-27 02:05 - 2016-04-27 02:05 - 00000000 ____D C:\Program Files (x86)\Canon
    2016-04-27 02:05 - 2013-02-04 15:10 - 00321536 _____ (CANON INC.) C:\Windows\SysWOW64\CNC_BVL.dll
    2016-04-27 02:05 - 2012-11-26 12:32 - 00088576 _____ C:\Windows\SysWOW64\CNC176ED.TBL
    2016-04-27 02:05 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll
    2016-04-27 02:04 - 2016-04-27 02:04 - 00000000 ___HD C:\ProgramData\CanonBJ
    2016-04-27 02:04 - 2016-04-27 02:04 - 00000000 ___HD C:\Program Files\CanonBJ
    2016-04-27 02:04 - 2016-04-27 02:04 - 00000000 ____D C:\Windows\system32\STRING
    2016-04-27 02:04 - 2013-04-04 05:00 - 00391168 _____ (CANON INC.) C:\Windows\system32\CNMLMBV.DLL
    2016-04-27 02:04 - 2013-01-24 16:24 - 00359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
    2016-04-27 02:04 - 2013-01-24 16:24 - 00039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
    2016-04-27 02:04 - 2013-01-24 16:23 - 00366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
    2016-04-27 01:26 - 2016-04-27 01:26 - 00000000 ___SD C:\Windows\system32\CompatTel
    2016-04-27 01:26 - 2016-04-27 01:26 - 00000000 ____D C:\Windows\system32\appraiser
    2016-04-27 01:17 - 2016-04-04 20:14 - 00038120 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
    2016-04-27 01:17 - 2016-04-04 20:02 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
    2016-04-27 01:17 - 2016-04-02 15:08 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
    2016-04-27 01:17 - 2016-03-23 16:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
    2016-04-27 01:17 - 2016-03-17 20:04 - 00698368 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
    2016-04-27 01:17 - 2016-03-17 20:04 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
    2016-04-27 01:17 - 2016-03-17 20:04 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
    2016-04-27 01:17 - 2016-03-17 20:04 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
    2016-04-27 01:17 - 2016-02-03 16:07 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
    2016-04-27 01:17 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
    2016-04-27 01:17 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
    2016-04-27 01:17 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
    2016-04-27 01:17 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2016-04-27 01:17 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
    2016-04-27 01:17 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
    2016-04-27 01:17 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
    2016-04-27 01:17 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
    2016-04-27 01:17 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
    2016-04-27 01:17 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
    2016-04-27 01:17 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
    2016-04-27 01:17 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
    2016-04-27 01:17 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
    2016-04-27 01:17 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
    2016-04-27 01:17 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
    2016-04-27 01:17 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
    2016-04-27 01:17 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
    2016-04-27 01:16 - 2016-03-31 21:25 - 00394952 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2016-04-27 01:16 - 2016-03-31 20:41 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2016-04-27 01:16 - 2016-03-31 02:54 - 25817600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2016-04-27 01:16 - 2016-03-31 02:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2016-04-27 01:16 - 2016-03-31 02:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2016-04-27 01:16 - 2016-03-31 02:31 - 02892800 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2016-04-27 01:16 - 2016-03-31 02:28 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2016-04-27 01:16 - 2016-03-31 02:28 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2016-04-27 01:16 - 2016-03-31 02:27 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2016-04-27 01:16 - 2016-03-31 02:27 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2016-04-27 01:16 - 2016-03-31 02:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2016-04-27 01:16 - 2016-03-31 02:25 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2016-04-27 01:16 - 2016-03-31 02:22 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2016-04-27 01:16 - 2016-03-31 02:21 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2016-04-27 01:16 - 2016-03-31 02:19 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2016-04-27 01:16 - 2016-03-31 02:17 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2016-04-27 01:16 - 2016-03-31 02:17 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2016-04-27 01:16 - 2016-03-31 02:17 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2016-04-27 01:16 - 2016-03-31 02:17 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2016-04-27 01:16 - 2016-03-31 02:11 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2016-04-27 01:16 - 2016-03-31 02:08 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2016-04-27 01:16 - 2016-03-31 02:03 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2016-04-27 01:16 - 2016-03-31 02:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2016-04-27 01:16 - 2016-03-31 02:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2016-04-27 01:16 - 2016-03-31 01:59 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
    2016-04-27 01:16 - 2016-03-31 01:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2016-04-27 01:16 - 2016-03-31 01:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2016-04-27 01:16 - 2016-03-31 01:55 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2016-04-27 01:16 - 2016-03-31 01:53 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2016-04-27 01:16 - 2016-03-31 01:53 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
    2016-04-27 01:16 - 2016-03-31 01:52 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
    2016-04-27 01:16 - 2016-03-31 01:52 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2016-04-27 01:16 - 2016-03-31 01:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2016-04-27 01:16 - 2016-03-31 01:52 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2016-04-27 01:16 - 2016-03-31 01:51 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2016-04-27 01:16 - 2016-03-31 01:48 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2016-04-27 01:16 - 2016-03-31 01:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2016-04-27 01:16 - 2016-03-31 01:46 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2016-04-27 01:16 - 2016-03-31 01:45 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2016-04-27 01:16 - 2016-03-31 01:45 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2016-04-27 01:16 - 2016-03-31 01:45 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
    2016-04-27 01:16 - 2016-03-31 01:45 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2016-04-27 01:16 - 2016-03-31 01:43 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2016-04-27 01:16 - 2016-03-31 01:43 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2016-04-27 01:16 - 2016-03-31 01:42 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2016-04-27 01:16 - 2016-03-31 01:42 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2016-04-27 01:16 - 2016-03-31 01:39 - 15415808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2016-04-27 01:16 - 2016-03-31 01:38 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2016-04-27 01:16 - 2016-03-31 01:34 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2016-04-27 01:16 - 2016-03-31 01:33 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
    2016-04-27 01:16 - 2016-03-31 01:31 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2016-04-27 01:16 - 2016-03-31 01:31 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2016-04-27 01:16 - 2016-03-31 01:30 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2016-04-27 01:16 - 2016-03-31 01:30 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2016-04-27 01:16 - 2016-03-31 01:30 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2016-04-27 01:16 - 2016-03-31 01:29 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
    2016-04-27 01:16 - 2016-03-31 01:24 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
    2016-04-27 01:16 - 2016-03-31 01:23 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2016-04-27 01:16 - 2016-03-31 01:23 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2016-04-27 01:16 - 2016-03-31 01:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2016-04-27 01:16 - 2016-03-31 01:21 - 13811712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2016-04-27 01:16 - 2016-03-31 01:18 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2016-04-27 01:16 - 2016-03-31 01:06 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2016-04-27 01:16 - 2016-03-31 01:05 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2016-04-27 01:16 - 2016-03-31 01:02 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2016-04-27 01:16 - 2016-03-31 01:00 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2016-04-27 01:16 - 2015-12-20 20:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
    2016-04-27 01:16 - 2015-12-20 20:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
    2016-04-27 01:16 - 2015-12-20 16:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
    2016-04-27 01:16 - 2014-12-11 19:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
    2016-04-27 01:16 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
    2016-04-27 01:16 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
    2016-04-27 01:16 - 2012-07-06 22:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
    2016-04-27 01:16 - 2011-04-28 05:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
    2016-04-27 01:16 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
    2016-04-27 01:16 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
    2016-04-27 01:16 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
    2016-04-27 01:16 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
    2016-04-27 01:16 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
    2016-04-27 01:16 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
    2016-04-27 01:16 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
    2016-04-27 01:16 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
    2016-04-27 01:16 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
    2016-04-27 00:20 - 2016-04-27 00:20 - 00000000 ____D C:\Users\Mitch\Documents\Custom Office Templates
    2016-04-27 00:08 - 2016-04-27 00:08 - 00000000 ____D C:\Users\Mitch\AppData\Local\tkdata
    2016-04-27 00:08 - 2016-04-27 00:08 - 00000000 ____D C:\Users\Mitch\AppData\Local\CEF
    2016-04-27 00:07 - 2016-04-27 00:07 - 00000000 ____D C:\Program Files\Intel Security
    2016-04-27 00:06 - 2016-05-04 15:22 - 00000000 ____D C:\Program Files\Common Files\McAfee
    2016-04-27 00:06 - 2016-05-03 23:39 - 00000000 ____D C:\ProgramData\McAfee
    2016-04-27 00:03 - 2016-04-27 14:47 - 00000000 ____D C:\Windows\Panther
    2016-04-26 23:56 - 2016-04-26 23:56 - 00000000 ____D C:\Users\Mitch\AppData\LocalLow\Adobe
    2016-04-26 23:54 - 2016-05-04 15:22 - 00000000 ____D C:\Program Files\TrueKey
    2016-04-26 23:54 - 2016-04-27 00:15 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
    2016-04-26 23:54 - 2016-04-27 00:15 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
    2016-04-26 23:54 - 2016-04-27 00:13 - 00000000 ____D C:\ProgramData\Adobe
    2016-04-26 23:54 - 2016-04-26 23:54 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
    2016-04-26 23:54 - 2016-04-26 23:54 - 00000000 ____D C:\Program Files (x86)\Adobe
    2016-04-26 23:53 - 2016-04-27 02:06 - 00000000 ____D C:\Users\Mitch\AppData\Local\Adobe
    2016-04-26 22:53 - 2016-05-04 16:53 - 00000000 ___RD C:\Users\Mitch\Google Drive
    2016-04-26 22:53 - 2016-04-26 22:53 - 00001657 _____ C:\Users\Mitch\Desktop\Google Drive.lnk
    2016-04-26 22:52 - 2016-04-26 22:52 - 00002042 _____ C:\Users\Public\Desktop\Google Slides.lnk
    2016-04-26 22:52 - 2016-04-26 22:52 - 00002040 _____ C:\Users\Public\Desktop\Google Sheets.lnk
    2016-04-26 22:52 - 2016-04-26 22:52 - 00002030 _____ C:\Users\Public\Desktop\Google Docs.lnk
    2016-04-26 22:52 - 2016-04-26 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
    2016-04-26 19:40 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
    2016-04-26 19:39 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
    2016-04-26 19:39 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
    2016-04-26 19:39 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
    2016-04-26 19:39 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
    2016-04-26 19:39 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
    2016-04-26 19:39 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
    2016-04-26 19:39 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
    2016-04-26 19:39 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
    2016-04-26 19:39 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
    2016-04-26 19:39 - 2012-08-23 16:12 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\terminpt.sys
    2016-04-26 19:39 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
    2016-04-26 19:39 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
    2016-04-26 19:39 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
    2016-04-26 19:39 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
    2016-04-26 19:27 - 2016-04-26 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
    2016-04-26 19:27 - 2016-04-26 19:27 - 00000000 ____D C:\ProgramData\LogiShrd
    2016-04-26 19:15 - 2016-05-04 20:35 - 00000000 ____D C:\Users\Mitch\AppData\LocalLow\BitTorrent
    2016-04-26 19:15 - 2016-04-26 19:15 - 00002641 _____ C:\Users\Mitch\Desktop\BitTorrent.lnk
    2016-04-26 19:15 - 2016-04-26 19:15 - 00002641 _____ C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
    2016-04-26 19:14 - 2016-04-29 00:35 - 00000000 ____D C:\Users\Mitch\AppData\Local\SteelSeries_ApS
    2016-04-26 19:14 - 2016-04-26 19:14 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\SteelSeries
    2016-04-26 19:03 - 2016-04-26 19:29 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
    2016-04-26 19:03 - 2016-04-26 19:29 - 00000000 ____D C:\ProgramData\SteelSeries
    2016-04-26 19:02 - 2016-04-26 19:28 - 00000000 ____D C:\Program Files\SteelSeries
    2016-04-26 19:02 - 2016-04-26 19:02 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Logitech
    2016-04-26 19:02 - 2016-04-26 19:02 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Logishrd
    2016-04-26 19:02 - 2016-04-26 19:02 - 00000000 ____D C:\Program Files\Common Files\LogiShrd
    2016-04-26 19:02 - 2008-09-01 20:36 - 00006656 _____ C:\Users\Mitch\Desktop\SwitchUser.exe
    2016-04-26 19:00 - 2016-05-06 01:15 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\BitTorrent
    2016-04-26 18:57 - 2016-04-26 18:57 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\BankID
    2016-04-26 18:56 - 2016-04-26 19:02 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\TeraCopy
    2016-04-26 18:56 - 2016-04-26 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
    2016-04-26 18:56 - 2016-04-26 18:56 - 00000000 ____D C:\Program Files\TeraCopy
    2016-04-26 18:54 - 2016-04-26 19:31 - 00000000 ____D C:\ProgramData\Stardock
    2016-04-26 18:54 - 2016-04-26 18:54 - 00002026 _____ C:\Users\Mitch\Desktop\Customize Fences.lnk
    2016-04-26 18:54 - 2016-04-26 18:54 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Stardock
    2016-04-26 18:54 - 2016-04-26 18:54 - 00000000 ____D C:\Users\Mitch\AppData\Local\Stardock_Corporation
    2016-04-26 18:54 - 2016-04-26 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
    2016-04-26 18:54 - 2016-04-26 18:54 - 00000000 ____D C:\Program Files (x86)\Stardock
    2016-04-26 18:49 - 2016-04-27 18:30 - 00000000 ____D C:\Program Files\Microsoft Office
    2016-04-26 18:49 - 2016-04-26 18:49 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
    2016-04-26 18:49 - 2016-04-26 18:49 - 00000000 ____D C:\Users\Mitch\AppData\Local\Microsoft Help
    2016-04-26 18:34 - 2016-04-26 18:34 - 00002900 _____ C:\Windows\System32\Tasks\HWiNFO
    2016-04-26 18:33 - 2016-04-28 23:13 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Toolbar
    2016-04-26 18:33 - 2016-04-27 15:05 - 00394296 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
    2016-04-26 18:32 - 2016-04-30 02:18 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\DAEMON Tools Lite
    2016-04-26 18:32 - 2016-04-26 18:32 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
    2016-04-26 18:24 - 2016-04-26 18:24 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\WinRAR
    2016-04-26 18:24 - 2016-04-26 18:24 - 00000000 ____D C:\Users\Mitch\AppData\Local\http___www.julien-manici
    2016-04-26 18:23 - 2016-04-26 18:23 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
    2016-04-26 18:23 - 2016-04-26 18:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
    2016-04-26 18:23 - 2016-04-26 18:23 - 00000000 ____D C:\Program Files\WinRAR
    2016-04-26 18:22 - 2016-04-26 18:22 - 00002790 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
    2016-04-26 18:22 - 2016-04-26 18:22 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
    2016-04-26 18:22 - 2016-04-26 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
    2016-04-26 18:22 - 2016-04-26 18:22 - 00000000 ____D C:\Program Files\CCleaner
    2016-04-26 18:21 - 2016-04-26 19:31 - 00000000 ____D C:\Program Files (x86)\WinRAR
    2016-04-26 18:20 - 2016-04-27 14:07 - 00000000 ____D C:\Windows\pss
    2016-04-26 18:14 - 2016-04-26 18:14 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
    2016-04-26 18:14 - 2016-04-26 18:14 - 00000000 ____D C:\Windows\SysWOW64\sda
    2016-04-26 18:14 - 2014-02-21 09:40 - 00466648 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsPer.sys
    2016-04-26 18:14 - 2014-01-27 07:39 - 09890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
    2016-04-26 18:13 - 2016-04-26 18:13 - 00002783 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk
    2016-04-26 18:13 - 2016-04-26 18:13 - 00000000 ____D C:\ProgramData\Qualcomm
    2016-04-26 18:13 - 2016-04-26 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
    2016-04-26 18:13 - 2016-04-26 18:13 - 00000000 ____D C:\ProgramData\Downloaded Installations
    2016-04-26 18:13 - 2016-04-26 18:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros
    2016-04-26 18:06 - 2016-04-26 18:14 - 00000000 ____D C:\Program Files (x86)\Realtek
    2016-04-26 18:06 - 2016-04-26 18:06 - 00000000 ___HD C:\Program Files (x86)\Temp
    2016-04-26 18:06 - 2016-04-26 18:06 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
    2016-04-26 18:06 - 2016-04-26 18:06 - 00000000 ____D C:\Program Files\Realtek
    2016-04-26 18:06 - 2014-02-18 13:42 - 03867992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
    2016-04-26 18:06 - 2014-02-18 11:33 - 00624344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
    2016-04-26 18:06 - 2014-02-18 11:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
    2016-04-26 18:06 - 2014-02-18 10:56 - 00749977 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
    2016-04-26 18:06 - 2014-02-18 08:33 - 00946392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
    2016-04-26 18:06 - 2014-02-18 04:35 - 01024216 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
    2016-04-26 18:06 - 2014-02-17 12:03 - 01999128 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
    2016-04-26 18:06 - 2014-02-17 12:03 - 01728280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
    2016-04-26 18:06 - 2014-02-17 10:04 - 02788056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
    2016-04-26 18:06 - 2014-02-03 18:45 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
    2016-04-26 18:06 - 2014-02-03 18:45 - 02037336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
    2016-04-26 18:06 - 2014-02-03 18:45 - 01033304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
