API tools faq
paste
Guest User

hfscan 2

a guest
Jun 22nd, 2016
4,208
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 170.43 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2016 01
  2. Ran by Admin (administrator) on LAPTOP (22-06-2016 14:14:05)
  3. Running from C:\Users\Admin\Desktop
  4. Loaded Profiles: Admin (Available Profiles: Admin)
  5. Platform: Windows 10 Home Version 1511 (X64) Language: English (United States)
  6. Internet Explorer Version 11 (Default browser: Chrome)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
  15. (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
  16. (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
  17. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
  18. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  19. (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  20. (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
  21. (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
  22. (Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
  23. (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
  24. () C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 9.5\WVSScheduler.exe
  25. (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
  26. (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
  27. (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
  28. (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
  29. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
  30. (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
  31. (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
  32. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
  33. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  34. () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
  35. (Intel Corporation) C:\Windows\System32\igfxEM.exe
  36. (Intel Corporation) C:\Windows\System32\igfxHK.exe
  37. (Intel Corporation) C:\Windows\System32\igfxTray.exe
  38. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
  39. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
  40. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
  41. () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
  42. (CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
  43. (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
  44. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
  45. (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
  46. (Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
  47.  
  48.  
  49. ==================== Registry (Whitelisted) ===========================
  50.  
  51. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  52.  
  53. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor)
  54. HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
  55. HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
  56. HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
  57. HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-09] (Apple Inc.)
  58. HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
  59. HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
  60. HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3951280 2016-01-24] (Synaptics Incorporated)
  61. HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Development Company, L.P.)
  62. HKLM-x32\...\Run: [Appandora device service] => C:\Program Files (x86)\Appandora\AppandoraDeviceService.exe [861184 2015-08-04] ()
  63. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation)
  64. HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2016-05-27] (Adobe Systems Inc.)
  65. HKLM-x32\...\Run: [] => [X]
  66. HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare)
  67. HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
  68. HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
  69. HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
  70. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\MountPoints2: {45e15032-8287-11e5-8277-3863bb9c0610} - "F:\setup.exe"
  71. ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
  72. ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
  73. ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
  74. ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
  75. ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
  76. ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
  77.  
  78. ==================== Internet (Whitelisted) ====================
  79.  
  80. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  81.  
  82. Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
  83. Tcpip\Parameters: [DhcpNameServer] 173.44.120.32 173.44.120.33
  84. Tcpip\..\Interfaces\{1a4e3618-eb10-405f-80b6-6e634de833f3}: [DhcpNameServer] 209.18.47.61 209.18.47.62
  85. Tcpip\..\Interfaces\{a296226b-8317-47ae-a6ea-196696636e47}: [NameServer] 4.4.4.4,8.8.8.8
  86. Tcpip\..\Interfaces\{a296226b-8317-47ae-a6ea-196696636e47}: [DhcpNameServer] 173.44.120.32 173.44.120.33
  87. Tcpip\..\Interfaces\{e3bb1b63-e620-44af-b881-7858520e9379}: [DhcpNameServer] 172.20.10.1
  88.  
  89. Internet Explorer:
  90. ==================
  91. HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-e7fd4b0a
  92. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-e7fd4b0a
  93. HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT14/1
  94. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT14/1
  95. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://js.redirect.hp.com/jumpstation?bd=all&c=143&locale=ww_ww&pf=cnnb&s=ieHPtab&tp=iehome
  96. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/HPNOT14/1
  97. SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-e7fd4b0a&q={searchTerms}
  98. SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-e7fd4b0a&q={searchTerms}
  99. SearchScopes: HKLM -> {87C15A4C-E1CC-4D79-A63B-03B31B1D2F76} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
  100. SearchScopes: HKLM -> {d4fee3d1-1014-4db8-a824-573bf9ab51c7} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-afe6bb43&q={searchTerms}
  101. SearchScopes: HKLM-x32 -> {87C15A4C-E1CC-4D79-A63B-03B31B1D2F76} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
  102. SearchScopes: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  103. SearchScopes: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001 -> {87C15A4C-E1CC-4D79-A63B-03B31B1D2F76} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
  104. SearchScopes: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001 -> {d4fee3d1-1014-4db8-a824-573bf9ab51c7} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-afe6bb43&q={searchTerms}
  105. BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-05-17] (Microsoft Corporation)
  106. BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
  107. BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
  108. BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
  109. BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
  110. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-24] (Oracle Corporation)
  111. BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
  112. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-24] (Oracle Corporation)
  113. BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
  114. BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
  115. Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
  116. Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
  117. Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-19] (Microsoft Corporation)
  118. StartMenuInternet: IEXPLORE.EXE - iexplore.exe
  119.  
  120. FireFox:
  121. ========
  122. FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default
  123. FF NewTab: about:newtab
  124. FF DefaultSearchEngine: Search Provided by Bing
  125. FF DefaultSearchEngine.US: Bing®
  126. FF SelectedSearchEngine: Search Provided by Bing
  127. FF Homepage: hxxp://www.bing.com/search?FORM=INCOH1&PC=IC04&PTAG=ICO-e7fd4b0a
  128. FF NetworkProxy: "autoconfig_url", "data:text/plain, function FindProxyForURL(url, host) {if(isInNet(host, '192.168.0.0', '255.255.0.0')) return 'DIRECT'; \nif(host == 'nl1-base.cd-n.net') return 'DIRECT'; \nif(host == 'us1-base.cd-n.net') return 'DIRECT'; \nif(host == 'ca1-base.cd-n.net') return 'DIRECT'; \nif(host == 'au1-base.cd-n.net') return 'DIRECT'; \nif(host == 'jp1-base.cd-n.net') return 'DIRECT'; \nif(host == 'de1-base.cd-n.net') return 'DIRECT'; \nif(host == 'fr1-base.cd-n.net') return 'DIRECT'; \nif(host == 'us2-base.cd-n.net') return 'DIRECT'; \nif(host == 'us3-base.cd-n.net') return 'DIRECT'; \nif(host == 'us4-base.cd-n.net') return 'DIRECT'; \nif(host == 'us5-base.cd-n.net') return 'DIRECT'; \nif(host == 'nl1-base.2po.info') return 'DIRECT'; \nif(host == 'us1-base.2po.info') return 'DIRECT'; \nif(host == 'ca1-base.2po.info') return 'DIRECT'; \nif(host == 'au1-base.2po.info') return 'DIRECT'; \nif(host == 'jp1-base.2po.info') return 'DIRECT'; \nif(host == 'de1-base.2po.info') return 'DIRECT'; \nif(host == 'fr1-base.2po.info') return 'DIRECT'; \nif(host == 'us2-base.2po.info') return 'DIRECT'; \nif(host == 'us3-base.2po.info') return 'DIRECT'; \nif(host == 'us4-base.2po.info') return 'DIRECT'; \nif(host == 'us5-base.2po.info') return 'DIRECT'; \nif(host == '127.0.0.1') return 'DIRECT'; \nif(host == 'localhost') return 'DIRECT'; \nif(host == 'de1-base.2po.info') return 'DIRECT'; \nreturn 'HTTPS ca3.cd-n.net:443';}"
  129. FF NetworkProxy: "type",
  130. FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-17] ()
  131. FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
  132. FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
  133. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
  134. FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
  135. FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
  136. FF Plugin-x32: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-24] (Oracle Corporation)
  137. FF Plugin-x32: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-24] (Oracle Corporation)
  138. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
  139. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-08-04] (Microsoft Corporation)
  140. FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
  141. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-14] (Google Inc.)
  142. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-14] (Google Inc.)
  143. FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-05] ()
  144. FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
  145. FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
  146. FF Plugin HKU\S-1-5-21-1238564941-3387910719-2561191832-1001: pokki.com/PokkiDownloadHelper -> C:\Users\Admin\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll [2016-01-24] (Pokki)
  147. FF Plugin HKU\S-1-5-21-1238564941-3387910719-2561191832-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-01-23] ()
  148. FF SearchPlugin: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\searchplugins\bing-lavasoft.xml [2016-03-02]
  149. FF SearchPlugin: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\searchplugins\Search Provided by Bing.xml [2016-06-16]
  150. FF Extension: iMacros for Firefox - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2016-05-09]
  151. FF Extension: User Agent Switcher - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2016-05-10]
  152. FF Extension: Vagex FF Add-On - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\extensions\ffaddon@vagex.com [2016-05-30]
  153. FF Extension: Enhance Views Add-on - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\Extensions\@enhance_views_ffa.xpi [2016-05-31]
  154. FF Extension: Hoxx VPN Proxy - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\Extensions\@hoxx-vpn.xpi [2016-06-07]
  155. FF Extension: Simple Popup Blocker - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\Extensions\@simplepopupblocker.xpi [2016-02-07]
  156. FF Extension: SavvyConnect - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ed62ldbm.default\Extensions\savvyconnect@surveysavvy.com.xpi [2016-04-15]
  157. FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
  158. FF Extension: Adobe Acrobat DC - Create PDF - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2016-02-26]
  159. FF HKLM-x32\...\Firefox\Extensions: [netsight@nielsen.com] - C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\netsight@nielsen.xpi => not found
  160. StartMenuInternet: FIREFOX.EXE - firefox.exe
  161.  
  162. Chrome:
  163. =======
  164. CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
  165. CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
  166. CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
  167. CHR Extension: (Heartbeat) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aailiojlhjbichheofhdpcongebcgcgm [2016-06-21]
  168. CHR Extension: (Google Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-09]
  169. CHR Extension: (Google Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-09]
  170. CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-09]
  171. CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-09]
  172. CHR Extension: (Google Search) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-09]
  173. CHR Extension: (Fair AdBlock App (by STANDS)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcnofaichneijfbkdkghmhjjbepjmble [2016-05-22]
  174. CHR Extension: (Tampermonkey) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2016-06-14]
  175. CHR Extension: (Google Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-09]
  176. CHR Extension: (Google Docs Offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
  177. CHR Extension: (DotVPN — better than VPN.) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2016-05-17]
  178. CHR Extension: (Fair AdBlock (by STANDS)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2016-06-09]
  179. CHR Extension: (Chrome Web Store Payments) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-09]
  180. CHR Extension: (Simple EPUB Reader) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojhbgcchcbdjdenibfmjofobklkkhofc [2016-02-17]
  181. CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-09]
  182. CHR HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
  183. CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
  184.  
  185. ==================== Services (Whitelisted) ========================
  186.  
  187. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  188.  
  189. R2 AcuWVSSchedulerv9; C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 9.5\WVSScheduler.exe [1599008 2014-05-05] ()
  190. R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
  191. R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
  192. R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
  193. R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3009776 2016-05-27] (Microsoft Corporation)
  194. S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
  195. R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-27] (WildTangent)
  196. R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [File not signed]
  197. R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Development Company, L.P.)
  198. R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-11-01] (Intel Corporation)
  199. R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
  200. S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
  201. R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
  202. R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
  203. R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [File not signed]
  204. S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2105352 2016-01-29] (Electronic Arts)
  205. R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-07-03] (Realtek Semiconductor)
  206. S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
  207. R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246448 2016-01-24] (Synaptics Incorporated)
  208. S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
  209. S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56552 2016-03-22] (Microsoft Corporation)
  210. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
  211. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
  212.  
  213. ===================== Drivers (Whitelisted) ==========================
  214.  
  215. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  216.  
  217. S3 ampa; C:\WINDOWS\system32\ampa.sys [19568 2015-11-10] ()
  218. S3 ampa; C:\WINDOWS\SysWOW64\ampa.sys [19568 2015-11-10] ()
  219. R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
  220. S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [57344 2015-10-30] (Microsoft Corp.)
  221. S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
  222. U5 iaStorA; C:\Windows\System32\Drivers\iaStorA.sys [644968 2013-08-16] (Intel Corporation)
  223. R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
  224. R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-06-22] (Malwarebytes)
  225. R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
  226. R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-10] (Intel Corporation)
  227. S3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
  228. S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
  229. R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
  230. R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [4629744 2015-09-17] (Realtek Semiconductor Corporation )
  231. R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [216064 2015-10-30] (Microsoft Corporation)
  232. S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2013-07-26] (Synaptics Incorporated)
  233. R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42664 2016-01-24] (Synaptics Incorporated)
  234. S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
  235. S3 taphss6; C:\Windows\System32\drivers\taphss6.sys [42088 2015-06-03] (Anchorfree Inc.)
  236. R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
  237. S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-10-02] (Oracle Corporation)
  238. R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146584 2015-10-02] (Oracle Corporation)
  239. S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
  240. S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
  241. S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
  242. R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
  243. R2 WtfEngineDrv; C:\Windows\system32\DRIVERS\WtfEngineDrv.sys [37872 2016-04-07] (AAA Internet Publishing, Inc.)
  244. R3 XSplit_Dummy; C:\Windows\system32\drivers\xspltspk.sys [26200 2015-05-25] (SplitmediaLabs Limited)
  245. S3 AppObserver; \??\C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter1\appobserver64.sys [X]
  246.  
  247. ==================== NetSvcs (Whitelisted) ===================
  248.  
  249. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  250.  
  251.  
  252. ==================== One Month Created files and folders ========
  253.  
  254. (If an entry is included in the fixlist, the file/folder will be moved.)
  255.  
