Inactive Zeus Virus

susanaj

Posts: 38   +0
zeus-virus-detected-scam-variant4.jpg

Received this when online today. Want to make sure nothing is on my computer. Have run adaware antivirus. Mcafee ran this morning, mcafee shredder this morning and I ran it again tonight, ran TDSSKiller. Did a complete clean last week. Nothing is detected. What to do now?
 
You've been to this forum before, so....

Please, complete all steps listed here: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.

Please, observe following rules:
  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.
 
FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-08-2017
Ran by Susan (administrator) on MAMAWHITESPC (06-08-2017 23:07:03)
Running from C:\Users\Susan\Downloads
Loaded Profiles: Susan (Available Profiles: Susan)
Platform: Windows 10 Home Version 1703 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
() C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareService.exe
() C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe
() C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Canon Inc.) C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc.) C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(McAfee, Inc.) C:\Program Files\McAfee\MAT\McPvTray.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
() C:\Program Files (x86)\Roxio Creator NXT\Roxio Burn\RoxioBurnLauncher.exe
(Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (MicrosoftCorporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8725248 2015-11-06] (RealtekSemiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-11-06] (RealtekSemiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [714672 2015-09-25] (WavesAudioLtd.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229080 2015-06-02] (RealtekSemiconductorCorporation)
HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareTray.exe [4688856 2017-07-19] ()
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (MicrosoftCorporation)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [317824 2016-01-18] ()
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [599328 2010-03-24] (SonyCorporation)
HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Roxio Creator NXT\Common\RoxWatchTray14.exe [294032 2012-07-18] (CorelCorporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [YouCam Service7] => C:\Program Files (x86)\CyberLink\YouCam7\YouCamService7.exe [466712 2016-07-04] (CyberLinkCorp.)
Winlogon\Notify\GoToAssist Express Customer: C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\1361\g2ax_winlogonx64.dll [X]
HKU\S-1-5-21-1877981502-1692956747-790140615-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1743640 2016-08-29] (CyberLinkCorp.)
HKU\S-1-5-21-1877981502-1692956747-790140615-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [570880 2017-07-07] (MicrosoftCorporation)
HKU\S-1-5-18\...\Policies\system: [DisableLockWorkstation] 0
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-03-26]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2da086d4-5bc3-4b5f-a0e8-0f1cf567f9d0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8447f53a-c580-422a-a406-f55524a085d7}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1877981502-1692956747-790140615-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-07-25] (McAfee,Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (MicrosoftCorporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-07-25] (McAfee,Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (MicrosoftCorporation)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-07-25] (McAfee,Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-07-25] (McAfee,Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-07-25] (McAfee,Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-07-25] (McAfee,Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2016-07-07] (McAfee,Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2016-07-07] (McAfee,Inc.)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-1877981502-1692956747-790140615-1001 -> hxxp://www.google.com/

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017-07-20]
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox => not found
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2016-08-28] [not signed]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR NewTab: Default -> Not-active:"chrome-extension://gpaebanaopabfhbdkinadojffejjafpl/newtab/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee&type=C211US0D20160828&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Profile: C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default [2017-08-06]
CHR Extension: (Google Slides) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-23]
CHR Extension: (Google Docs) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-23]
CHR Extension: (Google Drive) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-23]
CHR Extension: (YouTube) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-23]
CHR Extension: (Adobe Acrobat) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Google Sheets) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2017-08-02]
CHR Extension: (Google Docs Offline) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-23]
CHR Extension: (Maps Driving Directions) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpaebanaopabfhbdkinadojffejjafpl [2017-01-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-23]
CHR Extension: (Chrome Media Router) - C:\Users\Susan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-17]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mkndcbhcgphcfkkddanakjiepeknbgle] - C:\Program Files (x86)\RelevantKnowledge\rlcm.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269; C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe [457360 2012-06-20] ()
R2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareService.exe [585784 2017-07-19] ()
R2 BOT4Service; C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe [22160 2012-07-11] ()
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [117976 2015-06-02] ()
R2 CCALib8; C:\Program Files (x86)\Canon\CAL\CALMAIN.exe [96341 2005-09-30] (CanonInc.) [File not signed]
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [206712 2017-06-20] (DellInc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3296632 2017-06-20] (DellInc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217464 2017-06-20] (DellInc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2016-12-21] (DellInc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [77648 2016-12-22] (DellInc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [230248 2017-05-01] (DellInc.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee,Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [321896 2017-07-06] (HPInc.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (IntelCorporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [590880 2017-07-25] (McAfee,Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-07-07] (McAfee,Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee,Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee,Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee,Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee,Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee,Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee,Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee,Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-06-23] (McAfee,Inc.)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee,Inc.)
R3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee,Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [47144 2017-04-06] (Dell)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-14] ()
R2 RoxioBurnLauncher; C:\Program Files (x86)\Roxio Creator NXT\Roxio Burn\RoxioBurnLauncher.exe [535184 2012-07-05] ()
S3 RoxMediaDB14; C:\Program Files (x86)\Roxio Creator NXT\Common\RoxMediaDB14.exe [1096848 2012-07-18] (CorelCorporation)
S2 RoxWatch14; C:\Program Files (x86)\Roxio Creator NXT\Common\RoxWatch14.exe [341136 2012-07-18] (CorelCorporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2015-11-06] (RealtekSemiconductor)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [52696 2017-06-28] (DellInc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (MicrosoftCorporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (MicrosoftCorporation)
S2 GoToAssist Remote Support Customer; "C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\1361\g2ax_service.exe" "Start=service" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee,Inc.)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [100624 2015-06-08] (CyberLink)
R3 clwvd7; C:\WINDOWS\system32\DRIVERS\clwvd7.sys [49944 2016-06-01] (CyberLinkCorporation)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32960 2017-04-11] (DellInc.)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-04-11] (DellComputerCorporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (SamsungElectronicsCo.,Ltd.)
R3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows(R)Win7DDKprovider)
R3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows(R)Win7DDKprovider)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee,Inc.)
R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd64lp.sys [7402992 2016-11-01] (IntelCorporation)
R2 McPvDrv; C:\WINDOWS\system32\drivers\McPvDrv.sys [79192 2016-04-20] (McAfee,Inc.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419616 2016-04-27] (McAfee,Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee,Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-04-27] (McAfee,Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee,Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee,Inc.)
R3 mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [519976 2016-04-27] (McAfee,Inc.)
S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [100136 2016-04-27] (McAfee,Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee,Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee,Inc.)
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (CorelCorporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-23] (Realtek)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [598272 2015-05-21] (RealtekSemiconductorCorporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [416472 2016-05-17] (RealsilSemiconductorCorporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [6320640 2017-03-18] (RealtekSemiconductorCorporation)
R0 Sahdad64; C:\WINDOWS\System32\Drivers\Sahdad64.sys [28304 2012-06-20] (CorelCorporation)
R0 Saibad64; C:\WINDOWS\System32\Drivers\Saibad64.sys [20112 2012-06-20] (CorelCorporation)
R1 SaibVdAd64; C:\WINDOWS\System32\Drivers\SaibVdAd64.sys [27792 2012-06-20] (CorelCorporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (SamsungElectronicsCo.,Ltd.)
R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [442848 2017-02-08] (BitDefenderS.R.L.)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [146232 2015-06-26] (IntelCorporation)
S0 vsmraid; C:\WINDOWS\System32\drivers\vsmraid.sys [166816 2017-03-18] (VIATechnologiesInc.,Ltd)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (MicrosoftCorporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (MicrosoftCorporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (MicrosoftCorporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
============ One Month Created files and folders ========


(If an entry is included in the fixlist, the file/folder will be moved.)