    2016-04-26 18:06 - 2014-01-28 05:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
    2016-04-26 18:06 - 2014-01-20 13:11 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
    2016-04-26 18:06 - 2014-01-08 09:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
    2016-04-26 18:06 - 2013-12-31 05:16 - 02825432 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
    2016-04-26 18:06 - 2013-12-04 10:27 - 01958616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
    2016-04-26 18:06 - 2013-10-15 21:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
    2016-04-26 18:06 - 2013-10-11 06:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
    2016-04-26 18:06 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
    2016-04-26 18:06 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
    2016-04-26 18:06 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
    2016-04-26 18:06 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
    2016-04-26 18:06 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
    2016-04-26 18:06 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
    2016-04-26 18:06 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
    2016-04-26 18:06 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
    2016-04-26 18:06 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
    2016-04-26 18:06 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
    2016-04-26 18:06 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
    2016-04-26 18:06 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
    2016-04-26 18:06 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
    2016-04-26 18:06 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
    2016-04-26 18:06 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
    2016-04-26 18:06 - 2009-11-18 01:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
    2016-04-26 18:02 - 2016-04-29 20:45 - 00000000 ____D C:\Users\Mitch\AppData\Local\NVIDIA Corporation
    2016-04-26 18:01 - 2016-04-29 23:33 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
    2016-04-26 18:01 - 2016-04-29 20:45 - 00000000 ____D C:\Users\Mitch\AppData\Local\NVIDIA
    2016-04-26 18:01 - 2016-04-29 20:44 - 00000000 ____D C:\ProgramData\NVIDIA
    2016-04-26 18:01 - 2016-04-26 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
    2016-04-26 18:01 - 2016-03-30 03:06 - 01373680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
    2016-04-26 18:01 - 2016-03-30 03:05 - 01767248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
    2016-04-26 18:01 - 2016-03-22 04:25 - 06369728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
    2016-04-26 18:01 - 2016-03-22 04:25 - 02993088 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
    2016-04-26 18:01 - 2016-03-22 04:25 - 02561472 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
    2016-04-26 18:01 - 2016-03-22 04:25 - 01264064 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
    2016-04-26 18:01 - 2016-03-22 04:25 - 00532536 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
    2016-04-26 18:01 - 2016-03-22 04:25 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
    2016-04-26 18:01 - 2016-03-22 04:25 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
    2016-04-26 18:01 - 2016-03-22 04:25 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
    2016-04-26 18:01 - 2016-03-18 20:10 - 06253721 _____ C:\Windows\system32\nvcoproc.bin
    2016-04-26 18:01 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
    2016-04-26 18:01 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
    2016-04-26 18:01 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
    2016-04-26 18:01 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
    2016-04-26 18:01 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
    2016-04-26 18:01 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
    2016-04-26 18:00 - 2016-03-22 06:12 - 03714472 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
    2016-04-26 18:00 - 2016-03-22 06:12 - 00473592 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
    2016-04-26 18:00 - 2016-03-22 06:12 - 00391632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
    2016-04-26 18:00 - 2016-03-22 06:12 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
    2016-04-26 18:00 - 2016-03-22 06:12 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
    2016-04-26 18:00 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
    2016-04-26 18:00 - 2014-01-09 23:01 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433238.dll
    2016-04-26 18:00 - 2014-01-09 23:01 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433238.dll
    2016-04-26 17:58 - 2016-03-18 01:04 - 05551336 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2016-04-26 17:58 - 2016-03-18 01:04 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2016-04-26 17:58 - 2016-03-18 01:04 - 00154344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2016-04-26 17:58 - 2016-03-18 01:04 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2016-04-26 17:58 - 2016-03-18 01:01 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2016-04-26 17:58 - 2016-03-18 01:01 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2016-04-26 17:58 - 2016-03-18 00:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2016-04-26 17:58 - 2016-03-18 00:58 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
    2016-04-26 17:58 - 2016-03-18 00:57 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
    2016-04-26 17:58 - 2016-03-18 00:57 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2016-04-26 17:58 - 2016-03-18 00:57 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
    2016-04-26 17:58 - 2016-03-18 00:57 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
    2016-04-26 17:58 - 2016-03-18 00:57 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2016-04-26 17:58 - 2016-03-18 00:56 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
    2016-04-26 17:58 - 2016-03-18 00:56 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
    2016-04-26 17:58 - 2016-03-18 00:54 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2016-04-26 17:58 - 2016-03-18 00:54 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2016-04-26 17:58 - 2016-03-18 00:54 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
    2016-04-26 17:58 - 2016-03-18 00:54 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
    2016-04-26 17:58 - 2016-03-18 00:53 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2016-04-26 17:58 - 2016-03-18 00:53 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2016-04-26 17:58 - 2016-03-18 00:53 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2016-04-26 17:58 - 2016-03-18 00:53 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:36 - 03998952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2016-04-26 17:58 - 2016-03-18 00:36 - 03943144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2016-04-26 17:58 - 2016-03-18 00:33 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2016-04-26 17:58 - 2016-03-18 00:31 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
    2016-04-26 17:58 - 2016-03-18 00:31 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
    2016-04-26 17:58 - 2016-03-18 00:31 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
    2016-04-26 17:58 - 2016-03-18 00:31 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2016-04-26 17:58 - 2016-03-18 00:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
    2016-04-26 17:58 - 2016-03-18 00:30 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2016-04-26 17:58 - 2016-03-18 00:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2016-04-26 17:58 - 2016-03-18 00:30 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
    2016-04-26 17:58 - 2016-03-18 00:29 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2016-04-26 17:58 - 2016-03-18 00:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
    2016-04-26 17:58 - 2016-03-18 00:29 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2016-04-26 17:58 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
    2016-04-26 17:58 - 2016-03-18 00:27 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2016-04-26 17:58 - 2016-03-18 00:27 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2016-04-26 17:58 - 2016-03-18 00:27 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
    2016-04-26 17:58 - 2016-03-18 00:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
    2016-04-26 17:58 - 2016-03-18 00:26 - 00553984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2016-04-26 17:58 - 2016-03-18 00:25 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-17 23:53 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
    2016-04-26 17:58 - 2016-03-17 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
    2016-04-26 17:58 - 2016-03-17 23:52 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
    2016-04-26 17:58 - 2016-03-17 23:51 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
    2016-04-26 17:58 - 2016-03-17 23:44 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2016-04-26 17:58 - 2016-03-17 23:43 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2016-04-26 17:58 - 2016-03-17 23:41 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
    2016-04-26 17:58 - 2016-03-17 23:38 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
    2016-04-26 17:58 - 2016-03-17 23:37 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
    2016-04-26 17:58 - 2016-03-17 23:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
    2016-04-26 17:58 - 2016-03-17 23:35 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2016-04-26 17:58 - 2016-03-17 23:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2016-04-26 17:58 - 2016-03-17 23:30 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
    2016-04-26 17:58 - 2016-03-17 23:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
    2016-04-26 17:58 - 2016-03-17 23:30 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
    2016-04-26 17:58 - 2016-03-17 23:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
    2016-04-26 17:58 - 2016-03-17 23:29 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
    2016-04-26 17:58 - 2016-03-17 23:29 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-17 23:29 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-17 23:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
    2016-04-26 17:58 - 2016-03-17 23:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
    2016-04-26 17:58 - 2015-12-08 23:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
    2016-04-26 17:58 - 2015-12-08 21:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
    2016-04-26 17:58 - 2015-11-10 20:55 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2016-04-26 17:58 - 2015-11-10 20:55 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2016-04-26 17:58 - 2015-11-10 20:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
    2016-04-26 17:58 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2016-04-26 17:58 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
    2016-04-26 17:58 - 2015-02-04 05:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2016-04-26 17:58 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
    2016-04-26 17:58 - 2015-02-03 05:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2016-04-26 17:58 - 2015-02-03 05:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2016-04-26 17:55 - 2016-04-26 17:55 - 00003936 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
    2016-04-26 17:55 - 2016-04-26 17:55 - 00003690 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
    2016-04-26 17:55 - 2016-04-26 17:55 - 00000000 ____D C:\Users\Mitch\Intel
    2016-04-26 17:55 - 2016-04-26 17:55 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Intel Corporation
    2016-04-26 17:54 - 2016-04-26 18:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
    2016-04-26 17:54 - 2016-04-26 17:55 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
    2016-04-26 17:54 - 2016-04-26 17:54 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
    2016-04-26 17:54 - 2013-12-09 15:26 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
    2016-04-26 17:54 - 2013-12-09 15:26 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
    2016-04-26 17:54 - 2013-12-09 15:26 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
    2016-04-26 17:54 - 2013-08-21 09:16 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
    2016-04-26 17:53 - 2016-04-26 17:55 - 00000000 ____D C:\Windows\tmpdrv
    2016-04-26 17:35 - 2016-02-05 20:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
    2016-04-26 17:35 - 2016-02-05 20:54 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
    2016-04-26 17:35 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
    2016-04-26 17:35 - 2015-06-03 22:21 - 00451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
    2016-04-26 17:27 - 2016-05-04 16:53 - 00000000 __SHD C:\Users\Mitch\IntelGraphicsProfiles
    2016-04-26 17:27 - 2016-04-26 23:56 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Adobe
    2016-04-26 17:27 - 2016-04-26 17:27 - 00000401 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
    2016-04-26 16:55 - 2015-01-09 01:44 - 00419936 _____ C:\Windows\SysWOW64\locale.nls
    2016-04-26 16:55 - 2015-01-09 01:43 - 00419936 _____ C:\Windows\system32\locale.nls
    2016-04-26 16:39 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2016-04-26 16:39 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2016-04-26 16:37 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
    2016-04-26 16:33 - 2016-04-26 16:33 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
    2016-04-26 16:33 - 2016-04-26 16:33 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
    2016-04-26 16:33 - 2016-04-26 16:33 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
    2016-04-26 16:33 - 2016-04-26 16:33 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
    2016-04-26 16:33 - 2016-04-26 16:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
    2016-04-26 16:33 - 2016-04-26 16:33 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
    2016-04-26 16:33 - 2016-04-26 16:33 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
    2016-04-26 16:26 - 2016-04-26 16:26 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2016-04-26 16:26 - 2016-04-26 16:26 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2016-04-26 16:14 - 2016-04-26 16:16 - 00000000 ____D C:\Windows\system32\MRT
    2016-04-26 16:14 - 2016-04-26 16:14 - 135176864 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2016-04-26 16:04 - 2016-04-26 17:27 - 00000000 ____D C:\Intel
    2016-04-26 16:04 - 2015-08-09 04:50 - 00096752 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
    2016-04-26 16:04 - 2015-08-09 04:50 - 00092648 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
    2016-04-26 16:02 - 2016-04-27 01:19 - 00767516 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
    2016-04-26 15:17 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
    2016-04-26 15:17 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
    2016-04-26 15:17 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
    2016-04-26 15:17 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
    2016-04-26 15:17 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
    2016-04-26 15:17 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
    2016-04-26 15:17 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
    2016-04-26 15:17 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
    2016-04-26 15:07 - 2016-04-29 20:45 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
    2016-04-26 15:07 - 2016-04-29 20:45 - 00000000 ____D C:\Program Files\NVIDIA Corporation
    2016-04-26 15:07 - 2016-04-29 20:45 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
    2016-04-26 15:07 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
    2016-04-26 15:07 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
    2016-04-26 15:07 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
    2016-04-26 15:04 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
    2016-04-26 15:04 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
    2016-04-26 15:04 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
    2016-04-26 15:04 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
    2016-04-26 15:04 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
    2016-04-26 15:04 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
    2016-04-26 15:04 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
    2016-04-26 15:04 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
    2016-04-26 15:02 - 2016-03-16 20:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
    2016-04-26 15:02 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
    2016-04-26 15:02 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
    2016-04-26 15:02 - 2016-03-06 20:53 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2016-04-26 15:02 - 2016-03-06 20:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
    2016-04-26 15:02 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
    2016-04-26 15:02 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
    2016-04-26 15:02 - 2016-02-02 20:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
    2016-04-26 15:02 - 2016-01-06 21:02 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
    2016-04-26 15:02 - 2016-01-06 21:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
    2016-04-26 15:02 - 2016-01-06 20:41 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
    2016-04-26 15:02 - 2015-11-14 01:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
    2016-04-26 15:02 - 2015-11-14 01:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
    2016-04-26 15:02 - 2015-11-14 01:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
    2016-04-26 15:02 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
    2016-04-26 15:02 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
    2016-04-26 15:02 - 2015-11-14 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
    2016-04-26 15:02 - 2015-09-14 23:40 - 00634432 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2016-04-26 15:02 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
    2016-04-26 15:02 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
    2016-04-26 15:02 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
    2016-04-26 15:02 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
    2016-04-26 15:02 - 2015-06-03 22:22 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
    2016-04-26 15:02 - 2015-06-03 22:17 - 00546656 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
    2016-04-26 15:02 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
    2016-04-26 15:02 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
    2016-04-26 15:02 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
    2016-04-26 15:02 - 2015-02-03 05:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
    2016-04-26 15:02 - 2015-02-03 05:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
    2016-04-26 15:02 - 2015-02-03 05:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
    2016-04-26 15:02 - 2015-01-09 05:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
    2016-04-26 15:02 - 2015-01-09 05:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
    2016-04-26 15:02 - 2015-01-09 05:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
    2016-04-26 15:02 - 2015-01-09 04:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
    2016-04-26 15:02 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
    2016-04-26 15:02 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
    2016-04-26 15:02 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
    2016-04-26 15:02 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
    2016-04-26 15:02 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
    2016-04-26 15:02 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
    2016-04-26 15:02 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
    2016-04-26 15:02 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
    2016-04-26 15:02 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
    2016-04-26 15:02 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