  256. 2016-06-22 14:08 - 2016-06-22 14:08 - 00001890 _____ C:\Users\Admin\Desktop\Fixlog.txt
  257. 2016-06-22 10:46 - 2016-06-22 10:46 - 00001858 _____ C:\Users\Admin\Desktop\TD_LicensingManager.exe - Shortcut.lnk
  258. 2016-06-22 08:54 - 2016-06-22 08:59 - 00073878 _____ C:\Users\Admin\Desktop\Addition.txt
  259. 2016-06-22 08:51 - 2016-06-22 14:14 - 00028951 _____ C:\Users\Admin\Desktop\FRST.txt
  260. 2016-06-22 08:50 - 2016-06-22 14:14 - 00000000 ____D C:\FRST
  261. 2016-06-22 08:49 - 2016-06-22 08:50 - 02387456 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
  262. 2016-06-22 08:47 - 2016-06-22 08:48 - 01738240 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
  263. 2016-06-22 08:47 - 2016-06-22 08:47 - 01610816 _____ (Malwarebytes) C:\Users\Admin\Downloads\JRT.exe
  264. 2016-06-21 17:41 - 2016-06-21 17:41 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
  265. 2016-06-21 14:01 - 2016-06-22 11:13 - 00000000 ____D C:\Users\Admin\AppData\Local\TwtDominator
  266. 2016-06-21 14:01 - 2016-06-22 10:59 - 00000000 ____D C:\Users\Admin\Desktop\TwtDominator
  267. 2016-06-21 14:00 - 2016-06-21 14:00 - 05319474 _____ C:\Users\Admin\Desktop\Twt Dominator 4.0.2.rar
  268. 2016-06-21 14:00 - 2016-06-21 14:00 - 00000000 ____D C:\Users\Admin\Desktop\Twt Dominator 4.0.2
  269. 2016-06-21 13:15 - 2016-06-21 13:15 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aspire YouTube Viewer 1.1
  270. 2016-06-21 13:14 - 2016-06-21 13:15 - 00000000 ____D C:\Users\Admin\AppData\Local\Deployment
  271. 2016-06-21 13:14 - 2016-06-21 13:14 - 00000000 ____D C:\Users\Admin\AppData\Local\Apps\2.0
  272. 2016-06-21 13:13 - 2016-06-21 13:13 - 00002212 _____ C:\Users\Admin\Desktop\Aspire YouTube Bot 1.1.lnk
  273. 2016-06-21 13:13 - 2016-06-21 13:13 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aspire YouTube Bot 1.1
  274. 2016-06-21 13:13 - 2016-06-21 13:13 - 00000000 ____D C:\Program Files (x86)\Aspire YouTube Bot 1.1
  275. 2016-06-21 13:12 - 2016-06-21 13:12 - 01943834 _____ () C:\Users\Admin\AppData\RoamingAspire YouTube Bot 1.1 SetUp.exe
  276. 2016-06-21 13:05 - 2016-06-21 13:16 - 00000000 ___HD C:\adobeTemp
  277. 2016-06-21 12:35 - 2016-06-21 12:35 - 00086016 _____ C:\Users\Admin\AppData\Roaming\VvKkIsaTynXg
  278. 2016-06-21 12:35 - 2016-06-21 12:35 - 00003584 _____ C:\Users\Admin\AppData\Roaming\FXvPQWnzcgrfBtxz
  279. 2016-06-21 12:35 - 2016-06-21 12:35 - 00000068 ___SH C:\Users\Admin\AppData\Roaming\.Identifier
  280. 2016-06-21 10:35 - 2016-06-21 10:35 - 00000000 ____D C:\Users\Admin\Desktop\Project Asylum Cracked
  281. 2016-06-21 10:33 - 2016-06-21 10:34 - 04848641 _____ C:\Users\Admin\Desktop\Project Asylum Cracked.zip
  282. 2016-06-21 10:10 - 2016-06-21 10:10 - 00000000 _____ C:\Users\Admin\Downloads\ProjectAsy.exe
  283. 2016-06-21 10:00 - 2016-06-21 10:10 - 00000976 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup%110%OhUEVIATEUUPJLfd.cmd.lnk
  284. 2016-06-21 10:00 - 2016-06-21 10:03 - 00000000 _____ C:\Users\Admin\Desktop\ProjectAsy.exe
  285. 2016-06-21 10:00 - 2016-06-21 10:00 - 00000000 ____D C:\Users\Admin\AppData\Roaming\win32
  286. 2016-06-21 10:00 - 2016-06-21 10:00 - 00000000 ____D C:\ProgramData\win32
  287. 2016-06-21 10:00 - 2016-06-20 13:29 - 00750320 ___SH (AutoIt Team) C:\Users\Admin\AppData\Roaming\PDRcIagNaUiFGWTVfQSeN.cmd
  288. 2016-06-21 10:00 - 2016-06-20 13:29 - 00463376 ___SH C:\Users\Admin\AppData\Roaming\OhUEVIATEUUP
  289. 2016-06-21 10:00 - 2016-06-20 13:29 - 00048549 ___SH C:\Users\Admin\AppData\Roaming\PDRcIagNaUiFGWTVfQS
  290. 2016-06-20 18:56 - 2016-06-20 18:58 - 00000000 ____D C:\Users\Admin\Desktop\Youtubers Life V0.7.11 Trainer +11 MrAntiFun
  291. 2016-06-20 18:51 - 2016-06-20 19:00 - 00000000 ____D C:\Users\Admin\Desktop\YoutubersLife
  292. 2016-06-20 16:36 - 2016-06-20 18:51 - 00000000 ____D C:\Users\Admin\Downloads\3DMGAME-Youtubers.Life.v0.7.11.Cracked-3DM
  293. 2016-06-20 16:32 - 2016-06-20 16:32 - 04625076 _____ C:\Users\Admin\Desktop\Youtubers Life V0.7.11 Trainer +11 MrAntiFun.zip
  294. 2016-06-20 10:41 - 2016-06-20 00:31 - 01978696 __RSH (PhotoFiltre) C:\Users\Admin\AppData\Roaming\updatevalid.exe
  295. 2016-06-20 10:35 - 2016-06-20 10:35 - 00003236 _____ C:\WINDOWS\System32\Tasks\Valid Update
  296. 2016-06-20 10:35 - 2016-06-20 10:35 - 00001587 __RSH C:\ProgramData\Valid Update
  297. 2016-06-20 10:35 - 2016-06-20 10:35 - 00000000 _RSHD C:\Users\Admin\AppData\Roaming\Valid
  298. 2016-06-20 10:35 - 2016-06-20 10:35 - 00000000 _RSHD C:\ProgramData\moomoo
  299. 2016-06-19 12:43 - 2016-06-19 12:45 - 00000000 ____D C:\Program Files\Angry Video Game Nerd II ASSimilation
  300. 2016-06-19 12:26 - 2016-06-19 12:31 - 00000000 ____D C:\Users\Admin\Documents\RPGTycoon
  301. 2016-06-19 12:26 - 2016-06-19 12:26 - 00000000 ____D C:\Users\Admin\AppData\Roaming\RPGTycoon
  302. 2016-06-19 12:25 - 2016-06-19 12:25 - 00000000 ____D C:\Program Files (x86)\RPG Tycoon
  303. 2016-06-19 12:12 - 2016-06-19 12:12 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\SiBear
  304. 2016-06-19 11:45 - 2016-06-19 12:07 - 00000000 ____D C:\Users\Admin\Downloads\One.Way.Flight-PLAZA
  305. 2016-06-19 11:45 - 2016-06-19 11:58 - 1544192000 ____R C:\Users\Admin\Desktop\plaza-one.way.flight.iso
  306. 2016-06-19 11:44 - 2016-06-19 11:44 - 00002654 _____ C:\Users\Admin\Downloads\[kat.cr]one.way.flight.plaza.torrent
  307. 2016-06-19 11:16 - 2016-06-19 11:16 - 00002233 _____ C:\Users\Admin\Downloads\file0.txt
  308. 2016-06-18 21:39 - 2016-06-18 21:39 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Reflect Studios
  309. 2016-06-18 21:39 - 2016-06-18 21:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Welcome to the Game
  310. 2016-06-18 21:38 - 2016-06-18 21:38 - 00000000 ____D C:\Program Files (x86)\Welcome to the Game
  311. 2016-06-18 21:17 - 2016-06-18 21:37 - 339130394 _____ (Welcome to the Game ) C:\Users\Admin\Downloads\setup_Welcome to the Game.exe
  312. 2016-06-18 20:44 - 2016-06-18 20:44 - 00014931 _____ C:\Users\Admin\Desktop\CJB Item Spawner 1.5-93-1-5.zip
  313. 2016-06-16 13:08 - 2016-06-16 13:08 - 00007184 _____ C:\Users\Admin\Desktop\kohlsstub.pdf
  314. 2016-06-16 09:24 - 2016-06-16 09:27 - 00000000 ____D C:\Users\Admin\AppData\Local\Chromium
  315. 2016-06-16 09:24 - 2016-06-16 09:24 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium
  316. 2016-06-14 17:03 - 2016-05-28 02:13 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
  317. 2016-06-14 17:03 - 2016-05-28 02:13 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
  318. 2016-06-14 17:03 - 2016-05-28 00:57 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
  319. 2016-06-14 17:03 - 2016-05-28 00:57 - 01372312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
  320. 2016-06-14 17:03 - 2016-05-28 00:35 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
  321. 2016-06-14 17:03 - 2016-05-28 00:35 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
  322. 2016-06-14 17:03 - 2016-05-28 00:31 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
  323. 2016-06-14 17:03 - 2016-05-28 00:29 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
  324. 2016-06-14 17:03 - 2016-05-28 00:29 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
  325. 2016-06-14 17:03 - 2016-05-28 00:27 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
  326. 2016-06-14 17:03 - 2016-05-28 00:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
  327. 2016-06-14 17:03 - 2016-05-28 00:26 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
  328. 2016-06-14 17:03 - 2016-05-28 00:26 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
  329. 2016-06-14 17:03 - 2016-05-28 00:24 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
  330. 2016-06-14 17:03 - 2016-05-28 00:22 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
  331. 2016-06-14 17:03 - 2016-05-28 00:22 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
  332. 2016-06-14 17:03 - 2016-05-28 00:22 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
  333. 2016-06-14 17:03 - 2016-05-28 00:19 - 24605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
  334. 2016-06-14 17:03 - 2016-05-28 00:18 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
  335. 2016-06-14 17:03 - 2016-05-28 00:18 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
  336. 2016-06-14 17:03 - 2016-05-28 00:17 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
  337. 2016-06-14 17:03 - 2016-05-28 00:15 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
  338. 2016-06-14 17:03 - 2016-05-28 00:15 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
  339. 2016-06-14 17:03 - 2016-05-28 00:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
  340. 2016-06-14 17:03 - 2016-05-28 00:14 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
  341. 2016-06-14 17:03 - 2016-05-28 00:14 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
  342. 2016-06-14 17:03 - 2016-05-28 00:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
  343. 2016-06-14 17:03 - 2016-05-28 00:13 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
  344. 2016-06-14 17:03 - 2016-05-28 00:12 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
  345. 2016-06-14 17:03 - 2016-05-28 00:11 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
  346. 2016-06-14 17:03 - 2016-05-28 00:11 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
  347. 2016-06-14 17:03 - 2016-05-28 00:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
  348. 2016-06-14 17:03 - 2016-05-28 00:08 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
  349. 2016-06-14 17:03 - 2016-05-28 00:06 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
  350. 2016-06-14 17:03 - 2016-05-28 00:03 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
  351. 2016-06-14 17:03 - 2016-05-28 00:03 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
  352. 2016-06-14 17:03 - 2016-05-28 00:00 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
  353. 2016-06-14 17:03 - 2016-05-27 23:58 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
  354. 2016-06-14 17:02 - 2016-05-28 02:13 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
  355. 2016-06-14 17:02 - 2016-05-28 02:13 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
  356. 2016-06-14 17:02 - 2016-05-28 01:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
  357. 2016-06-14 17:02 - 2016-05-28 01:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
  358. 2016-06-14 17:02 - 2016-05-28 01:22 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
  359. 2016-06-14 17:02 - 2016-05-28 01:22 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
  360. 2016-06-14 17:02 - 2016-05-28 01:20 - 00430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
  361. 2016-06-14 17:02 - 2016-05-28 01:09 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
  362. 2016-06-14 17:02 - 2016-05-28 01:08 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
  363. 2016-06-14 17:02 - 2016-05-28 01:07 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
  364. 2016-06-14 17:02 - 2016-05-28 01:07 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
  365. 2016-06-14 17:02 - 2016-05-28 01:07 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
  366. 2016-06-14 17:02 - 2016-05-28 01:07 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
  367. 2016-06-14 17:02 - 2016-05-28 01:07 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
  368. 2016-06-14 17:02 - 2016-05-28 01:07 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
  369. 2016-06-14 17:02 - 2016-05-28 01:06 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
  370. 2016-06-14 17:02 - 2016-05-28 01:06 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
  371. 2016-06-14 17:02 - 2016-05-28 01:06 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
  372. 2016-06-14 17:02 - 2016-05-28 01:06 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
  373. 2016-06-14 17:02 - 2016-05-28 01:06 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
  374. 2016-06-14 17:02 - 2016-05-28 01:05 - 04515264 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
  375. 2016-06-14 17:02 - 2016-05-28 01:04 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
  376. 2016-06-14 17:02 - 2016-05-28 00:58 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
  377. 2016-06-14 17:02 - 2016-05-28 00:58 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
  378. 2016-06-14 17:02 - 2016-05-28 00:57 - 02548944 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
  379. 2016-06-14 17:02 - 2016-05-28 00:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
  380. 2016-06-14 17:02 - 2016-05-28 00:57 - 00649792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
  381. 2016-06-14 17:02 - 2016-05-28 00:57 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
  382. 2016-06-14 17:02 - 2016-05-28 00:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
  383. 2016-06-14 17:02 - 2016-05-28 00:57 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
  384. 2016-06-14 17:02 - 2016-05-28 00:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
  385. 2016-06-14 17:02 - 2016-05-28 00:35 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
  386. 2016-06-14 17:02 - 2016-05-28 00:31 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
  387. 2016-06-14 17:02 - 2016-05-28 00:28 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
  388. 2016-06-14 17:02 - 2016-05-28 00:26 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
  389. 2016-06-14 17:02 - 2016-05-28 00:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
  390. 2016-06-14 17:02 - 2016-05-28 00:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
  391. 2016-06-14 17:02 - 2016-05-28 00:22 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
  392. 2016-06-14 17:02 - 2016-05-28 00:22 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
  393. 2016-06-14 17:02 - 2016-05-28 00:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
  394. 2016-06-14 17:02 - 2016-05-28 00:21 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
  395. 2016-06-14 17:02 - 2016-05-28 00:21 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
  396. 2016-06-14 17:02 - 2016-05-28 00:20 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
  397. 2016-06-14 17:02 - 2016-05-28 00:19 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
  398. 2016-06-14 17:02 - 2016-05-28 00:18 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
  399. 2016-06-14 17:02 - 2016-05-28 00:18 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
  400. 2016-06-14 17:02 - 2016-05-28 00:18 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
  401. 2016-06-14 17:02 - 2016-05-28 00:18 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
  402. 2016-06-14 17:02 - 2016-05-28 00:17 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
  403. 2016-06-14 17:02 - 2016-05-28 00:17 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
  404. 2016-06-14 17:02 - 2016-05-28 00:17 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
  405. 2016-06-14 17:02 - 2016-05-28 00:16 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
  406. 2016-06-14 17:02 - 2016-05-28 00:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
  407. 2016-06-14 17:02 - 2016-05-28 00:16 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
  408. 2016-06-14 17:02 - 2016-05-28 00:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
  409. 2016-06-14 17:02 - 2016-05-28 00:16 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
  410. 2016-06-14 17:02 - 2016-05-28 00:15 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
  411. 2016-06-14 17:02 - 2016-05-28 00:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
  412. 2016-06-14 17:02 - 2016-05-28 00:14 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
  413. 2016-06-14 17:02 - 2016-05-28 00:14 - 03292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12warp.dll
  414. 2016-06-14 17:02 - 2016-05-28 00:14 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
  415. 2016-06-14 17:02 - 2016-05-28 00:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
  416. 2016-06-14 17:02 - 2016-05-28 00:14 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
  417. 2016-06-14 17:02 - 2016-05-28 00:13 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
  418. 2016-06-14 17:02 - 2016-05-28 00:13 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
  419. 2016-06-14 17:02 - 2016-05-28 00:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
  420. 2016-06-14 17:02 - 2016-05-28 00:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
  421. 2016-06-14 17:02 - 2016-05-28 00:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
  422. 2016-06-14 17:02 - 2016-05-28 00:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
  423. 2016-06-14 17:02 - 2016-05-28 00:11 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
  424. 2016-06-14 17:02 - 2016-05-28 00:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
  425. 2016-06-14 17:02 - 2016-05-28 00:11 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
  426. 2016-06-14 17:02 - 2016-05-28 00:09 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
  427. 2016-06-14 17:02 - 2016-05-28 00:08 - 13385728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
  428. 2016-06-14 17:02 - 2016-05-28 00:06 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
  429. 2016-06-14 17:02 - 2016-05-28 00:06 - 01339904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
  430. 2016-06-14 17:02 - 2016-05-28 00:05 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
  431. 2016-06-14 17:02 - 2016-05-28 00:05 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
  432. 2016-06-14 17:02 - 2016-05-28 00:05 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
  433. 2016-06-14 17:02 - 2016-05-28 00:05 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
  434. 2016-06-14 17:02 - 2016-05-28 00:04 - 06973952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
  435. 2016-06-14 17:02 - 2016-05-28 00:03 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
  436. 2016-06-14 17:02 - 2016-05-28 00:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
  437. 2016-06-14 17:02 - 2016-05-28 00:02 - 03590144 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
  438. 2016-06-14 17:02 - 2016-05-28 00:02 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
  439. 2016-06-14 17:02 - 2016-05-28 00:02 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
  440. 2016-06-14 17:02 - 2016-05-28 00:01 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
  441. 2016-06-14 17:02 - 2016-05-28 00:01 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
  442. 2016-06-14 17:02 - 2016-05-28 00:01 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
  443. 2016-06-14 17:02 - 2016-05-28 00:00 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
  444. 2016-06-14 17:02 - 2016-05-28 00:00 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
  445. 2016-06-14 17:02 - 2016-05-28 00:00 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
  446. 2016-06-14 17:02 - 2016-05-28 00:00 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
  447. 2016-06-14 17:02 - 2016-05-28 00:00 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
  448. 2016-06-14 17:02 - 2016-05-28 00:00 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
  449. 2016-06-14 17:02 - 2016-05-27 23:58 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
  450. 2016-06-14 17:02 - 2016-05-27 23:58 - 04896256 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
  451. 2016-06-14 17:02 - 2016-05-27 23:58 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
  452. 2016-06-14 17:02 - 2016-05-27 23:57 - 02281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
  453. 2016-06-14 17:02 - 2016-05-27 23:55 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
  454. 2016-06-14 17:01 - 2016-05-28 02:13 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
  455. 2016-06-14 17:01 - 2016-05-28 02:13 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
  456. 2016-06-14 17:01 - 2016-05-28 01:23 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
  457. 2016-06-14 17:01 - 2016-05-28 01:22 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
  458. 2016-06-14 17:01 - 2016-05-28 01:22 - 00211296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
  459. 2016-06-14 17:01 - 2016-05-28 01:22 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
  460. 2016-06-14 17:01 - 2016-05-28 01:18 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
  461. 2016-06-14 17:01 - 2016-05-28 01:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
  462. 2016-06-14 17:01 - 2016-05-28 01:09 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
  463. 2016-06-14 17:01 - 2016-05-28 01:09 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
  464. 2016-06-14 17:01 - 2016-05-28 01:08 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
  465. 2016-06-14 17:01 - 2016-05-28 01:08 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
  466. 2016-06-14 17:01 - 2016-05-28 01:07 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
  467. 2016-06-14 17:01 - 2016-05-28 01:04 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
  468. 2016-06-14 17:01 - 2016-05-28 01:04 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
