Solved Persistant Windows Update "looking" Chromium Update

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2017
Ran by djbobbysteele (administrator) on PDJE_PC (15-07-2017 16:33:28)
Running from C:\Users\djbobbysteele\Downloads
Loaded Profiles: djbobbysteele (Available Profiles: djbobbysteele & DefaultAppPool)
Platform: Windows 10 Home Version 1703 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Cypress Semiconductor Corporation) C:\Program Files\Cypress\TrackPad\CyTpService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Denon DJ) C:\Program Files (x86)\Denon DJ\DN-MC6000\AudioDevMon.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(DonationCoder) C:\Program Files (x86)\ScreenshotCaptor\ScreenshotCaptor.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(The NWJS Community) C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\Neat.exe
(The NWJS Community) C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\Neat.exe
(The NWJS Community) C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\Neat.exe
(The NWJS Community) C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\Neat.exe
(Microsoft) C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\binaries\NeatImageCaptureWrapper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169744 2015-09-12] (Apple Inc.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3486520 2017-07-12] (Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\...\Run: [Google Update] => C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-27] (Google Inc.)
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\...\Run: [Google Photos Backup] => C:\Users\djbobbysteele\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [3790936 2016-04-08] (Google, Inc)
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9803992 2017-06-13] (Piriform Ltd)
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [37376 2017-03-18] (Microsoft Corporation)
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Background Downloader.lnk [2016-08-30]
ShortcutTarget: SOLIDWORKS Background Downloader.lnk -> C:\Program Files (x86)\Common Files\SOLIDWORKS Installation Manager\BackgroundDownloading\sldBgDwld.exe (Dassault Systèmes SolidWorks Corp.)
GroupPolicy: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{0b828af4-7b2b-44cb-855a-0418e904c7e8}: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{e10f0252-5141-4e84-95af-3569028ed3d0}: [DhcpNameServer] 10.0.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-fa0b4ca2
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-fa0b4ca2&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-fa0b4ca2&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-fa0b4ca2&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-fa0b4ca2&q={searchTerms}

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-03] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3796937070-3348964198-3883336013-1000: @tools.google.com/Google Update;version=3 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-3796937070-3348964198-3883336013-1000: @tools.google.com/Google Update;version=9 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default [2017-07-15]
CHR Extension: (Google Slides) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-07-03]
CHR Extension: (Google Docs) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-03]
CHR Extension: (Google Drive) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-03]
CHR Extension: (YouTube) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-03]
CHR Extension: (uTab) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpmmandcadflhnnaiclipadomfmdbjbp [2017-07-03]
CHR Extension: (Tidy Sidebar) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmacifhhpefamjmolpipkijcofcmbgp [2017-07-03]
CHR Extension: (Adobe Acrobat) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-07-03]
CHR Extension: (Hermes Tab) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehlceeijggpdgfcefmipcmdelickjgfg [2017-07-03]
CHR Extension: (Google Sheets) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-07-03]
CHR Extension: (iCloud Bookmarks) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2017-07-03]
CHR Extension: (GoToMeeting Pro Screensharing) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcgikpombjkodabhbdalkcdhmllafipp [2017-07-03]
CHR Extension: (Google Docs Offline) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-03]
CHR Extension: (AdBlock) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-07-03]
CHR Extension: (Cisco WebEx Extension) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2017-07-14]
CHR Extension: (Google Keep Chrome Extension) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2017-07-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-07-03]
CHR Extension: (Xodo PDF Viewer & Editor) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\okimpmfnmbjbaciaeaikdiecpobfomfh [2017-07-03]
CHR Extension: (Gmail) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-03]
CHR Extension: (Chrome Media Router) - C:\Users\djbobbysteele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-13]
CHR HKLM\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 CyTpService; C:\Program Files\Cypress\TrackPad\CyTpService.exe [28160 2015-04-22] (Cypress Semiconductor Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-12] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-12] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [49992 2017-07-12] (Dropbox, Inc.)
R2 DNMC6000AudioDevMon; C:\Program Files (x86)\Denon DJ\DN-MC6000\AudioDevMon.exe [2382608 2015-06-01] (Denon DJ)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [263264 2017-02-24] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cykbfltrService; C:\WINDOWS\system32\DRIVERS\cykbfltr.sys [19968 2015-08-18] (Cypress Semiconductor, Inc.)
S3 cymfltrService; C:\WINDOWS\system32\DRIVERS\cymfltr.sys [102400 2015-08-18] (Cypress Semiconductor, Inc.)
S3 DNMC6000; C:\WINDOWS\system32\DRIVERS\DenonDJDNMC6000.sys [549648 2015-06-01] (Denon DJ)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77376 2017-06-27] ()
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [188352 2017-07-03] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [101784 2017-07-14] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [45472 2017-07-14] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-07-14] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [93600 2017-07-15] (Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2017-07-14] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-15 16:33 - 2017-07-15 16:33 - 00000000 ____D C:\Users\djbobbysteele\Downloads\FRST-OlderVersion
2017-07-15 13:52 - 2017-07-15 13:52 - 00000000 ____D C:\Users\djbobbysteele\NeatUpdate
2017-07-15 13:51 - 2017-07-15 13:51 - 00000000 ____D C:\Program Files (x86)\GraphicsMagick-1.3.21-Q8
2017-07-15 09:45 - 2017-07-15 09:45 - 00130390 _____ C:\Users\djbobbysteele\Downloads\1499673918110.jpeg
2017-07-15 09:44 - 2017-07-15 09:44 - 00156147 _____ C:\Users\djbobbysteele\Downloads\1499673139148.jpeg
2017-07-15 09:43 - 2017-07-15 09:43 - 00180671 _____ C:\Users\djbobbysteele\Downloads\1499673683789.jpeg
2017-07-15 09:42 - 2017-07-15 09:42 - 00735792 _____ C:\Users\djbobbysteele\Downloads\1499673855452.jpeg
2017-07-15 09:42 - 2017-07-15 09:42 - 00197421 _____ C:\Users\djbobbysteele\Downloads\1499673590356.jpeg
2017-07-15 09:42 - 2017-07-15 09:42 - 00142199 _____ C:\Users\djbobbysteele\Downloads\1499673746977.jpeg
2017-07-14 08:04 - 2017-07-14 08:04 - 00012987 _____ C:\Users\djbobbysteele\Desktop\EVENTS 2011 TO PRESENT1.txt
2017-07-14 07:21 - 2017-07-14 07:21 - 00000000 ____D C:\Users\djbobbysteele\AppData\Local\CrashDumps
2017-07-14 07:20 - 2017-07-14 07:20 - 01663672 _____ (Malwarebytes) C:\Users\djbobbysteele\Downloads\JRT.exe
2017-07-14 07:01 - 2017-03-18 16:56 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2017-07-14 07:01 - 2017-03-18 16:56 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2017-07-14 06:22 - 2017-07-14 06:22 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-07-14 06:22 - 2017-07-14 06:22 - 00000000 ____D C:\ProgramData\RogueKiller
2017-07-14 06:21 - 2017-07-14 06:21 - 00000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-07-14 06:21 - 2017-07-14 06:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-07-14 06:21 - 2017-07-14 06:21 - 00000000 ____D C:\Program Files\RogueKiller
2017-07-14 06:18 - 2017-07-14 06:18 - 35612552 _____ (Adlice Software ) C:\Users\djbobbysteele\Desktop\RogueKiller_setup_ref3.exe
2017-07-13 19:19 - 2017-07-13 19:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-07-12 21:25 - 2017-07-12 21:25 - 00000000 ____D C:\Users\djbobbysteele\AppData\Local\Chromium
2017-07-12 19:57 - 2017-07-12 19:57 - 142267536 _____ C:\Users\djbobbysteele\Downloads\Tone Rios - Wanted (Club Rermix) (Clean).mp4
2017-07-12 19:57 - 2017-07-12 19:57 - 125833426 _____ C:\Users\djbobbysteele\Downloads\Mike Perry Feat. Casso - Inside the Lines (Galwaro Remix) (Clean).mp4
2017-07-12 19:56 - 2017-07-12 19:57 - 118717570 _____ C:\Users\djbobbysteele\Downloads\Clean Bandit Feat. Sean Paul & Anne Marie - Rockabye (Kavorka X TuneSquad Remix) (Clean).mp4
2017-07-12 19:52 - 2017-07-12 19:52 - 74509668 _____ C:\Users\djbobbysteele\Downloads\T-Mass & LZRD - Cash (Danny Diggz)(Clean).mp4
2017-07-12 19:51 - 2017-07-12 19:52 - 122401898 _____ C:\Users\djbobbysteele\Downloads\DJ Scene & Four Color Zack ft Mad Lion - Stomp (V.2 Remix)(Dirty).mp4
2017-07-12 19:50 - 2017-07-12 19:50 - 129079699 _____ C:\Users\djbobbysteele\Downloads\Turbotronic - One Time (Clubhunter Remix) (Clean).mp4
2017-07-12 19:49 - 2017-07-12 19:50 - 182933661 _____ C:\Users\djbobbysteele\Downloads\Turbotronic - Friday Night (Clubhunter) (Clean).mp4
2017-07-12 19:49 - 2017-07-12 19:50 - 175904079 _____ C:\Users\djbobbysteele\Downloads\Alex Gaudino - Destination Calabria (Justflow Remix) (Clean).mp4
2017-07-12 19:49 - 2017-07-12 19:49 - 84889476 _____ C:\Users\djbobbysteele\Downloads\Alan Walker ft. Gavin James - Tired (DOPEDROP Remix) (Clean).mp4
2017-07-12 19:43 - 2017-07-12 19:44 - 158804062 _____ C:\Users\djbobbysteele\Downloads\Crazy Frog - Axel F (STVW & Mountblaq Remix) (Dirty).mp4
2017-07-12 19:43 - 2017-07-12 19:44 - 112844933 _____ C:\Users\djbobbysteele\Downloads\A Billion Robots - One More Drink (Club Mix) (Clean).mp4
2017-07-12 19:41 - 2017-07-12 19:42 - 84672089 _____ C:\Users\djbobbysteele\Downloads\Martin Garrix & Dua Lipa - Scared To Be Lonely (Sammy Boyle Remix) (Clean).mp4
2017-07-12 19:41 - 2017-07-12 19:42 - 118236692 _____ C:\Users\djbobbysteele\Downloads\Luis Fonsi, Daddy Yankee Feat. Justin Bieber - Despacito (DROPSTARS Remix) (Clean).mp4
2017-07-12 19:40 - 2017-07-12 19:42 - 395931424 _____ C:\Users\djbobbysteele\Downloads\Clubhunter - Do Me (Turbotronic Mix) (Clean).mp4
2017-07-12 19:40 - 2017-07-12 19:42 - 158067706 _____ C:\Users\djbobbysteele\Downloads\Geo Da Silva, Sean Norvis with Dj Combo & Kizami - SummerTime (Fizo Faouez Remix) (Dirty).mp4
2017-07-12 19:40 - 2017-07-12 19:41 - 134472787 _____ C:\Users\djbobbysteele\Downloads\GoldFish feat. Diamond Thug - Deep Of The Night (dj 3b Remix) (Clean) .mp4
2017-07-12 19:36 - 2017-07-12 19:36 - 08704010 _____ C:\Users\djbobbysteele\Downloads\Detroit's Filthiest - Handprint.m4a
2017-07-12 19:32 - 2017-07-12 19:33 - 128578087 _____ C:\Users\djbobbysteele\Downloads\Zedd Feat. Matthew Koma - Spectrum Lyric Video Clean.mp4
 