    2016-04-26 15:02 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
    2016-04-26 15:02 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
    2016-04-26 15:02 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
    2016-04-26 15:02 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
    2016-04-26 15:02 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
    2016-04-26 15:02 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
    2016-04-26 15:02 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
    2016-04-26 15:02 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
    2016-04-26 15:02 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
    2016-04-26 15:02 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
    2016-04-26 15:02 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
    2016-04-26 15:02 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
    2016-04-26 15:02 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
    2016-04-26 15:01 - 2016-03-29 19:53 - 03216896 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2016-04-26 15:01 - 2016-01-21 02:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
    2016-04-26 15:01 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
    2016-04-26 15:01 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
    2016-04-26 15:01 - 2015-11-03 21:04 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
    2016-04-26 15:01 - 2015-11-03 20:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
    2016-04-26 15:01 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
    2016-04-26 15:01 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2016-04-26 15:01 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
    2016-04-26 15:01 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
    2016-04-26 15:01 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
    2016-04-26 15:01 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
    2016-04-26 15:01 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
    2016-04-26 15:01 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
    2016-04-26 15:01 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
    2016-04-26 15:01 - 2015-05-25 20:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
    2016-04-26 15:01 - 2015-05-25 20:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
    2016-04-26 15:01 - 2015-05-25 20:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
    2016-04-26 15:01 - 2015-05-25 20:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
    2016-04-26 15:01 - 2015-05-25 20:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
    2016-04-26 15:01 - 2015-05-25 20:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
    2016-04-26 15:01 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
    2016-04-26 15:01 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
    2016-04-26 15:01 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
    2016-04-26 15:01 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
    2016-04-26 15:01 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
    2016-04-26 15:01 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
    2016-04-26 15:01 - 2015-02-03 05:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
    2016-04-26 15:01 - 2015-02-03 05:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
    2016-04-26 15:01 - 2015-02-03 05:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2016-04-26 15:01 - 2015-02-03 05:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
    2016-04-26 15:01 - 2015-02-03 05:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
    2016-04-26 15:01 - 2015-02-03 05:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
    2016-04-26 15:01 - 2015-02-03 05:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
    2016-04-26 15:01 - 2015-02-03 05:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2016-04-26 15:01 - 2015-02-03 05:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
    2016-04-26 15:01 - 2015-02-03 05:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2016-04-26 15:01 - 2015-02-03 05:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
    2016-04-26 15:01 - 2015-02-03 05:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
    2016-04-26 15:01 - 2015-02-03 05:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
    2016-04-26 15:01 - 2015-02-03 05:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
    2016-04-26 15:01 - 2015-02-03 05:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
    2016-04-26 15:01 - 2015-02-03 05:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
    2016-04-26 15:01 - 2015-02-03 05:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
    2016-04-26 15:01 - 2015-02-03 05:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
    2016-04-26 15:01 - 2015-02-03 05:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
    2016-04-26 15:01 - 2015-02-03 05:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
    2016-04-26 15:01 - 2014-12-19 05:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
    2016-04-26 15:01 - 2014-12-06 06:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
    2016-04-26 15:01 - 2014-12-06 05:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
    2016-04-26 15:01 - 2014-12-06 05:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
    2016-04-26 15:01 - 2014-10-14 04:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
    2016-04-26 15:01 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
    2016-04-26 15:01 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
    2016-04-26 15:01 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
    2016-04-26 15:01 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
    2016-04-26 15:01 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
    2016-04-26 15:01 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
    2016-04-26 15:01 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
    2016-04-26 15:01 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
    2016-04-26 15:01 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2016-04-26 15:01 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
    2016-04-26 15:01 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
    2016-04-26 15:01 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
    2016-04-26 15:01 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
    2016-04-26 15:01 - 2013-10-19 04:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
    2016-04-26 15:01 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
    2016-04-26 15:01 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
    2016-04-26 15:01 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
    2016-04-26 15:01 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
    2016-04-26 15:01 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
    2016-04-26 15:01 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
    2016-04-26 15:01 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
    2016-04-26 15:01 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
    2016-04-26 15:01 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
    2016-04-26 15:01 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
    2016-04-26 15:01 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
    2016-04-26 15:01 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
    2016-04-26 15:01 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
    2016-04-26 15:01 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
    2016-04-26 15:01 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
    2016-04-26 15:01 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
    2016-04-26 15:01 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
    2016-04-26 15:01 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
    2016-04-26 15:01 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
    2016-04-26 15:01 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
    2016-04-26 15:01 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
    2016-04-26 15:01 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
    2016-04-26 15:01 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
    2016-04-26 15:01 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
    2016-04-26 15:01 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
    2016-04-26 15:00 - 2016-03-16 02:16 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
    2016-04-26 15:00 - 2016-03-16 02:16 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
    2016-04-26 15:00 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
    2016-04-26 15:00 - 2016-01-22 08:18 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
    2016-04-26 15:00 - 2016-01-22 08:18 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
    2016-04-26 15:00 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
    2016-04-26 15:00 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
    2016-04-26 15:00 - 2015-12-08 23:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
    2016-04-26 15:00 - 2015-12-08 23:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
    2016-04-26 15:00 - 2015-12-08 23:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
    2016-04-26 15:00 - 2015-12-08 23:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
    2016-04-26 15:00 - 2015-12-08 23:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
    2016-04-26 15:00 - 2015-12-08 23:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2016-04-26 15:00 - 2015-12-08 23:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2016-04-26 15:00 - 2015-12-08 23:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
    2016-04-26 15:00 - 2015-12-08 23:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
    2016-04-26 15:00 - 2015-12-08 21:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
    2016-04-26 15:00 - 2015-12-08 21:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2016-04-26 15:00 - 2015-12-08 21:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
    2016-04-26 15:00 - 2015-12-08 21:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
    2016-04-26 15:00 - 2015-12-08 21:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2016-04-26 15:00 - 2015-12-08 21:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2016-04-26 15:00 - 2015-12-08 20:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
    2016-04-26 15:00 - 2015-12-08 20:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
    2016-04-26 15:00 - 2015-12-08 20:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
    2016-04-26 15:00 - 2015-11-10 20:55 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
    2016-04-26 15:00 - 2015-11-10 20:37 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
    2016-04-26 15:00 - 2015-09-23 15:18 - 00459344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2016-04-26 15:00 - 2015-09-23 15:18 - 00298192 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
    2016-04-26 15:00 - 2015-09-23 15:08 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
    2016-04-26 15:00 - 2014-11-11 05:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
    2016-04-26 15:00 - 2014-11-11 04:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
    2016-04-26 15:00 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
    2016-04-26 15:00 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
    2016-04-26 15:00 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
    2016-04-26 15:00 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
    2016-04-26 15:00 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
    2016-04-26 15:00 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
    2016-04-26 15:00 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
    2016-04-26 15:00 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
    2016-04-26 15:00 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
    2016-04-26 15:00 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
    2016-04-26 15:00 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
    2016-04-26 15:00 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
    2016-04-26 15:00 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
    2016-04-26 15:00 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
    2016-04-26 15:00 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
    2016-04-26 15:00 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
    2016-04-26 15:00 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
    2016-04-26 15:00 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
    2016-04-26 15:00 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
    2016-04-26 15:00 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
    2016-04-26 15:00 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
    2016-04-26 15:00 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
    2016-04-26 15:00 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
    2016-04-26 15:00 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
    2016-04-26 15:00 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
    2016-04-26 15:00 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
    2016-04-26 15:00 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
    2016-04-26 15:00 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
    2016-04-26 15:00 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
    2016-04-26 15:00 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
    2016-04-26 15:00 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
    2016-04-26 15:00 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
    2016-04-26 15:00 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
    2016-04-26 15:00 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
    2016-04-26 15:00 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
    2016-04-26 15:00 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
    2016-04-26 15:00 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
    2016-04-26 15:00 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
    2016-04-26 15:00 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
    2016-04-26 15:00 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
    2016-04-26 15:00 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
    2016-04-26 15:00 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
    2016-04-26 15:00 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
    2016-04-26 15:00 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
    2016-04-26 15:00 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
    2016-04-26 15:00 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
    2016-04-26 15:00 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
    2016-04-26 14:59 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
    2016-04-26 14:59 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
    2016-04-26 14:59 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
    2016-04-26 14:59 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
    2016-04-26 14:59 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
    2016-04-26 14:59 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
    2016-04-26 14:59 - 2016-01-07 19:42 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
    2016-04-26 14:59 - 2015-11-11 20:53 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
    2016-04-26 14:59 - 2015-11-11 20:53 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
    2016-04-26 14:59 - 2015-11-11 20:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
    2016-04-26 14:59 - 2015-11-11 20:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
    2016-04-26 14:59 - 2015-11-05 21:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
    2016-04-26 14:59 - 2015-11-05 21:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
    2016-04-26 14:59 - 2015-11-05 11:53 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
    2016-04-26 14:59 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
    2016-04-26 14:59 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
    2016-04-26 14:59 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
    2016-04-26 14:59 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
    2016-04-26 14:59 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
    2016-04-26 14:59 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
    2016-04-26 14:59 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
    2016-04-26 14:59 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
    2016-04-26 14:59 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
    2016-04-26 14:59 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
    2016-04-26 14:59 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
    2016-04-26 14:59 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
    2016-04-26 14:59 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
    2016-04-26 14:59 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
    2016-04-26 14:59 - 2015-04-24 20:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
    2016-04-26 14:59 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
    2016-04-26 14:59 - 2015-02-03 05:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
    2016-04-26 14:59 - 2015-02-03 05:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
    2016-04-26 14:59 - 2015-01-29 05:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
    2016-04-26 14:59 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
    2016-04-26 14:59 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
    2016-04-26 14:59 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
    2016-04-26 14:59 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
    2016-04-26 14:59 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
    2016-04-26 14:59 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
    2016-04-26 14:59 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
    2016-04-26 14:59 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
    2016-04-26 14:59 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
    2016-04-26 14:59 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
    2016-04-26 14:59 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
    2016-04-26 14:59 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
    2016-04-26 14:59 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
    2016-04-26 14:59 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
    2016-04-26 14:59 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
    2016-04-26 14:59 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
    2016-04-26 14:59 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
    2016-04-26 14:59 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
    2016-04-26 14:59 - 2012-11-29 00:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
    2016-04-26 14:59 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
    2016-04-26 14:59 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
    2016-04-26 14:59 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
    2016-04-26 14:59 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
    2016-04-26 14:59 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
    2016-04-26 14:58 - 2015-10-29 19:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
    2016-04-26 14:58 - 2015-10-29 19:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
    2016-04-26 14:58 - 2015-10-29 19:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
    2016-04-26 14:58 - 2015-10-29 19:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
    2016-04-26 14:58 - 2015-10-29 19:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
    2016-04-26 14:58 - 2015-10-29 19:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
    2016-04-26 14:58 - 2015-10-29 19:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
    2016-04-26 14:58 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
    2016-04-26 14:58 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
    2016-04-26 14:58 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
    2016-04-26 14:58 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
    2016-04-26 14:58 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