  469. 2016-06-14 17:01 - 2016-05-28 01:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
  470. 2016-06-14 17:01 - 2016-05-28 01:04 - 00111064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
  471. 2016-06-14 17:01 - 2016-05-28 01:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
  472. 2016-06-14 17:01 - 2016-05-28 01:03 - 00131248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
  473. 2016-06-14 17:01 - 2016-05-28 00:57 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
  474. 2016-06-14 17:01 - 2016-05-28 00:31 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
  475. 2016-06-14 17:01 - 2016-05-28 00:29 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARP12Debug.dll
  476. 2016-06-14 17:01 - 2016-05-28 00:29 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
  477. 2016-06-14 17:01 - 2016-05-28 00:29 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
  478. 2016-06-14 17:01 - 2016-05-28 00:28 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
  479. 2016-06-14 17:01 - 2016-05-28 00:28 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
  480. 2016-06-14 17:01 - 2016-05-28 00:26 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
  481. 2016-06-14 17:01 - 2016-05-28 00:26 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
  482. 2016-06-14 17:01 - 2016-05-28 00:25 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
  483. 2016-06-14 17:01 - 2016-05-28 00:25 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARP12Debug.dll
  484. 2016-06-14 17:01 - 2016-05-28 00:24 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
  485. 2016-06-14 17:01 - 2016-05-28 00:24 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
  486. 2016-06-14 17:01 - 2016-05-28 00:24 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
  487. 2016-06-14 17:01 - 2016-05-28 00:24 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
  488. 2016-06-14 17:01 - 2016-05-28 00:24 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
  489. 2016-06-14 17:01 - 2016-05-28 00:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
  490. 2016-06-14 17:01 - 2016-05-28 00:23 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
  491. 2016-06-14 17:01 - 2016-05-28 00:23 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
  492. 2016-06-14 17:01 - 2016-05-28 00:22 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
  493. 2016-06-14 17:01 - 2016-05-28 00:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
  494. 2016-06-14 17:01 - 2016-05-28 00:22 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
  495. 2016-06-14 17:01 - 2016-05-28 00:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
  496. 2016-06-14 17:01 - 2016-05-28 00:21 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
  497. 2016-06-14 17:01 - 2016-05-28 00:21 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
  498. 2016-06-14 17:01 - 2016-05-28 00:20 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
  499. 2016-06-14 17:01 - 2016-05-28 00:20 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
  500. 2016-06-14 17:01 - 2016-05-28 00:20 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
  501. 2016-06-14 17:01 - 2016-05-28 00:20 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
  502. 2016-06-14 17:01 - 2016-05-28 00:20 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
  503. 2016-06-14 17:01 - 2016-05-28 00:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
  504. 2016-06-14 17:01 - 2016-05-28 00:19 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
  505. 2016-06-14 17:01 - 2016-05-28 00:19 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
  506. 2016-06-14 17:01 - 2016-05-28 00:19 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
  507. 2016-06-14 17:01 - 2016-05-28 00:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
  508. 2016-06-14 17:01 - 2016-05-28 00:18 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
  509. 2016-06-14 17:01 - 2016-05-28 00:18 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
  510. 2016-06-14 17:01 - 2016-05-28 00:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
  511. 2016-06-14 17:01 - 2016-05-28 00:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
  512. 2016-06-14 17:01 - 2016-05-28 00:17 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
  513. 2016-06-14 17:01 - 2016-05-28 00:17 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
  514. 2016-06-14 17:01 - 2016-05-28 00:16 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
  515. 2016-06-14 17:01 - 2016-05-28 00:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
  516. 2016-06-14 17:01 - 2016-05-28 00:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
  517. 2016-06-14 17:01 - 2016-05-28 00:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
  518. 2016-06-14 17:01 - 2016-05-28 00:15 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
  519. 2016-06-14 17:01 - 2016-05-28 00:14 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
  520. 2016-06-14 17:01 - 2016-05-28 00:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
  521. 2016-06-14 17:01 - 2016-05-28 00:13 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
  522. 2016-06-14 17:01 - 2016-05-28 00:11 - 02470912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12warp.dll
  523. 2016-06-14 17:01 - 2016-05-28 00:11 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
  524. 2016-06-14 17:01 - 2016-05-28 00:11 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
  525. 2016-06-14 17:01 - 2016-05-28 00:04 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
  526. 2016-06-14 17:01 - 2016-05-28 00:04 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
  527. 2016-06-14 17:01 - 2016-05-28 00:03 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
  528. 2016-06-14 17:01 - 2016-05-28 00:03 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
  529. 2016-06-14 17:01 - 2016-05-28 00:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
  530. 2016-06-14 17:01 - 2016-05-28 00:01 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
  531. 2016-06-14 17:01 - 2016-05-28 00:00 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
  532. 2016-06-14 17:01 - 2016-05-28 00:00 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
  533. 2016-06-14 17:01 - 2016-05-28 00:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
  534. 2016-06-14 17:01 - 2016-05-27 23:59 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
  535. 2016-06-14 17:01 - 2016-05-27 23:58 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
  536. 2016-06-14 17:01 - 2016-05-27 23:53 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
  537. 2016-06-14 13:09 - 2016-06-14 13:09 - 01365785 _____ C:\Users\Admin\Downloads\Affiliate+Package.zip
  538. 2016-06-14 11:49 - 2016-06-14 12:10 - 00000000 ____D C:\Users\Admin\AppData\Local\8BitBoy
  539. 2016-06-14 08:44 - 2016-06-14 09:00 - 00000000 ____D C:\Users\Admin\Desktop\proxies
  540. 2016-06-13 17:07 - 2016-06-13 17:07 - 00001233 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
  541. 2016-06-13 17:07 - 2016-06-13 17:07 - 00001221 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
  542. 2016-06-12 21:02 - 2016-06-12 21:53 - 00000000 ____D C:\Users\Admin\Desktop\YTBotv2
  543. 2016-06-12 21:02 - 2016-06-12 21:02 - 00712348 _____ C:\Users\Admin\Desktop\YTBotv2.zip
  544. 2016-06-12 20:00 - 2016-06-12 20:01 - 00000000 ____D C:\Users\Admin\Desktop\Monster Proxy
  545. 2016-06-12 19:13 - 2016-06-12 21:01 - 00000000 ____D C:\Users\Admin\Desktop\Accora-YTBOT
  546. 2016-06-12 14:20 - 2016-06-12 21:01 - 00000000 ____D C:\Users\Admin\Desktop\autoit
  547. 2016-06-12 14:19 - 2016-06-12 14:19 - 17519307 _____ C:\Users\Admin\Downloads\youtube-outros (1).zip
  548. 2016-06-11 22:11 - 2016-06-11 22:12 - 05347516 _____ (Jos van der Zande) C:\Users\Admin\Downloads\SciTE4AutoIt3.exe
  549. 2016-06-11 22:09 - 2016-06-11 22:19 - 00639133 _____ C:\Users\Admin\Desktop\ytbot-accora.au3
  550. 2016-06-11 20:57 - 2016-06-11 20:57 - 00000000 ____D C:\Program Files\Application Verifier
  551. 2016-06-11 20:57 - 2016-06-11 20:57 - 00000000 ____D C:\Program Files (x86)\Application Verifier
  552. 2016-06-11 20:56 - 2016-06-11 20:56 - 00000000 ____D C:\ProgramData\Windows App Certification Kit
  553. 2016-06-11 20:50 - 2016-06-11 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
  554. 2016-06-11 20:29 - 2016-06-11 20:29 - 00000000 ____D C:\Program Files (x86)\HTML Help Workshop
  555. 2016-06-11 16:46 - 2016-06-11 16:46 - 00000000 ____D C:\Users\Admin\Desktop\AutoItDecompiler
  556. 2016-06-11 16:45 - 2016-06-11 22:13 - 00000387 _____ C:\Users\Admin\SciTE.session
  557. 2016-06-11 16:33 - 2016-06-11 22:12 - 00000000 ____D C:\Users\Admin\AppData\Local\AutoIt v3
  558. 2016-06-11 16:33 - 2016-06-11 16:33 - 00000000 ____D C:\Users\Admin\Documents\autoit
  559. 2016-06-11 16:25 - 2016-06-11 22:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoIt v3
  560. 2016-06-11 16:24 - 2016-06-11 22:12 - 00000000 ____D C:\Program Files (x86)\AutoIt3
  561. 2016-06-11 16:15 - 2016-06-11 16:24 - 12273456 _____ (AutoIt Team) C:\Users\Admin\Downloads\autoit-v3-setup.exe
  562. 2016-06-11 16:15 - 2016-06-11 16:15 - 00000000 ____D C:\Users\Admin\Documents\Resource Tuner 2
  563. 2016-06-11 16:13 - 2016-06-11 16:13 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Resource Tuner 2
  564. 2016-06-11 16:13 - 2016-06-11 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Tuner
  565. 2016-06-11 16:13 - 2016-06-11 16:13 - 00000000 ____D C:\Program Files (x86)\Resource Tuner
  566. 2016-06-11 16:12 - 2016-06-11 16:12 - 04438933 _____ (Heaventools Software ) C:\Users\Admin\Downloads\ResTuner_setup.exe
  567. 2016-06-11 16:08 - 2016-06-11 16:08 - 00000000 ____D C:\Users\Admin\AppData\Roaming\JetBrains
  568. 2016-06-11 16:02 - 2016-06-11 16:03 - 00000000 ____D C:\Users\Admin\AppData\Local\JetBrains
  569. 2016-06-11 15:59 - 2016-06-11 15:59 - 00000000 ____D C:\Users\Admin\AppData\Local\NuGet
  570. 2016-06-11 15:57 - 2016-06-11 15:58 - 00890432 _____ (JetBrains) C:\Users\Admin\Downloads\JetBrains.dotPeek.2016.1.2.web.exe
  571. 2016-06-11 13:36 - 2016-06-11 13:36 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tubenoia Youtube Bot
  572. 2016-06-11 13:36 - 2016-06-11 13:36 - 00000000 ____D C:\Program Files (x86)\Tubenoia Youtube Bot
  573. 2016-06-11 13:03 - 2016-06-11 13:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
  574. 2016-06-11 13:01 - 2016-06-11 13:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
  575. 2016-06-11 13:01 - 2016-06-11 13:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
  576. 2016-06-11 12:36 - 2016-06-11 12:40 - 00000000 ____D C:\Users\Admin\Documents\Acunetix WVS 9
  577. 2016-06-11 12:34 - 2016-06-11 12:36 - 00000000 ____D C:\Users\Public\Documents\Acunetix WVS 9
  578. 2016-06-11 12:33 - 2016-06-11 12:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acunetix Web Vulnerability Scanner 9.5
  579. 2016-06-11 12:33 - 2016-06-11 12:33 - 00000000 ____D C:\Program Files (x86)\Acunetix
  580. 2016-06-11 11:58 - 2016-06-11 12:34 - 00000724 _____ C:\WINDOWS\WVS_InstDBLogFile.csv
  581. 2016-06-11 11:58 - 2016-06-11 12:33 - 00000000 ____D C:\ProgramData\Acunetix WVS 9
  582. 2016-06-11 11:46 - 2016-06-11 11:54 - 00000000 ____D C:\Users\Admin\Downloads\Acunetix Web Vulnerability Scanner 9.5 Cracked [0x22] [DL FIX]
  583. 2016-06-11 11:38 - 2016-06-11 11:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jagex
  584. 2016-06-11 11:38 - 2016-06-11 11:38 - 00000000 ____D C:\Program Files\Jagex
  585. 2016-06-11 11:36 - 2016-06-11 11:37 - 03855552 _____ (Jagex Ltd ) C:\Users\Admin\Downloads\RuneScape-Setup.exe
  586. 2016-06-10 22:15 - 2016-06-10 22:15 - 00000000 ____D C:\Users\Admin\AppData\Roaming\NuGet
  587. 2016-06-10 22:13 - 2016-06-10 22:13 - 00000000 ____D C:\Users\Admin\.dnx
  588. 2016-06-10 18:51 - 2016-06-10 19:03 - 677179265 _____ C:\Users\Admin\Downloads\treat-10k-pack.zip
  589. 2016-06-10 16:18 - 2016-02-23 03:21 - 01001984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
  590. 2016-06-10 16:18 - 2016-02-23 02:52 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
  591. 2016-06-10 16:18 - 2015-11-13 01:57 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
  592. 2016-06-10 16:18 - 2015-11-13 01:55 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
  593. 2016-06-10 16:18 - 2015-11-13 01:54 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
  594. 2016-06-10 16:18 - 2015-11-13 01:53 - 01073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
  595. 2016-06-10 16:18 - 2015-11-13 01:53 - 00727552 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
  596. 2016-06-10 16:18 - 2015-11-13 01:52 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
  597. 2016-06-10 16:18 - 2015-11-13 01:51 - 08574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
  598. 2016-06-10 16:18 - 2015-11-13 01:50 - 05562880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
  599. 2016-06-10 16:18 - 2015-11-13 01:31 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
  600. 2016-06-10 16:18 - 2015-11-13 01:29 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
  601. 2016-06-10 16:18 - 2015-11-13 01:29 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
  602. 2016-06-10 16:18 - 2015-11-13 01:28 - 00763904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
  603. 2016-06-10 16:18 - 2015-11-13 01:28 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
  604. 2016-06-10 16:18 - 2015-11-13 01:26 - 00655360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
  605. 2016-06-10 16:18 - 2015-11-13 01:25 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
  606. 2016-06-10 16:18 - 2015-11-13 01:23 - 06584320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
  607. 2016-06-10 16:03 - 2016-06-12 16:24 - 00000021 _____ C:\Users\Admin\Desktop\proxy.ini
  608. 2016-06-10 12:41 - 2016-06-10 12:41 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\David Szymanski
  609. 2016-06-10 09:52 - 2016-06-10 09:52 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TubeTycoon
  610. 2016-06-10 08:30 - 2016-06-10 22:13 - 00000000 ____D C:\Users\Admin\Documents\Visual Studio 2015
  611. 2016-06-09 22:09 - 2016-06-09 22:09 - 00000000 ____D C:\Program Files (x86)\AppInsights
  612. 2016-06-09 21:59 - 2016-06-09 21:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
  613. 2016-06-09 21:44 - 2016-06-09 21:44 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
  614. 2016-06-09 21:36 - 2016-06-09 21:36 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
  615. 2016-06-09 21:35 - 2016-06-09 21:35 - 00000000 ____D C:\Program Files (x86)\ShellDir
  616. 2016-06-09 21:32 - 2016-06-09 21:59 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
  617. 2016-06-09 21:20 - 2016-06-09 21:20 - 00000000 ____D C:\ProgramData\Microsoft DNX
  618. 2016-06-09 21:20 - 2016-06-09 21:20 - 00000000 ____D C:\Program Files\Microsoft DNX
  619. 2016-06-09 21:13 - 2016-06-09 21:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools
  620. 2016-06-09 20:54 - 2016-06-09 20:54 - 00000000 ____D C:\Program Files\IIS Express
  621. 2016-06-09 20:54 - 2016-06-09 20:54 - 00000000 ____D C:\Program Files (x86)\IIS Express
  622. 2016-06-09 20:53 - 2016-06-09 20:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools
  623. 2016-06-09 20:51 - 2016-06-09 20:51 - 00000000 ____D C:\ProgramData\NuGet
  624. 2016-06-09 20:51 - 2016-06-09 20:51 - 00000000 ____D C:\Program Files (x86)\NuGet
  625. 2016-06-09 20:48 - 2016-06-09 20:48 - 00000000 ____D C:\Program Files\IIS
  626. 2016-06-09 20:48 - 2016-06-09 20:48 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
  627. 2016-06-09 20:48 - 2016-06-09 20:48 - 00000000 ____D C:\Program Files (x86)\IIS
  628. 2016-06-09 20:42 - 2016-06-09 20:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
  629. 2016-06-09 20:40 - 2016-06-09 20:40 - 00001505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
  630. 2016-06-09 20:38 - 2016-06-10 08:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
  631. 2016-06-09 20:38 - 2016-06-09 20:38 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
  632. 2016-06-09 20:35 - 2016-06-09 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
  633. 2016-06-09 20:34 - 2016-06-09 20:34 - 00000000 ____D C:\WINDOWS\symbols
  634. 2016-06-09 20:34 - 2016-06-09 20:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
  635. 2016-06-09 20:26 - 2015-10-29 20:12 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
  636. 2016-06-09 20:26 - 2015-10-29 20:12 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
  637. 2016-06-09 20:26 - 2015-10-29 19:38 - 00369152 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
  638. 2016-06-09 20:26 - 2015-10-29 19:37 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
  639. 2016-06-09 20:26 - 2015-10-29 19:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
  640. 2016-06-09 20:26 - 2015-10-29 19:36 - 00349184 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
  641. 2016-06-09 20:26 - 2015-10-29 19:35 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
  642. 2016-06-09 20:26 - 2015-10-29 19:35 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
  643. 2016-06-09 20:26 - 2015-10-29 19:34 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
  644. 2016-06-09 20:26 - 2015-10-29 19:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
  645. 2016-06-09 20:26 - 2015-10-29 19:30 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
  646. 2016-06-09 20:26 - 2015-10-29 19:29 - 05667840 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
  647. 2016-06-09 20:26 - 2015-10-29 19:27 - 04533760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
  648. 2016-06-09 20:26 - 2015-10-29 19:27 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
  649. 2016-06-09 20:26 - 2015-10-29 19:12 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
  650. 2016-06-09 20:26 - 2015-10-29 19:11 - 01064960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
  651. 2016-06-09 20:22 - 2016-06-09 22:04 - 00000000 ____D C:\Program Files\Microsoft SQL Server
  652. 2016-06-09 20:22 - 2016-06-09 22:04 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
  653. 2016-06-09 20:22 - 2016-06-09 20:38 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
  654. 2016-06-09 20:22 - 2016-06-09 20:22 - 00001514 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
  655. 2016-06-09 20:13 - 2016-06-09 20:24 - 00000000 ____D C:\WINDOWS\system32\1033
  656. 2016-06-09 20:12 - 2016-06-09 21:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
  657. 2016-06-09 20:12 - 2016-06-09 20:12 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf
  658. 2016-06-09 19:57 - 2016-06-11 20:41 - 00000000 ____D C:\Program Files (x86)\Windows Kits
  659. 2016-06-09 19:57 - 2016-06-11 20:41 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
  660. 2016-06-09 19:53 - 2016-06-09 19:53 - 00234640 _____ () C:\WINDOWS\act.exe
  661. 2016-06-09 19:14 - 2016-06-09 19:15 - 00213848 _____ (Microsoft Corporation) C:\Users\Admin\Downloads\vs_community_ENU.exe
  662. 2016-06-09 08:28 - 2016-06-09 08:28 - 00000000 ____D C:\Users\Admin\Documents\My Games
  663. 2016-06-09 08:28 - 2016-06-09 08:28 - 00000000 ____D C:\Users\Admin\Desktop\Hacknet.v4.015
  664. 2016-06-08 23:03 - 2016-06-09 08:23 - 00000000 ____D C:\Program Files (x86)\HACKNET
  665. 2016-06-08 23:03 - 2016-06-08 23:03 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HACKNET
  666. 2016-06-08 22:47 - 2016-06-08 22:47 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\South East Games
  667. 2016-06-08 22:46 - 2016-06-08 22:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paint The Town Red
  668. 2016-06-08 22:45 - 2016-06-08 22:46 - 00000000 ____D C:\Program Files (x86)\Paint The Town Red
  669. 2016-06-08 08:19 - 2014-02-04 15:29 - 00316928 _____ (CANON INC.) C:\WINDOWS\system32\CNC_CBC.dll
  670. 2016-06-08 08:19 - 2014-02-04 15:29 - 00105984 _____ (CANON INC.) C:\WINDOWS\system32\CNC_CBI.dll
  671. 2016-06-08 08:19 - 2014-01-21 13:16 - 00369664 _____ (CANON INC.) C:\WINDOWS\system32\CNC_CBL.dll
  672. 2016-06-08 08:19 - 2013-12-02 09:57 - 00088320 _____ C:\WINDOWS\system32\CNC1780D.TBL
  673. 2016-06-08 08:19 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA6.dll
  674. 2016-06-08 08:17 - 2016-06-08 08:17 - 00000000 ____D C:\Users\Admin\AppData\Local\HP
  675. 2016-06-07 14:21 - 2016-06-07 14:21 - 00086368 _____ C:\Users\Admin\Downloads\skessentials.sk
  676. 2016-06-06 11:50 - 2016-06-06 11:50 - 00056334 _____ C:\Users\Admin\Downloads\PIZZA SE.pdf
  677. 2016-06-06 10:55 - 2016-06-06 10:55 - 00603122 _____ C:\Users\Admin\Downloads\Hifonics Amazon Guide.pdf
  678. 2016-06-06 08:41 - 2016-06-10 16:02 - 00001694 _____ C:\Users\Admin\Documents\proxies.txt
  679. 2016-06-06 08:27 - 2016-06-06 08:27 - 00000000 ____D C:\Users\Admin\Desktop\GaterProxy8.9Premium
  680. 2016-06-05 20:41 - 2016-06-05 20:45 - 00000000 ____D C:\Users\Admin\AppData\Local\Mirillis
  681. 2016-06-05 20:41 - 2016-06-05 20:41 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Mirillis
  682. 2016-06-05 20:41 - 2016-06-05 20:41 - 00000000 ____D C:\ProgramData\Mirillis
  683. 2016-06-05 20:41 - 2016-06-05 20:41 - 00000000 ____D C:\Action!