2017-07-12 19:32 - 2017-07-12 19:32 - 113710036 _____ C:\Users\djbobbysteele\Downloads\Zedd ft Matthew Koma - Spectrum (Clean) (Extend).mp4
2017-07-12 19:31 - 2017-07-12 19:31 - 128142840 _____ C:\Users\djbobbysteele\Downloads\Martin Garrix & Troye Sivan - There For You (Original) (Clean).mp4
2017-07-12 19:30 - 2017-07-12 19:31 - 192113379 _____ C:\Users\djbobbysteele\Downloads\Martin Garrix x Loopers Feat. Dua Lipa x Firebeatz - Animals Festival 2017 (Martin Garrix Remix)(Clean).mp4
2017-07-12 19:25 - 2017-07-12 19:25 - 04858599 _____ C:\Users\djbobbysteele\Downloads\Kryder & HIIO - La Luna (Extended Mix).m4a
2017-07-12 19:23 - 2017-07-12 19:23 - 107221533 _____ C:\Users\djbobbysteele\Downloads\Alan Walker Feat Iselin Solheim - Sing Me To Sleep (Extend) (Clean).mp4
2017-07-12 19:21 - 2017-07-12 19:22 - 123949323 _____ C:\Users\djbobbysteele\Downloads\Zedd Feat. Alessia Cara - Stay (Lyric) (Clean).mp4
2017-07-12 19:21 - 2017-07-12 19:21 - 104190340 _____ C:\Users\djbobbysteele\Downloads\Zedd Feat. Alessia Cara - Stay (Xplicid Down Bootleg) (Clean).mp4
2017-07-12 19:20 - 2017-07-12 19:21 - 104403932 _____ C:\Users\djbobbysteele\Downloads\Zedd Feat. Alessia Cara - Stay (JFX Moombahton Remix) (Clean).mp4
2017-07-12 19:19 - 2017-07-12 19:19 - 03981150 _____ C:\Users\djbobbysteele\Downloads\The Chainsmokers & Coldplay - Something Just Like This (Official Instrumental).m4a
2017-07-12 19:17 - 2017-07-12 19:18 - 126601590 _____ C:\Users\djbobbysteele\Downloads\Bingo Players ft Far East Movement - Get Up Rattle Remix Dj Cutt Edit Clean.mp4
2017-07-12 19:17 - 2017-07-12 19:17 - 118013345 _____ C:\Users\djbobbysteele\Downloads\Bingo Players ft Far East Movement - Get Up (Rattle) (Clean) (John Cha Extend).mp4
2017-07-12 19:15 - 2017-07-12 19:15 - 78295753 _____ C:\Users\djbobbysteele\Downloads\Marshmello vs Graves & Maazel - Alone (HMC Trap Bootleg) (Clean).mp4
2017-07-12 19:14 - 2017-07-12 19:14 - 03758945 _____ C:\Users\djbobbysteele\Downloads\Flight Facilities - Crave You (Adventure Club Dubstep Remix).m4a
2017-07-12 19:13 - 2017-07-12 19:13 - 45936646 _____ C:\Users\djbobbysteele\Downloads\Calvin Harris - Thinking About You ft. Ayah Marar.mp4
2017-07-12 19:11 - 2017-07-12 19:11 - 04235809 _____ C:\Users\djbobbysteele\Downloads\San Holo - We Rise.m4a
2017-07-12 19:09 - 2017-07-12 19:09 - 04478669 _____ C:\Users\djbobbysteele\Downloads\Freestylers - Cracks ft. Belle Humble (Flux Pavilion Remix) HQ Full Extended Mix.m4a
2017-07-12 19:08 - 2017-07-07 03:24 - 00117664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-07-12 19:08 - 2017-07-07 03:20 - 02021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-07-12 19:08 - 2017-07-07 03:13 - 00554392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-07-12 19:08 - 2017-07-07 03:13 - 00336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-07-12 19:08 - 2017-07-07 03:11 - 00094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-07-12 19:08 - 2017-07-07 03:10 - 01670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-07-12 19:08 - 2017-07-07 03:10 - 00254168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-07-12 19:08 - 2017-07-07 02:57 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-07-12 19:08 - 2017-07-07 02:57 - 00125344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2017-07-12 19:08 - 2017-07-07 02:39 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-07-12 19:08 - 2017-07-07 02:39 - 00096128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-07-12 19:08 - 2017-07-07 02:37 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-07-12 19:08 - 2017-07-07 02:37 - 01339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2017-07-12 19:08 - 2017-07-07 02:31 - 05820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-07-12 19:08 - 2017-07-07 02:31 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-07-12 19:08 - 2017-07-07 02:31 - 00129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-07-12 19:08 - 2017-07-07 02:30 - 02165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-07-12 19:08 - 2017-07-07 02:30 - 00949920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2017-07-12 19:08 - 2017-07-07 02:30 - 00750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-07-12 19:08 - 2017-07-07 02:29 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-07-12 19:08 - 2017-07-07 02:29 - 00123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2017-07-12 19:08 - 2017-07-07 02:27 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-07-12 19:08 - 2017-07-07 02:26 - 20373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-07-12 19:08 - 2017-07-07 02:26 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-07-12 19:08 - 2017-07-07 02:26 - 01195240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-07-12 19:08 - 2017-07-07 02:26 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-07-12 19:08 - 2017-07-07 02:25 - 00035232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
2017-07-12 19:08 - 2017-07-07 02:23 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-07-12 19:08 - 2017-07-07 02:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-07-12 19:08 - 2017-07-07 02:19 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-07-12 19:08 - 2017-07-07 02:18 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2017-07-12 19:08 - 2017-07-07 02:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-07-12 19:08 - 2017-07-07 02:14 - 08211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-07-12 19:08 - 2017-07-07 02:14 - 03784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-07-12 19:08 - 2017-07-07 02:14 - 02956800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-07-12 19:08 - 2017-07-07 02:14 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-07-12 19:08 - 2017-07-07 02:14 - 00790016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-07-12 19:08 - 2017-07-07 02:13 - 13839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-07-12 19:08 - 2017-07-07 02:12 - 04730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-07-12 19:08 - 2017-07-07 02:12 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-07-12 19:08 - 2017-07-07 02:12 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-07-12 19:08 - 2017-07-07 02:10 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-07-12 19:08 - 2017-07-07 02:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
2017-07-12 19:08 - 2017-07-07 02:09 - 20504576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-07-12 19:08 - 2017-07-07 02:09 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-07-12 19:08 - 2017-07-07 02:08 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-07-12 19:08 - 2017-07-07 02:07 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-07-12 19:08 - 2017-07-07 02:07 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2017-07-12 19:08 - 2017-07-07 02:06 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2017-07-12 19:08 - 2017-07-07 02:05 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-07-12 19:08 - 2017-07-07 02:05 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-07-12 19:08 - 2017-07-07 02:05 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-07-12 19:08 - 2017-07-07 02:05 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-07-12 19:08 - 2017-07-07 02:05 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-07-12 19:08 - 2017-07-07 02:04 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-07-12 19:08 - 2017-07-07 02:04 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-07-12 19:08 - 2017-07-07 02:04 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-07-12 19:08 - 2017-07-07 02:04 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-07-12 19:08 - 2017-07-07 02:04 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-07-12 19:08 - 2017-07-07 02:03 - 06123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-07-12 19:08 - 2017-07-07 02:03 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-07-12 19:08 - 2017-07-07 02:03 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-07-12 19:08 - 2017-07-07 02:02 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-07-12 19:08 - 2017-07-07 02:01 - 06287360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-07-12 19:08 - 2017-07-07 02:01 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-07-12 19:08 - 2017-07-07 02:00 - 07596544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-07-12 19:08 - 2017-07-07 02:00 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-07-12 19:08 - 2017-07-07 02:00 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-07-12 19:08 - 2017-07-07 02:00 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-07-12 19:08 - 2017-07-07 02:00 - 01565184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-07-12 19:08 - 2017-07-07 02:00 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-07-12 19:08 - 2017-07-07 01:59 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-07-12 19:08 - 2017-07-07 01:59 - 03656704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-07-12 19:08 - 2017-07-07 01:59 - 01494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-07-12 19:08 - 2017-07-07 01:59 - 01355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-07-12 19:08 - 2017-07-07 01:59 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-07-12 19:08 - 2017-07-07 01:58 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-07-12 19:08 - 2017-07-07 01:58 - 02782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-07-12 19:08 - 2017-07-07 01:58 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-07-12 19:08 - 2017-07-07 01:58 - 01237504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-07-12 19:08 - 2017-07-07 01:55 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2017-07-12 19:08 - 2017-07-07 01:55 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-07-12 19:08 - 2017-07-07 01:53 - 01301504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2017-07-12 19:08 - 2017-07-07 01:53 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2017-07-12 19:08 - 2017-06-20 02:06 - 00279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-07-12 19:08 - 2017-06-20 02:03 - 00820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-07-12 19:08 - 2017-06-20 02:02 - 01055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-07-12 19:08 - 2017-06-20 01:59 - 06554928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-07-12 19:08 - 2017-06-20 01:59 - 01220072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-07-12 19:08 - 2017-06-20 01:57 - 02681760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-07-12 19:08 - 2017-06-20 01:34 - 00192416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-07-12 19:08 - 2017-06-20 01:15 - 00455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2017-07-12 19:08 - 2017-06-20 01:13 - 00787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2017-07-12 19:08 - 2017-06-20 01:13 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2017-07-12 19:08 - 2017-06-20 01:12 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-07-12 19:08 - 2017-06-20 01:12 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2017-07-12 19:08 - 2017-06-20 01:12 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2017-07-12 19:08 - 2017-06-20 01:10 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-07-12 19:08 - 2017-06-20 01:09 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2017-07-12 19:08 - 2017-06-20 01:09 - 00406032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-07-12 19:08 - 2017-06-20 01:09 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-07-12 19:08 - 2017-06-20 01:08 - 04469840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-07-12 19:08 - 2017-06-20 01:08 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-07-12 19:08 - 2017-06-20 01:08 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-07-12 19:08 - 2017-06-20 01:08 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-07-12 19:08 - 2017-06-20 01:07 - 02475136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-07-12 19:08 - 2017-06-20 01:07 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2017-07-12 19:08 - 2017-06-20 01:07 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-07-12 19:08 - 2017-06-20 01:07 - 00346016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2017-07-12 19:08 - 2017-06-20 01:07 - 00138656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2017-07-12 19:08 - 2017-06-20 01:06 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-07-12 19:08 - 2017-06-20 01:06 - 00754592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-07-12 19:08 - 2017-06-20 01:06 - 00278944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-07-12 19:08 - 2017-06-20 01:05 - 00438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-07-12 19:08 - 2017-06-20 01:05 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-07-12 19:08 - 2017-06-20 01:05 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-07-12 19:08 - 2017-06-20 01:05 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-07-12 19:08 - 2017-06-20 01:04 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-07-12 19:08 - 2017-06-20 01:04 - 01178528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2017-07-12 19:08 - 2017-06-20 01:04 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2017-07-12 19:08 - 2017-06-20 01:04 - 01077496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2017-07-12 19:08 - 2017-06-20 01:04 - 00181656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-07-12 19:08 - 2017-06-20 01:04 - 00049656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll
2017-07-12 19:08 - 2017-06-20 01:03 - 05806048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-07-12 19:08 - 2017-06-20 01:03 - 00864240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-07-12 19:08 - 2017-06-20 01:03 - 00443728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2017-07-12 19:08 - 2017-06-20 01:02 - 03377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-07-12 19:08 - 2017-06-20 01:02 - 01121928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-07-12 19:08 - 2017-06-20 01:02 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-07-12 19:08 - 2017-06-20 01:01 - 04536320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-07-12 19:08 - 2017-06-20 01:01 - 00176032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-07-12 19:08 - 2017-06-20 01:00 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-07-12 19:08 - 2017-06-20 00:56 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-07-12 19:08 - 2017-06-20 00:49 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2017-07-12 19:08 - 2017-06-20 00:49 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2017-07-12 19:08 - 2017-06-20 00:46 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2017-07-12 19:08 - 2017-06-20 00:45 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2017-07-12 19:08 - 2017-06-20 00:43 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-07-12 19:08 - 2017-06-20 00:43 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2017-07-12 19:08 - 2017-06-20 00:43 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2017-07-12 19:08 - 2017-06-20 00:43 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-07-12 19:08 - 2017-06-20 00:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-07-12 19:08 - 2017-06-20 00:43 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-07-12 19:08 - 2017-06-20 00:43 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2017-07-12 19:08 - 2017-06-20 00:42 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2017-07-12 19:08 - 2017-06-20 00:42 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2017-07-12 19:08 - 2017-06-20 00:42 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-07-12 19:08 - 2017-06-20 00:42 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-07-12 19:08 - 2017-06-20 00:42 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-07-12 19:08 - 2017-06-20 00:42 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2017-07-12 19:08 - 2017-06-20 00:41 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-07-12 19:08 - 2017-06-20 00:41 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2017-07-12 19:08 - 2017-06-20 00:41 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2017-07-12 19:08 - 2017-06-20 00:41 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2017-07-12 19:08 - 2017-06-20 00:41 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2017-07-12 19:08 - 2017-06-20 00:40 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-07-12 19:08 - 2017-06-20 00:40 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-07-12 19:08 - 2017-06-20 00:40 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-07-12 19:08 - 2017-06-20 00:40 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-07-12 19:08 - 2017-06-20 00:40 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2017-07-12 19:08 - 2017-06-20 00:40 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2017-07-12 19:08 - 2017-06-20 00:39 - 02814464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2017-07-12 19:08 - 2017-06-20 00:39 - 02671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-07-12 19:08 - 2017-06-20 00:39 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2017-07-12 19:08 - 2017-06-20 00:39 - 00646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2017-07-12 19:08 - 2017-06-20 00:39 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2017-07-12 19:08 - 2017-06-20 00:39 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-07-12 19:08 - 2017-06-20 00:38 - 01451008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-07-12 19:08 - 2017-06-20 00:38 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-07-12 19:08 - 2017-06-20 00:38 - 01171968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-07-12 19:08 - 2017-06-20 00:38 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-07-12 19:08 - 2017-06-20 00:38 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2017-07-12 19:08 - 2017-06-20 00:38 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-07-12 19:08 - 2017-06-20 00:37 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-07-12 19:08 - 2017-06-20 00:36 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-07-12 19:08 - 2017-06-20 00:35 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-07-12 19:08 - 2017-06-20 00:35 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-07-12 19:08 - 2017-06-20 00:35 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-07-12 19:08 - 2017-06-20 00:34 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-07-12 19:08 - 2017-06-20 00:34 - 02750464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-07-12 19:08 - 2017-06-20 00:34 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-07-12 19:08 - 2017-06-20 00:34 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-07-12 19:08 - 2017-06-20 00:34 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-07-12 19:08 - 2017-06-20 00:31 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-07-12 19:08 - 2017-06-20 00:30 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdmaud.drv
2017-07-12 19:08 - 2017-06-20 00:30 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2017-07-12 19:08 - 2017-06-20 00:30 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-07-12 19:08 - 2017-06-20 00:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2017-07-12 19:07 - 2017-07-07 10:00 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2017-07-12 19:07 - 2017-07-07 03:27 - 01147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-07-12 19:07 - 2017-07-07 03:27 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-07-12 19:07 - 2017-07-07 03:27 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-07-12 19:07 - 2017-07-07 03:26 - 01065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-07-12 19:07 - 2017-07-07 03:25 - 00899824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-07-12 19:07 - 2017-07-07 03:23 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-07-12 19:07 - 2017-07-07 03:22 - 08318880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-07-12 19:07 - 2017-07-07 03:22 - 01186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-07-12 19:07 - 2017-07-07 03:21 - 32688336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2017-07-12 19:07 - 2017-07-07 03:21 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-12 19:07 - 2017-07-07 03:20 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-07-12 19:07 - 2017-07-07 03:20 - 00519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-07-12 19:07 - 2017-07-07 03:20 - 00382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-07-12 19:07 - 2017-07-07 03:15 - 02444696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-07-12 19:07 - 2017-07-07 03:14 - 07325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-07-12 19:07 - 2017-07-07 03:14 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-07-12 19:07 - 2017-07-07 03:14 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-07-12 19:07 - 2017-07-07 03:12 - 00411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-07-12 19:07 - 2017-07-07 03:12 - 00318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-07-12 19:07 - 2017-07-07 03:11 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-07-12 19:07 - 2017-07-07 03:10 - 01325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-07-12 19:07 - 2017-07-07 03:09 - 00041376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
2017-07-12 19:07 - 2017-07-07 03:07 - 01106848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-07-12 19:07 - 2017-07-07 03:07 - 00058488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-07-12 19:07 - 2017-07-07 02:40 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-07-12 19:07 - 2017-07-07 02:37 - 31652264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2017-07-12 19:07 - 2017-07-07 02:27 - 03670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-07-12 19:07 - 2017-07-07 02:27 - 01050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-07-12 19:07 - 2017-07-07 02:27 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2017-07-12 19:07 - 2017-07-07 02:27 - 00360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-07-12 19:07 - 2017-07-07 02:26 - 17364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-12 19:07 - 2017-07-07 02:23 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-07-12 19:07 - 2017-07-07 02:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-07-12 19:07 - 2017-07-07 02:22 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-07-12 19:07 - 2017-07-07 02:21 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-07-12 19:07 - 2017-07-07 02:20 - 23681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-07-12 19:07 - 2017-07-07 02:20 - 08331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-07-12 19:07 - 2017-07-07 02:20 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2017-07-12 19:07 - 2017-07-07 02:19 - 07149056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-07-12 19:07 - 2017-07-07 02:19 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-07-12 19:07 - 2017-07-07 02:18 - 07336448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-12 19:07 - 2017-07-07 02:18 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-07-12 19:07 - 2017-07-07 02:18 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2017-07-12 19:07 - 2017-07-07 02:17 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-12 19:07 - 2017-07-07 02:17 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-07-12 19:07 - 2017-07-07 02:17 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-07-12 19:07 - 2017-07-07 02:17 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-07-12 19:07 - 2017-07-07 02:16 - 12786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-07-12 19:07 - 2017-07-07 02:15 - 08238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-07-12 19:07 - 2017-07-07 02:15 - 00922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-07-12 19:07 - 2017-07-07 02:14 - 01802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-07-12 19:07 - 2017-07-07 02:14 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2017-07-12 19:07 - 2017-07-07 02:13 - 05892096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-07-12 19:07 - 2017-07-07 02:13 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-07-12 19:07 - 2017-07-07 02:12 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-07-12 19:07 - 2017-07-07 02:12 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-07-12 19:07 - 2017-07-07 02:12 - 01305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-07-12 19:07 - 2017-07-07 02:12 - 00706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-07-12 19:07 - 2017-07-07 02:11 - 02829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-07-12 19:07 - 2017-07-07 02:11 - 02649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-07-12 19:07 - 2017-07-07 02:11 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-07-12 19:07 - 2017-07-07 02:11 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-07-12 19:07 - 2017-07-07 02:10 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-07-12 19:07 - 2017-07-07 02:10 - 04707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-12 19:07 - 2017-07-07 02:10 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-07-12 19:07 - 2017-07-07 02:06 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-07-12 19:07 - 2017-07-07 02:06 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2017-07-12 19:07 - 2017-07-07 02:05 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-07-12 19:07 - 2017-07-07 02:04 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2017-07-12 19:07 - 2017-07-07 02:02 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-07-12 19:07 - 2017-07-01 18:52 - 00031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-07-12 19:07 - 2017-06-20 02:17 - 00034720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-07-12 19:07 - 2017-06-20 02:16 - 00335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-07-12 19:07 - 2017-06-20 02:15 - 00233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
 