    2016-04-26 14:58 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
    2016-04-26 14:57 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
    2016-04-26 14:57 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2016-04-26 14:57 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
    2016-04-26 14:57 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2016-04-26 14:57 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
    2016-04-26 14:57 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
    2016-04-26 14:57 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
    2016-04-26 14:57 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
    2016-04-26 14:57 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2016-04-26 14:57 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
    2016-04-26 14:57 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
    2016-04-26 14:57 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
    2016-04-26 14:57 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
    2016-04-26 14:57 - 2016-01-22 08:19 - 14179840 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2016-04-26 14:57 - 2016-01-22 08:15 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
    2016-04-26 14:57 - 2016-01-22 08:12 - 01940992 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
    2016-04-26 14:57 - 2016-01-22 08:05 - 12877824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2016-04-26 14:57 - 2016-01-22 08:00 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
    2016-04-26 14:57 - 2016-01-22 07:59 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
    2016-04-26 14:57 - 2016-01-22 07:19 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe
    2016-04-26 14:57 - 2016-01-22 07:12 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
    2016-04-26 14:57 - 2015-12-08 23:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
    2016-04-26 14:57 - 2015-12-08 21:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
    2016-04-26 14:57 - 2015-10-13 18:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
    2016-04-26 14:57 - 2015-10-13 18:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
    2016-04-26 14:57 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2016-04-26 14:57 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
    2016-04-26 14:57 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
    2016-04-26 14:57 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
    2016-04-26 14:57 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
    2016-04-26 14:57 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
    2016-04-26 14:57 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
    2016-04-26 14:57 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
    2016-04-26 14:57 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
    2016-04-26 14:57 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
    2016-04-26 14:57 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
    2016-04-26 14:57 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
    2016-04-26 14:57 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
    2016-04-26 14:57 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
    2016-04-26 14:57 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
    2016-04-26 14:57 - 2015-04-11 05:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
    2016-04-26 14:57 - 2015-02-25 05:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
    2016-04-26 14:57 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
    2016-04-26 14:57 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
    2016-04-26 14:57 - 2015-01-17 04:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
    2016-04-26 14:57 - 2015-01-17 04:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
    2016-04-26 14:57 - 2014-10-30 04:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
    2016-04-26 14:57 - 2014-10-30 03:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
    2016-04-26 14:57 - 2014-10-03 04:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
    2016-04-26 14:57 - 2014-10-03 04:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
    2016-04-26 14:57 - 2014-10-03 04:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
    2016-04-26 14:57 - 2014-10-03 04:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
    2016-04-26 14:57 - 2014-10-03 04:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
    2016-04-26 14:57 - 2014-10-03 03:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
    2016-04-26 14:57 - 2014-10-03 03:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
    2016-04-26 14:57 - 2014-10-03 03:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
    2016-04-26 14:57 - 2014-10-03 03:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
    2016-04-26 14:57 - 2014-10-03 03:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
    2016-04-26 14:57 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
    2016-04-26 14:57 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
    2016-04-26 14:57 - 2014-08-12 04:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
    2016-04-26 14:57 - 2014-08-12 03:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
    2016-04-26 14:57 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2016-04-26 14:57 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
    2016-04-26 14:57 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
    2016-04-26 14:57 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
    2016-04-26 14:57 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
    2016-04-26 14:57 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
    2016-04-26 14:57 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
    2016-04-26 14:57 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
    2016-04-26 14:57 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
    2016-04-26 14:57 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
    2016-04-26 14:57 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
    2016-04-26 14:57 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
    2016-04-26 14:57 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
    2016-04-26 14:57 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
    2016-04-26 14:57 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
    2016-04-26 14:57 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
    2016-04-26 14:57 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
    2016-04-26 14:57 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
    2016-04-26 14:57 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
    2016-04-26 14:57 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
    2016-04-26 14:57 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
    2016-04-26 14:57 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
    2016-04-26 14:57 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
    2016-04-26 14:57 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
    2016-04-26 14:57 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
    2016-04-26 14:57 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
    2016-04-26 14:57 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
    2016-04-26 14:57 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
    2016-04-26 14:57 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
    2016-04-26 14:57 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
    2016-04-26 14:57 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
    2016-04-26 14:57 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
    2016-04-26 14:57 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
    2016-04-26 14:57 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
    2016-04-26 14:57 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
    2016-04-26 14:57 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
    2016-04-26 14:57 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
    2016-04-26 14:49 - 2014-07-17 04:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
    2016-04-26 14:49 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
    2016-04-26 14:49 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
    2016-04-26 14:49 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
    2016-04-26 14:49 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
    2016-04-26 14:49 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
    2016-04-26 14:49 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
    2016-04-26 14:49 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
    2016-04-26 14:49 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
    2016-04-26 14:48 - 2016-03-11 20:57 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2016-04-26 14:48 - 2016-03-11 20:35 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
    2016-04-26 14:48 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2016-04-26 14:48 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
    2016-04-26 14:48 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
    2016-04-26 14:48 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
    2016-04-26 14:48 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
    2016-04-26 14:48 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
    2016-04-26 14:48 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
    2016-04-26 14:48 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
    2016-04-26 14:48 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
    2016-04-26 14:48 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
    2016-04-26 14:48 - 2015-12-08 23:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
    2016-04-26 14:48 - 2015-12-08 21:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
    2016-04-26 14:48 - 2015-11-03 21:04 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
    2016-04-26 14:48 - 2015-11-03 20:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
    2016-04-26 14:48 - 2015-10-13 06:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
    2016-04-26 14:48 - 2015-03-04 06:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
    2016-04-26 14:48 - 2015-03-04 06:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
    2016-04-26 14:48 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
    2016-04-26 14:48 - 2014-12-08 05:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
    2016-04-26 14:48 - 2014-12-08 04:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
    2016-04-26 14:48 - 2014-10-25 03:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
    2016-04-26 14:48 - 2014-10-25 03:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
    2016-04-26 14:48 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
    2016-04-26 14:48 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
    2016-04-26 14:48 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
    2016-04-26 14:48 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
    2016-04-26 14:48 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
    2016-04-26 14:48 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
    2016-04-26 14:48 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
    2016-04-26 14:48 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
    2016-04-26 14:48 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
    2016-04-26 14:48 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
    2016-04-26 14:48 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
    2016-04-26 14:48 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
    2016-04-26 14:48 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
    2016-04-26 14:48 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
    2016-04-26 14:48 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
    2016-04-26 14:48 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
    2016-04-26 14:48 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
    2016-04-26 14:48 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
    2016-04-26 14:48 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
    2016-04-26 14:48 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
    2016-04-26 14:48 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
    2016-04-26 14:48 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
    2016-04-26 14:48 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
    2016-04-26 14:48 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
    2016-04-26 14:48 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
    2016-04-26 14:48 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
    2016-04-26 14:48 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
    2016-04-26 14:48 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
    2016-04-26 14:48 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
    2016-04-26 14:48 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
    2016-04-26 14:48 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
    2016-04-26 14:48 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
    2016-04-26 14:48 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
    2016-04-26 14:48 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
    2016-04-26 14:48 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
    2016-04-26 14:48 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
    2016-04-26 14:48 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
    2016-04-26 14:48 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
    2016-04-26 14:47 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
    2016-04-26 14:47 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
    2016-04-26 14:47 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
    2016-04-26 14:47 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
    2016-04-26 14:47 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
    2016-04-26 14:47 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
    2016-04-26 14:45 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
    2016-04-26 14:45 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
    2016-04-26 14:45 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
    2016-04-26 14:36 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
    2016-04-26 14:36 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
    2016-04-26 14:36 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
    2016-04-26 14:36 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
    2016-04-26 14:36 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
    2016-04-26 14:36 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2016-04-26 14:36 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2016-04-26 14:36 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
    2016-04-26 14:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
    2016-04-26 14:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
    2016-04-26 14:36 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
    2016-04-26 14:36 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
    2016-04-26 14:36 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
    2016-04-26 14:36 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
    2016-04-26 14:36 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
    2016-04-26 14:36 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
    2016-04-26 14:27 - 2016-04-26 14:27 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\AVG
    2016-04-26 14:26 - 2016-05-05 15:35 - 00000000 ____D C:\ProgramData\MFAData
    2016-04-26 14:26 - 2016-05-03 18:07 - 00000936 _____ C:\Users\Public\Desktop\AVG Protection.lnk
    2016-04-26 14:26 - 2016-05-03 18:07 - 00000000 ____D C:\Users\Mitch\AppData\Local\Avg
    2016-04-26 14:26 - 2016-05-03 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
    2016-04-26 14:26 - 2016-05-02 22:46 - 00000000 ____D C:\Program Files\Common Files\AV
    2016-04-26 14:26 - 2016-04-26 14:26 - 00000000 ___HD C:\$AVG
    2016-04-26 14:26 - 2016-04-26 14:26 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\TuneUp Software
    2016-04-26 14:26 - 2016-04-26 14:26 - 00000000 ____D C:\Users\Mitch\AppData\Local\MFAData
    2016-04-26 14:26 - 2016-04-26 14:26 - 00000000 ____D C:\Users\Mitch\AppData\Local\AvgSetupLog
    2016-04-26 14:26 - 2016-04-26 14:26 - 00000000 ____D C:\ProgramData\Avg
    2016-04-26 14:26 - 2016-04-26 14:26 - 00000000 ____D C:\Program Files (x86)\AVG
    2016-04-26 14:23 - 2016-04-28 20:28 - 00002191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
    2016-04-26 14:23 - 2016-04-28 20:28 - 00002179 _____ C:\Users\Public\Desktop\Google Chrome.lnk
    2016-04-26 14:23 - 2016-04-26 14:23 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-appar
    2016-04-26 14:22 - 2016-05-06 00:27 - 00000992 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2016-04-26 14:22 - 2016-05-05 14:27 - 00000988 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2016-04-26 14:22 - 2016-04-27 18:50 - 00065208 _____ C:\Users\Mitch\AppData\Local\GDIPFONTCACHEV1.DAT
    2016-04-26 14:22 - 2016-04-26 22:52 - 00000000 ____D C:\Users\Mitch\AppData\Local\Google
    2016-04-26 14:22 - 2016-04-26 22:52 - 00000000 ____D C:\Program Files (x86)\Google
    2016-04-26 14:22 - 2016-04-26 14:22 - 00003988 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2016-04-26 14:22 - 2016-04-26 14:22 - 00003736 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
    2016-04-26 14:22 - 2016-04-26 14:22 - 00000000 ____D C:\Users\Mitch\AppData\Local\Deployment
    2016-04-26 14:22 - 2016-04-26 14:22 - 00000000 ____D C:\Users\Mitch\AppData\Local\Apps\2.0
    2016-04-26 14:10 - 2016-04-30 02:28 - 00000000 ____D C:\ProgramData\Package Cache
    2016-04-26 14:10 - 2016-04-28 19:46 - 00000000 ____D C:\Program Files (x86)\Intel
    2016-04-26 14:10 - 2016-04-28 02:09 - 00000000 ____D C:\Program Files\Common Files\Intel
    2016-04-26 14:10 - 2016-04-27 00:07 - 00000000 ____D C:\Program Files\Intel
    2016-04-26 14:10 - 2016-04-26 17:55 - 00000000 ____D C:\ProgramData\Intel
    2016-04-26 14:10 - 2016-04-26 14:10 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
    2016-04-26 14:10 - 2016-04-26 14:10 - 00000000 ___HD C:\Windows\system32\WLANProfiles
    2016-04-26 14:10 - 2016-04-26 14:10 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Intel
    2016-04-26 14:10 - 2016-04-26 14:10 - 00000000 ____D C:\Program Files (x86)\Cisco
    2016-04-26 14:08 - 2016-05-03 23:23 - 00000000 ____D C:\Users\Mitch
    2016-04-26 14:08 - 2016-04-26 17:27 - 00001413 _____ C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2016-04-26 14:08 - 2016-04-26 14:08 - 00000020 ___SH C:\Users\Mitch\ntuser.ini
    2016-04-26 14:08 - 2016-04-26 14:08 - 00000000 _SHDL C:\Users\Mitch\My Documents
    2016-04-26 14:08 - 2016-04-26 14:08 - 00000000 _SHDL C:\Users\Mitch\Documents\My Videos
    2016-04-26 14:08 - 2016-04-26 14:08 - 00000000 _SHDL C:\Users\Mitch\Documents\My Pictures
    2016-04-26 14:08 - 2016-04-26 14:08 - 00000000 _SHDL C:\Users\Mitch\Documents\My Music
    2016-04-26 14:08 - 2016-04-26 14:08 - 00000000 ____D C:\Users\Mitch\AppData\Local\VirtualStore
    2016-04-26 14:08 - 2010-11-21 09:16 - 00000000 ____D C:\Users\Mitch\AppData\Roaming\Media Center Programs
    2016-04-26 14:05 - 2016-04-26 14:05 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
    2016-04-26 14:05 - 2016-04-26 14:05 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
    2016-04-24 04:26 - 2013-12-20 17:38 - 00790512 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
    2016-04-24 04:26 - 2013-12-20 17:38 - 00369648 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
    2016-04-24 04:26 - 2013-12-20 17:38 - 00020464 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
    2016-04-20 14:17 - 2016-04-20 14:17 - 00307456 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
    2016-04-18 09:04 - 2016-04-18 09:04 - 00071936 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avguniva.sys
    2016-04-14 10:54 - 2016-04-14 10:54 - 00051968 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx64.sys
    2016-04-11 10:11 - 2016-04-11 10:11 - 01729952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
    2016-04-11 10:11 - 2016-04-11 10:11 - 00153616 _____ (Motorola Solutions, Inc.) C:\Windows\system32\Drivers\btmaux.sys