  684. 2016-06-05 20:40 - 2016-06-05 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
  685. 2016-06-05 20:40 - 2016-06-05 20:40 - 00000000 ____D C:\Program Files (x86)\Mirillis
  686. 2016-06-05 20:06 - 2016-06-05 20:06 - 00282624 _____ (Newtonsoft) C:\Users\Admin\Downloads\Newtonsoft.Json.dll
  687. 2016-06-05 20:06 - 2016-06-05 20:06 - 00181248 _____ () C:\Users\Admin\Downloads\Dox Tool V2.exe
  688. 2016-06-05 14:16 - 2016-06-18 21:12 - 00000000 ____D C:\Users\Admin\AppData\Roaming\StardewValley
  689. 2016-06-05 14:15 - 2016-06-05 14:15 - 00000000 ____D C:\skidrowrepacks
  690. 2016-06-05 11:09 - 2016-06-05 11:51 - 00000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft
  691. 2016-06-05 11:09 - 2016-06-05 11:09 - 00000000 ____D C:\Users\Admin\AppData\Roaming\java
  692. 2016-06-05 11:05 - 2016-06-05 11:08 - 00000000 ____D C:\Program Files (x86)\Minecraft
  693. 2016-06-05 11:05 - 2016-06-05 11:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
  694. 2016-06-05 11:03 - 2016-06-05 11:03 - 02314240 _____ C:\Users\Admin\Downloads\MinecraftInstaller.msi
  695. 2016-06-04 15:39 - 2016-06-04 15:39 - 00000048 _____ C:\Users\Admin\.bash_history
  696. 2016-06-04 15:39 - 2016-06-04 15:39 - 00000000 ____D C:\Users\Admin\Desktop\MineCraft
  697. 2016-06-04 15:30 - 2016-06-04 15:30 - 00000000 ____D C:\Users\Admin\.m2
  698. 2016-06-04 15:27 - 2016-06-04 15:27 - 00000066 _____ C:\Users\Admin\.gitconfig
  699. 2016-06-04 15:26 - 2016-06-04 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
  700. 2016-06-04 15:26 - 2016-06-04 15:26 - 00000000 ____D C:\ProgramData\Git
  701. 2016-06-04 15:25 - 2016-06-04 15:26 - 00000000 ____D C:\Program Files\Git
  702. 2016-06-04 15:24 - 2016-06-04 15:25 - 31223584 _____ (The Git Development Community ) C:\Users\Admin\Downloads\Git-2.8.3-64-bit.exe
  703. 2016-06-04 15:24 - 2016-06-04 15:24 - 03411586 _____ C:\Users\Admin\Desktop\BuildTools.jar
  704. 2016-06-04 09:49 - 2016-06-04 09:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nordic Games
  705. 2016-06-04 09:41 - 2016-06-04 09:41 - 00000000 ____D C:\Program Files (x86)\Nordic Games
  706. 2016-06-04 09:11 - 2016-06-04 09:16 - 00000000 ____D C:\Users\Admin\Downloads\Painkiller.Hell.and.Damnation.2012-SKIDROW
  707. 2016-06-04 09:09 - 2016-06-04 09:09 - 00669696 _____ C:\Users\Admin\Downloads\Painkiller Hell .iso
  708. 2016-06-04 07:58 - 2016-06-04 07:58 - 05965930 _____ C:\Users\Admin\Downloads\Overnight Income.rar
  709. 2016-06-03 19:06 - 2016-06-03 19:06 - 00215947 _____ C:\Users\Admin\Downloads\BTCExplosion.pdf
  710. 2016-06-03 15:48 - 2016-06-03 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\35MM
  711. 2016-06-03 15:47 - 2016-06-03 15:48 - 00000000 ____D C:\35MM
  712. 2016-06-03 15:46 - 2016-06-03 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtubers Life v0.7.7
  713. 2016-06-03 15:43 - 2016-06-20 18:59 - 00000000 ____D C:\Users\Admin\Desktop\Windows
  714. 2016-06-03 15:42 - 2016-06-03 15:42 - 00000000 ____D C:\Program Files (x86)\Youtubers Life v0.7.7
  715. 2016-06-03 13:44 - 2016-06-03 13:44 - 01230336 _____ C:\Users\Admin\Desktop\RoyalViewer.exe
  716. 2016-06-03 12:03 - 2016-06-03 12:03 - 00464384 _____ C:\Users\Admin\Desktop\EZfrags v8.33.exe
  717. 2016-06-03 08:52 - 2016-06-03 08:58 - 00000000 ____D C:\Users\Admin\AppData\Local\midori
  718. 2016-06-03 08:52 - 2016-06-03 08:58 - 00000000 ____D C:\Users\Admin\.dbus-keyrings
  719. 2016-06-03 08:52 - 2016-06-03 08:52 - 00000000 ____D C:\Users\Admin\AppData\Local\webkit
  720. 2016-06-03 08:50 - 2016-06-03 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Midori
  721. 2016-06-03 08:50 - 2016-06-03 08:51 - 00000000 ____D C:\Program Files (x86)\Midori
  722. 2016-06-03 08:43 - 2016-06-03 08:50 - 39535258 _____ C:\Users\Admin\Downloads\midori_0.5.11_32_.exe
  723. 2016-06-03 08:35 - 2016-06-03 08:35 - 00707354 _____ C:\WINDOWS\unins000.exe
  724. 2016-06-03 08:35 - 2016-06-03 08:35 - 00001529 _____ C:\WINDOWS\unins000.dat
  725. 2016-06-03 08:35 - 2016-06-03 08:35 - 00000000 ____D C:\WINDOWS\SysWOW64\GPBAK
  726. 2016-06-03 08:35 - 2008-04-14 02:11 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
  727. 2016-06-03 08:35 - 2001-08-23 13:00 - 00034871 _____ C:\WINDOWS\SysWOW64\gpedit.msc
  728. 2016-06-02 22:06 - 2016-06-02 22:07 - 17519307 _____ C:\Users\Admin\Downloads\youtube-outros.zip
  729. 2016-06-02 21:05 - 2016-06-02 21:06 - 00000000 ____D C:\Users\Admin\AppData\Roaming\HandBrake
  730. 2016-06-02 21:05 - 2016-06-02 21:05 - 00000000 ____D C:\Users\Admin\AppData\Roaming\HandBrake Team
  731. 2016-06-02 21:04 - 2016-06-02 21:04 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
  732. 2016-06-02 21:04 - 2016-06-02 21:04 - 00000000 ____D C:\Program Files\Handbrake
  733. 2016-06-02 21:02 - 2016-06-02 21:03 - 16520043 _____ C:\Users\Admin\Downloads\HandBrake-0.10.5-x86_64-Win_GUI-1.exe
  734. 2016-06-02 21:01 - 2016-06-02 21:01 - 00000000 ____D C:\Users\Admin\AppData\Local\fontconfig
  735. 2016-06-02 20:52 - 2016-06-02 20:52 - 00000096 _____ C:\Users\Admin\AppData\Roaming\settings.xml
  736. 2016-06-02 20:52 - 2016-06-02 20:52 - 00000000 ____D C:\Users\Admin\Documents\convertedVideos
  737. 2016-06-02 20:52 - 2016-06-02 20:52 - 00000000 ____D C:\Users\Admin\AppData\Local\SkinSoft
  738. 2016-06-02 20:51 - 2016-06-02 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Mov To Mp4 Converter
  739. 2016-06-02 20:51 - 2016-06-02 20:51 - 00000000 ____D C:\Program Files (x86)\convertaudiofree
  740. 2016-06-02 20:49 - 2016-06-02 20:49 - 16742922 _____ (convertaudiofree) C:\Users\Admin\Downloads\movtomp4_setup.exe
  741. 2016-06-02 20:49 - 2016-06-02 20:49 - 00000000 ____D C:\Users\Admin\AppData\Roaming\convertaudiofree
  742. 2016-06-01 07:09 - 2016-06-14 23:21 - 00002294 ____H C:\Users\Admin\Documents\Default.rdp
  743. 2016-05-31 23:09 - 2016-06-01 00:00 - 00000000 ____D C:\Users\Admin\AppData\Roaming\WindSolutions
  744. 2016-05-31 23:09 - 2016-06-01 00:00 - 00000000 ____D C:\ProgramData\WindSolutions
  745. 2016-05-31 23:09 - 2016-05-31 23:09 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
  746. 2016-05-31 23:08 - 2016-05-31 23:09 - 06758512 _____ (WindSolutions) C:\Users\Admin\Downloads\Install_CopyTransControlCenter.exe
  747. 2016-05-31 22:05 - 2016-05-31 22:05 - 00000000 ____D C:\Users\Admin\AppData\Roaming\iMobie
  748. 2016-05-31 22:05 - 2016-05-31 22:05 - 00000000 ____D C:\Users\Admin\AppData\Local\iMobie_Inc
  749. 2016-05-31 22:05 - 2016-05-31 22:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
  750. 2016-05-31 22:05 - 2016-05-31 22:05 - 00000000 ____D C:\Program Files (x86)\iMobie
  751. 2016-05-31 22:04 - 2016-05-31 22:04 - 01074600 _____ (iMobie Inc.) C:\Users\Admin\Downloads\anytrans-setup.exe
  752. 2016-05-31 22:04 - 2016-05-31 22:04 - 01074600 _____ (iMobie Inc.) C:\Users\Admin\Downloads\anytrans-setup (1).exe
  753. 2016-05-31 12:27 - 2016-05-31 12:27 - 01814124 _____ C:\Users\Admin\Desktop\video-1464711104.mp4
  754. 2016-05-31 02:54 - 2016-05-31 02:54 - 00420545 _____ C:\Users\Admin\Downloads\enhance_views.xpi
  755. 2016-05-31 00:35 - 2016-05-31 01:53 - 00000000 ____D C:\UltraViews
  756. 2016-05-31 00:35 - 2016-05-31 01:31 - 00000000 ____D C:\Users\Admin\AppData\Local\Phantasiac
  757. 2016-05-31 00:35 - 2016-05-31 00:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraViews
  758. 2016-05-31 00:21 - 2016-05-31 00:35 - 27350710 _____ (Phantasiac ) C:\Users\Admin\Downloads\Setup UltraViews.exe
  759. 2016-05-30 17:08 - 2016-05-30 17:08 - 00003644 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-garall94@gmail.com
  760. 2016-05-30 17:05 - 2016-06-09 13:26 - 00000000 ____D C:\Users\Admin\Documents\Adobe
  761. 2016-05-30 17:05 - 2016-05-30 17:05 - 00001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
  762. 2016-05-30 16:50 - 2016-05-30 16:51 - 00000853 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt
  763. 2016-05-30 16:33 - 2016-05-30 16:40 - 00000000 ____D C:\Users\Admin\Downloads\Adobe Photoshop CC 2015 (20150529.r.88) (32+64Bit) + Crack
  764. 2016-05-29 21:28 - 2016-05-29 21:28 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Katapult
  765. 2016-05-29 20:07 - 2016-05-29 20:07 - 00000000 ____D C:\Users\Admin\Downloads\Malwarebytes Anti-Malware Premium 2.1.8.1057 Multilingual + KeyGen by FFF
  766. 2016-05-29 20:05 - 2016-05-29 20:06 - 00000000 ____D C:\Users\Admin\Downloads\Malwarebytes Anti-Malware v2.1.8.1057 + Serial
  767. 2016-05-29 19:38 - 2016-05-29 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WTFast
  768. 2016-05-29 19:38 - 2016-05-29 19:38 - 00000000 ____D C:\Program Files (x86)\WTFast
  769. 2016-05-29 19:38 - 2016-04-07 11:36 - 00037872 _____ (AAA Internet Publishing, Inc.) C:\WINDOWS\system32\Drivers\WtfEngineDrv.sys
  770. 2016-05-29 19:37 - 2016-05-29 19:38 - 25913088 _____ (Initex & AAA Internet Publishing ) C:\Users\Admin\Downloads\WTFastSetup.4.1.0.741.exe
  771. 2016-05-29 19:34 - 2016-05-29 19:39 - 00000000 ____D C:\Users\Admin\AppData\Local\AAA_Internet_Publishing,_
  772. 2016-05-29 19:34 - 2016-05-29 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WTFast Beta
  773. 2016-05-29 19:33 - 2016-05-29 19:35 - 00000000 ____D C:\Program Files (x86)\WTFast Beta
  774. 2016-05-29 16:15 - 2016-05-29 16:16 - 00001561 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Uninstall.lnk
  775. 2016-05-29 16:15 - 2016-05-29 16:15 - 00000000 ____D C:\Program Files (x86)\blackscriptz.club
  776. 2016-05-29 15:35 - 2016-05-29 15:37 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.5
  777. 2016-05-29 15:35 - 2016-05-29 15:35 - 00000000 ____D C:\Users\Admin\AppData\Local\Package Cache
  778. 2016-05-29 15:33 - 2016-05-29 15:34 - 28743504 _____ (Python Software Foundation) C:\Users\Admin\Downloads\python-3.5.1.exe
  779. 2016-05-29 14:56 - 2016-05-29 14:56 - 00007817 _____ C:\Users\Admin\Downloads\Garrette-Allen.pdf
  780. 2016-05-29 12:51 - 2016-05-29 12:51 - 05285376 _____ C:\Users\Admin\AppData\Roaming\chromedriver221.exe
  781. 2016-05-29 12:51 - 2016-05-29 12:51 - 00701954 _____ C:\Users\Admin\AppData\Roaming\WebDriver.FirefoxExt2530.zip
  782. 2016-05-29 12:51 - 2016-05-29 12:51 - 00034476 _____ C:\Users\Admin\AppData\Roaming\disable_webrtc-1.0.6.xpi
  783. 2016-05-29 12:51 - 2016-05-29 12:51 - 00000000 ____D C:\ProgramData\Isolated Storage
  784. 2016-05-29 12:50 - 2016-05-29 12:51 - 18587648 _____ (PhantomJS) C:\Users\Admin\AppData\Roaming\PhantomJSv211.exe
  785. 2016-05-29 12:48 - 2016-05-29 12:52 - 00000000 ____D C:\Users\Admin\AppData\Roaming\UBot Studio
  786. 2016-05-29 12:47 - 2016-05-29 12:56 - 00000000 ____D C:\Program Files (x86)\CoinCollector
  787. 2016-05-29 12:47 - 2016-05-29 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoinCollector
  788. 2016-05-29 12:47 - 2016-05-29 12:47 - 00000000 ____D C:\Users\Admin\AppData\Roaming\AutoClickBots
  789. 2016-05-27 15:33 - 2016-05-27 15:33 - 06541784 _____ (Tim Kosse) C:\Users\Admin\Downloads\FileZilla_3.18.0_win64-setup.exe
  790. 2016-05-26 19:03 - 2016-05-26 19:03 - 00088263 _____ C:\Users\Admin\Downloads\2015TurboTaxReturn.pdf
  791. 2016-05-26 09:40 - 2016-05-26 09:41 - 35414201 _____ C:\Users\Admin\Downloads\Template 9 AuraOutro.zip
  792. 2016-05-26 09:12 - 2016-05-26 09:12 - 00002600 _____ C:\Users\Admin\Documents\Register Vegas Pro.htm
  793. 2016-05-26 09:02 - 2016-05-26 09:02 - 00000000 ____D C:\Users\Admin\Downloads\Sony Vegas Pro 13.0 Build 453 (x64) + Patch DI
  794. 2016-05-26 09:01 - 2016-05-26 09:01 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Sony Creative Software Inc
  795. 2016-05-26 08:59 - 2016-05-26 08:59 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Publish Providers
  796. 2016-05-26 08:51 - 2016-05-26 09:08 - 00006322 _____ C:\WINDOWS\system32\--traceoff
  797. 2016-05-26 08:51 - 2016-05-26 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
  798. 2016-05-26 08:51 - 2016-05-26 08:51 - 00000000 _____ C:\WINDOWS\system32\--debugoff
  799. 2016-05-26 08:50 - 2016-05-26 08:57 - 00000000 ____D C:\Users\Admin\AppData\Local\Sony
  800. 2016-05-26 08:50 - 2016-05-26 08:50 - 00000000 ____D C:\ProgramData\Sony
  801. 2016-05-26 08:50 - 2016-05-26 08:50 - 00000000 ____D C:\Program Files\Sony
  802. 2016-05-26 08:50 - 2016-05-26 08:50 - 00000000 ____D C:\Program Files (x86)\Sony
  803. 2016-05-26 08:49 - 2016-05-26 09:06 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Sony
  804. 2016-05-26 08:43 - 2016-05-26 08:43 - 00296253 ____R C:\Users\Admin\Downloads\Affiliate Marketing Secrets to Freedom.pdf
  805. 2016-05-26 08:38 - 2016-05-26 08:39 - 00000000 ____D C:\Users\Admin\Downloads\Sony Vegas Pro 13.0 build 290 (64 bit) Multilingual [ChingLiu]
  806. 2016-05-25 14:52 - 2016-05-25 14:52 - 00000000 ____D C:\Users\Admin\Documents\OilEnterprise
  807. 2016-05-25 14:25 - 2016-05-25 14:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\astragon Entertainment GmbH
  808. 2016-05-25 14:24 - 2016-05-25 14:24 - 00000000 ____D C:\Program Files (x86)\astragon Entertainment GmbH
  809. 2016-05-25 13:24 - 2016-05-25 13:33 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
  810. 2016-05-25 13:24 - 2016-05-25 13:32 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
  811. 2016-05-25 13:18 - 2016-05-25 13:18 - 00000000 ____D C:\Users\Admin\AppData\Local\Ndemic Creations
  812. 2016-05-24 22:07 - 2016-05-24 22:07 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\SquareEnix
  813. 2016-05-24 22:06 - 2016-05-24 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FINAL FANTASY IX
  814. 2016-05-24 21:34 - 2016-05-24 21:59 - 00000000 ____D C:\Users\Admin\Downloads\FINAL.FANTASY.IX-CODEX
  815. 2016-05-24 21:32 - 2016-05-25 07:50 - 00000000 ____D C:\Users\Admin\Downloads\3DMGAME-Plague.Inc.Evolved.v1.0.1.Cracked-3DM