2017-07-12 19:07 - 2017-06-20 02:11 - 01395152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-07-12 19:07 - 2017-06-20 02:11 - 00411992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2017-07-12 19:07 - 2017-06-20 02:10 - 02327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-07-12 19:07 - 2017-06-20 02:10 - 01930320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-07-12 19:07 - 2017-06-20 02:08 - 01242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-07-12 19:07 - 2017-06-20 02:05 - 01057832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-07-12 19:07 - 2017-06-20 02:04 - 04847424 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-07-12 19:07 - 2017-06-20 02:03 - 00102312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialUIBroker.exe
2017-07-12 19:07 - 2017-06-20 02:02 - 02645688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-07-12 19:07 - 2017-06-20 02:00 - 00255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-07-12 19:07 - 2017-06-20 02:00 - 00142752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-07-12 19:07 - 2017-06-20 01:59 - 00467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-07-12 19:07 - 2017-06-20 01:58 - 00833160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-07-12 19:07 - 2017-06-20 01:57 - 00204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-07-12 19:07 - 2017-06-20 01:15 - 01620368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-07-12 19:07 - 2017-06-20 01:14 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-07-12 19:07 - 2017-06-20 01:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-07-12 19:07 - 2017-06-20 01:11 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-07-12 19:07 - 2017-06-20 01:11 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-07-12 19:07 - 2017-06-20 01:10 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-07-12 19:07 - 2017-06-20 01:10 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2017-07-12 19:07 - 2017-06-20 01:10 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-07-12 19:07 - 2017-06-20 01:09 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2017-07-12 19:07 - 2017-06-20 01:09 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2017-07-12 19:07 - 2017-06-20 01:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-07-12 19:07 - 2017-06-20 01:09 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-07-12 19:07 - 2017-06-20 01:08 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-07-12 19:07 - 2017-06-20 01:08 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-07-12 19:07 - 2017-06-20 01:08 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-07-12 19:07 - 2017-06-20 01:07 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-07-12 19:07 - 2017-06-20 01:07 - 00823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2017-07-12 19:07 - 2017-06-20 01:07 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-07-12 19:07 - 2017-06-20 01:06 - 00847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-07-12 19:07 - 2017-06-20 01:06 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-07-12 19:07 - 2017-06-20 01:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-07-12 19:07 - 2017-06-20 01:06 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-07-12 19:07 - 2017-06-20 01:05 - 04447744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-07-12 19:07 - 2017-06-20 01:05 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-07-12 19:07 - 2017-06-20 01:05 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-07-12 19:07 - 2017-06-20 01:05 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-07-12 19:07 - 2017-06-20 01:05 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-07-12 19:07 - 2017-06-20 01:04 - 01818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-07-12 19:07 - 2017-06-20 01:04 - 01425920 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-07-12 19:07 - 2017-06-20 01:04 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-07-12 19:07 - 2017-06-20 01:04 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-07-12 19:07 - 2017-06-20 01:04 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2017-07-12 19:07 - 2017-06-20 01:03 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-07-12 19:07 - 2017-06-20 01:02 - 02804736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-07-12 19:07 - 2017-06-20 01:02 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-07-12 19:07 - 2017-06-20 01:01 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-12 19:07 - 2017-06-20 01:01 - 03803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-07-12 19:07 - 2017-06-20 01:01 - 03332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-07-12 19:07 - 2017-06-20 01:01 - 01076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-07-12 19:07 - 2017-06-20 01:00 - 02171392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-07-12 19:07 - 2017-06-20 00:59 - 02938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-07-12 19:07 - 2017-06-20 00:59 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-07-12 19:07 - 2017-06-20 00:54 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-07-12 19:07 - 2017-06-20 00:45 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-07-12 19:06 - 2017-07-07 03:27 - 00965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-07-12 19:06 - 2017-07-07 03:27 - 00821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-07-12 19:06 - 2017-07-07 03:22 - 00119384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-07-12 19:06 - 2017-07-07 03:17 - 01017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-07-12 19:06 - 2017-07-07 03:14 - 01171032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2017-07-12 19:06 - 2017-07-07 03:13 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-07-12 19:06 - 2017-07-07 03:13 - 00147800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2017-07-12 19:06 - 2017-07-07 03:12 - 00228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-07-12 19:06 - 2017-07-07 03:10 - 21353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-07-12 19:06 - 2017-07-07 03:10 - 01337848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-07-12 19:06 - 2017-07-07 03:10 - 00372128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-07-12 19:06 - 2017-07-07 02:27 - 01640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-07-12 19:06 - 2017-07-07 02:27 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2017-07-12 19:06 - 2017-07-07 02:27 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2017-07-12 19:06 - 2017-07-07 02:27 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2017-07-12 19:06 - 2017-07-07 02:25 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-07-12 19:06 - 2017-07-07 02:24 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-07-12 19:06 - 2017-07-07 02:23 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-07-12 19:06 - 2017-07-07 02:23 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
2017-07-12 19:06 - 2017-07-07 02:22 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-07-12 19:06 - 2017-07-07 02:21 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2017-07-12 19:06 - 2017-07-07 02:19 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-07-12 19:06 - 2017-07-07 02:19 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2017-07-12 19:06 - 2017-07-07 02:18 - 00563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-07-12 19:06 - 2017-07-07 02:17 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-07-12 19:06 - 2017-07-07 02:17 - 00536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-07-12 19:06 - 2017-07-07 02:17 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-07-12 19:06 - 2017-07-07 02:16 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-12 19:06 - 2017-07-07 02:14 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-07-12 19:06 - 2017-07-07 02:12 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-07-12 19:06 - 2017-07-07 02:12 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-07-12 19:06 - 2017-07-07 02:12 - 01420800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-07-12 19:06 - 2017-07-07 02:12 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-07-12 19:06 - 2017-07-07 02:11 - 03139584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-07-12 19:06 - 2017-07-07 02:11 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-07-12 19:06 - 2017-07-07 02:11 - 00986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-07-12 19:06 - 2017-07-07 02:11 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-07-12 19:06 - 2017-07-07 02:07 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-07-12 19:06 - 2017-07-07 02:07 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2017-07-12 19:06 - 2017-07-07 02:05 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-07-12 19:06 - 2017-07-07 02:04 - 01703424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-07-12 19:06 - 2017-07-07 02:04 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-07-12 19:06 - 2017-06-20 02:18 - 01564576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-07-12 19:06 - 2017-06-20 02:18 - 00096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-07-12 19:06 - 2017-06-20 02:17 - 00629152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-07-12 19:06 - 2017-06-20 02:17 - 00544160 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-07-12 19:06 - 2017-06-20 02:17 - 00334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-07-12 19:06 - 2017-06-20 02:17 - 00136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-07-12 19:06 - 2017-06-20 02:16 - 01214880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-07-12 19:06 - 2017-06-20 02:04 - 00472728 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-07-12 19:06 - 2017-06-20 02:03 - 00179608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-07-12 19:06 - 2017-06-20 02:02 - 00426912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-07-12 19:06 - 2017-06-20 02:00 - 00558920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-07-12 19:06 - 2017-06-20 01:59 - 01054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-07-12 19:06 - 2017-06-20 01:59 - 00583304 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2017-07-12 19:06 - 2017-06-20 01:58 - 00406072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-07-12 19:06 - 2017-06-20 01:58 - 00203168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-07-12 19:06 - 2017-06-20 01:16 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2017-07-12 19:06 - 2017-06-20 01:16 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-07-12 19:06 - 2017-06-20 01:14 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2017-07-12 19:06 - 2017-06-20 01:13 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2017-07-12 19:06 - 2017-06-20 01:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2017-07-12 19:06 - 2017-06-20 01:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
2017-07-12 19:06 - 2017-06-20 01:12 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-07-12 19:06 - 2017-06-20 01:12 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-07-12 19:06 - 2017-06-20 01:10 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-07-12 19:06 - 2017-06-20 01:10 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-07-12 19:06 - 2017-06-20 01:09 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
2017-07-12 19:06 - 2017-06-20 01:09 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-07-12 19:06 - 2017-06-20 01:09 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-07-12 19:06 - 2017-06-20 01:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2017-07-12 19:06 - 2017-06-20 01:09 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2017-07-12 19:06 - 2017-06-20 01:09 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2017-07-12 19:06 - 2017-06-20 01:08 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2017-07-12 19:06 - 2017-06-20 01:08 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-07-12 19:06 - 2017-06-20 01:07 - 00916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-07-12 19:06 - 2017-06-20 01:07 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-07-12 19:06 - 2017-06-20 01:07 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2017-07-12 19:06 - 2017-06-20 01:07 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-07-12 19:06 - 2017-06-20 01:06 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-07-12 19:06 - 2017-06-20 01:06 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-07-12 19:06 - 2017-06-20 01:06 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-07-12 19:06 - 2017-06-20 01:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2017-07-12 19:06 - 2017-06-20 01:05 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2017-07-12 19:06 - 2017-06-20 01:05 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-07-12 19:06 - 2017-06-20 01:05 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2017-07-12 19:06 - 2017-06-20 01:05 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-07-12 19:06 - 2017-06-20 01:04 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-07-12 19:06 - 2017-06-20 01:03 - 01396224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-07-12 19:06 - 2017-06-20 01:02 - 03204096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-07-12 19:06 - 2017-06-20 01:02 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-07-12 19:06 - 2017-06-20 01:02 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2017-07-12 19:06 - 2017-06-20 01:01 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-07-12 19:06 - 2017-06-20 01:01 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-07-12 19:06 - 2017-06-20 01:01 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-07-12 19:06 - 2017-06-20 01:00 - 03057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-07-12 19:06 - 2017-06-20 00:59 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-07-12 19:06 - 2017-06-20 00:58 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-07-12 19:06 - 2017-06-20 00:57 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-07-12 19:06 - 2017-06-20 00:57 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2017-07-12 19:06 - 2017-06-20 00:56 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-07-12 19:06 - 2017-06-20 00:56 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdmaud.drv
2017-07-12 15:58 - 2017-07-12 15:58 - 00049992 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-07-12 15:58 - 2017-07-12 15:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-07-12 15:58 - 2017-07-12 15:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-07-12 15:58 - 2017-07-12 15:58 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-07-09 17:10 - 2017-07-13 19:26 - 00127744 _____ C:\Users\djbobbysteele\Desktop\FRST.txt
2017-07-09 17:10 - 2017-07-13 19:26 - 00054415 _____ C:\Users\djbobbysteele\Desktop\Addition.txt
2017-07-09 17:09 - 2017-07-13 19:26 - 00054412 _____ C:\Users\djbobbysteele\Downloads\Addition.txt
2017-07-09 17:07 - 2017-07-15 16:34 - 00017473 _____ C:\Users\djbobbysteele\Downloads\FRST.txt
2017-07-09 17:06 - 2017-07-15 16:33 - 00000000 ____D C:\FRST
2017-07-09 17:05 - 2017-07-15 16:33 - 02435584 _____ (Farbar) C:\Users\djbobbysteele\Downloads\FRST64.exe
2017-07-09 16:56 - 2017-07-09 16:56 - 00253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4ECC6DCC.sys
2017-07-09 16:18 - 2017-07-09 16:19 - 00654700 _____ C:\WINDOWS\Minidump\070917-22859-01.dmp
2017-07-09 16:18 - 2017-07-09 16:18 - 703316376 _____ C:\WINDOWS\MEMORY.DMP
2017-07-09 16:18 - 2017-07-09 16:18 - 00000000 ____D C:\WINDOWS\Minidump
2017-07-08 18:40 - 2017-07-08 18:40 - 03891881 _____ C:\Users\djbobbysteele\Downloads\IMG_9709.TRIM.MOV
2017-07-03 23:20 - 2017-07-03 23:20 - 00253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\05D53F73.sys
2017-07-03 23:11 - 2017-07-03 23:11 - 00002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-07-03 23:10 - 2017-07-03 23:10 - 00003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-07-03 23:10 - 2017-07-03 23:10 - 00003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-07-03 22:49 - 2017-07-03 22:49 - 00253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\520B27A2.sys
2017-06-29 19:14 - 2017-06-29 19:14 - 23700928 _____ (2BrightSparks Pte Ltd ) C:\Users\djbobbysteele\Downloads\SyncBack_Setup.exe
2017-06-28 20:08 - 2017-06-28 20:08 - 66247728 _____ C:\Users\djbobbysteele\Downloads\IMG_9586 (1).MOV
2017-06-28 18:56 - 2017-06-28 18:56 - 66247728 _____ C:\Users\djbobbysteele\Desktop\IMG_9586 (1).MOV
2017-06-28 18:55 - 2017-06-28 18:55 - 02601815 _____ C:\Users\djbobbysteele\Desktop\IMG_9709.TRIM.MOV
2017-06-28 06:45 - 2017-07-13 06:22 - 00000000 ____D C:\Users\djbobbysteele\AppData\Roaming\iFunbox_UserCache
2017-06-28 06:27 - 2017-06-28 06:27 - 22815584 _____ (iFunbox DevTeam ) C:\Users\djbobbysteele\Downloads\ifunbox_setup.exe
2017-06-28 05:57 - 2017-06-17 01:41 - 01663672 _____ (Malwarebytes) C:\Users\djbobbysteele\Desktop\JRT.exe
2017-06-28 05:57 - 2017-06-17 01:29 - 04110280 _____ C:\Users\djbobbysteele\Desktop\AdwCleaner.exe
2017-06-27 19:39 - 2017-06-27 21:25 - 59162853 _____ C:\Users\djbobbysteele\Downloads\IMG_9586.MOV
2017-06-27 19:38 - 2017-06-27 21:25 - 03155479 _____ C:\Users\djbobbysteele\Downloads\IMG_5141.mp4
2017-06-27 19:37 - 2017-06-27 21:25 - 20463148 _____ C:\Users\djbobbysteele\Downloads\IMG_2513.MOV
2017-06-27 19:36 - 2017-06-27 21:25 - 33153627 _____ C:\Users\djbobbysteele\Downloads\IMG_6860.MOV
2017-06-27 19:34 - 2017-06-27 21:25 - 13616911 _____ C:\Users\djbobbysteele\Downloads\sector454791332.mov
2017-06-25 20:10 - 2017-06-25 20:19 - 00000000 ____D C:\Users\djbobbysteele\Desktop\PDJE REVIEWS
2017-06-23 17:42 - 2017-06-23 17:42 - 00000000 ____D C:\Users\djbobbysteele\Desktop\ANIMATED
2017-06-17 06:15 - 2017-06-28 19:17 - 00000000 ____D C:\Windows.old
2017-06-17 06:14 - 2017-06-17 06:14 - 06726656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 06535168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 04709528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 04672848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 03135488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 02625024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02604256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02424016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02347520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01911752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01700408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01596600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01474800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01459728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01455592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01141760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01078272 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 01003624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00975360 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
 
