Jump to content

Recommended Posts

Hello,
Today I discovered that my chrome's homepage was changed to "www.viceice.com" and all extensions and plugins were gone. I found out that it was a browser hijacker. Seems to be a newer malware cos there arent many guides online about this,just two or three and they didnt work.
 
I tried the guide on malwaretips.com's website related to viceice.com and another website; used the following software/tools :
Adwcleaner
Malwarebytes
Hitmanpro
Junkware removal tool
Spyhunter
and Emisoft emergency kit.
 
Malwarebytes,spyhunter,adwcleaner and Hitman did remove a few files, but the problem still persists. This seems to be a very stubborn piece of malware.
 
Please help me, Any help would be greatly appreciated .
Thanks.
 
PS: Im attaching logs of malware bytes, junk removal tool and emisoft emergency kit.

malwarebytes log.txt

emisoft scan_150830-150507.txt

JRT.txt

Share this post


Link to post
Share on other sites

Hi & :welcome:

My name is Jürgen and I will be assisting you with your Malware related problems. medieval.gif

Before we move on, please read the following points carefully. :excl:

  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
P2P/Piracy Warning:
  • If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
  • Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
  • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now and read the policy on Piracy.
Step 1

Please run a FRST scan. This will help us diagnose your problem.

frst.pngfrstscan.png

Please download Farbar Recovery Scan Tool and save it to your Desktop.

(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)

  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.
Step 2

frst.pngfrstscan.png

Start FRST with administator privileges.

  • Make sure the following option is checked: sh.PNG
  • Press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Shortcut.txt) in the same directory the tool was run from.

    Please copy and paste the content of Shortcut.txt in your next reply.

Share this post


Link to post
Share on other sites

Hey Jürgenglad to see your reply.


 


I did everything you told to, and its pretty long.   :D


 


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-08-2015

Ran by Johnson (administrator) on DJ-I7 (30-08-2015 17:18:14)

Running from C:\Users\Johnson\Desktop

Loaded Profiles: Johnson (Available Profiles: Johnson & mdspi_000)

Platform: Windows 10 Pro (X64) Language: English (United States)

Internet Explorer Version 11 (Default browser: Edge)

Boot Mode: Normal


 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe

() C:\Windows\System32\PnkBstrA.exe

(M-Audio) C:\Program Files (x86)\M-Audio\MobilePre\AudioDevMon.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe

(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe

(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe

(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe

(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

() D:\Software.Inc.Alpha.5.4\Software Inc.exe

(VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe

 

 

==================== Registry (Whitelisted) ===========================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)

HKLM\...\Run: [iTunesHelper] => G:\iTunes\iTunesHelper.exe [170280 2015-07-11] (Apple Inc.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-18] (NVIDIA Corporation)

HKLM\...\Run: [shadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM-x32\...\Run: [] => [X]

HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-06-18] (Razer Inc.)

HKLM-x32\...\Run: [Data Transfer Accelerator] => C:\Program Files (x86)\Data Transfer Accelerator\Data Transfer Accelerator.exe [5159568 2015-08-01] (FNet Co., Ltd.)

HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)

HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)

HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-18] (Piriform Ltd)

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\...\RunOnce: [uninstall C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\...\RunOnce: [uninstall C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"

Startup: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-03-08]

ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

GroupPolicyScripts\User: Group Policy detected <======= ATTENTION

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.viceice.com/

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-in/?ocid=iehp

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-21-1512700685-153587559-2495740328-1001 -> DefaultScope {2039DD3E-4E72-4C20-90E7-9FD959AA7D06} URL = hxxp://www.google.com/cse?cx=partner-pub-0900663996874144:4435833467&ie=UTF-8&q={searchTerms}&sa=Search&ref=#gsc.tab=0&gsc.q={searchTerms}&gsc.page=1

SearchScopes: HKU\S-1-5-21-1512700685-153587559-2495740328-1001 -> {2039DD3E-4E72-4C20-90E7-9FD959AA7D06} URL = hxxp://www.google.com/cse?cx=partner-pub-0900663996874144:4435833467&ie=UTF-8&q={searchTerms}&sa=Search&ref=#gsc.tab=0&gsc.q={searchTerms}&gsc.page=1

BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> G:\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)

BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> G:\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> G:\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)

BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)

BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-01] (Oracle Corporation)

BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-03-03] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)

BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)

BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-01] (Oracle Corporation)

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - G:\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{3cea785c-7676-459c-a180-f7341659bfa5}: [DhcpNameServer] 192.168.1.1

 

FireFox:

========

FF ProfilePath: C:\Users\Johnson\AppData\Roaming\Mozilla\Firefox\Profiles\8hrm6br4.default

FF DefaultSearchEngine: viceice

FF SelectedSearchEngine: viceice

FF Homepage: hxxp://www.viceice.com

FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [No File]

FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> G:\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)

FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)

FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()

FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [No File]

FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)

FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-01] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-01] (Oracle Corporation)

FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)

FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-07] (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-07] (NVIDIA Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)

 

Chrome: 

=======

CHR Profile: C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-08]

CHR Extension: (Chrome Web Store Payments) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-08]

CHR Profile: C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1

CHR Extension: (Google Slides) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-06]

CHR Extension: (Google Docs) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-06]

CHR Extension: (Google Drive) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-06]

CHR Extension: (YouTube) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-06]

CHR Extension: (Google Search) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-06]

CHR Extension: (Google Sheets) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-06]

CHR Extension: (Bookmark Manager) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-06]

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-06]

CHR Extension: (Google Wallet) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-06]

CHR Extension: (Gmail) - C:\Users\Johnson\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-06]

 

==================== Services (Whitelisted) ========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)

S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)

S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)

R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-02] (Microsoft Corporation)

R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-02] (Microsoft Corporation)

S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)

S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)

S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)

S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)

S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)

R2 GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [23504 2014-12-25] (Micro-Star Int'l Co., Ltd.)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-18] (NVIDIA Corporation)

R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-08-30] (SurfRight B.V.)

S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-11] (Microsoft Corporation)

R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)

R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)

S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)

R2 MobilePreIIAudioDevMon; C:\Program Files (x86)\M-Audio\MobilePre\AudioDevMon.exe [1975056 2013-05-23] (M-Audio)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-18] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-18] (NVIDIA Corporation)

S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)

R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)

R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-03-09] ()

R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-08] ()

R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()

S3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-11] (Microsoft Corporation)

R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4250624 2015-02-03] (A-Volute) [File not signed]

S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-02] (Microsoft Corporation)

S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [997568 2014-06-29] (@ByELDI) [File not signed]

R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1026944 2015-08-30] (Enigma Software Group USA, LLC.)

R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.)