    ==================== One Month Modified files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2016-05-05 18:51 - 2009-07-14 07:13 - 01581612 _____ C:\Windows\system32\PerfStringBackup.INI
    2016-05-05 18:51 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
    2016-05-05 18:49 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2016-05-05 18:49 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2016-05-04 16:52 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
    2016-05-03 14:15 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
    2016-05-02 23:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\security
    2016-04-28 23:50 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
    2016-04-28 19:21 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Cursors
    2016-04-28 14:08 - 2009-07-14 06:45 - 00303880 _____ C:\Windows\system32\FNTCACHE.DAT
    2016-04-28 14:01 - 2010-11-21 09:16 - 00000000 ____D C:\Program Files\Windows Journal
    2016-04-28 14:01 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\winrm
    2016-04-28 14:01 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\WCN
    2016-04-28 14:01 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr
    2016-04-28 14:01 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
    2016-04-28 14:01 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\winrm
    2016-04-28 14:01 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\WCN
    2016-04-28 14:01 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\slmgr
    2016-04-28 14:01 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
    2016-04-28 14:01 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
    2016-04-28 14:01 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
    2016-04-28 14:01 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
    2016-04-28 14:01 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
    2016-04-28 14:01 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
    2016-04-28 14:01 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
    2016-04-28 14:01 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\com
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\migwiz
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\com
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\IME
    2016-04-28 14:01 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
    2016-04-28 00:02 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
    2016-04-27 18:30 - 2010-11-21 09:16 - 00000000 ____D C:\Windows\ShellNew
    2016-04-27 18:30 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
    2016-04-27 14:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
    2016-04-27 02:05 - 2009-07-14 05:20 - 00000000 __RSD C:\Windows\Media
    2016-04-27 00:03 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
    2016-04-26 18:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
    2016-04-26 17:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\tracing
    2016-04-26 17:24 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
    2016-04-26 14:05 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
    2016-04-26 14:03 - 2010-11-21 09:16 - 00000000 ____D C:\Windows\CSC