2017-06-17 06:14 - 2017-06-17 06:14 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00797184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-06-17 06:14 - 2017-06-17 06:14 - 00777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00730016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00712608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00660384 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00606960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00573856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-06-17 06:14 - 2017-06-17 06:14 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-06-17 06:14 - 2017-06-17 06:14 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00370928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00363424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00321376 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00266640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capauthz.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\devicengccredprov.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00211872 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00188824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devicengccredprov.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00130464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00112544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00086016 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-06-17 06:14 - 2017-06-17 06:14 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredentialDeployment.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-06-17 06:14 - 2017-06-17 06:14 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00059904 _____ C:\WINDOWS\SysWOW64\xboxgipsynthetic.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-06-17 06:14 - 2017-06-17 06:14 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2017-06-17 06:14 - 2017-06-17 06:14 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-06-17 06:14 - 2017-06-17 06:14 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-06-17 06:08 - 2017-06-17 06:08 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-06-17 06:08 - 2017-06-17 02:20 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-06-17 06:06 - 2017-06-17 06:06 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-06-17 06:06 - 2017-06-17 06:06 - 00000000 ____D C:\WINDOWS\system32\msmq
2017-06-17 06:06 - 2017-06-17 06:06 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2017-06-17 06:06 - 2017-06-17 06:06 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-06-17 06:06 - 2017-06-17 06:06 - 00000000 ____D C:\Program Files\MSBuild
2017-06-17 06:06 - 2017-06-17 06:06 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-06-17 06:06 - 2017-06-17 06:06 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-06-17 06:06 - 2017-06-17 06:06 - 00000000 ____D C:\inetpub
2017-06-17 06:05 - 2017-06-17 06:05 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-06-17 06:05 - 2017-02-10 15:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-06-17 06:05 - 2017-02-10 15:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-06-17 06:05 - 2017-02-10 15:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-06-17 06:05 - 2017-02-10 15:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-06-17 06:05 - 2017-02-10 15:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-06-17 06:05 - 2017-02-10 15:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-06-17 02:55 - 2017-06-17 02:55 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-06-17 02:53 - 2017-06-17 02:53 - 00000000 ____D C:\Users\djbobbysteele\AppData\Local\DBG
2017-06-17 02:52 - 2017-06-17 02:52 - 00000020 ___SH C:\Users\djbobbysteele\ntuser.ini
2017-06-17 02:47 - 2017-06-17 02:49 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2017-06-17 02:47 - 2017-06-17 02:49 - 00011433 _____ C:\WINDOWS\diagerr.xml
2017-06-17 02:41 - 2017-07-15 16:25 - 00004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0412A3BF-4AFF-4CB8-BC47-1E95D7BADF99}
2017-06-17 02:41 - 2017-07-14 07:06 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-17 02:41 - 2017-06-22 22:40 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-06-17 02:41 - 2017-06-17 02:42 - 00003538 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3796937070-3348964198-3883336013-1000UA
2017-06-17 02:41 - 2017-06-17 02:42 - 00003452 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-06-17 02:41 - 2017-06-17 02:42 - 00003270 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3796937070-3348964198-3883336013-1000Core
2017-06-17 02:41 - 2017-06-17 02:42 - 00003228 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-06-17 02:41 - 2017-06-17 02:42 - 00002304 _____ C:\WINDOWS\System32\Tasks\{89B9A449-3D65-42DD-A8A4-191E32826F4F}
2017-06-17 02:41 - 2017-06-17 02:42 - 00002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-06-17 02:41 - 2017-06-17 02:41 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-06-17 02:41 - 2017-06-17 02:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2017-06-17 02:41 - 2017-06-17 02:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\2BrightSparks
2017-06-17 02:31 - 2017-06-17 02:31 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-06-17 02:31 - 2017-06-17 02:31 - 00000000 ____D C:\ProgramData\USOShared
2017-06-17 02:28 - 2017-06-17 02:34 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-06-17 02:28 - 2017-06-17 02:28 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2017-06-17 02:26 - 2017-07-15 13:52 - 00000000 ____D C:\Users\djbobbysteele
2017-06-17 02:26 - 2017-06-17 02:39 - 00000000 ____D C:\Users\DefaultAppPool
2017-06-17 02:25 - 2017-07-14 07:12 - 01527266 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-17 02:25 - 2017-06-17 02:25 - 00975864 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-06-17 02:24 - 2017-06-17 02:24 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2017-06-17 02:24 - 2017-06-17 02:24 - 00000000 ____D C:\WINDOWS\system32\NV
2017-06-17 02:24 - 2017-06-17 02:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-17 02:24 - 2017-06-17 02:24 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-17 02:24 - 2017-06-17 02:24 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-06-17 02:24 - 2017-06-17 02:24 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-17 02:24 - 2016-08-01 08:54 - 06386744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-06-17 02:24 - 2016-08-01 08:54 - 02466360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-06-17 02:24 - 2016-08-01 08:54 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-06-17 02:24 - 2016-08-01 08:54 - 01365048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2017-06-17 02:24 - 2016-08-01 08:54 - 00547896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-06-17 02:24 - 2016-08-01 08:54 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-06-17 02:24 - 2016-08-01 08:54 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-06-17 02:24 - 2016-08-01 08:54 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-06-17 02:24 - 2016-07-28 09:02 - 07242545 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-06-17 02:23 - 2017-06-17 02:23 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-06-17 02:23 - 2017-06-17 02:23 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-06-17 02:23 - 2017-06-17 02:23 - 00000000 ____D C:\Program Files\Synaptics
2017-06-17 02:23 - 2017-03-18 16:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-06-17 02:20 - 2017-07-14 07:07 - 04917272 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-17 02:20 - 2017-07-13 21:19 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-17 01:43 - 2017-07-14 07:24 - 00000563 _____ C:\Users\djbobbysteele\Desktop\JRT.txt
2017-06-17 01:25 - 2017-06-17 02:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-06-17 01:25 - 2017-06-17 01:25 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-06-17 01:25 - 2017-06-17 01:25 - 00000000 ____D C:\Program Files\CCleaner
2017-06-16 23:54 - 2017-06-16 23:54 - 00000000 ____D C:\Users\djbobbysteele\Desktop\SCREEN EVENT IMAGES
2017-06-16 20:28 - 2017-06-17 02:58 - 00000000 ___DC C:\WINDOWS\Panther