R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)

R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)

R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)

S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-02] (Microsoft Corporation)

S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-02] (Microsoft Corporation)

R3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-30] (Microsoft Corporation)

R3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)

S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)

R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)

R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)

S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)

S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

 

===================== Drivers (Whitelisted) ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

S3 busenum; C:\Windows\System32\drivers\SteelBus64.sys [146944 2014-10-08] (SteelSeries Corporation) [File not signed]

R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)

S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)

S3 EfiInvoker; C:\Windows\SysWOW64\Drivers\invoker64.sys [13080 2015-03-08] (Windows ® Server 2003 DDK provider)

R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2015-08-30] (Enigma Software Group USA, LLC.)

S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-08-30] ()

R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)

R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2015-08-01] (FNet Co., Ltd.)

S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)

R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)

S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)

S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)

S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)

S3 MAUSBMOBILEPREII; C:\Windows\system32\DRIVERS\MAudioMobilePreII.sys [464144 2013-05-23] (M-Audio)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)

R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-08-30] (Malwarebytes Corporation)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)

S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)

S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-18] (NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)

S3 OSFMount; D:\Counter-Strike Global Offensive\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-19] (PassMark Software)

R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)

R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-03-04] (Razer, Inc.)

R3 RZSURROUNDVADService; C:\Windows\system32\drivers\RzSurroundVAD.sys [40640 2015-02-09] (Windows ® Win 7 DDK provider)

R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)

R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)

R3 tapse01; C:\Windows\System32\drivers\tapse01.sys [26624 2015-03-05] (The OpenVPN Project)

S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)

S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-02] (Microsoft Corporation)

S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()

S3 USBPNPA; C:\Windows\system32\drivers\CM10864.sys [4333568 2014-10-09] (C-Media Electronics Inc) [File not signed]

R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)

R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)

S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)

S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)

S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)

S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)

S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Share this post


Link to post
Share on other sites
 

==================== One Month Created files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-08-30 17:17 - 2015-08-30 17:17 - 00063568 _____ C:\Users\Johnson\Desktop\Addition.txt

2015-08-30 17:16 - 2015-08-30 17:18 - 00025058 _____ C:\Users\Johnson\Desktop\FRST.txt

2015-08-30 17:14 - 2015-08-30 17:14 - 00000000 ____D C:\Users\Johnson\Desktop\New folder

2015-08-30 17:13 - 2015-08-30 15:23 - 02186752 _____ (Farbar) C:\Users\Johnson\Desktop\FRST64.exe

2015-08-30 16:37 - 2015-08-30 16:37 - 00016148 _____ C:\WINDOWS\system32\DJ-I7_Johnson_HistoryPrediction.bin

2015-08-30 15:27 - 2015-08-30 15:29 - 00054981 _____ C:\Users\Johnson\Downloads\Addition.txt

2015-08-30 15:24 - 2015-08-30 15:29 - 00112098 _____ C:\Users\Johnson\Downloads\FRST.txt

2015-08-30 15:23 - 2015-08-30 17:18 - 00000000 ____D C:\FRST

2015-08-30 15:23 - 2015-08-30 15:23 - 02186752 _____ (Farbar) C:\Users\Johnson\Downloads\FRST64.exe

2015-08-30 15:01 - 2015-08-30 15:01 - 00000726 _____ C:\Users\Johnson\Desktop\Start Emsisoft Emergency Kit.lnk

2015-08-30 14:57 - 2015-08-30 15:00 - 165612216 _____ C:\Users\Johnson\Downloads\EmsisoftEmergencyKit.exe

2015-08-30 14:23 - 2015-08-30 14:23 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe

2015-08-30 14:11 - 2015-08-30 14:11 - 00001962 _____ C:\Users\Public\Desktop\HitmanPro.lnk

2015-08-30 14:11 - 2015-08-30 14:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro

2015-08-30 14:08 - 2015-08-30 14:08 - 00079133 _____ C:\Users\Johnson\Desktop\How to remove Viceice.com hijack (Virus Removal Guide).html

2015-08-30 14:08 - 2015-08-30 14:08 - 00000000 ____D C:\Users\Johnson\Desktop\How to remove Viceice.com hijack (Virus Removal Guide)_files

2015-08-30 14:07 - 2015-08-30 14:10 - 11352032 _____ (SurfRight B.V.) C:\Users\Johnson\Downloads\HitmanPro_x64.exe

2015-08-30 14:01 - 2015-08-30 14:01 - 01798640 _____ (Malwarebytes Corporation) C:\Users\Johnson\Downloads\JRT.exe

2015-08-30 13:53 - 2015-08-30 13:53 - 00104282 _____ C:\Users\Johnson\Documents\cc_20150830_135258.reg

2015-08-30 13:51 - 2015-08-30 13:51 - 00001127 _____ C:\Users\Johnson\Desktop\RegHunter.lnk

2015-08-30 13:51 - 2015-08-30 13:51 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegHunter

2015-08-30 13:02 - 2015-08-30 13:02 - 01618432 _____ C:\Users\Johnson\Downloads\AdwCleaner.exe

2015-08-30 13:02 - 2015-08-30 13:02 - 01618432 _____ C:\Users\Johnson\Downloads\AdwCleaner (1).exe

2015-08-30 12:49 - 2015-08-30 13:59 - 00076148 _____ C:\WINDOWS\PFRO.log

2015-08-30 11:12 - 2015-08-30 13:51 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Enigma Software Group

2015-08-30 11:12 - 2015-08-30 11:12 - 00003410 _____ C:\WINDOWS\System32\Tasks\SpyHunter4Startup

2015-08-30 11:12 - 2015-08-30 11:12 - 00001132 _____ C:\Users\Johnson\Desktop\SpyHunter.lnk

2015-08-30 11:12 - 2015-08-30 11:12 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter

2015-08-30 11:12 - 2015-08-30 11:12 - 00000000 ____D C:\sh4ldr

2015-08-30 11:12 - 2015-08-30 11:12 - 00000000 _____ C:\autoexec.bat

2015-08-30 11:11 - 2015-08-30 13:51 - 00000000 ____D C:\Program Files\Enigma Software Group

2015-08-30 11:11 - 2015-08-30 11:11 - 11230592 _____ (Enigma Software Group USA, LLC.) C:\Users\Johnson\Downloads\RegHunter-Installer.exe

2015-08-30 11:11 - 2015-08-30 11:11 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys

2015-08-30 11:10 - 2015-08-30 11:10 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Johnson\Downloads\SpyHunter-Installer.exe

2015-08-29 12:25 - 2015-08-30 15:10 - 00000000 _RSHD C:\Users\Johnson\AppData\Roaming\taskmgr

2015-08-29 12:25 - 2015-08-29 12:25 - 00000000 ____D C:\Users\Johnson\Documents\Electronic Arts

2015-08-29 12:24 - 2015-08-29 23:35 - 00000009 _____ C:\Users\Johnson\AppData\Roaming\update.dat

2015-08-29 12:24 - 2015-08-29 12:24 - 261744128 _____ C:\Users\Johnson\AppData\Roaming\Update.fg3