  816. 2016-05-24 19:46 - 2016-05-24 19:46 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Nvizzio Creations
  817. 2016-05-24 19:39 - 2016-05-24 19:41 - 00000000 ____D C:\Users\Admin\Downloads\Oil.Enterprise-SKIDROW
  818. 2016-05-24 19:33 - 2016-05-24 19:33 - 00030913 _____ C:\Users\Admin\Downloads\Oil.Enterprise-SKIDROW-[rarbg.com].torrent
  819. 2016-05-24 19:27 - 2016-05-24 19:40 - 00000000 ____D C:\Users\Admin\Downloads\3DMGAME-RollerCoaster.Tycoon.World.Deluxe.Edition.Early.Access.With.Update.4.Cracked-3DM
  820. 2016-05-24 19:26 - 2016-05-24 19:26 - 00036488 _____ C:\Users\Admin\Downloads\RollerCoaster.Tycoon.Deluxe.Edition.Incl.Update.4.torrent
  821. 2016-05-24 17:31 - 2016-06-21 13:54 - 00000000 ____D C:\Users\Admin\Desktop\Photoshop SHit
  822. 2016-05-23 14:56 - 2016-05-23 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bighits4U Viewer
  823. 2016-05-23 14:56 - 2016-05-23 14:56 - 00000000 ____D C:\Program Files (x86)\Bighits4U Viewer 3.0
  824. 2016-05-23 14:54 - 2016-05-23 14:56 - 20041775 _____ (BigHits4U ) C:\Users\Admin\Downloads\Bighits4U Viewer Setup 3.0.exe
  825. 2016-05-23 13:03 - 2016-05-29 21:28 - 00000000 ____D C:\Users\Admin\AppData\Roaming\SmartSteamEmu
  826. 2016-05-23 13:03 - 2016-05-23 13:03 - 00000000 ____D C:\Users\Admin\Documents\U-Play online
  827. 2016-05-23 13:03 - 2016-05-23 13:03 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\U-Play online
  828. 2016-05-23 13:00 - 2016-05-23 13:01 - 00000000 ____D C:\youtuberslife
  829. 2016-05-23 12:27 - 2016-06-01 06:50 - 00000000 ____D C:\Users\Admin\AppData\Local\CrossCode
  830. 2016-05-23 12:25 - 2016-05-23 12:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrossCode v0.6.1
  831. 2016-05-23 12:25 - 2016-05-23 12:25 - 00000000 ____D C:\Program Files (x86)\CrossCode v0.6.1
  832. 2016-05-23 12:09 - 2016-05-23 13:00 - 674235217 _____ C:\Users\Admin\Downloads\YoutubersLifewwwskidrowrepackscom.exe
  833. 2016-05-23 09:52 - 2016-06-18 19:20 - 00000000 ____D C:\Users\Admin\Desktop\Streaming
  834. 2016-05-23 09:48 - 2016-05-23 09:48 - 05227019 _____ C:\Users\Admin\Downloads\namebench-1.3.1-Windows.exe
  835.  
  836. ==================== One Month Modified files and folders ========
  837.  
  838. (If an entry is included in the fixlist, the file/folder will be moved.)
  839.  
  840. 2016-06-22 14:18 - 2015-07-16 14:53 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BB5CA899-0B9C-44DA-AF07-1A9076B8FA23}
  841. 2016-06-22 14:12 - 2016-05-20 10:39 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
  842. 2016-06-22 14:12 - 2015-08-04 12:18 - 00000000 __SHD C:\Users\Admin\IntelGraphicsProfiles
  843. 2016-06-22 14:12 - 2015-07-28 18:04 - 00000916 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
  844. 2016-06-22 14:11 - 2016-01-26 06:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
  845. 2016-06-22 14:09 - 2016-01-26 05:45 - 00000000 ____D C:\Users\Admin
  846. 2016-06-22 14:09 - 2015-10-30 02:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
  847. 2016-06-22 14:07 - 2015-09-01 11:45 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
  848. 2016-06-22 10:53 - 2015-07-28 18:04 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
  849. 2016-06-22 10:48 - 2016-01-24 11:56 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
  850. 2016-06-22 08:53 - 2015-10-30 03:24 - 00000000 ___HD C:\Program Files\WindowsApps
  851. 2016-06-22 08:53 - 2015-10-30 03:24 - 00000000 ____D C:\WINDOWS\AppReadiness
  852. 2016-06-21 17:41 - 2016-01-26 05:39 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
  853. 2016-06-21 13:54 - 2016-05-19 22:00 - 00000132 _____ C:\Users\Admin\AppData\Roaming\Adobe PNG Format CS6 Prefs
  854. 2016-06-21 13:03 - 2016-05-19 21:00 - 00000000 ___RD C:\Users\Admin\Creative Cloud Files
  855. 2016-06-21 13:03 - 2016-05-19 21:00 - 00000000 ____D C:\ProgramData\boost_interprocess
  856. 2016-06-21 12:49 - 2015-10-05 20:38 - 00000000 ____D C:\Program Files (x86)\Steam
  857. 2016-06-21 12:38 - 2016-04-02 12:22 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
  858. 2016-06-21 12:29 - 2016-05-17 13:55 - 00390564 _____ C:\Users\Admin\Documents\starburn.txt
  859. 2016-06-21 11:44 - 2016-05-19 19:42 - 00000000 ____D C:\Users\Admin\AppData\Roaming\obs-studio
  860. 2016-06-21 11:30 - 2015-07-16 14:48 - 00000000 ____D C:\Users\Admin\Documents\Youcam
  861. 2016-06-20 19:09 - 2016-01-23 16:27 - 00000000 ____D C:\Users\Admin\AppData\Roaming\BitTorrent
  862. 2016-06-20 18:47 - 2015-10-30 03:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  863. 2016-06-20 18:45 - 2015-08-04 14:05 - 00000000 ____D C:\Program Files\Microsoft Office 15
  864. 2016-06-20 09:44 - 2015-10-30 03:24 - 00000000 ____D C:\WINDOWS\rescache
  865. 2016-06-19 12:16 - 2016-05-14 13:52 - 00000000 ____D C:\Games
  866. 2016-06-19 11:28 - 2016-05-17 16:54 - 00000000 ____D C:\Users\Admin\AppData\Local\UNDERTALE
  867. 2016-06-18 11:55 - 2016-02-09 22:55 - 00002279 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  868. 2016-06-18 11:55 - 2016-02-09 22:55 - 00002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  869. 2016-06-17 13:31 - 2015-10-30 03:11 - 00000000 ____D C:\WINDOWS\CbsTemp
  870. 2016-06-16 11:32 - 2016-01-26 05:44 - 00972168 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  871. 2016-06-16 11:32 - 2015-10-30 03:21 - 00000000 ____D C:\WINDOWS\INF
  872. 2016-06-16 10:46 - 2015-07-16 17:38 - 00000000 __RHD C:\Users\Public\AccountPictures
  873. 2016-06-16 10:42 - 2016-01-26 05:35 - 05022616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  874. 2016-06-16 10:37 - 2015-10-30 03:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
  875. 2016-06-16 10:37 - 2015-10-30 03:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
  876. 2016-06-16 10:37 - 2015-10-30 03:24 - 00000000 ____D C:\WINDOWS\bcastdvr
  877. 2016-06-16 09:23 - 2016-05-22 20:21 - 00000000 ____D C:\Users\Admin\AppData\Local\{797F4F23-5DD7-239B-304F-06731427FAEB}
  878. 2016-06-16 09:22 - 2016-05-17 16:11 - 00000155 _____ C:\Users\Admin\AppData\Roaming\WB.CFG
  879. 2016-06-14 23:07 - 2015-10-30 03:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
  880. 2016-06-14 21:55 - 2015-10-30 03:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
  881. 2016-06-14 20:10 - 2015-07-20 13:32 - 00000000 ____D C:\WINDOWS\system32\MRT
  882. 2016-06-14 17:41 - 2015-07-20 13:32 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  883. 2016-06-14 14:33 - 2015-10-30 03:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
  884. 2016-06-14 14:33 - 2015-10-30 03:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
  885. 2016-06-14 07:33 - 2016-02-05 11:44 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
  886. 2016-06-14 07:30 - 2016-02-05 11:43 - 00000000 ___RD C:\Program Files (x86)\Skype
  887. 2016-06-14 07:30 - 2016-02-05 11:43 - 00000000 ____D C:\ProgramData\Skype
  888. 2016-06-13 17:06 - 2016-02-14 00:42 - 00000000 ____D C:\Program Files (x86)\Adobe
  889. 2016-06-13 10:13 - 2016-02-10 19:52 - 00000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
  890. 2016-06-12 19:13 - 2016-05-18 22:45 - 00000000 ____D C:\Users\Admin\Desktop\OfflineStorage
  891. 2016-06-12 16:14 - 2016-05-17 19:08 - 00000000 ____D C:\Users\Admin\Desktop\64 Bit
  892. 2016-06-11 21:26 - 2015-10-15 22:05 - 00000000 ____D C:\ProgramData\Package Cache
  893. 2016-06-11 16:25 - 2015-10-30 05:07 - 00000000 ____D C:\WINDOWS\ShellNew
  894. 2016-06-09 22:04 - 2015-10-30 03:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
  895. 2016-06-09 21:44 - 2016-01-28 13:01 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
  896. 2016-06-09 20:34 - 2016-01-26 08:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
  897. 2016-06-09 13:26 - 2015-07-16 14:45 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
  898. 2016-06-08 23:07 - 2015-07-16 14:45 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
  899. 2016-06-07 10:27 - 2016-02-14 01:43 - 00000518 _____ C:\Users\Admin\Desktop\bitcoin.txt
  900. 2016-06-06 18:49 - 2015-10-02 20:03 - 00000258 __RSH C:\ProgramData\ntuser.pol
  901. 2016-06-06 18:47 - 2015-10-30 03:24 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
  902. 2016-06-06 14:20 - 2016-05-17 14:13 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Free Audio Editor
  903. 2016-06-04 07:11 - 2016-02-14 00:47 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
  904. 2016-06-04 07:11 - 2016-02-14 00:47 - 00002121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
  905. 2016-06-03 08:35 - 2015-10-30 03:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
  906. 2016-05-30 17:05 - 2016-02-14 00:49 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
  907. 2016-05-30 17:01 - 2016-05-19 20:28 - 00000000 ____D C:\Program Files\Common Files\Adobe
  908. 2016-05-30 16:57 - 2016-05-19 20:36 - 00000000 ____D C:\Program Files\Adobe
  909. 2016-05-30 16:55 - 2016-02-14 00:21 - 00000000 ____D C:\ProgramData\Adobe
  910. 2016-05-28 01:55 - 2016-01-26 05:39 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
  911. 2016-05-27 15:34 - 2016-03-02 10:06 - 00000000 ____D C:\Users\Admin\AppData\Roaming\FileZilla
  912. 2016-05-26 21:42 - 2015-10-30 03:24 - 00000000 ____D C:\WINDOWS\system32\NDF
  913. 2016-05-26 14:09 - 2015-10-30 03:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
  914. 2016-05-25 07:36 - 2016-05-16 11:52 - 00000000 ____D C:\Users\Admin\AppData\Roaming\OBS
  915. 2016-05-25 07:35 - 2016-05-20 10:36 - 00001182 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
  916. 2016-05-25 07:35 - 2016-05-19 20:39 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
  917. 2016-05-25 07:35 - 2016-05-19 20:37 - 00001291 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk
  918. 2016-05-25 07:35 - 2016-05-19 20:36 - 00001133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
  919. 2016-05-25 07:35 - 2016-05-19 20:35 - 00001253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk
  920. 2016-05-25 07:35 - 2016-05-19 20:30 - 00001607 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
  921. 2016-05-25 07:35 - 2016-05-19 20:30 - 00001437 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
  922. 2016-05-25 07:35 - 2016-05-19 19:36 - 00001286 _____ C:\Users\Public\Desktop\OBS Studio.lnk
  923. 2016-05-25 07:35 - 2016-05-17 14:13 - 00001370 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Free Audio Editor 2016.lnk
  924. 2016-05-25 07:35 - 2016-02-07 11:01 - 00001111 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
  925. 2016-05-25 07:35 - 2016-01-30 16:38 - 00001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
  926. 2016-05-25 07:35 - 2016-01-28 13:01 - 00001454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
  927. 2016-05-25 07:35 - 2016-01-28 13:01 - 00001385 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
  928. 2016-05-25 07:35 - 2016-01-26 06:00 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
  929. 2016-05-25 07:35 - 2015-12-18 08:17 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
  930. 2016-05-25 07:35 - 2015-11-12 00:31 - 00001279 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4.lnk
  931. 2016-05-25 07:35 - 2015-08-10 12:21 - 00001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
  932. 2016-05-25 07:35 - 2015-08-04 12:29 - 00002411 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  933. 2016-05-25 07:35 - 2015-07-18 16:07 - 00002955 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HitLeap Viewer.lnk
  934. 2016-05-25 07:35 - 2014-08-27 02:10 - 00002531 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - hp.lnk
  935. 2016-05-25 07:31 - 2015-10-30 05:02 - 00000000 ____D C:\WINDOWS\DigitalLocker
  936. 2016-05-23 23:54 - 2015-07-28 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
  937.  
  938. ==================== Files in the root of some directories =======
  939.  
  940. 2016-06-21 12:35 - 2016-06-21 12:35 - 0000068 ___SH () C:\Users\Admin\AppData\Roaming\.Identifier
  941. 2016-05-19 22:00 - 2016-06-21 13:54 - 0000132 _____ () C:\Users\Admin\AppData\Roaming\Adobe PNG Format CS6 Prefs
  942. 2016-05-29 12:51 - 2016-05-29 12:51 - 5285376 _____ () C:\Users\Admin\AppData\Roaming\chromedriver221.exe
  943. 2016-05-29 12:51 - 2016-05-29 12:51 - 0034476 _____ () C:\Users\Admin\AppData\Roaming\disable_webrtc-1.0.6.xpi
  944. 2016-06-21 12:35 - 2016-06-21 12:35 - 0003584 _____ () C:\Users\Admin\AppData\Roaming\FXvPQWnzcgrfBtxz
  945. 2016-06-21 10:00 - 2016-06-20 13:29 - 0463376 ___SH () C:\Users\Admin\AppData\Roaming\OhUEVIATEUUP
  946. 2016-06-21 10:00 - 2016-06-20 13:29 - 0048549 ___SH () C:\Users\Admin\AppData\Roaming\PDRcIagNaUiFGWTVfQS
  947. 2016-06-21 10:00 - 2016-06-20 13:29 - 0750320 ___SH (AutoIt Team) C:\Users\Admin\AppData\Roaming\PDRcIagNaUiFGWTVfQSeN.cmd
  948. 2016-05-29 12:50 - 2016-05-29 12:51 - 18587648 _____ (PhantomJS) C:\Users\Admin\AppData\Roaming\PhantomJSv211.exe
  949. 2016-06-02 20:52 - 2016-06-02 20:52 - 0000096 _____ () C:\Users\Admin\AppData\Roaming\settings.xml
  950. 2016-06-20 10:41 - 2016-06-20 00:31 - 1978696 __RSH (PhotoFiltre) C:\Users\Admin\AppData\Roaming\updatevalid.exe
  951. 2016-06-21 12:35 - 2016-06-21 12:35 - 0086016 _____ () C:\Users\Admin\AppData\Roaming\VvKkIsaTynXg
  952. 2016-05-17 16:11 - 2016-06-16 09:22 - 0000155 _____ () C:\Users\Admin\AppData\Roaming\WB.CFG
  953. 2016-05-29 12:51 - 2016-05-29 12:51 - 0701954 _____ () C:\Users\Admin\AppData\Roaming\WebDriver.FirefoxExt2530.zip
  954. 2016-03-01 19:01 - 2016-03-20 14:17 - 0000600 _____ () C:\Users\Admin\AppData\Local\PUTTY.RND
  955. 2015-12-13 00:46 - 2015-12-13 00:18 - 0421376 _____ () C:\Users\Admin\AppData\Local\TempBustabit Predictions.exe
  956. 2016-06-20 10:35 - 2016-06-20 10:35 - 0001587 __RSH () C:\ProgramData\Valid Update
  957.  