==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-15 14:09 - 2017-01-11 21:39 - 00000000 ____D C:\Users\djbobbysteele\My Scans
2017-07-15 14:08 - 2017-01-02 13:10 - 00000000 ____D C:\Users\Public\Documents\Neat ADF Scanner
2017-07-15 13:52 - 2017-01-02 13:12 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-07-15 13:52 - 2017-01-02 13:10 - 00000010 _____ C:\Users\djbobbysteele\versionId.txt
2017-07-15 13:48 - 2017-01-02 13:12 - 00000000 ____D C:\Users\djbobbysteele\Neat-Logs
2017-07-15 13:30 - 2017-03-07 20:28 - 00093600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-07-15 02:55 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\rescache
2017-07-15 02:17 - 2017-03-18 17:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-15 02:17 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-14 09:30 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-07-14 08:09 - 2016-09-04 19:07 - 00000058 _____ C:\Users\djbobbysteele\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2017-07-14 07:16 - 2017-03-27 21:49 - 00000000 ____D C:\AdwCleaner
2017-07-14 07:06 - 2017-03-07 20:28 - 00253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-07-14 07:06 - 2017-03-07 20:28 - 00101784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-07-14 07:06 - 2017-03-07 20:25 - 00045472 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-07-14 07:05 - 2017-03-18 07:40 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-07-13 19:20 - 2016-07-12 21:29 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-07-13 06:30 - 2017-03-31 07:44 - 00000000 ____D C:\Users\djbobbysteele\Desktop\DCIM
2017-07-13 06:22 - 2016-08-15 14:58 - 00000000 ____D C:\Users\djbobbysteele\Documents\CoffeeCup Software
2017-07-13 06:22 - 2016-08-15 14:54 - 00000000 ____D C:\Users\djbobbysteele\AppData\Roaming\CoffeeCup Software
2017-07-13 05:37 - 2017-03-18 17:01 - 00000000 ____D C:\WINDOWS\INF
2017-07-12 22:23 - 2016-04-27 02:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-07-12 22:03 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-07-12 21:35 - 2017-01-02 13:10 - 00000000 ____D C:\Users\djbobbysteele\AppData\Local\Neat
2017-07-12 19:18 - 2017-03-18 16:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-12 19:14 - 2016-07-12 20:37 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-12 19:10 - 2016-07-12 20:37 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-12 18:43 - 2017-06-14 19:20 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-07-09 16:51 - 2016-10-17 17:58 - 00000357 _____ C:\Users\djbobbysteele\AppData\Roaming\WB.CFG
2017-07-07 02:41 - 2016-07-12 01:14 - 00395226 __RSH C:\bootmgr
2017-07-03 23:16 - 2016-07-12 21:22 - 00000000 ____D C:\Users\djbobbysteele\AppData\Local\Apple
2017-07-03 23:11 - 2016-07-11 22:50 - 00000000 ____D C:\Users\djbobbysteele\AppData\Local\Google
2017-07-03 23:11 - 2016-07-11 22:50 - 00000000 ____D C:\Program Files (x86)\Google
2017-07-03 22:39 - 2017-03-07 20:29 - 00188352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-07-03 22:36 - 2017-03-07 20:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-07-03 18:58 - 2016-07-22 11:12 - 00000000 ____D C:\Users\djbobbysteele\AppData\Roaming\MediaMonkey
2017-06-30 10:47 - 2017-03-18 17:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 10:47 - 2017-03-18 17:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-27 12:06 - 2017-03-07 20:28 - 00077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-06-22 22:40 - 2016-07-12 20:05 - 00002428 _____ C:\Users\djbobbysteele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-22 22:40 - 2016-07-12 20:05 - 00000000 ___RD C:\Users\djbobbysteele\OneDrive
2017-06-19 21:16 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-06-17 06:19 - 2017-03-18 17:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-06-17 06:15 - 2017-03-18 17:06 - 00000000 ____D C:\WINDOWS\Setup
2017-06-17 06:15 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-06-17 06:15 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-06-17 06:15 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-06-17 06:15 - 2017-03-18 07:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-06-17 06:06 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-06-17 06:06 - 2017-03-18 16:59 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2017-06-17 06:06 - 2017-03-18 16:59 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2017-06-17 06:06 - 2017-03-18 16:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2017-06-17 06:06 - 2017-03-18 16:59 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2017-06-17 06:06 - 2017-03-18 16:59 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2017-06-17 06:06 - 2017-03-18 16:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2017-06-17 06:06 - 2017-03-18 16:59 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2017-06-17 06:06 - 2017-03-18 16:59 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2017-06-17 06:06 - 2017-03-18 16:56 - 01380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2017-06-17 06:06 - 2017-03-18 16:56 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-06-17 06:06 - 2017-03-18 16:56 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2017-06-17 06:06 - 2017-03-18 16:56 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2017-06-17 06:06 - 2017-03-18 16:56 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2017-06-17 06:06 - 2017-03-18 16:56 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2017-06-17 06:06 - 2017-03-18 16:56 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2017-06-17 06:06 - 2017-03-18 16:56 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-06-17 06:06 - 2017-03-18 16:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-06-17 06:06 - 2017-03-18 16:56 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-06-17 06:06 - 2017-03-18 16:56 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2017-06-17 06:06 - 2017-03-18 16:56 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-06-17 06:06 - 2017-03-18 16:56 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2017-06-17 06:06 - 2017-03-18 16:56 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2017-06-17 06:06 - 2017-03-18 16:56 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2017-06-17 03:11 - 2016-07-12 20:02 - 00000000 ____D C:\Users\djbobbysteele\AppData\Local\Packages
2017-06-17 03:06 - 2016-10-15 05:51 - 00000258 __RSH C:\ProgramData\ntuser.pol
2017-06-17 02:49 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-06-17 02:49 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\Registration
2017-06-17 02:47 - 2016-07-16 07:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-06-17 02:42 - 2017-03-18 22:31 - 00000000 ____D C:\WINDOWS\HoloShell
2017-06-17 02:42 - 2016-07-12 19:10 - 00022840 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-06-17 02:41 - 2017-03-18 17:03 - 00000000 __RSD C:\WINDOWS\Media
2017-06-17 02:40 - 2017-03-18 17:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-06-17 02:34 - 2017-06-13 23:31 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-17 02:34 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-06-17 02:34 - 2017-02-19 21:50 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-06-17 02:34 - 2017-02-19 21:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-06-17 02:34 - 2017-01-10 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neat Smart Organization System
2017-06-17 02:34 - 2016-12-18 20:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Duplicate File Detective 6
2017-06-17 02:34 - 2016-12-18 18:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clone Files Checker
2017-06-17 02:34 - 2016-12-17 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2017-06-17 02:34 - 2016-09-04 19:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScreenshotCaptor
2017-06-17 02:34 - 2016-08-30 06:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SOLIDWORKS Installation Manager
2017-06-17 02:34 - 2016-08-15 11:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TextPad 8
2017-06-17 02:34 - 2016-07-28 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-06-17 02:34 - 2016-07-25 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PP助手5.0
2017-06-17 02:34 - 2016-07-22 11:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey
2017-06-17 02:34 - 2016-07-21 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2017-06-17 02:34 - 2016-07-12 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agent Ransack
2017-06-17 02:34 - 2016-07-11 21:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e
2017-06-17 02:33 - 2016-12-10 09:32 - 00000000 ____D C:\Users\djbobbysteele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
2017-06-17 02:33 - 2016-07-12 20:49 - 00000000 ____D C:\Users\djbobbysteele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2017-06-17 02:33 - 2016-07-12 20:21 - 00000000 ____D C:\Users\djbobbysteele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2017-06-17 02:31 - 2017-03-18 17:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-06-17 02:31 - 2017-03-18 17:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-06-17 02:30 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2017-06-17 02:30 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-06-17 02:30 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-06-17 02:30 - 2016-07-11 21:26 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2017-06-17 02:29 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\IME
2017-06-17 02:29 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\schemas
2017-06-17 02:29 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-17 02:29 - 2017-03-05 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-06-17 02:29 - 2017-02-21 19:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2BrightSparks
2017-06-17 02:29 - 2016-12-18 08:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
2017-06-17 02:29 - 2016-08-04 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2017-06-17 02:29 - 2016-07-31 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mSeven Software
2017-06-17 02:29 - 2016-07-22 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft
2017-06-17 02:29 - 2016-07-12 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Denon DJ
2017-06-17 02:28 - 2017-03-18 17:03 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-06-17 02:28 - 2017-03-18 17:03 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2017-06-17 02:28 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-06-17 02:28 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-06-17 02:28 - 2016-07-11 21:24 - 00000000 ____D C:\Program Files\Intel
2017-06-17 02:28 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\Microsoft Games
2017-06-17 02:28 - 2009-07-13 23:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-06-17 02:25 - 2017-03-18 07:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-06-17 02:24 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\Help
2017-06-17 02:24 - 2016-08-04 17:06 - 00000000 ____D C:\temp
2017-06-17 01:51 - 2016-07-12 01:14 - 00008192 __RSH C:\BOOTSECT.BAK
2017-06-15 23:27 - 2016-07-12 21:35 - 00000000 ___RD C:\Users\djbobbysteele\Dropbox