2015-08-29 12:22 - 2015-08-29 12:22 - 00001135 _____ C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sims 4 by BuZeR.lnk

2015-08-28 22:10 - 2015-08-19 10:20 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll

2015-08-25 13:12 - 2015-08-25 13:12 - 00000000 ____D C:\Users\Johnson\AppData\Local\Sniper3

2015-08-24 19:56 - 2015-08-24 19:56 - 00000798 _____ C:\Users\Public\Desktop\Sniper Elite 3.lnk

2015-08-24 19:56 - 2015-08-24 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 3

2015-08-24 14:19 - 2015-08-11 10:22 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll

2015-08-24 14:18 - 2015-08-24 14:18 - 00003238 _____ C:\WINDOWS\System32\Tasks\{61FCE884-3C36-416A-812D-A6EB91C555E8}

2015-08-24 14:16 - 2015-08-24 14:16 - 00000000 ____D C:\Users\Johnson\Documents\The Movies

2015-08-24 14:16 - 2015-08-24 14:16 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Lionhead Studios

2015-08-24 14:04 - 2015-08-26 11:22 - 00000657 _____ C:\Users\Public\Desktop\StarMaker.lnk

2015-08-24 14:04 - 2015-08-24 14:04 - 00000652 _____ C:\Users\Public\Desktop\The Movies Stunts & Effects.lnk

2015-08-24 14:04 - 2015-08-24 14:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Movies

2015-08-24 14:02 - 2015-08-24 14:03 - 00017589 _____ C:\WINDOWS\DirectX.log

2015-08-24 07:49 - 2015-08-24 07:50 - 29144304 _____ (Popcorn Official) C:\Users\Johnson\Downloads\Popcorn-Time-0.3.8-3-Setup.exe

2015-08-22 20:03 - 2015-08-22 20:03 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux

2015-08-22 20:03 - 2015-08-22 20:03 - 00000000 ____D C:\Users\Johnson\AppData\Local\FluxSoftware

2015-08-22 20:02 - 2015-08-22 20:02 - 00597304 _____ C:\Users\Johnson\Downloads\flux-setup.exe

2015-08-22 02:05 - 2015-08-22 02:05 - 00000711 _____ C:\Users\Johnson\Desktop\Start Tor Browser.lnk

2015-08-22 02:05 - 2015-08-22 02:05 - 00000711 _____ C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk

2015-08-19 13:09 - 2015-08-13 10:03 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-08-19 13:09 - 2015-08-13 09:53 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2015-08-19 13:09 - 2015-08-13 09:52 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll

2015-08-19 13:09 - 2015-08-13 09:50 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2015-08-19 13:09 - 2015-08-13 09:47 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll

2015-08-19 13:09 - 2015-08-13 09:37 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-08-19 13:09 - 2015-08-13 09:23 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2015-08-19 13:09 - 2015-08-11 15:34 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2015-08-19 13:09 - 2015-08-11 15:34 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-08-19 13:09 - 2015-08-11 15:34 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2015-08-19 13:09 - 2015-08-11 15:33 - 08021840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-08-19 13:09 - 2015-08-11 15:33 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys

2015-08-19 13:09 - 2015-08-11 15:32 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll

2015-08-19 13:09 - 2015-08-11 15:32 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe

2015-08-19 13:09 - 2015-08-11 15:32 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys

2015-08-19 13:09 - 2015-08-11 15:27 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-08-19 13:09 - 2015-08-11 15:22 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll

2015-08-19 13:09 - 2015-08-11 15:20 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2015-08-19 13:09 - 2015-08-11 15:10 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2015-08-19 13:09 - 2015-08-11 15:10 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-08-19 13:09 - 2015-08-11 15:10 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2015-08-19 13:09 - 2015-08-11 15:08 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll

2015-08-19 13:09 - 2015-08-11 15:07 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe

2015-08-19 13:09 - 2015-08-11 15:01 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-08-19 13:09 - 2015-08-11 14:56 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll

2015-08-19 13:09 - 2015-08-11 14:53 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-08-19 13:09 - 2015-08-11 14:52 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-08-19 13:09 - 2015-08-11 14:51 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-08-19 13:09 - 2015-08-11 14:51 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll

2015-08-19 13:09 - 2015-08-11 14:50 - 02224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2015-08-19 13:09 - 2015-08-11 14:50 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll

2015-08-19 13:09 - 2015-08-11 14:49 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll

2015-08-19 13:09 - 2015-08-11 14:48 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll

2015-08-19 13:09 - 2015-08-11 14:46 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-08-19 13:09 - 2015-08-11 14:44 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll

2015-08-19 13:09 - 2015-08-11 14:43 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll

2015-08-19 13:09 - 2015-08-11 14:41 - 02446336 _____ C:\WINDOWS\system32\InputService.dll

2015-08-19 13:09 - 2015-08-11 14:41 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe

2015-08-19 13:09 - 2015-08-11 14:40 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2015-08-19 13:09 - 2015-08-11 14:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2015-08-19 13:09 - 2015-08-11 14:40 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll

2015-08-19 13:09 - 2015-08-11 14:39 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll

2015-08-19 13:09 - 2015-08-11 14:38 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll

2015-08-19 13:09 - 2015-08-11 14:38 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2015-08-19 13:09 - 2015-08-11 14:37 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-08-19 13:09 - 2015-08-11 14:37 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2015-08-19 13:09 - 2015-08-11 14:37 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe

2015-08-19 13:09 - 2015-08-11 14:36 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2015-08-19 13:09 - 2015-08-11 14:36 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll

2015-08-19 13:09 - 2015-08-11 14:35 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2015-08-19 13:09 - 2015-08-11 14:35 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll

2015-08-19 13:09 - 2015-08-11 14:35 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll

2015-08-19 13:09 - 2015-08-11 14:35 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll

2015-08-19 13:09 - 2015-08-11 14:35 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll

2015-08-19 13:09 - 2015-08-11 14:35 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll

2015-08-19 13:09 - 2015-08-11 14:33 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2015-08-19 13:09 - 2015-08-11 14:32 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-08-19 13:09 - 2015-08-11 14:32 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2015-08-19 13:09 - 2015-08-11 14:32 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2015-08-19 13:09 - 2015-08-11 14:32 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll

2015-08-19 13:09 - 2015-08-11 14:31 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2015-08-19 13:09 - 2015-08-11 14:30 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2015-08-19 13:09 - 2015-08-11 14:30 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll

2015-08-19 13:09 - 2015-08-11 14:29 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll

2015-08-19 13:09 - 2015-08-11 14:29 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll

2015-08-19 13:09 - 2015-08-11 14:29 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll

2015-08-19 13:09 - 2015-08-11 14:29 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll

2015-08-19 13:09 - 2015-08-11 14:28 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll

2015-08-19 13:09 - 2015-08-11 14:27 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-08-19 13:09 - 2015-08-11 14:27 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll

2015-08-19 13:09 - 2015-08-11 14:21 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-08-19 13:09 - 2015-08-11 14:21 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll

2015-08-19 13:09 - 2015-08-11 14:20 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe

2015-08-19 13:09 - 2015-08-11 14:20 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll

2015-08-19 13:09 - 2015-08-11 14:20 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2015-08-19 13:09 - 2015-08-11 14:19 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2015-08-19 13:09 - 2015-08-11 14:19 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2015-08-19 13:09 - 2015-08-11 14:18 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll

2015-08-19 13:09 - 2015-08-11 14:17 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2015-08-19 13:09 - 2015-08-11 14:15 - 18805760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-08-19 13:09 - 2015-08-11 14:15 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll

2015-08-19 13:09 - 2015-08-11 14:13 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2015-08-19 13:09 - 2015-08-11 14:12 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2015-08-19 13:09 - 2015-08-11 14:10 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2015-08-19 13:09 - 2015-08-11 14:10 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2015-08-19 13:09 - 2015-08-11 14:10 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2015-08-19 13:09 - 2015-08-11 14:09 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2015-08-19 13:09 - 2015-08-11 14:08 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll

2015-08-19 11:01 - 2015-08-24 14:20 - 00001450 _____ C:\Users\Public\Desktop\GeForce Experience.lnk

2015-08-19 10:57 - 2015-08-18 05:00 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2015-08-19 10:57 - 2015-08-18 05:00 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll

2015-08-19 10:57 - 2015-08-18 04:59 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll

2015-08-19 10:57 - 2015-08-18 04:59 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2015-08-19 10:57 - 2015-08-07 16:37 - 00112944 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll

2015-08-19 10:57 - 2015-08-07 16:37 - 00105264 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll

2015-08-19 10:57 - 2015-08-07 09:57 - 06883632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll

2015-08-19 10:57 - 2015-08-07 09:57 - 03491960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll

2015-08-19 10:57 - 2015-08-07 09:57 - 02558768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll

2015-08-19 10:57 - 2015-08-07 09:57 - 00937776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe

2015-08-19 10:57 - 2015-08-07 09:57 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll

2015-08-19 10:57 - 2015-08-07 09:57 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll

2015-08-19 10:57 - 2015-08-07 09:35 - 00573048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe

2015-08-19 10:57 - 2015-08-03 14:52 - 05133709 _____ C:\WINDOWS\system32\nvcoproc.bin

2015-08-19 10:56 - 2015-08-12 01:22 - 11174544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys

2015-08-19 10:56 - 2015-08-11 10:22 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2015-08-19 10:56 - 2015-08-11 10:22 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2015-08-19 10:56 - 2015-08-07 16:37 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 22551672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 18564728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 17926480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 16638896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 15627520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 15328296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 14935968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 13663424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 12609072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 12186176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 03462776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 03059856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 02352248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 02104440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 01898288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435560.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435560.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 01177016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 01063032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 01061168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 01000088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00985392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00931960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00785336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00631128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00601424 _____ C:\WINDOWS\system32\nvmcumd.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00408184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00339576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00204648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys

2015-08-19 10:56 - 2015-08-07 16:37 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00150832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00040280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll

2015-08-19 10:56 - 2015-08-07 16:37 - 00034100 _____ C:\WINDOWS\system32\nvinfo.pb

2015-08-19 10:54 - 2015-08-19 10:54 - 00000000 ____D C:\NVIDIA

2015-08-19 10:50 - 2015-08-19 10:54 - 292648584 _____ (NVIDIA Corporation) C:\Users\Johnson\Downloads\355.60-desktop-win10-64bit-international-whql.exe

2015-08-19 10:43 - 2015-08-27 14:52 - 00003644 _____ C:\WINDOWS\setupact.log

2015-08-19 10:43 - 2015-08-19 10:43 - 00000000 _____ C:\WINDOWS\setuperr.log

2015-08-18 21:00 - 2015-08-18 21:00 - 00000000 ____D C:\Users\Johnson\Documents\My Cheat Tables

2015-08-17 14:33 - 2015-08-17 14:33 - 1212737601 _____ C:\WINDOWS\MEMORY.DMP

2015-08-17 14:33 - 2015-08-17 14:33 - 00364128 _____ C:\WINDOWS\Minidump\081715-11609-01.dmp

2015-08-17 11:39 - 2015-08-30 17:12 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log

2015-08-17 10:24 - 2015-08-17 10:24 - 00002854 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC

2015-08-17 10:23 - 2015-08-17 10:26 - 00000000 ____D C:\Program Files\CCleaner

2015-08-17 10:23 - 2015-08-17 10:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

2015-08-16 15:15 - 2015-08-16 15:15 - 00000000 ____D C:\Users\Johnson\Documents\CPY_SAVES

2015-08-16 15:14 - 2015-08-24 19:56 - 00000000 ____D C:\WINDOWS\SysWOW64\directx

2015-08-16 14:32 - 2015-08-16 23:49 - 00000455 _____ C:\Users\Public\Desktop\Total War - Attila.lnk

2015-08-12 15:27 - 2015-08-08 12:59 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2015-08-12 15:27 - 2015-08-08 12:49 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-08-12 15:27 - 2015-08-08 12:31 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2015-08-12 15:27 - 2015-08-08 12:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-08-12 15:27 - 2015-08-08 12:10 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-08-12 15:27 - 2015-08-08 11:54 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2015-08-12 15:27 - 2015-08-08 11:54 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2015-08-12 15:27 - 2015-08-08 11:45 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-08-12 15:27 - 2015-08-08 11:30 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2015-08-12 15:27 - 2015-08-06 08:47 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys

2015-08-12 15:27 - 2015-08-06 08:47 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys

2015-08-12 15:27 - 2015-08-06 07:52 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys

2015-08-12 15:27 - 2015-08-05 10:19 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll

2015-08-12 15:27 - 2015-08-05 09:59 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

2015-08-12 15:27 - 2015-08-05 09:30 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll

2015-08-12 15:27 - 2015-08-05 09:24 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll

2015-08-12 15:27 - 2015-08-05 09:17 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-08-12 15:27 - 2015-08-05 09:09 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll

2015-08-12 15:27 - 2015-08-04 09:37 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys

2015-08-12 15:27 - 2015-08-04 09:36 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-08-12 15:27 - 2015-08-04 09:36 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-08-12 15:27 - 2015-08-04 08:53 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll

2015-08-12 15:27 - 2015-08-04 08:29 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll

2015-08-12 15:27 - 2015-08-04 08:17 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll

2015-08-12 15:27 - 2015-08-03 08:02 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll

2015-08-12 15:27 - 2015-08-03 07:58 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll

2015-08-12 15:27 - 2015-08-03 07:49 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys

2015-08-12 15:27 - 2015-08-03 07:49 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2015-08-12 15:27 - 2015-08-03 07:48 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2015-08-12 15:27 - 2015-08-03 07:48 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2015-08-12 15:27 - 2015-08-03 07:48 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll

2015-08-12 15:27 - 2015-08-03 07:48 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys

2015-08-12 15:27 - 2015-08-03 07:47 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS

2015-08-12 15:27 - 2015-08-03 07:47 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys

2015-08-12 15:27 - 2015-08-03 07:43 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-08-12 15:27 - 2015-08-03 07:42 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-08-12 15:27 - 2015-08-03 07:26 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2015-08-12 15:27 - 2015-08-03 07:20 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-08-12 15:27 - 2015-08-03 07:19 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-08-12 15:27 - 2015-08-03 07:01 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll

2015-08-12 15:27 - 2015-08-03 07:00 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll

2015-08-12 15:27 - 2015-08-03 06:54 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll

2015-08-12 15:27 - 2015-08-03 06:54 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll

2015-08-12 15:27 - 2015-08-03 06:54 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll

2015-08-12 15:27 - 2015-08-03 06:53 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll

2015-08-12 15:27 - 2015-08-03 06:52 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll

2015-08-12 15:27 - 2015-08-03 06:52 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll

2015-08-12 15:27 - 2015-08-03 06:52 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll

2015-08-12 15:27 - 2015-08-03 06:51 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll

2015-08-12 15:27 - 2015-08-03 06:49 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe

2015-08-12 15:27 - 2015-08-03 06:49 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe

2015-08-12 15:27 - 2015-08-03 06:48 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-08-12 15:27 - 2015-08-03 06:48 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2015-08-12 15:27 - 2015-08-03 06:48 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll

2015-08-12 15:27 - 2015-08-03 06:48 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll

2015-08-12 15:27 - 2015-08-03 06:45 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll

2015-08-12 15:27 - 2015-08-03 06:45 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2015-08-12 15:27 - 2015-08-03 06:45 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll

2015-08-12 15:27 - 2015-08-03 06:45 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll

2015-08-12 15:27 - 2015-08-03 06:45 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll

2015-08-12 15:27 - 2015-08-03 06:44 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll

2015-08-12 15:27 - 2015-08-03 06:44 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll

2015-08-12 15:27 - 2015-08-03 06:42 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll

2015-08-12 15:27 - 2015-08-03 06:42 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll

2015-08-12 15:27 - 2015-08-03 06:41 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll

2015-08-12 15:27 - 2015-08-03 06:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll

2015-08-12 15:27 - 2015-08-03 06:36 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe

2015-08-12 15:27 - 2015-08-03 06:33 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2015-08-12 15:27 - 2015-08-03 06:32 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll

2015-08-12 15:27 - 2015-08-03 06:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll

2015-08-12 15:27 - 2015-08-03 06:31 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-08-12 15:27 - 2015-08-03 06:29 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll

2015-08-11 23:24 - 2015-08-11 23:24 - 00007668 _____ C:\Users\Johnson\Documents\johnnysgaming2 contacts.csv

2015-08-06 21:38 - 2015-08-06 21:38 - 00000000 ____D C:\Users\Johnson\Desktop\Odin_3.10.0

2015-08-06 20:45 - 2014-12-03 07:31 - 00206104 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys

2015-08-06 20:45 - 2014-12-03 07:31 - 00110488 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys

2015-08-06 20:44 - 2015-08-06 20:44 - 00000000 ____D C:\ProgramData\Samsung

2015-08-06 20:44 - 2015-08-06 20:44 - 00000000 ____D C:\Program Files\SAMSUNG

2015-08-06 16:02 - 2015-08-12 16:08 - 00001193 _____ C:\Users\Johnson\Desktop\CivilizationV_DX11.exe - Shortcut.lnk

2015-08-06 15:47 - 2015-08-06 15:53 - 00000000 ____D C:\usb_driver

2015-08-06 15:47 - 2015-08-06 15:47 - 01002728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller2.dll

2015-08-06 15:33 - 2015-08-06 15:33 - 00000000 ____D C:\Users\Johnson\.android

2015-08-06 15:23 - 2015-08-06 15:23 - 00943040 _____ C:\Users\Johnson\Downloads\cminstaller-win-beta.exe

2015-08-06 15:15 - 2015-07-30 11:54 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll

2015-08-06 15:15 - 2015-07-30 11:53 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-08-06 15:15 - 2015-07-30 11:51 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2015-08-06 15:15 - 2015-07-30 11:47 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll

2015-08-06 15:15 - 2015-07-30 11:47 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll

2015-08-06 15:15 - 2015-07-30 11:46 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll

2015-08-06 15:15 - 2015-07-30 11:45 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll

2015-08-06 15:15 - 2015-07-30 11:44 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll

2015-08-06 15:15 - 2015-07-30 11:39 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll

2015-08-06 15:15 - 2015-07-30 11:36 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2015-08-06 15:15 - 2015-07-30 11:35 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll

2015-08-06 15:15 - 2015-07-30 11:35 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-08-06 15:15 - 2015-07-30 11:34 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2015-08-06 15:15 - 2015-07-30 11:33 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2015-08-06 15:15 - 2015-07-30 10:54 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2015-08-06 15:15 - 2015-07-30 09:59 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll

2015-08-06 15:15 - 2015-07-30 09:56 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll

2015-08-06 15:15 - 2015-07-30 09:56 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2015-08-06 15:15 - 2015-07-30 09:55 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll

2015-08-06 15:15 - 2015-07-30 09:55 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2015-08-06 15:15 - 2015-07-30 09:54 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2015-08-06 15:15 - 2015-07-30 09:54 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-08-06 15:15 - 2015-07-30 09:54 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-08-06 15:15 - 2015-07-30 09:54 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll

2015-08-06 15:15 - 2015-07-30 09:52 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll

2015-08-06 15:15 - 2015-07-30 09:52 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll

2015-08-06 15:15 - 2015-07-30 09:51 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2015-08-06 15:15 - 2015-07-30 09:42 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-08-06 15:15 - 2015-07-30 09:42 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-08-06 15:15 - 2015-07-30 09:39 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe

2015-08-06 15:15 - 2015-07-30 09:38 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-08-06 15:15 - 2015-07-30 09:38 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-08-06 15:15 - 2015-07-30 09:38 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe

2015-08-06 15:15 - 2015-07-30 09:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-08-06 15:15 - 2015-07-30 09:22 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-08-06 15:15 - 2015-07-30 09:22 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll

2015-08-06 15:15 - 2015-07-30 09:22 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll

2015-08-06 15:15 - 2015-07-30 09:19 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-08-06 15:15 - 2015-07-30 09:16 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-08-06 15:15 - 2015-07-30 09:16 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-08-06 15:15 - 2015-07-30 09:16 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2015-08-06 15:15 - 2015-07-30 09:15 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll

2015-08-06 15:15 - 2015-07-30 09:15 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys

2015-08-06 15:15 - 2015-07-30 09:14 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-08-06 15:15 - 2015-07-30 09:14 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2015-08-06 15:15 - 2015-07-30 09:14 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll

2015-08-06 15:15 - 2015-07-30 09:14 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys

2015-08-06 15:15 - 2015-07-30 09:14 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll

2015-08-06 15:15 - 2015-07-30 09:12 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll

2015-08-06 15:15 - 2015-07-30 09:11 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll

2015-08-06 15:15 - 2015-07-30 09:11 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll

2015-08-06 15:15 - 2015-07-30 09:10 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2015-08-06 15:15 - 2015-07-30 09:08 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll

2015-08-06 15:15 - 2015-07-30 09:08 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll

2015-08-06 15:15 - 2015-07-30 09:04 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll

2015-08-06 15:15 - 2015-07-30 08:59 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2015-08-06 15:15 - 2015-07-30 08:45 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-08-06 15:15 - 2015-07-30 08:37 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll

2015-08-06 15:15 - 2015-07-30 08:36 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-08-06 15:15 - 2015-07-30 08:36 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll

2015-08-06 15:15 - 2015-07-30 08:36 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll

2015-08-06 15:15 - 2015-07-30 08:34 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-08-06 15:15 - 2015-07-30 08:34 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll

2015-08-06 15:15 - 2015-07-30 08:29 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll

2015-08-06 15:15 - 2015-07-30 08:28 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2015-08-05 22:47 - 2015-08-17 14:33 - 00000000 ____D C:\WINDOWS\Minidump

2015-08-05 17:53 - 2015-08-05 17:53 - 00000000 ____D C:\ProgramData\ALI213

2015-08-05 17:40 - 2015-08-05 17:40 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Sid Meier's Civilization 5

2015-08-03 16:13 - 2015-08-05 17:54 - 00000000 ____D C:\Users\Johnson\AppData\Local\My Games

2015-08-03 16:11 - 2015-08-03 16:11 - 00000517 _____ C:\Users\Public\Desktop\Sid Meiers Civilization Beyond Earth.lnk

2015-08-03 16:11 - 2015-08-03 16:11 - 00000517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization Beyond Earth.lnk

2015-08-03 13:27 - 2015-08-03 13:27 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-08-03 11:39 - 2015-08-03 11:39 - 11977503 _____ (The qBittorrent project) C:\Users\Johnson\Downloads\qbittorrent_3.2.3_setup.exe

2015-08-03 11:39 - 2015-08-03 11:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent

2015-08-02 15:58 - 2015-08-02 15:58 - 11972384 _____ (The qBittorrent project) C:\Users\Johnson\Downloads\qbittorrent_3.2.2_setup.exe

2015-08-02 13:28 - 2015-08-02 13:28 - 00735396 _____ C:\Users\Johnson\Desktop\z66272L2.exe

2015-08-02 13:28 - 2012-09-27 13:10 - 02097184 _____ C:\Users\Johnson\Desktop\SFP_FV104-A1.dwn

2015-08-02 13:14 - 2015-08-29 11:22 - 00005168 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for DJ-I7-Johnson DJ-i7

2015-08-02 13:13 - 2015-08-02 13:13 - 00000000 ____D C:\Users\Johnson\AppData\Local\PeerDistRepub

2015-08-02 12:48 - 2015-08-02 12:48 - 00735396 _____ C:\Users\Johnson\Downloads\z66272L2.exe

2015-08-02 12:48 - 2015-08-02 12:48 - 00000000 ____D C:\Users\Johnson\Downloads\z66266L2

2015-08-02 12:48 - 2015-08-02 12:48 - 00000000 ____D C:\Users\Johnson\Downloads\z60660en

2015-08-02 12:45 - 2015-08-02 12:45 - 00282033 _____ C:\Users\Johnson\Downloads\z66266L2.exe

2015-08-02 01:46 - 2015-08-17 11:03 - 00000000 ___DC C:\WINDOWS\Panther

2015-08-02 01:46 - 2015-08-01 12:23 - 00000000 __SHD C:\Recovery

2015-08-02 01:44 - 2015-08-02 01:44 - 00000000 ____D C:\Windows.old

2015-08-02 01:43 - 2015-08-02 01:43 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2015-08-02 01:43 - 2015-08-02 01:43 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2015-08-02 01:43 - 2015-08-02 01:43 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi

2015-08-02 01:43 - 2015-08-02 01:43 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys

2015-08-02 01:43 - 2015-08-02 01:43 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll

2015-08-02 01:43 - 2015-08-02 01:43 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe

2015-08-02 01:43 - 2015-08-02 01:43 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe

2015-08-02 01:41 - 2015-08-02 01:41 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-08-02 01:40 - 2015-08-02 01:40 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-08-02 01:40 - 2015-08-02 01:40 - 00000000 ____D C:\Program Files\MSBuild

2015-08-02 01:40 - 2015-08-02 01:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-08-02 01:40 - 2015-08-02 01:40 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-08-02 01:39 - 2015-06-18 07:40 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-08-02 01:39 - 2015-06-18 07:40 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-08-02 01:39 - 2015-06-18 07:40 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-08-02 01:39 - 2015-05-30 10:37 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-08-02 01:39 - 2015-05-30 10:37 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-08-02 01:39 - 2015-05-30 10:37 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-08-01 12:57 - 2015-08-01 12:57 - 00001047 _____ C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk

2015-08-01 12:46 - 2015-08-30 12:52 - 00002375 _____ C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-08-01 12:46 - 2015-08-30 12:52 - 00000000 ___RD C:\Users\Johnson\OneDrive

2015-08-01 12:46 - 2015-08-01 12:46 - 00000000 ____D C:\Users\Johnson\AppData\Local\MicrosoftEdge

2015-08-01 12:45 - 2015-08-01 12:45 - 00000000 ____D C:\ProgramData\Microsoft OneDrive

2015-08-01 12:44 - 2015-08-01 12:46 - 00000000 ____D C:\Users\Johnson\AppData\Local\Comms

2015-08-01 12:43 - 2015-08-01 12:43 - 00000000 ____D C:\Users\Johnson\AppData\Local\Publishers

2015-08-01 12:42 - 2015-08-01 12:42 - 00000020 ___SH C:\Users\Johnson\ntuser.ini

2015-08-01 12:42 - 2015-08-01 12:42 - 00000000 ____D C:\Users\Johnson\AppData\Local\TileDataLayer

2015-08-01 12:38 - 2015-08-28 22:11 - 00875126 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-08-01 12:38 - 2015-08-01 12:38 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-08-01 12:32 - 2015-07-10 16:29 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-08-01 12:28 - 2015-08-01 12:28 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-08-01 12:25 - 2015-08-01 12:25 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2015-08-01 12:24 - 2015-08-30 13:54 - 00000000 ____D C:\Users\Johnson