  958. Some files in TEMP:
  959. ====================
  960. C:\Users\Admin\AppData\Local\Temp\AAMHelper.exe
  961. C:\Users\Admin\AppData\Local\Temp\AdobeApplicationManager.exe
  962. C:\Users\Admin\AppData\Local\Temp\AppandoraDeviceService.exe
  963. C:\Users\Admin\AppData\Local\Temp\hss_update.exe
  964. C:\Users\Admin\AppData\Local\Temp\i4jdel0.exe
  965. C:\Users\Admin\AppData\Local\Temp\jansi-32-1612521951201275350.dll
  966. C:\Users\Admin\AppData\Local\Temp\jansi-32-775454057711301090.dll
  967. C:\Users\Admin\AppData\Local\Temp\jscrcap2_libNativeApi_x86.dll
  968. C:\Users\Admin\AppData\Local\Temp\jscrcap_libNativeApi_x86.dll
  969. C:\Users\Admin\AppData\Local\Temp\McCSPInstall.dll
  970. C:\Users\Admin\AppData\Local\Temp\mccspuninstall.exe
  971. C:\Users\Admin\AppData\Local\Temp\Modio Launcher.exe
  972. C:\Users\Admin\AppData\Local\Temp\namebench.exe
  973. C:\Users\Admin\AppData\Local\Temp\Protect096753e7.dll
  974. C:\Users\Admin\AppData\Local\Temp\python27.dll
  975. C:\Users\Admin\AppData\Local\Temp\RoyalViewer.exe
  976. C:\Users\Admin\AppData\Local\Temp\tcl85.dll
  977. C:\Users\Admin\AppData\Local\Temp\tk85.dll
  978.  
  979.  
  980. ==================== Bamital & volsnap =================
  981.  
  982. (There is no automatic fix for files that do not pass verification.)
  983.  
  984. C:\WINDOWS\system32\winlogon.exe => File is digitally signed
  985. C:\WINDOWS\system32\wininit.exe => File is digitally signed
  986. C:\WINDOWS\explorer.exe => File is digitally signed
  987. C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
  988. C:\WINDOWS\system32\svchost.exe => File is digitally signed
  989. C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
  990. C:\WINDOWS\system32\services.exe => File is digitally signed
  991. C:\WINDOWS\system32\User32.dll => File is digitally signed
  992. C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
  993. C:\WINDOWS\system32\userinit.exe => File is digitally signed
  994. C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
  995. C:\WINDOWS\system32\rpcss.dll => File is digitally signed
  996. C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
  997. C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
  998. C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
  999.  
  1000.  
  1001. LastRegBack: 2016-06-19 11:55
  1002.  
  1003. ==================== End of FRST.txt ============================
  1004.  
  1005. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-06-2016 01
  1006. Ran by Admin (2016-06-22 14:18:58)
  1007. Running from C:\Users\Admin\Desktop
  1008. Windows 10 Home Version 1511 (X64) (2016-01-26 10:22:00)
  1009. Boot Mode: Normal
  1010. ==========================================================
  1011.  
  1012.  
  1013. ==================== Accounts: =============================
  1014.  
  1015. Admin (S-1-5-21-1238564941-3387910719-2561191832-1001 - Administrator - Enabled) => C:\Users\Admin
  1016. Administrator (S-1-5-21-1238564941-3387910719-2561191832-500 - Administrator - Disabled)
  1017. DefaultAccount (S-1-5-21-1238564941-3387910719-2561191832-503 - Limited - Disabled)
  1018. Guest (S-1-5-21-1238564941-3387910719-2561191832-501 - Limited - Disabled)
  1019. HomeGroupUser$ (S-1-5-21-1238564941-3387910719-2561191832-1003 - Limited - Enabled)
  1020.  
  1021. ==================== Security Center ========================
  1022.  
  1023. (If an entry is included in the fixlist, it will be removed.)
  1024.  
  1025. AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  1026. AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  1027.  
  1028. ==================== Installed Programs ======================
  1029.  
  1030. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  1031.  
  1032. 35MM (HKLM-x32\...\35MM_is1) (Version: - )
  1033. 4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1034. 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
  1035. 8BitBoy (HKLM\...\Steam App 296910) (Version: - AwesomeBlade)
  1036. Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.30.1 - Mirillis)
  1037. Active Directory Authentication Library for SQL Server (Version: 13.0.1100.286 - Microsoft Corporation) Hidden
  1038. Active Directory Authentication Library for SQL Server (x86) (x32 Version: 13.0.1100.286 - Microsoft Corporation) Hidden
  1039. Acunetix Web Vulnerability Scanner 9.5 (HKLM-x32\...\{ffec63c3-090d-45ea-afd7-eab07edb5822}_is1) (Version: 9.5 - Acunetix)
  1040. Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
  1041. Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated)
  1042. Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
  1043. Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated)
  1044. Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
  1045. Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
  1046. Angry Video Game Nerd II: ASSimilation (HKLM\...\YW5ncnl2aWRlb2dhbWVuZXJkaWlhc3NpbWlsYXRpb24_is1) (Version: 1 - )
  1047. Anno 2070 (HKLM-x32\...\Steam App 48240) (Version: - Blue Byte)
  1048. AnyTrans (HKLM-x32\...\AnyTrans) (Version: 4.9.5.0 - iMobie Inc.)
  1049. AOMEI Partition Assistant Standard Edition 6.0 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
  1050. Appandora version 2.1.7 (HKLM-x32\...\{3BA67286-845D-46A7-9A58-FA8B7897BC34}_is1) (Version: 2.1.7 - Appandora, Inc.)
  1051. Apple Application Support (32-bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
  1052. Apple Application Support (64-bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
  1053. Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
  1054. Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
  1055. Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{981F324E-98F4-4784-B76F-04E92039F3F6}) (Version: 5.2.60328.3 - Microsoft Corporation)
  1056. Aspire YouTube Viewer 1.1 (HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\3d971c6241aae6be) (Version: 1.0.0.1 - Aspire YouTube Viewer 1.1)
  1057. AutoIt v3.3.14.2 (HKLM-x32\...\AutoItv3) (Version: 3.3.14.2 - AutoIt Team)
  1058. AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
  1059. Azkend 2: The World Beneath (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1060. Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
  1061. AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
  1062. Barn Yarn Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
  1063. Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
  1064. Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1065. Bighits4U Viewer 3.0 (HKLM-x32\...\{899C05FE-0136-468A-A223-48A02ED91255}_is1) (Version: 3.0 - BigHits4U)
  1066. BitTorrent (HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\BitTorrent) (Version: 7.9.7.42331 - BitTorrent Inc.)
  1067. Black Chocobo (HKLM-x32\...\Black_Chocobo) (Version: - )
  1068. Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
  1069. Blueprint Tycoon (HKLM\...\Steam App 454060) (Version: - Endless Loop Studios)
  1070. Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
  1071. Build-a-lot Mysteries (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1072. Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
  1073. Cabela's® Hunting Expeditions (HKLM-x32\...\Steam App 214210) (Version: - Fun Labs)
  1074. Cheat Engine 6.5 (HKLM-x32\...\Cheat Engine 6.5_is1) (Version: - Cheat Engine)
  1075. Chromium (HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\Chromium) (Version: 46.0.2480.0 - Chromium)
  1076. CoinCollector (HKLM-x32\...\CoinCollector 4.0) (Version: 4.0 - AutoClickBots)
  1077. CoinCollector (x32 Version: 4.0 - AutoClickBots) Hidden
  1078. CopyTrans Control Center Uninstall Only (HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\CopyTrans Suite) (Version: 4.008 - WindSolutions)
  1079. Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
  1080. CrossCode v0.6.1 version v0.6.1 (HKLM-x32\...\{C8117EF7-6643-4E78-B0C4-1AF9815EE832}_is1) (Version: v0.6.1 - CrossCode)
  1081. Curse at Twilight (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1082. CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.)
  1083. Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4.4824 - CyberLink Corp.)
  1084. CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.6.3821 - CyberLink Corp.)
  1085. CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.6.3912 - CyberLink Corp.)
  1086. CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
  1087. CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
  1088. D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
  1089. Dark Souls III (HKLM-x32\...\Dark Souls III_is1) (Version: - )
  1090. Delicious - Emily's Wonder Wedding Premium Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
  1091. Deus Ex: Human Revolution (HKLM-x32\...\Steam App 28050) (Version: - Eidos Montreal)
  1092. DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
  1093. Doorways: The Underworld (HKLM\...\Steam App 311250) (Version: - Saibot Studios)
  1094. Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
  1095. Dotfuscator and Analytics Community Edition 5.19.1 (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden
  1096. Ellipse (HKLM-x32\...\{CF04F1C0-75FA-4D81-A25F-423D291878C2}) (Version: 1.0.502 - MxS Elite)
  1097. Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
  1098. Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
  1099. Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1100. FileZilla Client 3.16.0 (HKLM-x32\...\FileZilla Client) (Version: 3.16.0 - Tim Kosse)
  1101. FINAL FANTASY IX (HKLM-x32\...\FINAL FANTASY IX_is1) (Version: - )
  1102. FINAL FANTASY VII (HKLM-x32\...\Steam App 39140) (Version: - Square Enix)
  1103. Fishdom 3: Collector's Edition (x32 Version: 3.0.2.38 - WildTangent) Hidden
  1104. Five Nights at Freddys 4 (HKLM-x32\...\Five Nights at Freddys 4_is1) (Version: - )
  1105. Fort Defense (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1106. Free Audio Editor 2016 v9.3.3 (HKLM-x32\...\Free Audio Editor 2016_is1) (Version: - Copyright(C) 2005-2016 FAEMedia, Inc.)
  1107. Free Mov To Mp4 Converter (HKLM-x32\...\{1AAD824F-A64E-43EB-8ADE-FFC84E3A6E8C}) (Version: 1.0.0 - convertaudiofree)
  1108. Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version: - Greenheart Games)
  1109. Git version 2.8.3 (HKLM\...\Git_is1) (Version: 2.8.3 - The Git Development Community)
  1110. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
  1111. Google Drive (HKLM-x32\...\{709316AD-161C-4D5C-9AE7-0B3A822DA271}) (Version: 1.30.2170.0459 - Google, Inc.)
  1112. Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
  1113. Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
  1114. gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard)
  1115. HACKNET (HKLM-x32\...\HACKNET1.0) (Version: 1.0 - SKIDROWREPACKS.com)
  1116. HandBrake 0.10.5 (HKLM-x32\...\HandBrake) (Version: 0.10.5 - )
  1117. Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
  1118. HitLeap Viewer 2.8 (HKLM-x32\...\{31B12C11-AE4E-479F-8D6D-242DC265368D}) (Version: 2.8 - HitLeap Ltd.)
  1119. HP Documentation (HKLM-x32\...\{DCB0919F-F0A6-4C63-800F-B6825D6C0434}) (Version: 1.1.0.0 - Hewlett-Packard)
  1120. HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7493.4758 - Hewlett-Packard)
  1121. HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
  1122. HP Support Assistant (HKLM-x32\...\{8C696B4B-6AB1-44BC-9416-96EAC474CABE}) (Version: 7.5.2.12 - Hewlett-Packard Company)
  1123. HP System Event Utility (HKLM-x32\...\{DEF23826-DB71-4654-BC00-D5D6C20802EA}) (Version: 1.1.4 - Hewlett-Packard Company)
  1124. HP Utility Center (HKLM\...\{82E6836B-9400-4965-9FD2-46BD64D8BE41}) (Version: 2.4.7 - Hewlett-Packard Company)
  1125. HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
  1126. IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
  1127. IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - )
  1128. IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - )
  1129. Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
  1130. Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
  1131. Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
  1132. Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.0.0.1002 - Intel Corporation)
  1133. Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
  1134. iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
  1135. Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
  1136. Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1137. Joining Hands 2 (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1138. King Oddball (x32 Version: 3.0.2.48 - WildTangent) Hidden
  1139. Lost in Reefs 2 (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1140. LUXOR Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1141. Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
  1142. Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
  1143. Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
  1144. Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
  1145. Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
  1146. Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
  1147. Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
  1148. Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
  1149. Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
  1150. Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
  1151. Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
  1152. Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
  1153. Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
  1154. Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25123 - Microsoft Corporation)
  1155. Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4833.1001 - Microsoft Corporation)
  1156. Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
  1157. Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
  1158. Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
  1159. Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
  1160. Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
  1161. Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
  1162. Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
  1163. Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
  1164. Microsoft SQL Server 2016 LocalDB RC0 (HKLM\...\{9CED5D08-5664-4668-A927-CD6C60C4175D}) (Version: 13.0.1100.286 - Microsoft Corporation)
  1165. Microsoft SQL Server 2016 Management Objects RC0 (HKLM-x32\...\{948B5F49-A57E-46B4-9F1E-145D7A9E66D7}) (Version: 13.0.1100.286 - Microsoft Corporation)
  1166. Microsoft SQL Server 2016 Management Objects RC0 (x64) (HKLM\...\{F6F8053F-D328-4ACA-93A1-A49E495899F2}) (Version: 13.0.1100.286 - Microsoft Corporation)
  1167. Microsoft SQL Server 2016 T-SQL Language Service RC0 (HKLM-x32\...\{1852BD30-570B-4E47-8752-461448E8E250}) (Version: 13.0.12000.52 - Microsoft Corporation)
  1168. Microsoft SQL Server 2016 T-SQL ScriptDom RC0 (HKLM\...\{D9F55D00-A8AB-4518-A56E-D9D5E615542A}) (Version: 13.0.1100.286 - Microsoft Corporation)
  1169. Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
  1170. Microsoft SQL Server Data Tools - enu (14.0.60311.1) (HKLM-x32\...\{28292CA9-8D65-4E37-95A3-753EEB38F122}) (Version: 14.0.60311.1 - Microsoft Corporation)
  1171. Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
  1172. Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
  1173. Microsoft System CLR Types for SQL Server 2016 RC0 (HKLM\...\{495CC0B4-D4C3-4D87-8317-F66BA48C5552}) (Version: 13.0.1100.286 - Microsoft Corporation)
  1174. Microsoft System CLR Types for SQL Server 2016 RC0 (HKLM-x32\...\{3A87F9F2-D65D-4BA9-8459-E5BBE31EA64D}) (Version: 13.0.1100.286 - Microsoft Corporation)
  1175. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
  1176. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
  1177. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
  1178. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
  1179. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
  1180. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  1181. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
  1182. Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
  1183. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
  1184. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  1185. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
  1186. Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  1187. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  1188. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
  1189. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  1190. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
  1191. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  1192. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
  1193. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  1194. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
  1195. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  1196. Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
  1197. Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
  1198. Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
  1199. Microsoft Visual Studio Community 2015 with Update 2 (HKLM-x32\...\{04fa3a35-1f49-4510-8051-819cdc1e6e01}) (Version: 14.0.25123.0 - Microsoft Corporation)
  1200. Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
  1201. Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
  1202. Midori 0.5.11 (HKLM-x32\...\Midori) (Version: 0.5.11 - Christian Dywan)
  1203. Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
  1204. Modio 5 (HKLM-x32\...\{3DA224A5-666B-4941-8998-2F19C6D126A5}_is1) (Version: - GameTuts)
  1205. Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
  1206. Mozilla Firefox 46.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 en-US)) (Version: 46.0.1 - Mozilla)
  1207. Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
  1208. Mozilla Thunderbird 38.6.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 38.6.0 (x86 en-US)) (Version: 38.6.0 - Mozilla)
  1209. MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
  1210. MultiBit HD 0.1.4 (HKLM\...\6925-4794-5772-4956) (Version: 0.1.4 - Bitcoin Solutions Ltd)
  1211. Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
  1212. Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1213. OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.14.1 - OBS Project)
  1214. Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4833.1001 - Microsoft Corporation) Hidden
  1215. Office 15 Click-to-Run Licensing Component (Version: 15.0.4833.1001 - Microsoft Corporation) Hidden
  1216. Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4833.1001 - Microsoft Corporation) Hidden
  1217. Oil Enterprise (HKLM-x32\...\Oil Enterprise_is1) (Version: - )
  1218. Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
  1219. OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
  1220. Oracle VM VirtualBox 5.0.6 (HKLM\...\{D09FC154-2747-4BC8-838E-B2EC414C4F6A}) (Version: 5.0.6 - Oracle Corporation)
  1221. Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
  1222. Painkiller Hell and Damnation (HKLM-x32\...\Painkiller Hell and Damnation_is1) (Version: - )
  1223. Paint The Town Red version 0.3.8 (HKLM-x32\...\{B970ADBC-DEEC-4E83-BA6F-0F694C189B0B}_is1) (Version: 0.3.8 - Paint The Town Red)
  1224. paint.net (HKLM\...\{DADC2AF6-DC9F-4BCF-BFCE-DCEC16EF507C}) (Version: 4.0.9 - dotPDN LLC)
  1225. PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
  1226. Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1227. Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1228. Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1229. Pokki Download Helper (HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\PokkiDownloadHelper) (Version: 1.3.1.289 - Pokki)
  1230. Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
  1231. PowerISO (HKLM-x32\...\PowerISO) (Version: 6.5 - Power Software Ltd)
  1232. PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
  1233. Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
  1234. Prerequisites for SSDT RC0 (HKLM-x32\...\{AB72EB1C-9CF4-4274-984D-5EDA8BF37A08}) (Version: 13.0.1100.286 - Microsoft Corporation)
  1235. Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software)
  1236. Python 3.5.1 (32-bit) (HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\{c39d559b-aa83-4476-ba20-988a35a1199a}) (Version: 3.5.1150.0 - Python Software Foundation)
  1237. Python 3.5.1 Core Interpreter (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1238. Python 3.5.1 Development Libraries (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1239. Python 3.5.1 Documentation (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1240. Python 3.5.1 Executables (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1241. Python 3.5.1 Launcher (32-bit) (HKLM-x32\...\{17778F7B-FB5A-4A93-9719-D75BAF673498}) (Version: 3.5.150.0 - Python Software Foundation)
  1242. Python 3.5.1 pip Bootstrap (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1243. Python 3.5.1 Standard Library (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1244. Python 3.5.1 Tcl/Tk Support (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1245. Python 3.5.1 Test Suite (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1246. Python 3.5.1 Utility Scripts (32-bit) (x32 Version: 3.5.1150.0 - Python Software Foundation) Hidden
  1247. Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.273.55 - Realtek Semiconductor Corp.)