==================== Files in the root of some directories =======

2016-11-10 07:53 - 2016-11-10 07:53 - 2760214 _____ () C:\Users\djbobbysteele\AppData\Roaming\sb93.dat
2016-11-10 07:53 - 2016-11-10 07:53 - 0189952 _____ () C:\Users\djbobbysteele\AppData\Roaming\Setup24897.exe
2016-10-17 17:58 - 2017-07-09 16:51 - 0000357 _____ () C:\Users\djbobbysteele\AppData\Roaming\WB.CFG
2016-09-04 19:07 - 2017-07-14 08:09 - 0000058 _____ () C:\Users\djbobbysteele\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2016-09-07 18:25 - 2016-09-07 18:25 - 0012112 _____ () C:\Users\djbobbysteele\AppData\Local\recently-used.xbel
2016-02-28 19:50 - 2016-02-28 19:50 - 0010218 _____ () C:\ProgramData\regid.2015-05.exe.textpad_83F5EF12-C2F9-4C11-A5C5-57A7B2D7AD25.swidtag

Some files in TEMP:
====================
2017-07-14 06:22 - 2017-06-20 02:10 - 1930320 _____ (Microsoft Corporation) C:\Users\djbobbysteele\AppData\Local\Temp\dllnt_dump.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-07-12 20:03

==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-07-2017
Ran by djbobbysteele (15-07-2017 16:34:41)
Running from C:\Users\djbobbysteele\Downloads
Windows 10 Home Version 1703 (X64) (2017-06-17 06:50:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3796937070-3348964198-3883336013-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3796937070-3348964198-3883336013-503 - Limited - Disabled)
djbobbysteele (S-1-5-21-3796937070-3348964198-3883336013-1000 - Administrator - Enabled) => C:\Users\djbobbysteele
Guest (S-1-5-21-3796937070-3348964198-3883336013-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3796937070-3348964198-3883336013-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_0_0) (Version: 14.0.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.0.327 - Adobe Systems Incorporated)
Agent Ransack x64 (HKLM\...\{FD8C1365-2229-4F37-A126-558DB2471CBE}) (Version: 7.0.828.1 - Mythicsoft Ltd)
Aiseesoft Total Video Converter 8.1.6 (HKLM-x32\...\{E09CEBAA-4435-4404-8D82-4C029F6391E4}_is1) (Version: 8.1.6 - Aiseesoft Studio)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 5.3.0.0 - iMobie Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.46 - Atheros Communications Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform)
Clone Files Checker (HKLM-x32\...\Clone Files Checker_is1) (Version: 4.3 - SORCIM Technologies Pvt Ltd)
Cypress TrackPad (HKLM\...\{7F2F6CC5-434B-4311-9DE2-60C7CAF50B73}_is1) (Version: 2.5.3.72 - Cypress Semiconductor, Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6817.133 - Dell)
Dell System Detect (HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell)
Denon DJ DN-MC6000 1.0.1 (x64) (HKLM\...\{8B17F43E-8CAA-42DA-8352-F086A23BB8F7}) (Version: 1.0.1 - Denon DJ)
Dropbox (HKLM-x32\...\Dropbox) (Version: 30.4.22 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Duplicate File Detective 6 (HKLM\...\{C3E2585A-2BE2-40D4-8EEE-7B9BF10E4D55}) (Version: 6.0.84 - Key Metric Software)
GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Photos Backup (HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
iCloud (HKLM\...\{724A887F-2B55-4306-B6F9-8F0E7A04B1B5}) (Version: 5.2.2.87 - Apple Inc.)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{181BBF43-CA17-4E1A-A78D-81E67A57B8A4}) (Version: 15.02.0000.1258 - Intel Corporation)
iTunes (HKLM\...\{CEC7613B-E286-4A31-BEE3-3F7798488D9F}) (Version: 12.1.3.6 - Apple Inc.)
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
Microsoft OneDrive (HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mp3tag v2.80 (HKLM-x32\...\Mp3tag) (Version: v2.80 - Florian Heidenreich)
mSecure (HKLM-x32\...\{F400029C-1812-41E4-B6C2-1B39F529C1A8}) (Version: 3.172 - mSeven Software LLC)
MusicBrainz Picard (HKLM-x32\...\MusicBrainz Picard) (Version: 1.4.0final0_win_20170214120233 - MusicBrainz)
Neat ADF Scanner Driver (HKLM\...\{A55F1206-BFA7-4027-92B8-CE4EFDBC3CF2}) (Version: 2.0.2.5 - The Neat Company)
Neat Smart Organization System (HKLM-x32\...\Neat Smart Organization System) (Version: 1.4.8.20 - The Neat Company)
POOL Player (HKLM-x32\...\{38A44B42-92AC-0274-76D2-92788657167C}) (Version: 4.0.1 - Promo Only, Inc.) Hidden
POOL Player (HKLM-x32\...\com.promoonly.online.POOL.8BB1F44190BE209F9DAD807CFDEF7E1135FDA399.1) (Version: 4.0.1 - Promo Only, Inc.)
PP助手5.0 (HKLM-x32\...\PP助手5.0) (Version: 5.0.3.1154 - 广州爱禾网络技术有限公司)
RogueKiller version 12.11.6.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.11.6.0 - Adlice Software)
Screenshot Captor 4.16.1 (HKLM-x32\...\ScreenshotCaptor_is1) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.17.55 - Synaptics Incorporated)
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 8.1.1.0 - 2BrightSparks)
TextPad 8 (HKLM\...\{861AB1C1-1967-4C4A-BF86-C255E2D2B8FD}) (Version: 8.0.2 - Helios)
Videotoolz Downloader 3.0 (HKLM-x32\...\{BE185345-26E0-7EC6-8359-6FCA67258B01}) (Version: 6.6.0 - UNKNOWN) Hidden
Videotoolz Downloader 3.0 (HKLM-x32\...\com.hexoindia.MediaDownloader) (Version: 6.6.0 - UNKNOWN)
VirtualDJ 8 (HKLM-x32\...\{AD5E550D-6339-4BAB-B93E-E156F93914FA}) (Version: 8.2.3291.0 - Atomix Productions)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17332 - Microsoft Corporation)
Wondershare TidyMyMusic(Build 1.5.0.1) (HKLM-x32\...\Wondershare TidyMyMusic_is1) (Version: 1.5.0.1 - Wondershare Software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{5A9E21A2-851A-4BEB-B16F-DBBE7D648AF9}\InprocServer32 -> C:\Program Files\TextPad 8\System\ShellExt64.dll ()
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{D7D3CA0B-DD16-ADAF-39E4-66FD70ED6DE02}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{DB342E32-06DC-9BE7-849D-FE79405BDB865}\InprocServer32 -> 0x30AF1FA69159D20160C4A03D5BA0D2010A0000001600000000000000 => No File
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll (Google Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers01: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ContextMenuHandlers01: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers01: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2016-11-25] (Florian Heidenreich)
ContextMenuHandlers01: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2016-07-08] (Apple Inc.)
ContextMenuHandlers02: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd)
ContextMenuHandlers02: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2016-11-25] (Florian Heidenreich)
ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers04: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers04: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd)
ContextMenuHandlers04: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers04: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2016-11-25] (Florian Heidenreich)
ContextMenuHandlers05: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.17.0.dll [2017-07-12] (Dropbox, Inc.)
ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation)
ContextMenuHandlers06: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ContextMenuHandlers06: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd)
ContextMenuHandlers06: [DFDShellExt] -> {AF68190E-3EA4-42EA-946F-DB5555448B8C} => C:\Program Files\Key Metric Software\Duplicate File Detective 6\DFDShellContextMenu.dll [2016-09-29] (TODO: <Company name>)
ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers1_S-1-5-21-3796937070-3348964198-3883336013-1000: [TextPad8] -> {5A9E21A2-851A-4BEB-B16F-DBBE7D648AF9} => C:\Program Files\TextPad 8\System\ShellExt64.dll [2016-02-28] ()