    ==================== Bamital & volsnap =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\system32\winlogon.exe => File is digitally signed
    C:\Windows\system32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\system32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\system32\services.exe => File is digitally signed
    C:\Windows\system32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\system32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\system32\rpcss.dll => File is digitally signed
    C:\Windows\system32\dnsapi.dll => File is digitally signed
    C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
    C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2016-04-28 01:01

    ==================== End of FRST.txt ============================

  6. #6
    Member
    Join Date
    May 2016
    Posts
    52
    Points
    0

    Default

    Additional scan result of Farbar Recovery Scan Tool (x64) Version:06-05-2016 02
    Ran by Mitch (2016-05-06 01:15:37)
    Running from C:\Users\Mitch\Downloads
    Windows 7 Ultimate Service Pack 1 (X64) (2016-04-26 12:08:06)
    Boot Mode: Normal
    ==========================================================


    ==================== Accounts: =============================

    Administrator (S-1-5-21-3214680165-297868778-3278915397-500 - Administrator - Disabled)
    Guest (S-1-5-21-3214680165-297868778-3278915397-501 - Limited - Disabled)
    HomeGroupUser$ (S-1-5-21-3214680165-297868778-3278915397-1002 - Limited - Enabled)
    Mitch (S-1-5-21-3214680165-297868778-3278915397-1000 - Administrator - Enabled) => C:\Users\Mitch

    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
    AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

    ==================== Installed Programs ======================

    (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe Acrobat Reader DC - Svenska (HKLM-x32\...\{AC76BA86-7AD7-1053-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
    AVG (Version: 16.71.7596 - AVG Technologies) Hidden
    AVG 2016 (Version: 16.0.4565 - AVG Technologies) Hidden
    AVG Protection (HKLM\...\AVG) (Version: 2016.71.7596 - AVG Technologies)
    BankID säkerhetsprogram (HKLM-x32\...\{77B5BCDC-5496-48DA-8B16-5EE2AF08CA31}) (Version: 7.1.1.9 - Finansiell ID-Teknik BID AB)
    BitTorrent (HKU\S-1-5-21-3214680165-297868778-3278915397-1000\...\BitTorrent) (Version: 7.9.6.42095 - BitTorrent Inc.)
    Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
    Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
    Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
    Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.01 - Canon Inc.)
    Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.6.1 - Canon Inc.)
    CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
    Counter-Strike: Condition Zero (HKLM\...\Steam App 80) (Version: - Valve)
    Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
    DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0154 - Disc Soft Ltd)
    Fences 2 (HKLM-x32\...\Fences 22.01) (Version: 2.01 - Stardock Corporation)
    FMW 1 (Version: 1.73.2 - AVG Technologies) Hidden
    GemPcCCID (HKLM\...\{7567A068-2F02-40D1-A34C-16D79ECD35A6}) (Version: 2.0.1 - Gemalto)
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.94 - Google Inc.)
    Google Drive (HKLM-x32\...\{D7269C20-B3CE-4CD0-8E88-3D307D3BD41A}) (Version: 1.29.2074.1528 - Google, Inc.)
    Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
    HWiNFO64 Version 5.24 (HKLM\...\HWiNFO64_is1) (Version: 5.24 - Martin Malík - REALiX)
    Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
    Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
    Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
    Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
    Intel(R) trådlös Bluetooth(R)(patch version 18.1.1533.1836) (HKLM\...\{302600C1-6BDF-4FD1-1507-148929CC1385}) (Version: 18.1.1507.0532 - Intel Corporation)
    Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.3.34 - Intel Corporation)
    Intel® PROSet/Wireless Software (HKLM-x32\...\{85b9d34f-7397-4e39-8600-07942ef6ca04}) (Version: 17.0.5 - Intel Corporation)
    Javafri løsning (HKLM-x32\...\{d7a1cc84-a040-4e2d-aed7-f9f9e176e7d7}) (Version: 1.2.0.12320 - Buypass as)
    Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
    Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
    Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
    Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
    MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
    MSI Kombustor 3.5.1 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
    NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation)
    NVIDIA Grafikdrivrutin 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
    NVIDIA PhysX systemprogramvara 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
    Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.38.1037 - Qualcomm Atheros) Hidden
    Qualcomm Atheros Killer E220x Drivers (Version: 1.1.38.1037 - Qualcomm Atheros) Hidden
    Qualcomm Atheros Network Manager (Version: 1.1.38.1037 - Qualcomm Atheros) Hidden
    Qualcomm Atheros Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.38.1037 - Qualcomm Atheros)
    Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21249 - Realtek Semiconductor Corp.)
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7179 - Realtek Semiconductor Corp.)
    RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
    SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
    SHIELD Wireless Controller Driver (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
    Sniper Ghost Warrior 2 (HKLM-x32\...\Sniper Ghost Warrior 2_is1) (Version: - )
    Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
    Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
    SteelSeries Engine (HKLM\...\SteelSeries Engine) (Version: 2.9.2014.1 - SteelSeries)
    SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1218 - SUPERAntiSpyware.com)
    System Checkup 3.5 (HKLM-x32\...\{4AC7B4E7-59B7-4E48-A60D-263C486FC33A}_is1) (Version: 3.5.1.33 - iolo technologies, LLC)
    TeraCopy 2.27 (HKLM\...\TeraCopy_is1) (Version: - Code Sector)
    WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
    Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
    Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
    VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
    Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)

    ==================== Custom CLSID (Whitelisted): ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    CustomCLSID: HKU\S-1-5-21-3214680165-297868778-3278915397-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

    ==================== Scheduled Tasks (Whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    Task: {0C2AA22C-5A33-442A-8EF9-8109D7A0F4BA} - System32\Tasks\AVG-SSU_0516av => C:\ProgramData\Avg_Update_0516av\AVG-Secure-Search-Update_0516av.exe [2016-04-19] ()
    Task: {127DC063-1766-4BF6-A0C9-C02671FB9972} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-26] (Google Inc.)
    Task: {3AFF2E93-B42F-4A6D-8D23-D59B20184FCD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-26] (Google Inc.)
    Task: {46D5C240-1B71-4D20-AF6F-9DC56D52C457} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
    Task: {6DA2D11A-345B-40A7-BEA6-1138288D5232} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
    Task: {71492461-35D4-42AB-B869-BFDA795A848F} - System32\Tasks\AVG-SSU_0516av_DELETE => C:\ProgramData\Avg_Update_0516av\AVG-Secure-Search-Update_0516av.exe [2016-04-19] ()
    Task: {724AEC70-9A25-4226-A536-2F154EF0A77A} - System32\Tasks\{FFE04B69-FFE8-44EB-B842-CEC15662B1D2} => pcalua.exe -a "D:\Programs\DAEMON Tools Lite v4.35.5\DTLite4355-0068.exe" -d "D:\Programs\DAEMON Tools Lite v4.35.5"
    Task: {95D8489E-9E04-4E87-AD92-B99485348877} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
    Task: {9BE8FAC9-7C03-4356-83E4-EC3D2D6D6576} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
    Task: {9DC9AD73-686D-46C8-A33B-C5F1B0EAA54A} - System32\Tasks\HWiNFO => E:\Program\HWiNFO64\HWiNFO64.exe
    Task: {AAC4F493-B592-410A-805E-C22EB6ABD005} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd)
    Task: {CBFCF627-0037-4D9E-8230-3BE75FF218D3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
    Task: {DECD60DD-5C9F-45F3-977F-F89297815E97} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
    Task: {EFB8A158-D536-44DA-AC92-837DCEDFDE32} - System32\Tasks\iolo System Checkup => C:\ProgramData\iolo\scustask.lnk [2016-05-04] ()

    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\Windows\Tasks\AVG-SSU_0516av.job => C:\ProgramData\Avg_Update_0516av\AVG-Secure-Search-Update_0516av.exe
    Task: C:\Windows\Tasks\AVG-SSU_0516av_DELETE.job => C:\ProgramData\Avg_Update_0516av\AVG-Secure-Search-Update_0516av.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    ==================== Shortcuts =============================

    (The entries could be listed to be restored or removed.)