  1248. Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
  1249. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
  1250. REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
  1251. Resource Tuner 2.05 (HKLM-x32\...\Resource Tuner_is1) (Version: 2.05 - Heaventools Software)
  1252. Ringtonesia Android Maker 3 (HKLM-x32\...\Ringtonesia Android Maker) (Version: 3 - Red Kawa)
  1253. Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
  1254. Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
  1255. Roslyn Language Services - x86 (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden
  1256. RPG Maker MV (HKLM-x32\...\RPGMV_is1) (Version: 1.0.0.0 - KADOKAWA)
  1257. RPG Tycoon (HKLM-x32\...\RPG Tycoon) (Version: - )
  1258. RuneScape Launcher 2.2.2 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.2 - Jagex Ltd)
  1259. SciTE4AutoIt3 16.306.1237.0 (HKLM-x32\...\SciTE4AutoIt3) (Version: 16.306.1237.0 - Jos van der Zande)
  1260. Sengoku (HKLM-x32\...\Steam App 73210) (Version: - Paradox Development Studio)
  1261. SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
  1262. Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
  1263. Solitaire Mystery Four Seasons (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1264. Source SDK Base 2013 Singleplayer (HKLM\...\Steam App 243730) (Version: - )
  1265. Sparkle 2 (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1266. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  1267. swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
  1268. Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
  1269. Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
  1270. Team Explorer for Microsoft Visual Studio 2015 Update 2 (x32 Version: 14.95.25118 - Microsoft) Hidden
  1271. Terramining Launcher v9.1 9.1 (HKLM-x32\...\Terramining Launcher v9.1 9.1) (Version: 9.1 - TerraminingMC)
  1272. TerraWorld Online - Reborn v2.2.7b (HKLM-x32\...\TerraWorld Online - Reborn v2.2.7b_is1) (Version: - TerraNovita Software BVBA)
  1273. Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
  1274. The Music Machine (HKLM\...\Steam App 359040) (Version: - David Szymanski)
  1275. The Sims 4 (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - )
  1276. The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.)
  1277. Total War: ROME II - Emperor Edition (HKLM-x32\...\Steam App 214950) (Version: - Creative Assembly)
  1278. Towns (HKLM-x32\...\Steam App 221020) (Version: - Xavi Canal, Ben Palgi)
  1279. Tubenoia Youtube Bot 1.0 (HKLM-x32\...\Tubenoia Youtube Bot) (Version: 1.0 - Youtube Bots)
  1280. TypeScript Power Tool (x32 Version: 1.8.9.0 - Microsoft Corporation) Hidden
  1281. TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.8.31.0 - Microsoft Corporation) Hidden
  1282. Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
  1283. UltraViews version 1.1 (HKLM-x32\...\{5585E0A6-3A91-4FA7-A322-513A6880D5E5}_is1) (Version: 1.1 - Phantasiac)
  1284. Undertale (HKLM-x32\...\Undertale0.1) (Version: 0.1 - UNDERTALE)
  1285. Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
  1286. Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
  1287. Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
  1288. Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
  1289. Universal CRT Redistributable (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
  1290. Universal CRT Tools x64 (Version: 10.0.26624 - Microsoft Corporation) Hidden
  1291. Universal CRT Tools x86 (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
  1292. Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
  1293. Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
  1294. Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
  1295. Vegas Pro 13.0 (64-bit) (HKLM\...\{1EEE0BEE-0BC8-11E5-A19E-F04DA23A5C58}) (Version: 13.0.453 - Sony)
  1296. Viking Saga (x32 Version: 3.0.2.48 - WildTangent) Hidden
  1297. Visual Studio 2015 Update 2 (KB3022398) (HKLM-x32\...\{78c1b501-a6eb-4f29-88c5-84189564827e}) (Version: 14.0.25123 - Microsoft Corporation)
  1298. VS Update core components (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
  1299. vs_update2notification (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden
  1300. WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
  1301. WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
  1302. Welcome to the Game version 1.0 (HKLM-x32\...\{F092F89F-60CD-4488-A483-35D52DF9266B}_is1) (Version: 1.0 - Welcome to the Game)
  1303. WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
  1304. WildTangent Games App for HP (x32 Version: 4.0.11.2 - WildTangent) Hidden
  1305. Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
  1306. Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
  1307. Wondershare Filmora(Build 7.2.0) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
  1308. WTFast 4.1 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.1.0.741 - Initex & AAA Internet Publishing)
  1309. WTFast Beta 4.0 (HKLM-x32\...\{162DC956-6167-407C-8265-4CC3B8E61B96}_is1) (Version: 4.0.1.459 - Initex & AAA Internet Publishing)
  1310. XSplit Broadcaster (HKLM-x32\...\{E3124560-BA19-4CD5-8D79-E064AA001FA2}) (Version: 2.7.1512.2130 - SplitmediaLabs)
  1311. Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden
  1312. YouTube Downloader App 3.00 (HKLM-x32\...\YouTube Downloader App) (Version: 3.00 - Regensoft)
  1313. Youtube Ranking Software 2.5 (HKLM-x32\...\Youtube Ranking Software 2.5) (Version: 2.5 - blackscriptz.club)
  1314. Youtubers Life v0.7.7 version 0.7.7 (HKLM-x32\...\{E3322F8C-310D-4067-BC6B-C1D01499DA8D}_is1) (Version: 0.7.7 - Youtubers Life v0.7.7 Full Version)
  1315.  
  1316. ==================== Custom CLSID (Whitelisted): ==========================
  1317.  
  1318. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  1319.  
  1320. CustomCLSID: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-FD8E73FEA996}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
  1321. CustomCLSID: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.6386.0412_1\FileCoAuth.exe (Microsoft Corporation)
  1322. CustomCLSID: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
  1323. CustomCLSID: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
  1324.  
  1325. ==================== Scheduled Tasks (Whitelisted) =============
  1326.  
  1327. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  1328.  
  1329. Task: {0B6D5344-F8A3-4E9E-AB8F-F2A2F75A8C06} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
  1330. Task: {0D002C12-C180-4A73-A57F-1513CA8FC54B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
  1331. Task: {116BD68B-ED7D-4AAD-95D1-189B151BB078} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
  1332. Task: {136AFB39-E5AE-4430-A15C-890EDECB1341} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
  1333. Task: {18234F52-6CF6-4496-9AFF-C4A62805563E} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [2016-05-15] (Microsoft Corporation)
  1334. Task: {1F3A0929-DF9C-42E6-B75A-9CBC1AF2342C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-12-18] (Hewlett-Packard)
  1335. Task: {20EC928A-FCB8-4773-9D80-141E1E5366E1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
  1336. Task: {305E4644-3F2C-4E28-B5DE-82E1BEBC8FDC} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
  1337. Task: {3E4F1ED6-6AB9-48A6-B677-8C0C22C5CCC0} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-04-12] (Microsoft Corporation)
  1338. Task: {4E481E84-F7F8-43BE-9CA7-B0458F9EA072} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-01-24] (Synaptics Incorporated)
  1339. Task: {53229414-45CC-4F43-8CAC-DCB9D06FB08F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated)
  1340. Task: {5A45839C-28FE-4AFC-99F1-8EE031076F60} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-11-29] (Hewlett-Packard Company)
  1341. Task: {7180A89A-AA77-41EA-85DA-E2C72E7427D1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
  1342. Task: {77D6B973-3EBF-46D2-AE0C-DA4258CAEB2B} - System32\Tasks\{728902B6-8C4C-49E4-ADF1-8209EAA15B41} => Firefox.exe hxxp://ui.skype.com/ui/0/7.18.0.111/en/abandoninstall?source=lightinstaller&amp;page=tsInstall
  1343. Task: {7B8D4760-C38C-49A0-827E-D582220D2ADC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
  1344. Task: {7D247919-0E54-45CE-B9A3-549E9ADA1598} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
  1345. Task: {7EF551B9-D161-4F7C-B37D-441C058F18AA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
  1346. Task: {80239443-FCE9-4580-A2C5-506DD83E703B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
  1347. Task: {845F555F-CA03-4052-B5F2-5AE04E9895EF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
  1348. Task: {9E7045B8-EAA9-433A-9680-CFD5D92E3C03} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-28] (Google Inc.)
  1349. Task: {BB0C0971-8D4E-464F-90F8-908B1EF306C6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-28] (Google Inc.)
  1350. Task: {CD0116F2-4538-4286-A97E-3B21E48C22D2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
  1351. Task: {D14B9953-FE94-42D0-B66B-A8E8DB32F8E5} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-garall94@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated)
  1352. Task: {D427C9C7-E513-4442-B924-2D11834091D3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-12-18] (Hewlett-Packard)
  1353. Task: {D7FF0173-971F-4E02-8275-74489591534A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
  1354. Task: {E719A54F-DC1D-4391-963E-2C8E31A2B086} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.)
  1355. Task: {EC2E5B95-AA24-4EC8-AD6E-2582D7672D95} - System32\Tasks\Product Updater => C:\Program Files (x86)\Free Audio Editor 2016\FFProductUpdater.exe [2016-03-10] ()
  1356. Task: {EDDC4655-61AD-489D-A91E-15CE4FAAA601} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
  1357. Task: {F3C577BD-1AC1-4470-A21B-F8E2E9258F72} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
  1358. Task: {F790F25A-A96A-47C4-822C-C0F1A33CA17C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
  1359. Task: {FCC84D7F-889A-4763-9D4D-37107C06A74A} - System32\Tasks\Valid Update => C:\ProgramData\Valid\valid_update.exe
  1360. Task: {FCCD474B-A8F3-41E4-939A-48CC92F33486} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
  1361.  
  1362. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  1363.  
  1364. Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  1365. Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  1366. Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  1367.  
  1368. ==================== Shortcuts =============================
  1369.  
  1370. (The entries could be listed to be restored or removed.)
  1371.  
  1372. ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Fair AdBlock App (by STANDS).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=dcnofaichneijfbkdkghmhjjbepjmble
  1373. ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Simple EPUB Reader.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ojhbgcchcbdjdenibfmjofobklkkhofc
  1374.  
  1375. ==================== Loaded Modules (Whitelisted) ==============
  1376.  
  1377. 2015-10-30 03:17 - 2015-10-30 03:17 - 00028672 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
  1378. 2015-10-30 03:18 - 2015-10-30 03:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
  1379. 2014-03-28 16:31 - 2014-03-28 16:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
  1380. 2014-03-28 16:27 - 2014-03-28 16:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
  1381. 2014-03-28 16:27 - 2014-03-28 16:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
  1382. 2014-03-28 16:27 - 2014-03-28 16:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
  1383. 2014-03-28 16:48 - 2014-03-28 16:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
  1384. 2014-03-28 16:48 - 2014-03-28 16:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
  1385. 2015-11-20 15:57 - 2015-11-20 15:57 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
  1386. 2015-11-20 15:57 - 2015-11-20 15:57 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
  1387. 2016-06-11 12:33 - 2014-05-05 11:40 - 01599008 _____ () C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 9.5\WVSScheduler.exe
  1388. 2015-08-04 14:05 - 2016-04-19 19:26 - 00114888 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
  1389. 2016-05-10 14:23 - 2016-03-29 06:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
  1390. 2016-05-10 14:23 - 2016-03-29 06:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
  1391. 2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
  1392. 2016-05-09 17:03 - 2016-05-09 17:03 - 00959176 _____ () C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.6386.0412_1\amd64\ClientTelemetry.dll
  1393. 2015-11-01 14:12 - 2015-09-01 12:04 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
  1394. 2016-05-08 17:32 - 2016-05-09 05:36 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
  1395. 2016-01-26 08:23 - 2016-01-26 08:23 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
  1396. 2016-05-10 14:17 - 2016-04-23 00:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
  1397. 2014-03-28 16:36 - 2014-03-28 16:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
  1398. 2016-06-14 17:02 - 2016-05-27 23:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
  1399. 2016-06-14 17:02 - 2016-05-27 23:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
  1400. 2016-06-14 17:03 - 2016-05-27 23:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
  1401. 2016-06-14 17:03 - 2016-05-27 23:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
  1402. 2016-05-08 17:32 - 2016-05-09 05:36 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
  1403. 2016-05-17 13:55 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
  1404. 2016-05-17 13:55 - 2014-09-11 18:09 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
  1405. 2016-06-18 11:55 - 2016-06-15 05:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
  1406. 2016-06-18 11:55 - 2016-06-15 05:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
  1407. 2014-08-27 02:20 - 2014-02-21 00:13 - 00866056 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\UNO.dll
  1408. 2014-08-27 02:09 - 2014-03-12 02:34 - 00866056 _____ () C:\Program Files (x86)\CyberLink\YouCam\subsys\BigBang\Runtime\UNO.dll
  1409. 2014-08-27 02:09 - 2011-08-23 22:39 - 00081920 _____ () C:\Program Files (x86)\CyberLink\YouCam\koan\_ctypes.pyd
  1410.  
  1411. ==================== Alternate Data Streams (Whitelisted) =========
  1412.  
  1413. (If an entry is included in the fixlist, only the ADS will be removed.)
  1414.  
  1415. AlternateDataStreams: C:\Program Files (x86)\CoinCollector:{6D004E00-7700-3000-5300-4E0036005000} [664]
  1416.  
  1417. ==================== Safe Mode (Whitelisted) ===================
  1418.  
  1419. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  1420.  
  1421. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
  1422. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
  1423.  
  1424. ==================== Association (Whitelisted) ===============
  1425.  
  1426. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  1427.  
  1428.  
  1429. ==================== Internet Explorer trusted/restricted ===============
  1430.  
  1431. (If an entry is included in the fixlist, it will be removed from the registry.)
  1432.  
  1433. IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
  1434. IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
  1435. IE trusted site: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\localhost -> localhost
  1436. IE trusted site: HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\webcompanion.com -> hxxp://webcompanion.com
  1437.  
  1438. ==================== Hosts content: ==========================
  1439.  
  1440. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  1441.  
  1442. 2013-08-22 09:25 - 2016-06-09 19:53 - 00001517 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
  1443.  
  1444. 0.0.0.0 keystone.mwbsys.com
  1445. 0.0.0.0 lmlicenses.wip4.adobe.com
  1446. 0.0.0.0 lm.licenses.adobe.com
  1447. 0.0.0.0 na1r.services.adobe.com
  1448. 0.0.0.0 hlrcv.stage.adobe.com
  1449. 0.0.0.0 practivate.adobe.com
  1450. 0.0.0.0 activate.adobe.com
  1451. 0.0.0.0 platform.wondershare.com
  1452. 128.199.121.125 akisaadp.com
  1453. 128.199.121.125 onhax.net
  1454. 127.0.0.2 www.onhax.net
  1455. 128.199.121.125 do2dear.net
  1456. 128.199.121.125 cloudanna.com
  1457. 128.199.121.125 www.fullstuff.net
  1458. 128.199.121.125 www.masterkreatif.com
  1459. 128.199.121.125 keyscity.net
  1460. 128.199.121.125 piratecity.net
  1461.  
  1462. ==================== Other Areas ============================
  1463.  
  1464. (Currently there is no automatic fix for this section.)
  1465.  
  1466. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
  1467. DNS Servers: 4.4.4.4 - 8.8.8.8
  1468. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: ) (ConsentPromptBehaviorUser: ) (EnableLUA: )
  1469. Windows Firewall is enabled.
  1470.  
  1471. ==================== MSCONFIG/TASK MANAGER disabled items ==
  1472.  
  1473. (Currently there is no automatic fix for this section.)
  1474.  
  1475. HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
  1476. HKLM\...\StartupApproved\Run: => "iTunesHelper"
  1477. HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
  1478. HKLM\...\StartupApproved\Run32: => "Appandora device service"
  1479. HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
  1480. HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
  1481. HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
  1482. HKLM\...\StartupApproved\Run32: => "SwitchBoard"
  1483. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
  1484. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "GoogleDriveSync"
  1485. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "OneDrive"
  1486. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "EADM"
  1487. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "Skype"
  1488. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "Speech Recognition"
  1489. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "Steam"
  1490. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "YTMaxViewer"
  1491. HKU\S-1-5-21-1238564941-3387910719-2561191832-1001\...\StartupApproved\Run: => "WTFast Tray"
  1492.  
  1493. ==================== FirewallRules (Whitelisted) ===============
  1494.  