==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0022FCCC-0C56-4FE7-8CD5-50936CC7958F} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {0B424B17-E00E-43F8-BCB0-363356F03EA2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {0F7A84D6-46CF-4CAC-8C0E-0FF189A032E4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {10D7F729-25BC-4593-BD2E-1BD4F40B5A88} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {139F47F8-33E0-44E8-9EEC-70F061044007} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {232F36CE-7BC3-4E89-9E5F-AA74534260D5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {29D6D616-3CEA-42C5-8652-E828D6F6ABCA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-12] (Dropbox, Inc.)
Task: {34D3386B-E07A-4786-A6C4-5DDAFEBFB5E7} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {351B7B78-B5A7-4CEC-B442-4976DEEFAE08} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {368B30A5-6237-4D64-9D98-EBDFFB45D42F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {3F3B3B71-8C9D-40C5-A92F-5EACB6DA6B21} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {400B37A4-6EAD-4DFD-92CE-51C9B84FE2C7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4738E83B-CE5B-4C0F-B373-F998C9DFB107} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {51B6EB8D-2435-4754-AA9C-E76FA5E034FA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-13] (Piriform Ltd)
Task: {59AABC68-6D98-48AE-BE32-69CE8C7D363C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3796937070-3348964198-3883336013-1000Core => C:\Users\djbobbysteele\AppData\Local\Google\Update\GoogleUpdate.exe [2016-12-10] (Google Inc.)
Task: {5C8C2460-D130-47C8-B83F-780B9237EEFB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {62497902-95D9-41AA-8177-DA158182B2EB} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6D448944-8D05-4C8C-9153-CCBEDB685DBC} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7001BCFC-2811-4579-AA8D-7E52549D25A5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {71590328-5257-40FD-B523-D915AAB91CDE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {722AA111-0179-4446-A58D-06427E864E08} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {89B5B79A-888E-40AC-B6B5-47A2B0C5CF6D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {89B9B896-DA98-4717-B9E0-857DEBC6B38C} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-12] (Dropbox, Inc.)
Task: {8BD5B616-6590-4885-8806-18ED66AA01C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-03] (Google Inc.)
Task: {8D3FF9B3-22F2-40A4-982F-9050F870BCAD} - System32\Tasks\{89B9A449-3D65-42DD-A8A4-191E32826F4F} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\djbobbysteele\Downloads\R296457.exe -d C:\Users\djbobbysteele\Downloads
Task: {918A6273-885D-4C18-93D2-F95BFAF92E8C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B51413D9-F0AC-4B4F-8356-FAA22F4BE0ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B57BF089-5BC5-463D-B08D-807503011F13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-03] (Google Inc.)
Task: {B5E80434-12EB-4E31-83EF-65293D9E3309} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3796937070-3348964198-3883336013-1000UA => C:\Users\djbobbysteele\AppData\Local\Google\Update\GoogleUpdate.exe [2016-12-10] (Google Inc.)
Task: {B9E38D0A-98F6-4880-B791-1D6905AD412C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CA78FAB1-08B2-4B95-8C1E-5CC039CA76AE} - System32\Tasks\2BrightSparks\SyncBackFree\PDJE_PC-djbobbysteele\PDJ Library Backup => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-06-12] (2BrightSparks Pte. Ltd.)
Task: {CBC2565B-DC4B-4879-AB9D-BCA08FE548B2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {CD7C3319-1517-451D-99F7-76E637380855} - System32\Tasks\2BrightSparks\SyncBackFree\PDJE_PC-djbobbysteele\SyncBackFree PDJ Library Backup => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-06-12] (2BrightSparks Pte. Ltd.)
Task: {D21534F9-ECD4-4170-88DC-FE26FC3A4130} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {D36B997D-CE7E-4CD6-B44F-F5C69ABB4F8A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {D408F2C8-4C34-436A-96C1-235FA8A0AD74} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D8EE03D0-37A9-4C3E-8D73-34B3C9AAE531} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E66FB112-3F68-410A-9445-31303B7E6AC1} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E93D49B2-4323-487C-BBE6-19529754C184} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {F115A05F-DD88-431E-9D99-C95A12499A9F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F31E28E8-5D44-43B7-BB6A-7BFC46E83467} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F4634CB2-62FF-417E-A38D-8B833E468F4D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\djbobbysteele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\djbobbysteele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Loaded Modules (Whitelisted) ==============

2016-04-22 01:07 - 2016-04-22 01:07 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-03-07 20:28 - 2017-06-27 12:06 - 02260432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-03-18 16:58 - 2017-03-18 16:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-06-02 17:21 - 2017-06-02 17:22 - 03139496 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-21 20:08 - 2017-06-21 20:08 - 00766464 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-06-21 20:08 - 2017-06-21 20:08 - 10628608 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-06-21 20:08 - 2017-06-21 20:08 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2016-06-10 02:41 - 2016-06-10 02:41 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2017-03-18 16:58 - 2017-03-18 16:58 - 00491008 _____ () C:\Windows\ShellExperiences\TileControl.dll
2017-03-18 16:59 - 2017-03-18 22:31 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-07-03 23:11 - 2017-06-22 23:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
2017-07-03 23:11 - 2017-06-22 23:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll
2017-07-12 18:46 - 2017-07-12 18:58 - 00020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-07-12 18:46 - 2017-07-12 18:58 - 27590144 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-07-12 18:46 - 2017-07-12 18:58 - 00428032 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-07-12 18:46 - 2017-07-12 18:58 - 20649984 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-07-12 18:46 - 2017-07-12 18:58 - 02305536 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-07-12 18:46 - 2017-07-12 18:58 - 02856448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-06-02 17:21 - 2017-06-02 17:22 - 03139496 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-02 17:21 - 2017-06-02 17:22 - 00046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2016-07-13 18:08 - 2016-07-13 18:08 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-07-12 18:46 - 2017-07-12 18:58 - 01127936 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-05-08 18:06 - 2017-05-08 18:06 - 01062400 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2017-06-21 20:08 - 2017-06-21 20:08 - 00054272 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
2016-04-22 01:08 - 2016-04-22 01:08 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 00244536 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 01041208 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2017-07-12 21:24 - 2017-02-13 13:34 - 01078272 _____ () C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\ffmpeg.dll
2017-01-10 20:46 - 2017-02-13 13:34 - 01922560 _____ () C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\libglesv2.dll
2017-01-10 20:45 - 2017-02-13 13:34 - 00079872 _____ () C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\libegl.dll
2017-07-12 21:24 - 2017-02-13 13:34 - 04982784 _____ () C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\node.dll
2017-01-10 20:46 - 2017-02-21 16:10 - 25437400 _____ () C:\Program Files (x86)\The Neat Company\Neat Smart Organization System\Helium-shell\HeliumAppShell\binaries\NSDKExtensions.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\djbobbysteele\Desktop\ANIMATED:com.dropbox.attributes [168]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2017-03-31 07:56 - 00001626 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 adobeereg.com
127.0.0.1 www.adobeereg.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 125.252.224.90
127.0.0.1 125.252.224.91
127.0.0.1 hl2rcv.adobe.com
0.0.0.0 keystone.mwbsys.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\djbobbysteele\Dropbox\01 Documents\01 PDJE\01 events\PDJE-LOGO-WITH-FLARE.jpg
DNS Servers: 10.0.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{F85CCC61-4279-4A6E-A2D6-D44D36C96470}C:\program files (x86)\mseven software\msecure\msecure.exe] => (Block) C:\program files (x86)\mseven software\msecure\msecure.exe
FirewallRules: [TCP Query User{C73813E1-EFAF-43D7-80E6-D01D9C83C103}C:\program files (x86)\mseven software\msecure\msecure.exe] => (Block) C:\program files (x86)\mseven software\msecure\msecure.exe
FirewallRules: [{3FFCBFB0-FABC-4D38-B142-978A0E10A97B}] => (Block) %ProgramFiles%\Key Metric Software\Duplicate File Detective 6\DFD.exe
FirewallRules: [{80F3EE48-7DC3-48EF-A7DE-D2DE383E7D16}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{A238BED0-8E4F-468C-93CF-39A9727A9ABA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{982AC9CA-3885-47D0-A610-41F7F719A735}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2DB6206C-2491-486A-A284-5A3D91857169}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3CD07591-4D84-4F7F-B076-0507A3D5E8DA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D597B91A-BA7A-43ED-8BD8-BD3342CE76E9}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey (non-skinned).exe
FirewallRules: [TCP Query User{DF964954-9560-42FE-AE3F-B25743C07082}C:\program files (x86)\pp助手5.0\pphelper5.exe] => (Allow) C:\program files (x86)\pp助手5.0\pphelper5.exe
FirewallRules: [UDP Query User{09DE05DE-5423-4794-9394-D0072E5E84E8}C:\program files (x86)\pp助手5.0\pphelper5.exe] => (Allow) C:\program files (x86)\pp助手5.0\pphelper5.exe
FirewallRules: [TCP Query User{95ED603F-9FF8-4860-BEA3-332AE0789FA7}C:\program files (x86)\pp助手5.0\adevicehelpermon.exe] => (Allow) C:\program files (x86)\pp助手5.0\adevicehelpermon.exe
FirewallRules: [UDP Query User{3F3E3E67-7F53-4D29-9506-AEF11A7BF8BC}C:\program files (x86)\pp助手5.0\adevicehelpermon.exe] => (Allow) C:\program files (x86)\pp助手5.0\adevicehelpermon.exe
FirewallRules: [{DC3E1330-5DAA-435A-B35F-58E5AB509171}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{181BBEAA-0A81-49CC-9859-583A58AEB394}C:\program files (x86)\mseven software\msecure\msecure.exe] => (Allow) C:\program files (x86)\mseven software\msecure\msecure.exe
FirewallRules: [UDP Query User{A988209D-154C-450F-ADD6-4F94DE193ADE}C:\program files (x86)\mseven software\msecure\msecure.exe] => (Allow) C:\program files (x86)\mseven software\msecure\msecure.exe
FirewallRules: [{93F815D5-509F-45BA-9F31-3D0A3BE9111B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CF5050FA-003A-4D42-BF9A-745B0C195662}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Restore Points =========================