2017-08-06 23:07 - 2017-08-06 23:09 - 000024118 _____ C:\Users\Susan\Downloads\FRST.txt

2017-08-06 23:06 - 2017-08-06 23:06 - 002381312 _____ (Farbar) C:\Users\Susan\Downloads\FRST64.exe

2017-08-06 21:17 - 2017-08-06 21:27 - 000000000 ____D C:\AdwCleaner

2017-08-06 21:16 - 2017-08-06 21:16 - 008185288 _____ (Malwarebytes) C:\Users\Susan\Downloads\adwcleaner_7.0.1.0.exe

2017-08-06 20:48 - 2017-08-06 20:52 - 000576510 _____ C:\TDSSKiller.3.1.0.15_06.08.2017_20.48.35_log.txt

2017-08-06 20:11 - 2017-08-06 23:07 - 000000000 ____D C:\FRST

2017-08-06 17:36 - 2017-08-06 17:36 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job

2017-08-06 16:49 - 2017-08-06 16:49 - 001265770 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI

2017-08-06 16:47 - 2017-08-06 16:47 - 000000000 ____D C:\Users\Susan\AppData\Roaming\ADNPR

2017-08-06 16:36 - 2017-08-06 17:33 - 000000000 ____D C:\Program Files (x86)\Citrix

2017-08-06 16:36 - 2017-08-06 16:36 - 000000000 ____D C:\Users\Susan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrix

2017-08-06 16:35 - 2017-08-06 16:35 - 000000000 ____D C:\Users\Susan\AppData\Local\GoToAssist Remote Support Customer

2017-08-03 22:12 - 2017-08-03 22:13 - 000000000 ____D C:\Users\Susan\Desktop\cox

2017-08-02 00:00 - 2017-08-02 00:00 - 000000000 ____D C:\Users\Susan\Desktop\bendure

2017-08-01 23:45 - 2017-08-01 23:46 - 000000000 ____D C:\Users\Susan\Desktop\flournoy

2017-08-01 23:32 - 2017-08-01 23:41 - 000000000 ____D C:\Users\Susan\Desktop\basket

2017-08-01 23:17 - 2017-08-01 23:17 - 000000000 ____D C:\Users\Susan\Desktop\jennings

2017-08-01 23:02 - 2017-08-01 23:05 - 000000000 ____D C:\Users\Susan\Desktop\sly

2017-08-01 21:16 - 2017-08-01 21:16 - 000000000 ____D C:\Users\Susan\Desktop\walker

2017-08-01 20:14 - 2017-08-01 20:14 - 000000000 ____D C:\Users\Susan\Desktop\mcnew

2017-08-01 19:06 - 2017-08-03 21:23 - 000000000 ____D C:\Users\Susan\Desktop\perry

2017-07-30 23:03 - 2017-08-01 22:57 - 000000000 ____D C:\Users\Susan\Desktop\anderson

2017-07-30 22:47 - 2017-07-30 22:47 - 000000000 ____D C:\Users\Susan\Desktop\daugherty

2017-07-30 22:41 - 2017-07-30 22:43 - 000000000 ____D C:\Users\Susan\Desktop\hunter

2017-07-30 21:16 - 2017-08-01 22:57 - 000000000 ____D C:\Users\Susan\Desktop\fox

2017-07-30 20:42 - 2017-08-02 22:15 - 000000000 ____D C:\Users\Susan\Desktop\broyles

2017-07-30 20:20 - 2017-08-02 22:34 - 000000000 ____D C:\Users\Susan\Desktop\hoover

2017-07-29 22:11 - 2017-08-06 22:51 - 000000000 ____D C:\Users\Susan\Desktop\brookshire

2017-07-29 21:49 - 2017-07-30 23:06 - 000000000 ____D C:\Users\Susan\Desktop\williams

2017-07-29 21:45 - 2017-07-29 21:45 - 000000000 ____D C:\Users\Susan\Desktop\kelley

2017-07-29 21:40 - 2017-07-29 21:41 - 000000000 ____D C:\Users\Susan\Desktop\whitaker

2017-07-29 15:47 - 2017-07-29 15:47 - 000000000 ____D C:\Users\Susan\AppData\Roaming\adaware

2017-07-29 15:47 - 2017-07-29 15:47 - 000000000 ____D C:\Users\Susan\AppData\Local\AdAwareDesktop

2017-07-29 15:46 - 2017-07-29 15:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\adaware

2017-07-29 15:45 - 2017-07-29 15:45 - 000000000 ____D C:\Users\Susan\AppData\Local\AdAwareUpdater

2017-07-29 15:45 - 2017-07-29 15:45 - 000000000 ____D C:\Program Files\adaware

2017-07-29 15:44 - 2017-07-29 15:44 - 000000000 ____D C:\Program Files\Common Files\adaware

2017-07-29 15:43 - 2017-07-29 15:43 - 000000000 ____D C:\ProgramData\adaware

2017-07-26 20:46 - 2017-07-26 20:46 - 000003370 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1877981502-1692956747-790140615-1001

2017-07-26 18:14 - 2017-07-26 18:14 - 000000000 ____D C:\Users\Susan\AppData\Roaming\Sonic

2017-07-17 00:16 - 2017-07-17 00:16 - 000000037 _____ C:\WINDOWS\SysWOW64\SmartFlow.txt

2017-07-13 11:12 - 2017-08-02 09:14 - 000001475 _____ C:\Users\Susan\Desktop\ROBLOX Player.lnk

2017-07-13 11:11 - 2017-08-02 09:14 - 000001290 _____ C:\Users\Susan\Desktop\ROBLOX Studio.lnk

2017-07-13 11:11 - 2017-08-02 09:14 - 000000000 ____D C:\Users\Susan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox

2017-07-13 11:11 - 2017-07-13 11:39 - 000000000 ____D C:\Users\Susan\AppData\Local\Roblox

2017-07-13 11:11 - 2017-07-13 11:18 - 000000252 _____ C:\Users\Susan\AppData\LocalLow\rbxcsettings.rbx

2017-07-11 17:57 - 2017-07-07 02:24 - 000117664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys

2017-07-11 17:57 - 2017-07-07 02:20 - 002021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll

2017-07-11 17:57 - 2017-07-07 02:13 - 000554392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS

2017-07-11 17:57 - 2017-07-07 02:13 - 000336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe

2017-07-11 17:57 - 2017-07-07 02:11 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll

2017-07-11 17:57 - 2017-07-07 02:10 - 001670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll

2017-07-11 17:57 - 2017-07-07 01:57 - 000626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2017-07-11 17:57 - 2017-07-07 01:57 - 000125344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll

2017-07-11 17:57 - 2017-07-07 01:39 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll

2017-07-11 17:57 - 2017-07-07 01:39 - 000096128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll

2017-07-11 17:57 - 2017-07-07 01:37 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2017-07-11 17:57 - 2017-07-07 01:37 - 001339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll

2017-07-11 17:57 - 2017-07-07 01:31 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2017-07-11 17:57 - 2017-07-07 01:31 - 001518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll

2017-07-11 17:57 - 2017-07-07 01:31 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2017-07-11 17:57 - 2017-07-07 01:30 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2017-07-11 17:57 - 2017-07-07 01:30 - 000949920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2017-07-11 17:57 - 2017-07-07 01:30 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2017-07-11 17:57 - 2017-07-07 01:29 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll

2017-07-11 17:57 - 2017-07-07 01:29 - 000123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll

2017-07-11 17:57 - 2017-07-07 01:27 - 006759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2017-07-11 17:57 - 2017-07-07 01:26 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2017-07-11 17:57 - 2017-07-07 01:26 - 001529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll

2017-07-11 17:57 - 2017-07-07 01:26 - 001195240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2017-07-11 17:57 - 2017-07-07 01:26 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll

2017-07-11 17:57 - 2017-07-07 01:25 - 000035232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll

2017-07-11 17:57 - 2017-07-07 01:23 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll

2017-07-11 17:57 - 2017-07-07 01:22 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys

2017-07-11 17:57 - 2017-07-07 01:19 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll

2017-07-11 17:57 - 2017-07-07 01:14 - 008211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2017-07-11 17:57 - 2017-07-07 01:14 - 002956800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2017-07-11 17:57 - 2017-07-07 01:14 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2017-07-11 17:57 - 2017-07-07 01:14 - 000790016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll

2017-07-11 17:57 - 2017-07-07 01:13 - 013839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2017-07-11 17:57 - 2017-07-07 01:12 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll

2017-07-11 17:57 - 2017-07-07 01:10 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll

2017-07-11 17:57 - 2017-07-07 01:10 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll

2017-07-11 17:57 - 2017-07-07 01:09 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll

2017-07-11 17:57 - 2017-07-07 01:07 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll

2017-07-11 17:57 - 2017-07-07 01:06 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll

2017-07-11 17:57 - 2017-07-07 01:05 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2017-07-11 17:57 - 2017-07-07 01:05 - 005719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2017-07-11 17:57 - 2017-07-07 01:05 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll

2017-07-11 17:57 - 2017-07-07 01:05 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll

2017-07-11 17:57 - 2017-07-07 01:04 - 005961216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll

2017-07-11 17:57 - 2017-07-07 01:04 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll

2017-07-11 17:57 - 2017-07-07 01:04 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2017-07-11 17:57 - 2017-07-07 01:04 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2017-07-11 17:57 - 2017-07-07 01:04 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll

2017-07-11 17:57 - 2017-07-07 01:03 - 006123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2017-07-11 17:57 - 2017-07-07 01:03 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll

2017-07-11 17:57 - 2017-07-07 01:03 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll

2017-07-11 17:57 - 2017-07-07 01:02 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll

2017-07-11 17:57 - 2017-07-07 01:01 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2017-07-11 17:57 - 2017-07-07 01:00 - 007596544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2017-07-11 17:57 - 2017-07-07 01:00 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll

2017-07-11 17:57 - 2017-07-07 01:00 - 002588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll

2017-07-11 17:57 - 2017-07-07 01:00 - 001626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2017-07-11 17:57 - 2017-07-07 01:00 - 001565184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll

2017-07-11 17:57 - 2017-07-07 01:00 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll

2017-07-11 17:57 - 2017-07-07 00:59 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll

2017-07-11 17:57 - 2017-07-07 00:59 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll

2017-07-11 17:57 - 2017-07-07 00:59 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll

2017-07-11 17:57 - 2017-07-07 00:59 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2017-07-11 17:57 - 2017-07-07 00:58 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll

2017-07-11 17:57 - 2017-07-07 00:58 - 002782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2017-07-11 17:57 - 2017-07-07 00:58 - 002298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2017-07-11 17:57 - 2017-07-07 00:58 - 001237504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll

2017-07-11 17:57 - 2017-07-07 00:55 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll

2017-07-11 17:57 - 2017-07-07 00:55 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll

2017-07-11 17:57 - 2017-07-07 00:53 - 001301504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll

2017-07-11 17:57 - 2017-07-07 00:53 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe

2017-07-11 17:57 - 2017-06-20 01:06 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys

2017-07-11 17:57 - 2017-06-20 01:03 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2017-07-11 17:57 - 2017-06-20 01:02 - 001055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2017-07-11 17:57 - 2017-06-20 00:57 - 002681760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2017-07-11 17:57 - 2017-06-20 00:34 - 000192416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll

2017-07-11 17:57 - 2017-06-20 00:15 - 000455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll

2017-07-11 17:57 - 2017-06-20 00:13 - 000787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll

2017-07-11 17:57 - 2017-06-20 00:12 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe

2017-07-11 17:57 - 2017-06-20 00:12 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys

2017-07-11 17:57 - 2017-06-20 00:10 - 000722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll

2017-07-11 17:57 - 2017-06-20 00:09 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll

2017-07-11 17:57 - 2017-06-20 00:09 - 000406032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll

2017-07-11 17:57 - 2017-06-20 00:08 - 004469840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2017-07-11 17:57 - 2017-06-20 00:08 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll

2017-07-11 17:57 - 2017-06-20 00:07 - 002475136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll

2017-07-11 17:57 - 2017-06-20 00:07 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll

2017-07-11 17:57 - 2017-06-20 00:07 - 000510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll

2017-07-11 17:57 - 2017-06-20 00:07 - 000346016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll

2017-07-11 17:57 - 2017-06-20 00:07 - 000138656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll

2017-07-11 17:57 - 2017-06-20 00:06 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll

2017-07-11 17:57 - 2017-06-20 00:06 - 000754592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2017-07-11 17:57 - 2017-06-20 00:06 - 000278944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll

2017-07-11 17:57 - 2017-06-20 00:05 - 000438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll

2017-07-11 17:57 - 2017-06-20 00:05 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe

2017-07-11 17:57 - 2017-06-20 00:05 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2017-07-11 17:57 - 2017-06-20 00:05 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2017-07-11 17:57 - 2017-06-20 00:04 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll

2017-07-11 17:57 - 2017-06-20 00:04 - 001178528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll

2017-07-11 17:57 - 2017-06-20 00:04 - 001177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2017-07-11 17:57 - 2017-06-20 00:04 - 001077496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll

2017-07-11 17:57 - 2017-06-20 00:04 - 000181656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll

2017-07-11 17:57 - 2017-06-20 00:04 - 000049656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll

2017-07-11 17:57 - 2017-06-20 00:03 - 005806048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2017-07-11 17:57 - 2017-06-20 00:03 - 000864240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2017-07-11 17:57 - 2017-06-20 00:03 - 000443728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll

2017-07-11 17:57 - 2017-06-20 00:02 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2017-07-11 17:57 - 2017-06-20 00:02 - 001121928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

2017-07-11 17:57 - 2017-06-20 00:02 - 000354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll

2017-07-11 17:57 - 2017-06-20 00:01 - 000176032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll

2017-07-11 17:57 - 2017-06-20 00:00 - 002597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2017-07-11 17:57 - 2017-06-19 23:56 - 000985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll

2017-07-11 17:57 - 2017-06-19 23:49 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll

2017-07-11 17:57 - 2017-06-19 23:49 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll

2017-07-11 17:57 - 2017-06-19 23:46 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll

2017-07-11 17:57 - 2017-06-19 23:45 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll

2017-07-11 17:57 - 2017-06-19 23:43 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll

2017-07-11 17:57 - 2017-06-19 23:43 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll

2017-07-11 17:57 - 2017-06-19 23:43 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll

2017-07-11 17:57 - 2017-06-19 23:43 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll

2017-07-11 17:57 - 2017-06-19 23:42 - 000641024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll

2017-07-11 17:57 - 2017-06-19 23:42 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll

2017-07-11 17:57 - 2017-06-19 23:42 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll

2017-07-11 17:57 - 2017-06-19 23:42 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll

2017-07-11 17:57 - 2017-06-19 23:41 - 000734208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2017-07-11 17:57 - 2017-06-19 23:41 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2017-07-11 17:57 - 2017-06-19 23:41 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll

2017-07-11 17:57 - 2017-06-19 23:41 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2017-07-11 17:57 - 2017-06-19 23:41 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll

2017-07-11 17:57 - 2017-06-19 23:40 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe

2017-07-11 17:57 - 2017-06-19 23:40 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll

2017-07-11 17:57 - 2017-06-19 23:40 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll

2017-07-11 17:57 - 2017-06-19 23:40 - 000247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll

2017-07-11 17:57 - 2017-06-19 23:40 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll

2017-07-11 17:57 - 2017-06-19 23:40 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll

2017-07-11 17:57 - 2017-06-19 23:39 - 002814464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll

2017-07-11 17:57 - 2017-06-19 23:39 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2017-07-11 17:57 - 2017-06-19 23:39 - 000969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2017-07-11 17:57 - 2017-06-19 23:39 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl

2017-07-11 17:57 - 2017-06-19 23:39 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll

2017-07-11 17:57 - 2017-06-19 23:39 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2017-07-11 17:57 - 2017-06-19 23:38 - 001451008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2017-07-11 17:57 - 2017-06-19 23:38 - 001285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll

2017-07-11 17:57 - 2017-06-19 23:38 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe

2017-07-11 17:57 - 2017-06-19 23:38 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll

2017-07-11 17:57 - 2017-06-19 23:38 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe

2017-07-11 17:57 - 2017-06-19 23:36 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll

2017-07-11 17:57 - 2017-06-19 23:35 - 002679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll

2017-07-11 17:57 - 2017-06-19 23:35 - 002132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2017-07-11 17:57 - 2017-06-19 23:35 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll

2017-07-11 17:57 - 2017-06-19 23:34 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2017-07-11 17:57 - 2017-06-19 23:34 - 002750464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll

2017-07-11 17:57 - 2017-06-19 23:34 - 002211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll

2017-07-11 17:57 - 2017-06-19 23:34 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll

2017-07-11 17:57 - 2017-06-19 23:34 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll

2017-07-11 17:57 - 2017-06-19 23:31 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll

2017-07-11 17:57 - 2017-06-19 23:30 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdmaud.drv

2017-07-11 17:57 - 2017-06-19 23:30 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll

2017-07-11 17:57 - 2017-06-19 23:30 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll

2017-07-11 17:57 - 2017-06-19 23:28 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll

2017-07-11 17:56 - 2017-07-07 09:00 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll

2017-07-11 17:56 - 2017-07-07 02:27 - 001024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe

2017-07-11 17:56 - 2017-07-07 02:27 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2017-07-11 17:56 - 2017-07-07 02:26 - 001065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2017-07-11 17:56 - 2017-07-07 02:25 - 000899824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2017-07-11 17:56 - 2017-07-07 02:23 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll

2017-07-11 17:56 - 2017-07-07 02:22 - 008318880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2017-07-11 17:56 - 2017-07-07 02:22 - 001186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2017-07-11 17:56 - 2017-07-07 02:21 - 032688336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll

2017-07-11 17:56 - 2017-07-07 02:21 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll

2017-07-11 17:56 - 2017-07-07 02:20 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll

2017-07-11 17:56 - 2017-07-07 02:20 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys

2017-07-11 17:56 - 2017-07-07 02:20 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys

2017-07-11 17:56 - 2017-07-07 02:14 - 007325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2017-07-11 17:56 - 2017-07-07 02:14 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll

2017-07-11 17:56 - 2017-07-07 02:14 - 001760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll

2017-07-11 17:56 - 2017-07-07 02:12 - 000411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll

2017-07-11 17:56 - 2017-07-07 02:12 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe

2017-07-11 17:56 - 2017-07-07 02:10 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll

2017-07-11 17:56 - 2017-07-07 02:10 - 000254168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2017-07-11 17:56 - 2017-07-07 02:09 - 000041376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll

2017-07-11 17:56 - 2017-07-07 02:07 - 001106848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys

2017-07-11 17:56 - 2017-07-07 02:07 - 000058488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe

2017-07-11 17:56 - 2017-07-07 01:40 - 023677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2017-07-11 17:56 - 2017-07-07 01:37 - 031652264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll

2017-07-11 17:56 - 2017-07-07 01:27 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll

2017-07-11 17:56 - 2017-07-07 01:27 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll

2017-07-11 17:56 - 2017-07-07 01:27 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll

2017-07-11 17:56 - 2017-07-07 01:26 - 017364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2017-07-11 17:56 - 2017-07-07 01:23 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll

2017-07-11 17:56 - 2017-07-07 01:23 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll

2017-07-11 17:56 - 2017-07-07 01:22 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2017-07-11 17:56 - 2017-07-07 01:20 - 023681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2017-07-11 17:56 - 2017-07-07 01:20 - 008331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2017-07-11 17:56 - 2017-07-07 01:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll

2017-07-11 17:56 - 2017-07-07 01:19 - 007149056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2017-07-11 17:56 - 2017-07-07 01:19 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll

2017-07-11 17:56 - 2017-07-07 01:18 - 007336448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll

2017-07-11 17:56 - 2017-07-07 01:18 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2017-07-11 17:56 - 2017-07-07 01:18 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll

2017-07-11 17:56 - 2017-07-07 01:18 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll

2017-07-11 17:56 - 2017-07-07 01:17 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll

2017-07-11 17:56 - 2017-07-07 01:17 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll

2017-07-11 17:56 - 2017-07-07 01:17 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2017-07-11 17:56 - 2017-07-07 01:17 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll

2017-07-11 17:56 - 2017-07-07 01:16 - 012786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2017-07-11 17:56 - 2017-07-07 01:16 - 000545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv

2017-07-11 17:56 - 2017-07-07 01:15 - 008238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2017-07-11 17:56 - 2017-07-07 01:15 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2017-07-11 17:56 - 2017-07-07 01:14 - 003784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll

2017-07-11 17:56 - 2017-07-07 01:14 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2017-07-11 17:56 - 2017-07-07 01:14 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr

2017-07-11 17:56 - 2017-07-07 01:13 - 005892096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll

2017-07-11 17:56 - 2017-07-07 01:13 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2017-07-11 17:56 - 2017-07-07 01:12 - 004730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2017-07-11 17:56 - 2017-07-07 01:12 - 002499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll

2017-07-11 17:56 - 2017-07-07 01:12 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2017-07-11 17:56 - 2017-07-07 01:12 - 001142272 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll

2017-07-11 17:56 - 2017-07-07 01:12 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2017-07-11 17:56 - 2017-07-07 01:11 - 002829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2017-07-11 17:56 - 2017-07-07 01:11 - 001888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2017-07-11 17:56 - 2017-07-07 01:11 - 001812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll

2017-07-11 17:56 - 2017-07-07 01:10 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll

2017-07-11 17:56 - 2017-07-07 01:10 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll

2017-07-11 17:56 - 2017-07-07 01:09 - 020504576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2017-07-11 17:56 - 2017-07-07 01:08 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys

2017-07-11 17:56 - 2017-07-07 01:07 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll

2017-07-11 17:56 - 2017-07-07 01:06 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll

2017-07-11 17:56 - 2017-07-07 01:06 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll

2017-07-11 17:56 - 2017-07-07 01:05 - 019335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2017-07-11 17:56 - 2017-07-07 01:05 - 011870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
 
2017-07-11 17:56 - 2017-07-07 01:04 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll

2017-07-11 17:56 - 2017-07-07 01:02 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr

2017-07-11 17:56 - 2017-07-07 01:01 - 006287360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2017-07-11 17:56 - 2017-07-07 00:59 - 003656704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2017-07-11 17:56 - 2017-07-01 17:52 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin

2017-07-11 17:56 - 2017-06-20 01:17 - 000034720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe

2017-07-11 17:56 - 2017-06-20 01:16 - 000335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll

2017-07-11 17:56 - 2017-06-20 01:15 - 000233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll

2017-07-11 17:56 - 2017-06-20 01:11 - 001395152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2017-07-11 17:56 - 2017-06-20 01:11 - 000411992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll

2017-07-11 17:56 - 2017-06-20 01:10 - 002327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2017-07-11 17:56 - 2017-06-20 01:10 - 001930320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2017-07-11 17:56 - 2017-06-20 01:08 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2017-07-11 17:56 - 2017-06-20 01:05 - 001057832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

2017-07-11 17:56 - 2017-06-20 01:04 - 004847424 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2017-07-11 17:56 - 2017-06-20 01:03 - 000102312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialUIBroker.exe

2017-07-11 17:56 - 2017-06-20 01:02 - 002645688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2017-07-11 17:56 - 2017-06-20 01:00 - 000142752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys

2017-07-11 17:56 - 2017-06-20 00:59 - 006554928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2017-07-11 17:56 - 2017-06-20 00:59 - 001220072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll

2017-07-11 17:56 - 2017-06-20 00:59 - 000467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll

2017-07-11 17:56 - 2017-06-20 00:58 - 000833160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll

2017-07-11 17:56 - 2017-06-20 00:57 - 000204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll

2017-07-11 17:56 - 2017-06-20 00:15 - 001620368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2017-07-11 17:56 - 2017-06-20 00:14 - 001150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll

2017-07-11 17:56 - 2017-06-20 00:13 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe

2017-07-11 17:56 - 2017-06-20 00:12 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys

2017-07-11 17:56 - 2017-06-20 00:11 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll

2017-07-11 17:56 - 2017-06-20 00:11 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll

2017-07-11 17:56 - 2017-06-20 00:10 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll

2017-07-11 17:56 - 2017-06-20 00:10 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll

2017-07-11 17:56 - 2017-06-20 00:10 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll

2017-07-11 17:56 - 2017-06-20 00:09 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe

2017-07-11 17:56 - 2017-06-20 00:09 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll

2017-07-11 17:56 - 2017-06-20 00:09 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2017-07-11 17:56 - 2017-06-20 00:09 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll

2017-07-11 17:56 - 2017-06-20 00:09 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll

2017-07-11 17:56 - 2017-06-20 00:08 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll

2017-07-11 17:56 - 2017-06-20 00:08 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll

2017-07-11 17:56 - 2017-06-20 00:08 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll

2017-07-11 17:56 - 2017-06-20 00:08 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll

2017-07-11 17:56 - 2017-06-20 00:08 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll

2017-07-11 17:56 - 2017-06-20 00:07 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys

2017-07-11 17:56 - 2017-06-20 00:07 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2017-07-11 17:56 - 2017-06-20 00:07 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2017-07-11 17:56 - 2017-06-20 00:06 - 000847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll

2017-07-11 17:56 - 2017-06-20 00:06 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2017-07-11 17:56 - 2017-06-20 00:06 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll

2017-07-11 17:56 - 2017-06-20 00:06 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll

2017-07-11 17:56 - 2017-06-20 00:05 - 004447744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2017-07-11 17:56 - 2017-06-20 00:05 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll

2017-07-11 17:56 - 2017-06-20 00:05 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2017-07-11 17:56 - 2017-06-20 00:05 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll

2017-07-11 17:56 - 2017-06-20 00:05 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll

2017-07-11 17:56 - 2017-06-20 00:04 - 001818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2017-07-11 17:56 - 2017-06-20 00:04 - 001425920 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe

2017-07-11 17:56 - 2017-06-20 00:04 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll

2017-07-11 17:56 - 2017-06-20 00:04 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll

2017-07-11 17:56 - 2017-06-20 00:04 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll

2017-07-11 17:56 - 2017-06-20 00:03 - 002077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2017-07-11 17:56 - 2017-06-20 00:02 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll

2017-07-11 17:56 - 2017-06-20 00:01 - 004536320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2017-07-11 17:56 - 2017-06-20 00:01 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll

2017-07-11 17:56 - 2017-06-20 00:01 - 003803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll

2017-07-11 17:56 - 2017-06-20 00:01 - 001076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2017-07-11 17:56 - 2017-06-20 00:00 - 002171392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll

2017-07-11 17:56 - 2017-06-19 23:59 - 002938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll

2017-07-11 17:56 - 2017-06-19 23:59 - 001674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2017-07-11 17:56 - 2017-06-19 23:54 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll

2017-07-11 17:56 - 2017-06-19 23:45 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll

2017-07-11 17:56 - 2017-06-19 23:43 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll

2017-07-11 17:56 - 2017-06-19 23:43 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll

2017-07-11 17:56 - 2017-06-19 23:43 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll

2017-07-11 17:56 - 2017-06-19 23:42 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll

2017-07-11 17:56 - 2017-06-19 23:42 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll

2017-07-11 17:56 - 2017-06-19 23:38 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2017-07-11 17:56 - 2017-06-19 23:37 - 002008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2017-07-11 17:55 - 2017-07-07 02:27 - 001147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe

2017-07-11 17:55 - 2017-07-07 02:27 - 000965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi

2017-07-11 17:55 - 2017-07-07 02:27 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe

2017-07-11 17:55 - 2017-07-07 02:22 - 000119384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll

2017-07-11 17:55 - 2017-07-07 02:17 - 001017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi

2017-07-11 17:55 - 2017-07-07 02:15 - 002444696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2017-07-11 17:55 - 2017-07-07 02:14 - 001171032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2017-07-11 17:55 - 2017-07-07 02:13 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll

2017-07-11 17:55 - 2017-07-07 02:13 - 000147800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll

2017-07-11 17:55 - 2017-07-07 02:12 - 000228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys

2017-07-11 17:55 - 2017-07-07 02:11 - 007904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2017-07-11 17:55 - 2017-07-07 02:10 - 021353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2017-07-11 17:55 - 2017-07-07 02:10 - 001337848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2017-07-11 17:55 - 2017-07-07 02:10 - 000372128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll

2017-07-11 17:55 - 2017-07-07 01:27 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2017-07-11 17:55 - 2017-07-07 01:27 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2017-07-11 17:55 - 2017-07-07 01:27 - 000859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll

2017-07-11 17:55 - 2017-07-07 01:27 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll

2017-07-11 17:55 - 2017-07-07 01:27 - 000443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll

2017-07-11 17:55 - 2017-07-07 01:25 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll

2017-07-11 17:55 - 2017-07-07 01:24 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll

2017-07-11 17:55 - 2017-07-07 01:23 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll

2017-07-11 17:55 - 2017-07-07 01:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll

2017-07-11 17:55 - 2017-07-07 01:22 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll

2017-07-11 17:55 - 2017-07-07 01:21 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll

2017-07-11 17:55 - 2017-07-07 01:21 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll

2017-07-11 17:55 - 2017-07-07 01:19 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll

2017-07-11 17:55 - 2017-07-07 01:19 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll

2017-07-11 17:55 - 2017-07-07 01:18 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll

2017-07-11 17:55 - 2017-07-07 01:17 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe

2017-07-11 17:55 - 2017-07-07 01:17 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll

2017-07-11 17:55 - 2017-07-07 01:17 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe

2017-07-11 17:55 - 2017-07-07 01:16 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll

2017-07-11 17:55 - 2017-07-07 01:14 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll

2017-07-11 17:55 - 2017-07-07 01:12 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2017-07-11 17:55 - 2017-07-07 01:12 - 002055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2017-07-11 17:55 - 2017-07-07 01:12 - 001713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2017-07-11 17:55 - 2017-07-07 01:12 - 001420800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll

2017-07-11 17:55 - 2017-07-07 01:12 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll

2017-07-11 17:55 - 2017-07-07 01:11 - 003139584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2017-07-11 17:55 - 2017-07-07 01:11 - 002649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2017-07-11 17:55 - 2017-07-07 01:11 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll

2017-07-11 17:55 - 2017-07-07 01:11 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2017-07-11 17:55 - 2017-07-07 01:11 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll

2017-07-11 17:55 - 2017-07-07 01:10 - 002444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2017-07-11 17:55 - 2017-07-07 01:07 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll

2017-07-11 17:55 - 2017-07-07 01:07 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll

2017-07-11 17:55 - 2017-07-07 01:05 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe

2017-07-11 17:55 - 2017-07-07 01:04 - 001703424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe

2017-07-11 17:55 - 2017-07-07 01:04 - 001403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll

2017-07-11 17:55 - 2017-06-20 01:18 - 001564576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll

2017-07-11 17:55 - 2017-06-20 01:18 - 000096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe

2017-07-11 17:55 - 2017-06-20 01:17 - 000629152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll

2017-07-11 17:55 - 2017-06-20 01:17 - 000544160 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll

2017-07-11 17:55 - 2017-06-20 01:17 - 000334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll

2017-07-11 17:55 - 2017-06-20 01:17 - 000136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2017-07-11 17:55 - 2017-06-20 01:16 - 001214880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll

2017-07-11 17:55 - 2017-06-20 01:04 - 000472728 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll

2017-07-11 17:55 - 2017-06-20 01:03 - 000179608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll

2017-07-11 17:55 - 2017-06-20 01:02 - 000426912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll

2017-07-11 17:55 - 2017-06-20 01:00 - 000558920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll

2017-07-11 17:55 - 2017-06-20 01:00 - 000255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

2017-07-11 17:55 - 2017-06-20 00:59 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2017-07-11 17:55 - 2017-06-20 00:59 - 000583304 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe

2017-07-11 17:55 - 2017-06-20 00:58 - 000406072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll

2017-07-11 17:55 - 2017-06-20 00:58 - 000203168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll

2017-07-11 17:55 - 2017-06-20 00:16 - 000970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll

2017-07-11 17:55 - 2017-06-20 00:16 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll

2017-07-11 17:55 - 2017-06-20 00:14 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys

2017-07-11 17:55 - 2017-06-20 00:13 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll

2017-07-11 17:55 - 2017-06-20 00:13 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll

2017-07-11 17:55 - 2017-06-20 00:13 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll

2017-07-11 17:55 - 2017-06-20 00:12 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll

2017-07-11 17:55 - 2017-06-20 00:12 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll

2017-07-11 17:55 - 2017-06-20 00:10 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll

2017-07-11 17:55 - 2017-06-20 00:10 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll

2017-07-11 17:55 - 2017-06-20 00:09 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll

2017-07-11 17:55 - 2017-06-20 00:09 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll

2017-07-11 17:55 - 2017-06-20 00:09 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2017-07-11 17:55 - 2017-06-20 00:09 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll

2017-07-11 17:55 - 2017-06-20 00:09 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll

2017-07-11 17:55 - 2017-06-20 00:09 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll

2017-07-11 17:55 - 2017-06-20 00:08 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll

2017-07-11 17:55 - 2017-06-20 00:08 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll

2017-07-11 17:55 - 2017-06-20 00:07 - 000916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2017-07-11 17:55 - 2017-06-20 00:07 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys

2017-07-11 17:55 - 2017-06-20 00:07 - 000621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll

2017-07-11 17:55 - 2017-06-20 00:07 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll

2017-07-11 17:55 - 2017-06-20 00:06 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll

2017-07-11 17:55 - 2017-06-20 00:06 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll

2017-07-11 17:55 - 2017-06-20 00:06 - 000253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll

2017-07-11 17:55 - 2017-06-20 00:06 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll

2017-07-11 17:55 - 2017-06-20 00:05 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll

2017-07-11 17:55 - 2017-06-20 00:05 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll

2017-07-11 17:55 - 2017-06-20 00:05 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl

2017-07-11 17:55 - 2017-06-20 00:05 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll

2017-07-11 17:55 - 2017-06-20 00:04 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2017-07-11 17:55 - 2017-06-20 00:03 - 001396224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2017-07-11 17:55 - 2017-06-20 00:02 - 003204096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll

2017-07-11 17:55 - 2017-06-20 00:02 - 002804736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2017-07-11 17:55 - 2017-06-20 00:02 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll

2017-07-11 17:55 - 2017-06-20 00:02 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll

2017-07-11 17:55 - 2017-06-20 00:01 - 003332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll

2017-07-11 17:55 - 2017-06-20 00:01 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2017-07-11 17:55 - 2017-06-20 00:01 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll

2017-07-11 17:55 - 2017-06-20 00:01 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll

2017-07-11 17:55 - 2017-06-20 00:00 - 003057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll

2017-07-11 17:55 - 2017-06-19 23:59 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2017-07-11 17:55 - 2017-06-19 23:58 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2017-07-11 17:55 - 2017-06-19 23:57 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe

2017-07-11 17:55 - 2017-06-19 23:57 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll

2017-07-11 17:55 - 2017-06-19 23:56 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll

2017-07-11 17:55 - 2017-06-19 23:56 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdmaud.drv


==================== One Month Modified files and folders ========


(If an entry is included in the fixlist, the file/folder will be moved.)


2017-08-06 23:03 - 2016-03-24 18:00 - 000000000 ____D C:\Users\Susan\Documents\Family Tree Maker

2017-08-06 22:17 - 2016-03-24 18:16 - 000000000 ____D C:\Users\Susan\AppData\Roaming\FamilyTreeMaker

2017-08-06 21:58 - 2016-03-26 08:26 - 000000000 ____D C:\Users\Susan\Documents\Outlook Files

2017-08-06 21:34 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\AppReadiness

2017-08-06 21:33 - 2016-08-28 09:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee

2017-08-06 21:31 - 2016-08-28 09:53 - 000000000 __RSD C:\Users\Susan\Documents\McAfee Vaults

2017-08-06 21:28 - 2017-04-27 08:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2017-08-06 21:28 - 2017-04-27 08:22 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2017-08-06 21:28 - 2016-03-23 09:31 - 000000000 __SHD C:\Users\Susan\IntelGraphicsProfiles

2017-08-06 21:27 - 2017-03-18 06:40 - 000786432 _____ C:\WINDOWS\system32\config\BBI

2017-08-06 20:18 - 2017-03-18 16:01 - 000000000 ____D C:\WINDOWS\INF

2017-08-06 19:43 - 2017-04-27 08:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy

2017-08-06 19:37 - 2017-04-27 08:48 - 000004166 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0B5B72F4-D92C-4DD8-941E-1FCD0EC59EC7}

2017-08-06 19:30 - 2016-08-28 09:37 - 000000000 ____D C:\Program Files (x86)\McAfee

2017-08-06 19:29 - 2017-04-27 08:23 - 000000000 ____D C:\Users\Susan

2017-08-06 17:17 - 2017-07-03 12:06 - 000004020 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse

2017-08-06 09:56 - 2016-03-08 04:46 - 000000000 ____D C:\ProgramData\McAfee

2017-08-06 09:37 - 2017-04-27 09:03 - 000004208 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse

2017-08-05 05:47 - 2017-04-27 08:48 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2017-08-05 02:33 - 2017-03-18 16:03 - 000000000 ___HD C:\Program Files\WindowsApps

2017-08-05 02:33 - 2016-03-23 09:31 - 000000000 ____D C:\Users\Susan\AppData\Local\Packages

2017-08-04 18:20 - 2017-05-10 15:03 - 000003446 _____ C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare)

2017-08-04 12:31 - 2017-03-18 06:40 - 000032768 _____ C:\WINDOWS\system32\config\ELAM

2017-07-28 21:44 - 2016-03-23 09:57 - 000000000 ____D C:\Users\Susan\Desktop\Susan

2017-07-28 00:18 - 2017-04-27 08:47 - 001247530 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2017-07-27 14:16 - 2015-10-30 02:24 - 000000202 _____ C:\WINDOWS\win.ini

2017-07-26 20:46 - 2016-03-23 09:35 - 000002409 _____ C:\Users\Susan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2017-07-26 20:46 - 2016-03-23 09:35 - 000000000 ___RD C:\Users\Susan\OneDrive

2017-07-26 19:14 - 2017-04-27 08:19 - 000000000 ____D C:\ProgramData\HP

2017-07-26 19:02 - 2016-03-25 20:34 - 000000000 ____D C:\Users\Susan\AppData\Roaming\Roxio

2017-07-26 17:57 - 2016-03-25 21:22 - 000000000 ____D C:\Users\Susan\Documents\CyberLink

2017-07-26 17:57 - 2016-03-25 21:21 - 000000000 ____D C:\Users\Susan\AppData\Roaming\CyberLink

2017-07-26 17:57 - 2016-03-08 04:34 - 000000000 ____D C:\Users\Public\CyberLink

2017-07-26 17:57 - 2016-03-08 04:27 - 000000000 ____D C:\ProgramData\CyberLink

2017-07-14 11:54 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\rescache

2017-07-11 21:42 - 2016-04-24 19:44 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2017-07-11 21:29 - 2016-03-08 04:57 - 000000000 __RHD C:\Users\Public\AccountPictures

2017-07-11 21:26 - 2017-03-18 15:51 - 000000000 ____D C:\WINDOWS\CbsTemp

2017-07-11 21:14 - 2017-04-27 08:17 - 000453624 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2017-07-11 21:10 - 2017-03-18 16:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12

2017-07-11 21:10 - 2017-03-18 16:03 - 000000000 ___SD C:\WINDOWS\system32\F12

2017-07-11 21:10 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\system32\oobe

2017-07-11 21:10 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\system32\migwiz

2017-07-11 21:09 - 2017-03-18 16:03 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2017-07-11 21:09 - 2017-03-18 16:03 - 000000000 ___RD C:\Program Files\Windows Defender

2017-07-11 21:09 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\system32\appraiser

2017-07-11 21:09 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\ShellExperiences

2017-07-11 21:09 - 2017-03-18 16:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer

2017-07-11 21:09 - 2017-03-18 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer

2017-07-11 21:09 - 2017-03-18 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender

2017-07-11 18:05 - 2016-03-23 17:55 - 000000000 ____D C:\WINDOWS\system32\MRT

2017-07-11 18:01 - 2016-03-23 17:55 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe


==================== Files in the root of some directories =======


2016-03-26 13:38 - 2016-03-26 13:38 - 000026923 _____ () C:\Users\Susan\AppData\Roaming\Comma Separated Values (Windows).ADR

2016-03-26 13:33 - 2016-03-26 13:44 - 000010849 _____ () C:\Users\Susan\AppData\Roaming\Comma Separated Values (Windows).EML

2016-03-23 09:31 - 2017-08-06 21:29 - 000633077 _____ () C:\Users\Susan\AppData\Local\BTServer.log

2017-04-27 08:21 - 2017-04-27 08:21 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

2016-03-26 15:12 - 2016-03-26 15:26 - 000001809 _____ () C:\ProgramData\hpzinstall.log

2012-07-30 20:51 - 2012-07-30 20:51 - 000002454 _____ () C:\ProgramData\regid.2012-08.com.Corel,Roxio_76C7858E-078C-4C49-AB1A-2A7072664935.swidtag


==================== Bamital & volsnap ======================


(There is no automatic fix for files that do not pass verification.)