  1495. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  1496.  
  1497. FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
  1498. FirewallRules: [{E86AB2FF-BC22-4EB6-B86A-D6494CAF5E72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
  1499. FirewallRules: [{58F99FB3-C0FC-4942-9066-245F51B4A171}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
  1500. FirewallRules: [{36F65C63-343C-4FD9-BE07-31CE0D5D288C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe
  1501. FirewallRules: [{B2549456-BB8F-4230-A7D4-A57CABE0E936}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe
  1502. FirewallRules: [{A6BE4400-547A-43B9-9AD1-829AD387DF7B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
  1503. FirewallRules: [{CE821EEB-5334-4AE7-BE8D-A72950457BD5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
  1504. FirewallRules: [{FD6FB4EB-6DBF-4834-A76C-FE1E0574DE7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe
  1505. FirewallRules: [{DF579865-9B73-4DFF-9C2A-E5BD34EABB7A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 2070\Anno5.exe
  1506. FirewallRules: [{959F5662-B80E-4176-A1E8-F3575ECAB7D8}] => (Allow) C:\Users\Admin\AppData\Roaming\BitTorrent\BitTorrent.exe
  1507. FirewallRules: [{77DAB400-C0E8-4824-8622-0CFED01E6284}] => (Allow) C:\Users\Admin\AppData\Roaming\BitTorrent\BitTorrent.exe
  1508. FirewallRules: [{07C004B2-0CAB-4A3A-A4C5-C4C90DB7689A}] => (Allow) C:\Program Files\iTunes\iTunes.exe
  1509. FirewallRules: [{879BC065-09F4-4B60-8C42-BF3F2435532B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  1510. FirewallRules: [{CA5FE0B4-A9A7-4B47-9151-33D022309111}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  1511. FirewallRules: [{709A9554-A24D-442F-897A-89227C00AE15}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  1512. FirewallRules: [{6979FA5C-8B97-4643-AACB-5EA6CEA964E8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  1513. FirewallRules: [{1208B88B-09B0-42D4-8657-2FDCC593F7AF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  1514. FirewallRules: [{AF69C02E-12AB-47C5-8C38-DBF57C632ADE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  1515. FirewallRules: [{70DF53FB-F3B8-4247-B1A7-D18948576264}] => (Allow) C:\Program Files (x86)\The Sims 4\Game\Bin\TS4.exe
  1516. FirewallRules: [{9BB45DE5-DCCD-416F-BAE0-51844FA402BA}] => (Allow) C:\Program Files (x86)\The Sims 4\Game\Bin\TS4.exe
  1517. FirewallRules: [{CC066C39-9577-4A2E-BE6F-CC862E0F64BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
  1518. FirewallRules: [{00F4B004-8182-472C-848D-1C3A796E69C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
  1519. FirewallRules: [{5B7FBB7A-FD29-446D-8FA5-3B6F804E03ED}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
  1520. FirewallRules: [{98D737CB-4B6A-47BE-9B73-A0123F1147A9}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
  1521. FirewallRules: [{CB6E9360-495A-4FD3-B696-69441E54DC76}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sengoku\Sengoku.exe
  1522. FirewallRules: [{ECBD4475-977C-44FA-80F8-4CC6427DB4FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sengoku\Sengoku.exe
  1523. FirewallRules: [{85889F48-BE2B-40F1-A272-0B38293D3531}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
  1524. FirewallRules: [{5B4B9B1E-18FC-41A0-B4E4-07C5A2D5A2A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
  1525. FirewallRules: [{B4E49E6D-8572-4490-A552-716D202A21A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\towns\Towns.exe
  1526. FirewallRules: [{33259285-17AA-40EC-A9E5-6D78A9E93FEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\towns\Towns.exe
  1527. FirewallRules: [{CD4DFCB2-4BA1-452A-B0E9-6A8107B34F46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
  1528. FirewallRules: [{486FBB92-35E6-4051-8BAC-52E544368324}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
  1529. FirewallRules: [{1DD496C0-9BE9-47D6-AE07-0FB53163583A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe
  1530. FirewallRules: [{3A72C920-DD16-4582-B99D-B82E5274DE82}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe
  1531. FirewallRules: [{A8A9C0C0-F46B-4ACC-AC2B-3A4A34F21925}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Game Dev Tycoon\nw.exe
  1532. FirewallRules: [{DBBA195D-CFFF-4167-9B85-60D8510F168F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Game Dev Tycoon\nw.exe
  1533. FirewallRules: [{C77DCBFD-A292-4980-930D-71CB76EF77CF}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
  1534. FirewallRules: [{701E6C59-E293-4EE4-8D9B-DD585D0C5084}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
  1535. FirewallRules: [{2268464B-03E3-4EA0-91CC-37DCC0C9E01A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
  1536. FirewallRules: [{8D47F38A-CC9E-42A9-96F3-E56987C2F18C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
  1537. FirewallRules: [{7036689C-6060-44EB-BF2C-4CA92BD9A374}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  1538. FirewallRules: [{BA25EF87-8925-41A8-9426-53478CE5A55C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  1539. FirewallRules: [{6051A6CE-80EF-424B-AD1E-CE4B056475CD}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
  1540. FirewallRules: [{913E35AC-9829-4FE0-935C-B43179894848}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  1541. FirewallRules: [{838CA221-8E45-40B0-ABE5-7FE3EBA22EB7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  1542. FirewallRules: [{F9A21635-3372-45C0-B662-BCB5D2615A1C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  1543. FirewallRules: [{ABFFD67C-62F3-426C-A82D-C8E3631E1EEB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  1544. FirewallRules: [{C370D876-BD6A-4435-ADB0-9C1B453F3330}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
  1545. FirewallRules: [{5D9473FD-3134-438B-B75F-ED0D9DB76CBF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
  1546. FirewallRules: [{0DD8DF4B-A7B7-4F53-B6A3-31A9A94F235A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
  1547. FirewallRules: [{9E422C68-58D1-42CD-B4AD-F619F1AC1161}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
  1548. FirewallRules: [{4A812EFB-D65B-441A-B568-F5EB9D4EEFD0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
  1549. FirewallRules: [{29F0E393-E0E5-4838-A621-67D9C4B2C468}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
  1550. FirewallRules: [{3A826C1D-A081-4E96-8E8E-766F1682A262}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
  1551. FirewallRules: [{3C3A243B-B959-495F-BD72-289076206F57}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
  1552. FirewallRules: [{CB527F91-79D8-4736-9D0F-2EC20AB50FB3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
  1553. FirewallRules: [{DCB096BE-6606-41E7-B1CF-0F062E1A1643}] => (Allow) LPort=2869
  1554. FirewallRules: [{33FA0B91-F64F-4EA5-8D70-C85AAAB4FF43}] => (Allow) LPort=1900
  1555. FirewallRules: [{C84613E4-2E26-4364-A86A-6E540990052E}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
  1556. FirewallRules: [TCP Query User{CD771943-2FA8-44A0-B6EC-4F6F31A502C9}C:\program files\multibit hd\multibit-hd.exe] => (Allow) C:\program files\multibit hd\multibit-hd.exe
  1557. FirewallRules: [UDP Query User{9881EC44-493F-43DB-8EA4-F201E705C31E}C:\program files\multibit hd\multibit-hd.exe] => (Allow) C:\program files\multibit hd\multibit-hd.exe
  1558. FirewallRules: [{628E8527-BD1D-4264-8C76-3B5912308C60}] => (Allow) C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
  1559. FirewallRules: [{C08DA943-B695-43DE-8C54-AA147814FFA7}] => (Allow) C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
  1560. FirewallRules: [{85818CD5-9661-433B-9195-B25E6C3000EF}] => (Block) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
  1561. FirewallRules: [TCP Query User{8DBDDFBC-E658-4900-9B8D-C1005C09F871}C:\program files (x86)\java\jre1.8.0_71\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\java.exe
  1562. FirewallRules: [UDP Query User{1AB5B997-DA86-4E9F-B991-4EC1A9959B52}C:\program files (x86)\java\jre1.8.0_71\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\java.exe
  1563. FirewallRules: [{FBC05A6B-2C4E-4452-96AC-9C92795024B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Source SDK Base 2013 Singleplayer\hl2.exe
  1564. FirewallRules: [{EE0BFCD7-8435-4D97-8956-0466E94CE6C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Source SDK Base 2013 Singleplayer\hl2.exe
  1565. FirewallRules: [TCP Query User{A67801F6-8F1C-4EFA-B022-64B7C60D0ED6}C:\youtuberslife\youtuberslife.exe] => (Allow) C:\youtuberslife\youtuberslife.exe
  1566. FirewallRules: [UDP Query User{A81392B4-EA5E-42F3-8185-3F491DBBA903}C:\youtuberslife\youtuberslife.exe] => (Allow) C:\youtuberslife\youtuberslife.exe
  1567. FirewallRules: [{3AE57B43-4B4D-4E1F-9DDF-C1A7737567DC}] => (Block) %ProgramFiles%\Sony\Vegas Pro 13.0\vegas130.exe
  1568. FirewallRules: [TCP Query User{0FD48501-3335-46B4-8D79-843D886C59FE}C:\program files (x86)\wtfast beta\wtfast.exe] => (Allow) C:\program files (x86)\wtfast beta\wtfast.exe
  1569. FirewallRules: [UDP Query User{50B0266F-EE24-46F1-8A0C-911D9194F59E}C:\program files (x86)\wtfast beta\wtfast.exe] => (Allow) C:\program files (x86)\wtfast beta\wtfast.exe
  1570. FirewallRules: [{880D6E0C-1DC3-424A-8DA7-D2DFCE41C139}] => (Allow) C:\Program Files (x86)\WTFast\WTFast.exe
  1571. FirewallRules: [TCP Query User{DB26C4DA-1B68-4F37-ADB4-0314417FB254}C:\users\admin\desktop\chkn.v0.1.01\chkn.v0.1.01\chkn.exe] => (Allow) C:\users\admin\desktop\chkn.v0.1.01\chkn.v0.1.01\chkn.exe
  1572. FirewallRules: [UDP Query User{1CBF9675-E348-445F-8106-E1D98DF58AF6}C:\users\admin\desktop\chkn.v0.1.01\chkn.v0.1.01\chkn.exe] => (Allow) C:\users\admin\desktop\chkn.v0.1.01\chkn.v0.1.01\chkn.exe
  1573. FirewallRules: [{020F273E-F0F9-4336-85DA-5261BA4A3A12}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blueprint Tycoon\BlueprintTycoon.exe
  1574. FirewallRules: [{AAA5534A-6A9F-4023-A1D8-6AD3C79C2738}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blueprint Tycoon\BlueprintTycoon.exe
  1575. FirewallRules: [{9A8E3E07-D070-4E84-9784-CDE9087CE56B}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2015\Photoshop.exe
  1576. FirewallRules: [{5089D47E-F8E7-48F8-91E0-FF8D8D53513C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  1577. FirewallRules: [{CB46A353-71E1-4EDC-9615-E89C91DBF538}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  1578. FirewallRules: [{EDAF3679-B801-43E1-9951-E1A9DDD3577B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Doorways The Underworld\Doorways.exe
  1579. FirewallRules: [{30B3E392-E41B-4C94-8192-64C60D3B83BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Doorways The Underworld\Doorways.exe
  1580. FirewallRules: [TCP Query User{D12C4D99-3FD1-4A44-AB37-6538421A4F55}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
  1581. FirewallRules: [UDP Query User{E69289F6-BA50-4DE2-9AC0-AF62652C3428}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
  1582. FirewallRules: [{5ACD0526-2E87-4A30-A77B-E51A9508DF39}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
  1583. FirewallRules: [{02C792FE-96C9-499E-A159-9919E32C1CF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Music Machine\The Music Machine.exe
  1584. FirewallRules: [{F3E1A417-B0B3-458C-A020-5CF929CF303D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Music Machine\The Music Machine.exe
  1585. FirewallRules: [{CAE0F453-9EE2-402D-8FE0-5A86DB0841C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\8BitBoy\8bitboy.exe
  1586. FirewallRules: [{5DC4E8F8-E2DC-4C19-B226-57B5163973E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\8BitBoy\8bitboy.exe
  1587. FirewallRules: [{914B2FF7-12BC-4570-96AA-E2A4CD72A167}] => (Allow) C:\Users\Admin\AppData\Local\Chromium\Application\chrome.exe
  1588. FirewallRules: [{9FFE24B9-5673-4245-8DB5-A2C543E42D40}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
  1589. FirewallRules: [{C49B041A-7B98-4796-90ED-5835BED44BDB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  1590.  
  1591. ==================== Restore Points =========================
  1592.  
  1593. 10-06-2016 22:17:44 Microsoft Visual Studio Community 2015 with Update 2
  1594. 14-06-2016 17:37:54 Windows Update
  1595. 21-06-2016 17:39:25 Windows Update
  1596.  
  1597. ==================== Faulty Device Manager Devices =============
  1598.  
  1599.  
  1600. ==================== Event log errors: =========================
  1601.  
  1602. Application errors:
  1603. ==================
  1604. Error: (06/22/2016 02:07:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
  1605. Description: Task Scheduling Error: m->NextScheduledSPRetry 9777578
  1606.  
  1607. Error: (06/22/2016 02:07:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
  1608. Description: Task Scheduling Error: m->NextScheduledEvent 9777578
  1609.  
  1610. Error: (06/22/2016 02:07:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
  1611. Description: Task Scheduling Error: Continuously busy for more than a second
  1612.  
  1613. Error: (06/22/2016 11:24:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  1614. Description: Task Scheduling Error: m->NextScheduledSPRetry 5687
  1615.  
  1616. Error: (06/22/2016 11:24:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  1617. Description: Task Scheduling Error: m->NextScheduledEvent 5687
  1618.  
  1619. Error: (06/22/2016 11:24:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  1620. Description: Task Scheduling Error: Continuously busy for more than a second
  1621.  
  1622. Error: (06/22/2016 11:24:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  1623. Description: Task Scheduling Error: m->NextScheduledSPRetry 1609
  1624.  
  1625. Error: (06/22/2016 11:24:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  1626. Description: Task Scheduling Error: m->NextScheduledEvent 1609
  1627.  
  1628. Error: (06/22/2016 11:24:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  1629. Description: Task Scheduling Error: Continuously busy for more than a second
  1630.  
  1631. Error: (06/22/2016 09:14:57 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  1632. Description: Task Scheduling Error: m->NextScheduledSPRetry 1218
  1633.  
  1634.  
  1635. System errors:
  1636. =============
  1637. Error: (06/22/2016 02:15:27 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
  1638. Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
  1639.  
  1640. Error: (06/22/2016 02:11:54 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
  1641. Description: WLAN Extensibility Module has failed to start.
  1642.  
  1643. Module Path: C:\WINDOWS\system32\Rtlihvs.dll
  1644. Error Code: 126
  1645.  
  1646. Error: (06/22/2016 02:09:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
  1647. Description: The User Data Access_a3f5e service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
  1648.  
  1649. Error: (06/22/2016 02:09:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
  1650. Description: The User Data Storage_a3f5e service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
  1651.  
  1652. Error: (06/22/2016 02:09:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
  1653. Description: The Contact Data_a3f5e service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
  1654.  
  1655. Error: (06/22/2016 02:09:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
  1656. Description: The Sync Host_a3f5e service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
  1657.  
  1658. Error: (06/22/2016 02:09:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  1659. Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
  1660.  
  1661. Error: (06/22/2016 11:24:02 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  1662. Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
  1663.  
  1664. Error: (06/22/2016 09:14:55 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  1665. Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
  1666.  
  1667. Error: (06/21/2016 09:31:25 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  1668. Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
  1669.  
  1670.  
  1671. CodeIntegrity:
  1672. ===================================
  1673. Date: 2016-06-21 19:09:19.281
  1674. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1675.  
  1676. Date: 2016-06-19 21:56:59.788
  1677. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1678.  
  1679. Date: 2016-06-19 21:56:27.799
  1680. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1681.  
  1682. Date: 2016-06-17 20:38:31.452
  1683. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1684.  
  1685. Date: 2016-06-17 20:38:07.580
  1686. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1687.  
  1688. Date: 2016-06-16 19:43:15.298
  1689. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1690.  
  1691. Date: 2016-06-16 10:43:10.318
  1692. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1693.  
  1694. Date: 2016-06-15 19:09:26.979
  1695. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1696.  
  1697. Date: 2016-06-15 19:09:14.713
  1698. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1699.  
  1700. Date: 2016-06-14 08:41:26.911
  1701. Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
  1702.  
  1703.  
  1704. ==================== Memory info ===========================
  1705.  
  1706. Processor: Intel(R) Celeron(R) CPU N2830 @ 2.16GHz
  1707. Percentage of memory in use: 50%
  1708. Total physical RAM: 3986.96 MB
  1709. Available physical RAM: 1972.7 MB
  1710. Total Virtual: 6418.96 MB
  1711. Available Virtual: 4247.7 MB
  1712.  
  1713. ==================== Drives ================================
  1714.  
  1715. Drive c: (Windows) (Fixed) (Total:435.05 GB) (Free:80.64 GB) NTFS
  1716. Drive d: (RECOVERY) (Fixed) (Total:21.06 GB) (Free:2.11 GB) NTFS ==>[system with boot components (obtained from drive)]
  1717. Drive f: (One Way Flight) (CDROM) (Total:1.44 GB) (Free:0 GB) UDF
  1718.  
  1719. ==================== MBR & Partition Table ==================
  1720.  
  1721. ========================================================
  1722. Disk: 0 (Size: 465.8 GB) (Disk ID: 159542BB)
  1723.  
  1724. Partition: GPT.
  1725.  
  1726. ==================== End of Addition.txt ============================
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!