25-06-2017 19:02:25 Scheduled Checkpoint
30-06-2017 17:57:22 JRT Pre-Junkware Removal
08-07-2017 19:22:38 Scheduled Checkpoint
12-07-2017 19:09:44 Windows Update
14-07-2017 07:21:02 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/15/2017 01:53:17 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

Error: (07/15/2017 03:39:06 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

Error: (07/14/2017 08:23:08 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.15063.447 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1848

Start Time: 01d2fc915c1d1d43

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: 1f4e8048-58c1-4c23-80d8-5f373273d5a2

Faulting package full name:

Faulting package-relative application ID:

Error: (07/14/2017 07:21:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Adobe CEF Helper.exe, version: 3.9.0.327, time stamp: 0x57fece6a
Faulting module name: libcef.dll, version: 3.2171.2069.0, time stamp: 0x551bdc44
Exception code: 0xc0000005
Fault offset: 0x00444106
Faulting process id: 0x2638
Faulting application start time: 0x01d2fc91810a6ae5
Faulting application path: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
Faulting module path: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
Report Id: 02106e80-0d15-4f3e-b2be-9ac88d2101fb
Faulting package full name:
Faulting package-relative application ID:

Error: (07/14/2017 07:21:41 AM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1

Error: (07/14/2017 07:21:41 AM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/14/2017 07:21:36 AM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1

Error: (07/14/2017 07:21:36 AM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/14/2017 07:21:31 AM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1

Error: (07/14/2017 07:21:31 AM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (07/14/2017 07:07:18 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/14/2017 07:07:18 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/14/2017 07:06:28 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (07/14/2017 07:06:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CldFlt service failed to start due to the following error:
The request is not supported.

Error: (07/13/2017 07:16:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/13/2017 07:16:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.


CodeIntegrity:
===================================
Date: 2017-07-05 06:55:08.156
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-05 06:55:05.988
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-05 06:55:05.794
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-03 23:10:01.491
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-03 23:09:47.317
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-03 23:09:32.429
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-03 23:09:27.185
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-03 23:09:26.918
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-03 22:54:21.486
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2017-07-03 22:53:43.052
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-2620M CPU @ 2.70GHz
Percentage of memory in use: 50%
Total physical RAM: 8086.16 MB
Available physical RAM: 4012.72 MB
Total Virtual: 16278.16 MB
Available Virtual: 10873.97 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:697.84 GB) (Free:504.75 GB) NTFS ==>[drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 427DAC49)
Partition 1: (Active) - (Size=697.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=817 MB) - (Type=27)

==================== End of Addition.txt ============================
 
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
 

Attachments

  • fixlist.txt
    3.1 KB · Views: 1
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-07-2017
Ran by djbobbysteele (16-07-2017 16:35:26) Run:1
Running from C:\Users\djbobbysteele\Desktop
Loaded Profiles: djbobbysteele (Available Profiles: djbobbysteele & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction <==== ATTENTION
2017-07-12 21:25 - 2017-07-12 21:25 - 00000000 ____D C:\Users\djbobbysteele\AppData\Local\Chromium
2016-11-10 07:53 - 2016-11-10 07:53 - 2760214 _____ () C:\Users\djbobbysteele\AppData\Roaming\sb93.dat
2016-11-10 07:53 - 2016-11-10 07:53 - 0189952 _____ () C:\Users\djbobbysteele\AppData\Roaming\Setup24897.exe
2016-10-17 17:58 - 2017-07-09 16:51 - 0000357 _____ () C:\Users\djbobbysteele\AppData\Roaming\WB.CFG
2016-09-04 19:07 - 2017-07-14 08:09 - 0000058 _____ () C:\Users\djbobbysteele\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2016-09-07 18:25 - 2016-09-07 18:25 - 0012112 _____ () C:\Users\djbobbysteele\AppData\Local\recently-used.xbel
2016-02-28 19:50 - 2016-02-28 19:50 - 0010218 _____ () C:\ProgramData\regid.2015-05.exe.textpad_83F5EF12-C2F9-4C11-A5C5-57A7B2D7AD25.swidtag
2017-07-14 06:22 - 2017-06-20 02:10 - 1930320 _____ (Microsoft Corporation) C:\Users\djbobbysteele\AppData\Local\Temp\dllnt_dump.dll
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\djbobbysteele\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{D7D3CA0B-DD16-ADAF-39E4-66FD70ED6DE02}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{DB342E32-06DC-9BE7-849D-FE79405BDB865}\InprocServer32 -> 0x30AF1FA69159D20160C4A03D5BA0D2010A0000001600000000000000 => No File
Task: {0B424B17-E00E-43F8-BCB0-363356F03EA2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {0F7A84D6-46CF-4CAC-8C0E-0FF189A032E4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {351B7B78-B5A7-4CEC-B442-4976DEEFAE08} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {7001BCFC-2811-4579-AA8D-7E52549D25A5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {722AA111-0179-4446-A58D-06427E864E08} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {918A6273-885D-4C18-93D2-F95BFAF92E8C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {CBC2565B-DC4B-4879-AB9D-BCA08FE548B2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E93D49B2-4323-487C-BBE6-19529754C184} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
AlternateDataStreams: C:\Users\djbobbysteele\Desktop\ANIMATED:com.dropbox.attributes [168]


*****************

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => key removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully

"C:\Users\djbobbysteele\AppData\Local\Chromium" folder move:

Could not move "C:\Users\djbobbysteele\AppData\Local\Chromium" => Scheduled to move on reboot.

C:\Users\djbobbysteele\AppData\Roaming\sb93.dat => moved successfully
C:\Users\djbobbysteele\AppData\Roaming\Setup24897.exe => moved successfully
C:\Users\djbobbysteele\AppData\Roaming\WB.CFG => moved successfully
C:\Users\djbobbysteele\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat => moved successfully
C:\Users\djbobbysteele\AppData\Local\recently-used.xbel => moved successfully
C:\ProgramData\regid.2015-05.exe.textpad_83F5EF12-C2F9-4C11-A5C5-57A7B2D7AD25.swidtag => moved successfully
C:\Users\djbobbysteele\AppData\Local\Temp\dllnt_dump.dll => moved successfully
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4} => key removed successfully
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04} => key removed successfully
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA} => key removed successfully
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{D7D3CA0B-DD16-ADAF-39E4-66FD70ED6DE02} => key removed successfully
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000_Classes\CLSID\{DB342E32-06DC-9BE7-849D-FE79405BDB865} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0B424B17-E00E-43F8-BCB0-363356F03EA2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B424B17-E00E-43F8-BCB0-363356F03EA2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0F7A84D6-46CF-4CAC-8C0E-0FF189A032E4} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F7A84D6-46CF-4CAC-8C0E-0FF189A032E4} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{351B7B78-B5A7-4CEC-B442-4976DEEFAE08} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{351B7B78-B5A7-4CEC-B442-4976DEEFAE08} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7001BCFC-2811-4579-AA8D-7E52549D25A5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7001BCFC-2811-4579-AA8D-7E52549D25A5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{722AA111-0179-4446-A58D-06427E864E08} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{722AA111-0179-4446-A58D-06427E864E08} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{918A6273-885D-4C18-93D2-F95BFAF92E8C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{918A6273-885D-4C18-93D2-F95BFAF92E8C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CBC2565B-DC4B-4879-AB9D-BCA08FE548B2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CBC2565B-DC4B-4879-AB9D-BCA08FE548B2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E93D49B2-4323-487C-BBE6-19529754C184} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E93D49B2-4323-487C-BBE6-19529754C184} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector => key removed successfully
"C:\Users\djbobbysteele\Desktop\ANIMATED" => ":com.dropbox.attributes" ADS not found.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 16-07-2017 16:37:14)

C:\Users\djbobbysteele\AppData\Local\Chromium => Is moved successfully

==== End of Fixlog 16:37:14 ====
 
Last scans...

redtarget.gif
Download Security Check from here or here and save it to your Desktop.
  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run


redtarget.gif
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
Make sure the following options are checked:
  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center
  • Windows Update
  • Windows Defender
  • Other Services

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.


redtarget.gif
Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
  • Double click on TFC.exe to run the program.
  • Click on Start button to begin cleaning process.
  • TFC will close all running programs, and it may ask you to restart computer.


redtarget.gif
Download Sophos Free Virus Removal Tool and save it to your desktop.
  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View log file... (bottom left hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program
 
CHECKUP.TXT

Results of screen317's Security Check version 1.014 --- 12/23/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
[size=1]WMI entry may not exist for antivirus; attempting automatic update.[/size]
`````````Anti-malware/Other Utilities Check:`````````
Google Chrome (59.0.3071.115)
Google Chrome (SetupMetrics...)
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamtray.exe
Windows Defender MSASCuiL.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
 
Farbar Service Scanner Version: 27-01-2016
Ran by djbobbysteele (administrator) on 27-07-2017 at 20:51:19
Running from "C:\Users\djbobbysteele\Downloads"
Microsoft Windows 10 Home (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****
 
Last week, the Sophos Virus Removal Tool took a long time to run, said it found no errors. When I try to tun it again, I get an error: Error 1606. Could not access network location data. What shall I do sir?
 
Please run a free online scan with the ESET Online Scanner

  • Disable your antivirus program
  • Under "ESET Online Scanner" click on "Scan now" button.
  • It'll download small file "esetonlinescanner_enu.exe".
  • Double click on downloaded file.
  • Click on Accept button.
  • Checkmark "Disable detection of potentially unwanted applications".
  • Click Scan
  • Accept any security warnings from your browser.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List of found threats
  • Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
 
The ESET scan found this sir:

C:\Users\djbobbysteele\Dropbox\01 Documents\01 PDJE\Website\archive\2013 10-27\public_html\pdje_old\events\wp-content\themes\smallbiz\admin.min.js JS/Kryptik.ALB trojan

I only saw an option to quarantine it. I did, then removed the file from quarantine.
 
Your computer is clean

1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download
51a5ce45263de-delfix.png
DelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
  • Activate UAC (optional; some users prefer to keep it off)
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore
  • Reset system settings
Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.

2. Make sure Windows Updates are current.

3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")

5. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

6. Run Temporary File Cleaner (TFC), AdwCleaner and Junkware Removal Tool (JRT) weekly (you need to redownload these tools since they were removed by DelFix).

7. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

8. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

9. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

10. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642

11. Please, let me know, how your computer is doing.
 
Soooo much useful info. And I've learned just as much. Extremely thankful for your patience and level of detail in cleaning this PC. Truly thankful.(y)
 
You must log in or register to reply here.

Similar threads

midian182
Latest Windows update is breaking Chrome for some users
Replies
10
Views
657
Kam7r
K
Cal Jeffrey
Windows 11 will soon leverage Windows Update to make system recovery faster
Replies
11
Views
329
MisterSpock
M
midian182
Microsoft to tighten Windows 11 hardware requirements in upcoming update, impacting users...
Replies
24
Views
394
bviktor
B

Latest posts

Back