    ==================== Loaded Modules (Whitelisted) ==============

    2016-04-26 18:00 - 2016-03-22 06:12 - 00020536 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
    2016-04-26 18:01 - 2016-03-22 04:25 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
    2016-04-26 18:56 - 2011-10-26 17:41 - 00318976 _____ () C:\Program Files\TeraCopy\TeraCopyExt64.dll
    2016-04-29 20:45 - 2016-03-30 03:21 - 00366528 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
    2016-04-29 20:45 - 2016-03-30 03:21 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
    2016-04-29 20:45 - 2016-03-30 03:22 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
    2016-04-29 20:45 - 2016-03-30 03:21 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00504832 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineLib.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 09315328 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineWinGui.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00015872 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Localization.dll
    2014-10-09 21:43 - 2014-10-09 21:43 - 00011264 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\ISSPlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00011264 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Utilities.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00115200 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DriverCommunication.dll
    2014-10-08 17:30 - 2014-10-08 17:30 - 00047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesDrivers\x2api.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00034304 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DBUtils.dll
    2014-10-08 17:30 - 2014-10-08 17:30 - 01102336 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\System.Data.SQLite.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00189440 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MousePlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\D3MousePlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00031744 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\KKMousePlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SRawPlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00159744 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MLGSenseiPlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00020992 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWGoldPlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\GW2MousePlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00029696 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CSGOMousePlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00030208 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DOTA2MousePlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00023040 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWWirelessPlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00030720 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CODMousePlugin.dll
    2014-10-09 21:44 - 2014-10-09 21:44 - 00030208 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoTMousePlugin.dll
    2016-04-29 20:45 - 2016-03-30 03:21 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
    2016-04-29 20:45 - 2016-03-30 03:21 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
    2016-04-29 20:45 - 2016-03-30 03:22 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
    2016-04-29 20:45 - 2016-03-30 03:22 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
    2015-08-09 04:50 - 2015-08-09 04:50 - 00404376 _____ () C:\Windows\system32\igfxTray.exe
    2016-04-29 20:45 - 2016-03-30 03:20 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
    2016-04-29 20:45 - 2016-03-30 03:20 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
    2016-05-02 22:37 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
    2016-05-02 22:37 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
    2016-05-02 22:37 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
    2016-05-02 22:37 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
    2016-05-02 22:37 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
    2016-04-26 18:00 - 2016-03-22 06:12 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
    2016-04-29 20:45 - 2016-03-30 03:28 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
    2016-04-26 14:26 - 2015-04-07 15:34 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
    2016-05-04 16:52 - 2016-05-04 16:52 - 00098816 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32api.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00110080 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\pywintypes27.dll
    2016-05-04 16:52 - 2016-05-04 16:52 - 00364544 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\pythoncom27.dll
    2016-05-04 16:52 - 2016-05-04 16:52 - 00320512 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32com.shell.shell.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00776704 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\_hashlib.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 01176576 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\wx._core_.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00806400 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\wx._gdi_.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00816128 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\wx._windows_.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 01067008 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\wx._controls_.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00733184 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\wx._misc_.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00682496 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\pysqlite2._sqlite.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00088064 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\_ctypes.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00119808 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32file.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00108544 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32security.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00007168 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\hashobjs_ext.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00017920 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\thumbnails_ext.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00088064 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\usb_ext.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00167936 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32gui.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00018432 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32event.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00046080 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\_socket.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 01208320 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\_ssl.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00128512 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\_elementtree.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00127488 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\pyexpat.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00012288 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\common.time34.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00038912 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32inet.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00036864 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\_psutil_windows.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00525208 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\windows._lib_cacheinvalidation.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00011264 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32crypt.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00077312 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\wx._html2.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00027136 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\_multiprocessing.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00020480 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\_yappi.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00035840 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32process.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00686080 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\unicodedata.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00078848 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\wx._animate.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00123392 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\wx._wizard.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00024064 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32pipe.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00010240 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\select.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00025600 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32pdh.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00017408 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32profile.pyd
    2016-05-04 16:52 - 2016-05-04 16:52 - 00022528 ____R () C:\Users\Mitch\AppData\Local\Temp\_MEI44082\win32ts.pyd
    2016-04-26 17:54 - 2013-12-09 15:26 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
    2016-04-28 20:28 - 2016-04-28 01:25 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libglesv2.dll
    2016-04-28 20:28 - 2016-04-28 01:25 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libegl.dll
    2016-04-28 20:28 - 2016-04-28 01:25 - 17536664 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\PepperFlash\pepflashplayer.dll
    2016-05-01 23:14 - 2016-04-29 22:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
    2016-05-01 23:14 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
    2016-05-01 23:14 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
    2016-05-01 23:14 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
    2016-05-01 23:14 - 2016-04-30 02:10 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
    2016-05-01 23:14 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
    2016-05-01 23:14 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
    2016-05-01 23:14 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
    2016-05-01 23:14 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
    2016-05-01 23:14 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
    2016-05-01 23:14 - 2016-04-30 02:10 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
    2016-05-01 23:14 - 2016-02-18 00:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
    2016-05-01 23:14 - 2016-04-28 03:00 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
    2016-05-01 23:14 - 2015-09-25 01:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

    ==================== Alternate Data Streams (Whitelisted) =========

    (If an entry is included in the fixlist, only the ADS will be removed.)


    ==================== Safe Mode (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== Association (Whitelisted) ===============

    (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


    ==================== Internet Explorer trusted/restricted ===============

    (If an entry is included in the fixlist, it will be removed from the registry.)


    ==================== Hosts content: ===============================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-3214680165-297868778-3278915397-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mitch\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
    DNS Servers: 192.168.80.1
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
    Windows Firewall is enabled.

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)

    MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Killer Network Manager.lnk => C:\Windows\pss\Killer Network Manager.lnk.CommonStartup

    ==================== FirewallRules (Whitelisted) ===============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    FirewallRules: [{C4A38608-958D-4C96-A06D-451EF63F8D44}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
    FirewallRules: [{C1E1E7A8-86B8-42B9-B524-F0DAAB563F95}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
    FirewallRules: [{898E8517-2816-4BAA-9523-7A93C1DE4092}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
    FirewallRules: [{6C62664A-DEC9-473A-B91A-B77B2401CF09}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
    FirewallRules: [{7905855E-0976-4855-B51D-2F9653444EFF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
    FirewallRules: [{FF0EDAE9-23BF-439C-8987-906CD9D6D283}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
    FirewallRules: [{E7A1D96A-CCE3-4EC4-91E4-9BDAEBFFC0D2}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
    FirewallRules: [{A86D394A-12F0-48B8-898D-6F63473EAC7C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
    FirewallRules: [{91CEA303-66F7-44A5-AD7D-DA2C1C9CAF32}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
    FirewallRules: [{FBC0BC97-8DE1-4687-9739-5036A910C185}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    FirewallRules: [{E723E0F8-6CD8-477E-8BB2-7BC4616B4396}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    FirewallRules: [{4E8E072D-9A56-4373-99BA-24B1D5D9BDD7}] => (Allow) C:\Users\Mitch\AppData\Roaming\BitTorrent\BitTorrent.exe
    FirewallRules: [{51D0D91A-61B2-43D9-B804-FBE6CD710881}] => (Allow) C:\Users\Mitch\AppData\Roaming\BitTorrent\BitTorrent.exe
    FirewallRules: [{9E3DB646-AA35-438D-B915-E67108F66384}] => (Allow) C:\Users\Mitch\AppData\Roaming\BitTorrent\BitTorrent.exe
    FirewallRules: [{653C8A0D-EDF1-4CE5-9962-124FD00431E6}] => (Allow) C:\Users\Mitch\AppData\Roaming\BitTorrent\BitTorrent.exe
    FirewallRules: [{88676249-6400-47A2-9D2C-9B0E82EFB223}] => (Allow) C:\Users\Mitch\AppData\Roaming\BitTorrent\BitTorrent.exe
    FirewallRules: [{F1A23C0F-079C-4A4B-9D0D-D0BB29C974C0}] => (Allow) C:\Users\Mitch\AppData\Roaming\BitTorrent\BitTorrent.exe
    FirewallRules: [TCP Query User{A82BB40C-7CAA-4002-8EAA-8D06A6B86F5A}C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
    FirewallRules: [UDP Query User{22601316-1F83-47A7-BE81-4C44AAE29B6F}C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
    FirewallRules: [{375FD3E4-E355-43CC-B8B6-B0DD67FDFB27}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    FirewallRules: [{3B266A39-C872-4070-A9CE-6C11A578C842}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    FirewallRules: [{0083E25C-3376-4CC9-B7DE-D5AC10BDEBD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    FirewallRules: [{D7D74EF7-EF5D-4BA7-81BD-3429270EC2A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
    FirewallRules: [{09ACABC7-E629-4CEA-B8BE-E411C1653EBA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{3A3A9B7C-2359-4624-A1A2-6F6FDEB12C2E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [TCP Query User{112E0800-4189-4AE3-A29E-9B8F38B296F6}D:\games\farcry 4\farcry 4 backup\far cry 4\bin\farcry4.exe] => (Block) D:\games\farcry 4\farcry 4 backup\far cry 4\bin\farcry4.exe
    FirewallRules: [UDP Query User{BB6FA207-EDE3-4509-AED0-140913D6F589}D:\games\farcry 4\farcry 4 backup\far cry 4\bin\farcry4.exe] => (Block) D:\games\farcry 4\farcry 4 backup\far cry 4\bin\farcry4.exe
    FirewallRules: [TCP Query User{D05BBCF8-16AB-4FCD-B987-5574D2FC8157}D:\games\farcry 4\far cry 4\far cry 4\bin\farcry4.exe] => (Block) D:\games\farcry 4\far cry 4\far cry 4\bin\farcry4.exe
    FirewallRules: [UDP Query User{D1ED6525-D490-42F3-BE43-CFEE1E1D4EE3}D:\games\farcry 4\far cry 4\far cry 4\bin\farcry4.exe] => (Block) D:\games\farcry 4\far cry 4\far cry 4\bin\farcry4.exe
    FirewallRules: [TCP Query User{8A8F2063-6A3A-4005-9E69-1BA9F9CAA82F}C:\program files\strogino cs portal\counter-strike global offensive\csgo.exe] => (Allow) C:\program files\strogino cs portal\counter-strike global offensive\csgo.exe
    FirewallRules: [UDP Query User{78E7F8F7-A499-4728-9CE1-EE55F1DAC4F3}C:\program files\strogino cs portal\counter-strike global offensive\csgo.exe] => (Allow) C:\program files\strogino cs portal\counter-strike global offensive\csgo.exe
    FirewallRules: [{B7C345FC-631A-4658-BB01-87CCDEEE54EA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{E224A0E0-1F10-4923-BF5B-BA273D01FF5A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{49216EBF-F006-42BC-80DC-B5497F10C5AA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    FirewallRules: [{DB48C840-08AF-4185-8F5C-04E18C59FDE9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    FirewallRules: [{61D1C09D-8429-4A42-9297-464F11291C8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
    FirewallRules: [{17B246E0-B3A0-4D87-9525-20D34DF82D74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
    FirewallRules: [{05D29F42-E124-4AA2-BA35-F66D96404443}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
    FirewallRules: [{EAA41BED-7669-4088-98EF-B6289B1990A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
    FirewallRules: [{5D9BD1AF-43D6-48A3-A3D3-6D16521E5739}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
    FirewallRules: [{7AFB4625-0F2A-436A-A69B-08FCD84C3A2B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
    FirewallRules: [{73697C08-595C-45A1-99EB-53341734B3AD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
    FirewallRules: [{383DFA0C-9FEB-46A8-9E0C-F343902E6A71}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
    FirewallRules: [{4AE36AF6-4F47-4FAE-9837-FE1FE90CBB36}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
    FirewallRules: [{8B64F97C-EE26-493D-BBA4-4B3638797F9C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
    StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
    StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
    StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
    StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