C:\WINDOWS\system32\winlogon.exe => File is digitally signed

C:\WINDOWS\system32\wininit.exe => File is digitally signed

C:\WINDOWS\explorer.exe => File is digitally signed

C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed

C:\WINDOWS\system32\svchost.exe => File is digitally signed

C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed

C:\WINDOWS\system32\services.exe => File is digitally signed

C:\WINDOWS\system32\User32.dll => File is digitally signed

C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed

C:\WINDOWS\system32\userinit.exe => File is digitally signed

C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed

C:\WINDOWS\system32\rpcss.dll => File is digitally signed

C:\WINDOWS\system32\dnsapi.dll => File is digitally signed

C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed

C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2017-07-29 14:41


==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-08-2017

Ran by Susan (06-08-2017 23:10:38)

Running from C:\Users\Susan\Downloads

Windows 10 Home Version 1703 (X64) (2017-04-27 14:00:56)

Boot Mode: Normal

==========================================================



==================== Accounts: =============================


Administrator (S-1-5-21-1877981502-1692956747-790140615-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-1877981502-1692956747-790140615-503 - Limited - Disabled)

Guest (S-1-5-21-1877981502-1692956747-790140615-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-1877981502-1692956747-790140615-1004 - Limited - Enabled)

Susan (S-1-5-21-1877981502-1692956747-790140615-1001 - Administrator - Enabled) => C:\Users\Susan


==================== Security Center ========================


(If an entry is included in the fixlist, it will be removed.)


AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}

FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}


==================== Installed Programs ======================


(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)


64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden

adaware antivirus (HKLM\...\{BE1507DA-170B-4E3E-BD8E-513ECC6E59D7}_AdAwareUpdater) (Version: 12.1.856.11526 - adaware)

AdAwareInstaller (HKLM\...\{59AF2B50-3BF4-470D-AF23-6D20EB18268A}) (Version: 12.1.856.11526 - adaware) Hidden

AdAwareUpdater (HKLM\...\{BE1507DA-170B-4E3E-BD8E-513ECC6E59D7}) (Version: 12.1.856.11526 - adaware) Hidden

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)

AntimalwareEngine (HKLM\...\{06D33B93-9458-4E28-BDEA-F5ECB2C3C30E}) (Version: 3.0.144.0 - adaware) Hidden

AudioLabel (HKLM-x32\...\AudioLabel) (Version: 2.20 (Registered) - Cripple Creek Software)

BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden

Canon Camera Access Library (HKLM-x32\...\CAL) (Version: 8.1.1.17 - )

Canon Camera Support Core Library (HKLM-x32\...\CSCLIB) (Version: 7.3.1.6 - )

Canon Camera Window DC_DV 5 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC5) (Version: 5.4.5.17 - )

Canon Camera Window DC_DV 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC6) (Version: 6.2.0.8 - )

Canon Camera Window MC 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowMC) (Version: 6.1.0.7 - )

Canon RAW Image Task for ZoomBrowser EX (HKLM-x32\...\RAW Image Task) (Version: 2.3.0.11 - )

Canon RemoteCapture Task for ZoomBrowser EX (HKLM-x32\...\RemoteCaptureTask) (Version: 1.5.0.5 - )

Canon Utilities Digital Photo Professional 2.1 (HKLM-x32\...\DPP) (Version: 2.1.1.4 - )

Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 1.0.3.17 - )

Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.17.41 - )

Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 5.6.0.27 - )

Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)

Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)

Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)

Copy (HKLM-x32\...\{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden

Corel PaintShop Pro X4 (HKLM-x32\...\_{00580795-581C-4587-B9F2-37320D7AB37F}) (Version: 14.2.0.1 - Corel Corporation)

Corel PaintShop Pro X4 (HKLM-x32\...\{00AE1A2D-7BC2-4359-A0EC-E19F36E391BB}) (Version: 14.2.0.1 - Corel Corporation) Hidden

Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.8.0.201 - Corel Inc.) Hidden

Creator NXT Content (HKLM-x32\...\{9F717571-FEE8-45CD-8B03-5B2D06AD28F7}) (Version: 14.0.024 - Roxio) Hidden

CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 12 - CyberLink Corp.)

CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.6202.59 - CyberLink Corp.)

CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.6810 - CyberLink Corp.)

CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.1904.0 - CyberLink Corp.)

Dell Customer Connect (HKLM-x32\...\{4FA72FF9-DD64-43A8-8704-6380A11F11D5}) (Version: 1.4.15.0 - Dell Inc.)

Dell Digital Delivery (HKLM-x32\...\{AB7F2792-2ED1-4C5C-9F28-680E5110BF72}) (Version: 3.1.1018.0 - Dell Products, LP)

Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)

Dell Help & Support (HKLM\...\{E8669F4E-F2BE-48A9-B5A5-0BC12CA4CB4F}) (Version: 2.4.18.0 - Dell Inc.) Hidden

Dell Help & Support (HKLM-x32\...\InstallShield_{E8669F4E-F2BE-48A9-B5A5-0BC12CA4CB4F}) (Version: 2.4.18.0 - Dell Inc.)

Dell Product Registration (HKLM-x32\...\InstallShield_{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.)

Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 2.0.6875.402 - Dell)

Dell SupportAssistAgent (HKLM\...\{90881C8E-6C4F-4662-9923-85AFCA058C44}) (Version: 2.0.1.7 - Dell)

Dell System Detect (HKU\S-1-5-21-1877981502-1692956747-790140615-1001\...\58d94f3ce2c27db0) (Version: 7.3.0.6 - Dell)

Dell Update - SupportAssist Update Plugin (HKLM\...\{EEA45885-F3E3-4E7D-8435-E9C21D36C141}) (Version: 3.0.0.2840 - Dell Inc.)

Dell Update (HKLM-x32\...\{F91263FA-BE4D-439D-9C0A-2E7204E0E9E3}) (Version: 1.9.20.0 - Dell Inc.)

Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden

DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden

DirectX 9 Runtime (HKLM-x32\...\{3A9527CF-4E91-4683-A03F-F1AD022126E5}) (Version: 1.00.0000 - Sonic Solutions) Hidden

DJ_AIO_05_F4400_Software_Min (HKLM-x32\...\{A835C187-691C-4827-BCEA-1611179C96B9}) (Version: 140.0.841.000 - Hewlett-Packard) Hidden

F4400 (HKLM-x32\...\{34957339-C8A1-4A3D-B7B5-D9EC45C2C5E0}) (Version: 140.0.841.000 - Hewlett-Packard) Hidden

Family Tree Maker 2012 (HKLM-x32\...\{1CB0993B-1CD4-4A18-9C85-9732AFD9843F}) (Version: 21.0.452 - Ancestry.com, Inc.) Hidden

Family Tree Maker 2012 (HKLM-x32\...\Family Tree Maker 2012) (Version: 21.0.452 - Ancestry.com, Inc.)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden

GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden

HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)

HP Deskjet F4400 Printer Driver Software 14.0 Rel. 5 (HKLM\...\{82D96D11-AF74-4449-8811-4D6CE66FEF63}) (Version: 14.0 - HP)

HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)

HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)

HP Support Solutions Framework (HKLM-x32\...\{CE7447C2-EF12-4EF3-BE51-BFC3B049C0F6}) (Version: 12.7.27.15 - HP)

HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)

HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden

HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden

ICA (HKLM-x32\...\{00580795-581C-4587-B9F2-37320D7AB37F}) (Version: 14.2.0.1 - Corel Corporation) Hidden

Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)

IPM_PSP_COM (HKLM-x32\...\{00BEE329-BAAB-49FF-9B66-55E4B12B9ADD}) (Version: 14.2.0.1 - Corel Corporation) Hidden

Learning Lodge Navigator (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)

MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden

Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6570.1 - Waves Audio Ltd.) Hidden

McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.149 - McAfee, Inc.)

McAfee® Total Protection (HKLM-x32\...\MSC) (Version: 15.0.166 - McAfee, Inc.)

Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-1877981502-1692956747-790140615-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-08-2017

Ran by Susan (06-08-2017 23:10:38)

Running from C:\Users\Susan\Downloads

Windows 10 Home Version 1703 (X64) (2017-04-27 14:00:56)

Boot Mode: Normal

==========================================================



==================== Accounts: =============================


Administrator (S-1-5-21-1877981502-1692956747-790140615-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-1877981502-1692956747-790140615-503 - Limited - Disabled)

Guest (S-1-5-21-1877981502-1692956747-790140615-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-1877981502-1692956747-790140615-1004 - Limited - Enabled)

Susan (S-1-5-21-1877981502-1692956747-790140615-1001 - Administrator - Enabled) => C:\Users\Susan


==================== Security Center ========================


(If an entry is included in the fixlist, it will be removed.)


AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}

FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}


==================== Installed Programs ======================


(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)


64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden

adaware antivirus (HKLM\...\{BE1507DA-170B-4E3E-BD8E-513ECC6E59D7}_AdAwareUpdater) (Version: 12.1.856.11526 - adaware)

AdAwareInstaller (HKLM\...\{59AF2B50-3BF4-470D-AF23-6D20EB18268A}) (Version: 12.1.856.11526 - adaware) Hidden

AdAwareUpdater (HKLM\...\{BE1507DA-170B-4E3E-BD8E-513ECC6E59D7}) (Version: 12.1.856.11526 - adaware) Hidden

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)

AntimalwareEngine (HKLM\...\{06D33B93-9458-4E28-BDEA-F5ECB2C3C30E}) (Version: 3.0.144.0 - adaware) Hidden

AudioLabel (HKLM-x32\...\AudioLabel) (Version: 2.20 (Registered) - Cripple Creek Software)

BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden

Canon Camera Access Library (HKLM-x32\...\CAL) (Version: 8.1.1.17 - )

Canon Camera Support Core Library (HKLM-x32\...\CSCLIB) (Version: 7.3.1.6 - )

Canon Camera Window DC_DV 5 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC5) (Version: 5.4.5.17 - )

Canon Camera Window DC_DV 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC6) (Version: 6.2.0.8 - )

Canon Camera Window MC 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowMC) (Version: 6.1.0.7 - )

Canon RAW Image Task for ZoomBrowser EX (HKLM-x32\...\RAW Image Task) (Version: 2.3.0.11 - )

Canon RemoteCapture Task for ZoomBrowser EX (HKLM-x32\...\RemoteCaptureTask) (Version: 1.5.0.5 - )
 
Canon Utilities Digital Photo Professional 2.1 (HKLM-x32\...\DPP) (Version: 2.1.1.4 - )

Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 1.0.3.17 - )

Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.17.41 - )

Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 5.6.0.27 - )

Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)

Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)

Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)

Copy (HKLM-x32\...\{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden

Corel PaintShop Pro X4 (HKLM-x32\...\_{00580795-581C-4587-B9F2-37320D7AB37F}) (Version: 14.2.0.1 - Corel Corporation)

Corel PaintShop Pro X4 (HKLM-x32\...\{00AE1A2D-7BC2-4359-A0EC-E19F36E391BB}) (Version: 14.2.0.1 - Corel Corporation) Hidden

Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.8.0.201 - Corel Inc.) Hidden

Creator NXT Content (HKLM-x32\...\{9F717571-FEE8-45CD-8B03-5B2D06AD28F7}) (Version: 14.0.024 - Roxio) Hidden

CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 12 - CyberLink Corp.)

CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.6202.59 - CyberLink Corp.)

CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.6810 - CyberLink Corp.)

CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.1904.0 - CyberLink Corp.)

Dell Customer Connect (HKLM-x32\...\{4FA72FF9-DD64-43A8-8704-6380A11F11D5}) (Version: 1.4.15.0 - Dell Inc.)

Dell Digital Delivery (HKLM-x32\...\{AB7F2792-2ED1-4C5C-9F28-680E5110BF72}) (Version: 3.1.1018.0 - Dell Products, LP)

Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)

Dell Help & Support (HKLM\...\{E8669F4E-F2BE-48A9-B5A5-0BC12CA4CB4F}) (Version: 2.4.18.0 - Dell Inc.) Hidden

Dell Help & Support (HKLM-x32\...\InstallShield_{E8669F4E-F2BE-48A9-B5A5-0BC12CA4CB4F}) (Version: 2.4.18.0 - Dell Inc.)

Dell Product Registration (HKLM-x32\...\InstallShield_{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.)

Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 2.0.6875.402 - Dell)

Dell SupportAssistAgent (HKLM\...\{90881C8E-6C4F-4662-9923-85AFCA058C44}) (Version: 2.0.1.7 - Dell)

Dell System Detect (HKU\S-1-5-21-1877981502-1692956747-790140615-1001\...\58d94f3ce2c27db0) (Version: 7.3.0.6 - Dell)

Dell Update - SupportAssist Update Plugin (HKLM\...\{EEA45885-F3E3-4E7D-8435-E9C21D36C141}) (Version: 3.0.0.2840 - Dell Inc.)

Dell Update (HKLM-x32\...\{F91263FA-BE4D-439D-9C0A-2E7204E0E9E3}) (Version: 1.9.20.0 - Dell Inc.)

Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden

DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden

DirectX 9 Runtime (HKLM-x32\...\{3A9527CF-4E91-4683-A03F-F1AD022126E5}) (Version: 1.00.0000 - Sonic Solutions) Hidden

DJ_AIO_05_F4400_Software_Min (HKLM-x32\...\{A835C187-691C-4827-BCEA-1611179C96B9}) (Version: 140.0.841.000 - Hewlett-Packard) Hidden

F4400 (HKLM-x32\...\{34957339-C8A1-4A3D-B7B5-D9EC45C2C5E0}) (Version: 140.0.841.000 - Hewlett-Packard) Hidden

Family Tree Maker 2012 (HKLM-x32\...\{1CB0993B-1CD4-4A18-9C85-9732AFD9843F}) (Version: 21.0.452 - Ancestry.com, Inc.) Hidden

Family Tree Maker 2012 (HKLM-x32\...\Family Tree Maker 2012) (Version: 21.0.452 - Ancestry.com, Inc.)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden

GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden

HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)

HP Deskjet F4400 Printer Driver Software 14.0 Rel. 5 (HKLM\...\{82D96D11-AF74-4449-8811-4D6CE66FEF63}) (Version: 14.0 - HP)

HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)

HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)

HP Support Solutions Framework (HKLM-x32\...\{CE7447C2-EF12-4EF3-BE51-BFC3B049C0F6}) (Version: 12.7.27.15 - HP)

HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)

HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden

HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden

ICA (HKLM-x32\...\{00580795-581C-4587-B9F2-37320D7AB37F}) (Version: 14.2.0.1 - Corel Corporation) Hidden

Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)

IPM_PSP_COM (HKLM-x32\...\{00BEE329-BAAB-49FF-9B66-55E4B12B9ADD}) (Version: 14.2.0.1 - Corel Corporation) Hidden

Learning Lodge Navigator (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)

MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden

Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6570.1 - Waves Audio Ltd.) Hidden

McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.149 - McAfee, Inc.)

McAfee® Total Protection (HKLM-x32\...\MSC) (Version: 15.0.166 - McAfee, Inc.)

Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-1877981502-1692956747-790140615-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
 
At this rate this will take all week. Do you have another way to do this? That pop up keeps telling me it won't send.
 
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)

PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.2.00.03250 - Sony Corporation)

Product Registration (HKLM\...\{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.) Hidden

PSPPContent (HKLM-x32\...\{006CAAEF-CA96-4181-AC22-FE56D61432E4}) (Version: 14.2.0.1 - Corel Corporation) Hidden
 
PSPPHelp (HKLM-x32\...\{00D74A7A-F7AD-4D00-ABD2-0973836292C7}) (Version: 14.2.0.1 - Corel Corporation) Hidden

PSPPro64 (HKLM\...\{0015DE8E-8D9F-403E-8E5A-4098410E6125}) (Version: 14.2.0.1 - Corel Corporation) Hidden

RBVirtualFolder64Inst (HKLM\...\{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}) (Version: 1.00.0000 - Roxio, Inc.) Hidden

Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
 
Attach this particular log.

What browser is having this issue?
did you try different one?

...and...
In the future please use Notepad instead of Wordpad to open logs.
Wordpad creates an extra space and all logs are twice as long and harder for me to read.
Thank you :)
 
I've tried posting in chrome, edge, internet explorer 11. I get the same little box. Thought maybe it was wordpad but it does the same with notepad. So how do I get you the rest of the report?
 
I'm going to copy and paste this to see if it is just that report that won't go. What "particular log" am I suppose to attach?
 
Back