    ==================== Restore Points =========================


    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (05/04/2016 04:52:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (05/04/2016 03:22:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (05/03/2016 11:24:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (05/03/2016 07:11:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (05/02/2016 11:42:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (05/02/2016 11:30:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (05/02/2016 09:04:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (05/01/2016 10:59:49 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Felet uppstod i programmet med namn: mediasrv.exe, version 18.1.1504.518, tidsstämpel 0x5548db0f
    , felet uppstod i modulen med namn: ntdll.dll, version 6.1.7601.23392, tidsstämpel 0x56eb302d
    Undantagskod: 0xc0000005
    Felförskjutning: 0x0004e6df
    Process-ID: 0x1bf4
    Programmets starttid: 0xmediasrv.exe0
    Sökväg till program: mediasrv.exe1
    Sökväg till modul: mediasrv.exe2
    Rapport-ID: mediasrv.exe3

    Error: (05/01/2016 07:13:40 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (05/01/2016 07:00:00 PM) (Source: Windows Backup) (EventID: 4103) (User: )
    Description: Säkerhetskopieringen misslyckades eftersom det uppstod ett fel vid skrivning till säkerhetskopieringsplatsen E:\. Felet är: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).


    System errors:
    =============
    Error: (05/05/2016 06:48:10 PM) (Source: Disk) (EventID: 11) (User: )
    Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk2\DR8.

    Error: (05/05/2016 06:47:08 PM) (Source: Disk) (EventID: 11) (User: )
    Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk3\DR3.

    Error: (05/05/2016 06:47:07 PM) (Source: Disk) (EventID: 11) (User: )
    Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk3\DR3.

    Error: (05/05/2016 06:47:06 PM) (Source: Disk) (EventID: 11) (User: )
    Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk3\DR3.

    Error: (05/05/2016 06:47:04 PM) (Source: Disk) (EventID: 11) (User: )
    Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk3\DR3.

    Error: (05/05/2016 06:47:03 PM) (Source: Disk) (EventID: 11) (User: )
    Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk3\DR3.

    Error: (05/05/2016 04:38:35 AM) (Source: volsnap) (EventID: 36) (User: )
    Description: Skuggkopiorna för volymen C: avbröts eftersom lagringsutrymmet för skuggkopian inte kunde växa på grund av en begränsning som angetts av användaren.

    Error: (05/04/2016 04:53:55 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

    Error: (05/04/2016 04:53:03 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
    Description: Följande start- eller systemstartdrivrutin(er) avbröts på grund av fel under start:
    cdrom

    Error: (05/04/2016 04:53:01 PM) (Source: volsnap) (EventID: 36) (User: )
    Description: Skuggkopiorna för volymen C: avbröts eftersom lagringsutrymmet för skuggkopian inte kunde växa på grund av en begränsning som angetts av användaren.


    ==================== Memory info ===========================

    Processor: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz
    Percentage of memory in use: 34%
    Total physical RAM: 16302.94 MB
    Available physical RAM: 10658.58 MB
    Total Virtual: 32604.07 MB
    Available Virtual: 26638.24 MB

    ==================== Drives ================================

    Drive c: () (Fixed) (Total:119.14 GB) (Free:25.27 GB) NTFS
    Drive d: (Data) (Fixed) (Total:913.28 GB) (Free:80.21 GB) NTFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 9918E129)
    Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 1 (Size: 931.5 GB) (Disk ID: 0137AA43)

    Partition: GPT.

    ==================== End of Addition.txt ============================

  7. #7
    Member
    Join Date
    May 2016
    Posts
    52
    Points
    0

    Default

    All this information. If people wanted, could this info give them, or you, direct acces to this computer?

  8. #8
    Member Spyware Fighter DonnaB's Avatar
    Join Date
    Apr 2009
    Location
    Illiana, Ill. USA
    Posts
    3,521
    Points
    563

    Default

    Quote Originally Posted by padidivinginstructor View Post
    All this information. If people wanted, could this info give them, or you, direct acces to this computer?
    No it can not. This tool only audits areas of the Windows Operating System where malware might install itself and will display installed programs and certain settings so the helper can review if they have been changed by something malicious. It also displays error found in the Event Viewer but it does not disclose any personal information what so ever.

    I see the Chrome has been invaded by Trovi which is a nasty browser hijacker. Let's clean that from your computer.

    Please download Junkware Removal Tool to your desktop.
    • Disable your AV protection software now to avoid potential conflicts.
    • Run the tool by double-clicking on XP. Or right click and select Run as Administrator Vista/Win7 and above.
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.

    Next:

    Please download AdwCleaner by Xplode onto your Desktop.
    • Close all open programs and internet browsers.
    • Double click on AdwCleaner.exe to run the tool.
    • Click the Scan button and wait for the process to complete.
    • Click the logfile button and the log will open in Notepad.
    • Click on the Clean button follow the prompts.
    • A log file will automatically open after the scan has finished and the PC has rebooted.
    • Please post the content of that log file with your next answer.
    • The report will be saved in the C:\AdwCleaner folder.
    If you think you might be infected with malware or have recently cleansed your computer of malware without the help of an expert, please read and follow the instructions in How to Start Removing Viruses and Spyware from your Computer. This can alleviate time consumed in trouble shooting your current computer problems.

    If your problem is solved, here's how to say thanks!

    Very proud parent of a U.S. Navy "CB"



    "People may forget what you say,
    People may forget what you did,
    but People will never forget how you made them feel!"

  9. #9
    Member
    Join Date
    May 2016
    Posts
    52
    Points
    0

    Default

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Malwarebytes
    Version: 8.0.6 (04.25.2016)
    Operating System: Windows 7 Ultimate x64
    Ran by Mitch (Administrator) on 2016-05-06 at 15:24:59,92
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    File System: 18

    Successfully deleted: C:\ProgramData\Avg_Update_0516av (Folder)
    Successfully deleted: C:\Program Files (x86)\daemon tools toolbar (Folder)
    Successfully deleted: C:\Users\Mitch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Mitch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Mitch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AKS46RAE (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Mitch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Mitch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Mitch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4DK0VQM (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Mitch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X1F72V2Z (Temporary Internet Files Folder)
    Successfully deleted: C:\Users\Mitch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YNCOGXLV (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AKS46RAE (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4DK0VQM (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X1F72V2Z (Temporary Internet Files Folder)
    Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YNCOGXLV (Temporary Internet Files Folder)



    Registry: 1

    Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\0136311462311555mcinstcleanup (Registry Key)




    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on 2016-05-06 at 15:27:09,74
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


    # AdwCleaner v5.115 - Logfile created 06/05/2016 at 15:30:53
    # Updated 01/05/2016 by Xplode
    # Database : 2016-05-04.2 [Server]
    # Operating system : Windows 7 Ultimate Service Pack 1 (X64)
    # Username : Mitch - MITCH-PC
    # Running from : C:\Users\Mitch\Downloads\AdwCleaner.exe
    # Option : Scan
    # Support : ToolsLib - Forum: Ask for help or share your experience.

    ***** [ Services ] *****


    ***** [ Folders ] *****

    Folder Found : C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk

    ***** [ Files ] *****

    File Found : C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
    File Found : C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal

    ***** [ DLL ] *****


    ***** [ WMI ] *****


    ***** [ Shortcuts ] *****


    ***** [ Scheduled tasks ] *****


    ***** [ Registry ] *****

    Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
    Value Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]

    ***** [ Web browsers ] *****

    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : us.yhs4.search.yahoo.com
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : mysearch.avg.com
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : trovi.search
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : trovi.com
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : ask.com
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : aol.com
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search provided by yahoo
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://www.trovi.com/?gd=&ctid=CT3319434&octid=EB_ORIGINAL_CTID&ISID=MFC7E5F02-513C-49AD-A0D6-EF3F96B03B33&SearchSource=55&CUI=&UM=5&UP=SP103338AE-E2C1-48C4-95E8-F0B1CEB088F0&SSPV=
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://mysearch.avg.com?cid={7B668F9C-B378-4467-B0E6-257D6A4DC38D}&mid=3ff380f5246447d29c47ad33d77e82b7-f9731dea6457587c352af4e9518e8de3f73c8fba&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-14 16:26:25&v=18.1.0.443&pid=safeguard&sg=&sap=hp
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://mysearch.avg.com?cid={7B668F9C-B378-4467-B0E6-257D6A4DC38D}&mid=3ff380f5246447d29c47ad33d77e82b7-f9731dea6457587c352af4e9518e8de3f73c8fba&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-14 16:26:25&v=18.1.7.598&pid=safeguard&sg=&sap=hp
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxps://mysearch.avg.com?cid={7B668F9C-B378-4467-B0E6-257D6A4DC38D}&mid=3ff380f5246447d29c47ad33d77e82b7-f9731dea6457587c352af4e9518e8de3f73c8fba&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-14 16:26:25&v=18.1.9.786&pid=safeguard&sg=&sap=hp
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxps://mysearch.avg.com?cid={7B668F9C-B378-4467-B0E6-257D6A4DC38D}&mid=3ff380f5246447d29c47ad33d77e82b7-f9731dea6457587c352af4e9518e8de3f73c8fba&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-14 16:26:25&v=18.1.9.799&pid=safeguard&sg=&sap=hp
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxps://no.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_togoo_16_16&param1=1&param2=f%3D7%26b%3Dchmm%26cc%3Dno%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzuzy0E0A0DzyyBzy0FyEyEtAtC0D0AyB0BtN0D0Tzu0StCyDyByEtN1L2XzutAtFtBtCtFtCtFtCtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StDtA0DzytByDyB0CtGtDtA0DtCtGzztC0A0AtGyBzz0CzytGyCyB0C0AyE0F0C0F0FyE0Fzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0E0F0FtDyD0D0DtG0BtAzztDtGyEtCzzzytG0AyD0BtBtG0AyE0C0C0C0D0CyCyBtD0Dzz2QtN0A0LzuyE%26cr%3D1207381214%26a%3Dwbf_togoo_16_16%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&uref=chmm
    [C:\Users\Mitch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : dkpejdfnpdkhifgbancbammdijojoffk

    *************************

    C:\AdwCleaner\AdwCleaner[S1].txt - [4547 bytes] - [06/05/2016 15:30:53]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4620 bytes] ##########

  10. #10
    Member
    Join Date
    May 2016
    Posts
    52
    Points
    0

    Default

    still have this links all over chrome

Page 1 of 9 123 ... LastLast