2015-08-01 12:24 - 2015-08-01 12:42 - 00000000 ___RD C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-01 12:24 - 2015-08-01 12:34 - 00000000 ____D C:\Users\mdspi_000

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 __RSD C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 __RSD C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 ___RD C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 ___RD C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 ___RD C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 ___RD C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 ___RD C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 ____D C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-08-01 12:24 - 2015-07-10 16:34 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-08-01 12:19 - 2015-08-24 14:20 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2015-08-01 12:18 - 2015-08-19 10:57 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2015-08-01 12:18 - 2015-08-19 10:57 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2015-08-01 12:18 - 2015-08-01 12:18 - 00000000 ____H C:\ProgramData\DP45977C.lfl

2015-08-01 12:18 - 2015-08-01 12:18 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM

2015-08-01 12:18 - 2015-08-01 12:18 - 00000000 ____D C:\WINDOWS\system32\DAX2

2015-08-01 12:18 - 2015-08-01 12:18 - 00000000 ____D C:\Program Files\Realtek

2015-08-01 12:17 - 2015-08-01 12:17 - 00024142 _____ C:\WINDOWS\system32\NetSetupMig.log

2015-08-01 11:31 - 2015-08-01 12:01 - 00000000 ___HD C:\$Windows.~BT

2015-08-01 10:48 - 2015-08-01 10:48 - 00000000 ___HD C:\$Windows.~WS

2015-08-01 10:17 - 2015-08-01 12:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\External Hard Drive Utilities

2015-08-01 10:17 - 2015-08-01 10:17 - 00068672 _____ (FNet Co., Ltd.) C:\WINDOWS\system32\TurboShell_105.dll

2015-08-01 10:17 - 2015-08-01 10:17 - 00032320 _____ (FNet Co., Ltd.) C:\WINDOWS\system32\Drivers\FNETTBOH_305.SYS

2015-08-01 10:17 - 2015-08-01 10:17 - 00015936 _____ (FNet Co., Ltd.) C:\WINDOWS\system32\Drivers\FNETURPX.SYS

2015-08-01 10:17 - 2015-08-01 10:17 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\FNET

2015-08-01 10:17 - 2015-08-01 10:17 - 00000000 ____D C:\ProgramData\FNET

2015-08-01 10:17 - 2015-08-01 10:17 - 00000000 ____D C:\Program Files (x86)\Data Transfer Accelerator

 

==================== One Month Modified files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-08-30 17:14 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\sru

2015-08-30 17:08 - 2015-03-08 00:18 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-08-30 17:08 - 2015-03-08 00:18 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-08-30 16:30 - 2015-07-10 16:25 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-08-30 15:21 - 2015-03-20 09:59 - 00000000 ____D C:\AdwCleaner

2015-08-30 15:12 - 2015-07-10 17:51 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-08-30 15:12 - 2015-04-27 18:10 - 00000000 ____D C:\Program Files\KMSpico

2015-08-30 15:12 - 2015-03-08 10:28 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-08-30 15:11 - 2015-07-10 14:35 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2015-08-30 15:11 - 2015-03-08 01:15 - 00000000 ____D C:\ProgramData\NVIDIA

2015-08-30 14:23 - 2015-03-17 22:14 - 00000000 ____D C:\Users\Johnson\Downloads\Android

2015-08-30 14:22 - 2015-06-30 16:02 - 00000000 ____D C:\ProgramData\HitmanPro

2015-08-30 14:11 - 2015-06-30 16:02 - 00000000 ____D C:\Program Files\HitmanPro

2015-08-30 13:54 - 2015-07-10 17:50 - 00347736 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-08-30 13:54 - 2015-07-10 16:34 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-08-30 13:37 - 2015-03-08 16:00 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\vlc

2015-08-30 12:56 - 2015-03-09 17:38 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\qBittorrent

2015-08-30 12:52 - 2015-03-08 18:46 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Skype

2015-08-30 12:49 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\Speech

2015-08-30 11:06 - 2015-03-08 00:16 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B9E145E0-A708-45FD-9A37-A899B4D45F32}

2015-08-29 23:35 - 2015-03-08 10:30 - 00000000 ____D C:\ProgramData\Origin

2015-08-29 23:35 - 2015-03-08 10:30 - 00000000 ____D C:\ProgramData\Electronic Arts

2015-08-29 12:40 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-08-29 12:35 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-08-28 17:03 - 2015-03-08 00:18 - 00003976 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2015-08-28 17:03 - 2015-03-08 00:18 - 00003744 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2015-08-26 11:12 - 2015-06-15 11:54 - 00000600 _____ C:\Users\Johnson\PUTTY.RND

2015-08-24 10:12 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\rescache

2015-08-20 18:52 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2015-08-20 18:52 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-08-19 11:30 - 2015-03-08 10:10 - 00000000 ____D C:\Users\Johnson\AppData\Local\NVIDIA

2015-08-19 11:12 - 2015-03-08 10:10 - 00000000 ____D C:\Users\Johnson\AppData\Local\NVIDIA Corporation

2015-08-19 11:12 - 2015-03-08 10:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation

2015-08-19 10:57 - 2015-07-27 21:14 - 00000000 ____D C:\temp

2015-08-19 10:57 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\Help

2015-08-19 10:56 - 2015-03-14 21:31 - 00000000 ____D C:\Users\mdspi_000\AppData\Local\NVIDIA Corporation

2015-08-17 11:24 - 2015-03-11 16:55 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\TeamViewer

2015-08-13 11:51 - 2015-07-10 16:34 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-13 11:51 - 2015-07-10 16:34 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-13 11:51 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-08-12 17:52 - 2015-03-11 03:11 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-08-12 17:48 - 2015-03-11 03:11 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2015-08-08 21:08 - 2015-07-10 16:36 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2015-08-08 21:08 - 2015-07-10 16:36 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2015-08-07 14:57 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\Provisioning

2015-08-06 15:47 - 2013-08-22 21:06 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy

2015-08-05 17:40 - 2015-03-24 19:45 - 00000000 ____D C:\Users\Johnson\Documents\My Games

2015-08-04 14:59 - 2015-06-14 14:40 - 00000000 ____D C:\Program Files\Rockstar Games

2015-08-04 14:59 - 2015-06-14 14:40 - 00000000 ____D C:\Program Files (x86)\Rockstar Games

2015-08-03 11:39 - 2015-03-08 10:15 - 00000000 ____D C:\Program Files (x86)\qBittorrent

2015-08-02 13:43 - 2015-03-25 14:16 - 00000230 _____ C:\ProgramData\RICOH Aficio SP 100 DDSTSDCREG.ini

2015-08-02 13:38 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\FxsTmp

2015-08-02 12:16 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\appcompat

2015-08-02 01:46 - 2015-07-10 16:34 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-08-02 01:44 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe

2015-08-02 01:44 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-08-02 01:44 - 2015-07-10 14:35 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-08-02 01:44 - 2015-07-10 14:35 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-08-01 18:32 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-08-01 15:07 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\restore

2015-08-01 13:14 - 2015-03-08 01:14 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll

2015-08-01 13:14 - 2015-03-08 01:14 - 00000000 ____D C:\ProgramData\Oracle

2015-08-01 13:14 - 2015-03-08 01:14 - 00000000 ____D C:\Program Files (x86)\Java

2015-08-01 13:10 - 2015-03-08 00:12 - 00000000 ____D C:\Users\Johnson\AppData\Local\Packages

2015-08-01 13:09 - 2015-03-08 00:13 - 00000000 ____D C:\Users\Johnson\AppData\Local\PackageStaging

2015-08-01 12:57 - 2015-07-10 18:42 - 00000000 ____D C:\WINDOWS\OCR

2015-08-01 12:49 - 2015-05-26 22:21 - 00000000 ____D C:\ProgramData\boost_interprocess

2015-08-01 12:43 - 2015-07-10 16:34 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-08-01 12:43 - 2015-07-10 16:34 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-08-01 12:42 - 2015-07-10 16:34 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-08-01 12:40 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\Registration

2015-08-01 12:40 - 2015-06-30 21:41 - 00013338 _____ C:\WINDOWS\diagwrn.xml

2015-08-01 12:40 - 2015-06-30 21:41 - 00013338 _____ C:\WINDOWS\diagerr.xml

2015-08-01 12:38 - 2015-07-26 19:27 - 00003214 _____ C:\WINDOWS\System32\Tasks\{0DEE513E-D10A-49C9-BF0E-915847CDA04F}

2015-08-01 12:38 - 2015-07-25 18:32 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2015-08-01 12:38 - 2015-07-24 18:36 - 00003254 _____ C:\WINDOWS\System32\Tasks\{199083DD-A1DF-4523-87E8-D5ACF1535A70}

2015-08-01 12:38 - 2015-05-26 23:42 - 00003270 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe

2015-08-01 12:38 - 2015-05-26 23:42 - 00003244 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe

2015-08-01 12:38 - 2015-05-26 23:42 - 00003242 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe

2015-08-01 12:38 - 2015-05-26 23:42 - 00003214 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe

2015-08-01 12:38 - 2015-05-26 23:42 - 00003212 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe

2015-08-01 12:38 - 2015-04-27 18:11 - 00003790 _____ C:\WINDOWS\System32\Tasks\AutoPico Daily Restart

2015-08-01 12:38 - 2015-03-14 21:40 - 00003706 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1512700685-153587559-2495740328-1004

2015-08-01 12:38 - 2015-03-08 00:20 - 00003708 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1512700685-153587559-2495740328-1001

2015-08-01 12:38 - 2015-03-08 00:12 - 00003410 _____ C:\WINDOWS\System32\Tasks\KMS Server Daily Activate

2015-08-01 12:38 - 2015-03-08 00:12 - 00003224 _____ C:\WINDOWS\System32\Tasks\KMS Server OnLogon Activate

2015-08-01 12:35 - 2015-07-10 16:34 - 00000000 __RHD C:\Users\Public\Libraries

2015-08-01 12:30 - 2015-07-15 19:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2015-08-01 12:30 - 2015-07-11 11:30 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2015-08-01 12:30 - 2015-07-10 18:44 - 00000000 ____D C:\WINDOWS\ShellNew

2015-08-01 12:30 - 2015-07-10 14:35 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-08-01 12:30 - 2015-06-21 21:22 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner

2015-08-01 12:30 - 2015-06-11 22:39 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chicken Invaders 5 - Cluck of the Dark Side

2015-08-01 12:30 - 2015-05-27 00:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client

2015-08-01 12:30 - 2015-05-26 23:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center

2015-08-01 12:30 - 2015-04-28 12:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line

2015-08-01 12:30 - 2015-04-18 10:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirDroid

2015-08-01 12:30 - 2015-03-25 14:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Organizing Monitor for SP 100 Series

2015-08-01 12:30 - 2015-03-22 18:54 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2

2015-08-01 12:30 - 2015-03-22 18:52 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line

2015-08-01 12:30 - 2015-03-21 18:30 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SurfEasy VPN

2015-08-01 12:30 - 2015-03-18 14:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013

2015-08-01 12:30 - 2015-03-10 21:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™

2015-08-01 12:30 - 2015-03-09 09:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO

2015-08-01 12:30 - 2015-03-08 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4

2015-08-01 12:30 - 2015-03-08 11:51 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA Demos

2015-08-01 12:30 - 2015-03-08 10:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam

2015-08-01 12:30 - 2015-03-08 10:23 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server

2015-08-01 12:30 - 2015-03-08 10:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-08-01 12:30 - 2015-03-08 10:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2015-08-01 12:30 - 2015-03-08 10:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-08-01 12:30 - 2015-03-08 10:14 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-08-01 12:30 - 2015-03-08 10:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-08-01 12:30 - 2015-03-08 01:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2015-08-01 12:30 - 2015-03-08 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-08-01 12:28 - 2013-08-22 19:06 - 00000000 ____D C:\Users\Default.migrated

2015-08-01 12:27 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\spool

2015-08-01 12:27 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\InputMethod

2015-08-01 12:27 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared

2015-08-01 12:27 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared

2015-08-01 12:25 - 2015-07-11 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer

2015-08-01 12:25 - 2015-07-10 16:36 - 00000000 ____D C:\WINDOWS\Setup

2015-08-01 12:25 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\system32\Recovery

2015-08-01 12:25 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\System

2015-08-01 12:25 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2015-08-01 12:25 - 2015-07-10 16:34 - 00000000 ____D C:\WINDOWS\InputMethod

2015-08-01 12:25 - 2015-07-10 16:34 - 00000000 ____D C:\Program Files\Common Files\System

2015-08-01 12:25 - 2015-07-10 16:34 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-08-01 12:25 - 2015-07-05 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft

2015-08-01 12:25 - 2015-06-30 11:47 - 00000000 ____D C:\WINDOWS\system32\appmgmt

2015-08-01 12:25 - 2015-06-20 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine

2015-08-01 12:25 - 2015-06-14 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games

2015-08-01 12:25 - 2015-06-14 12:20 - 00000000 ____D C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft

2015-08-01 12:25 - 2015-06-12 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dzrepack games

2015-08-01 12:25 - 2015-06-11 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com

2015-08-01 12:25 - 2015-04-29 12:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio

2015-08-01 12:25 - 2015-03-08 10:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote

2015-08-01 12:25 - 2015-03-08 10:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI

2015-08-01 12:25 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\MediaViewer

2015-08-01 12:25 - 2013-08-22 21:06 - 00000000 ____D C:\WINDOWS\ADFS

2015-08-01 12:24 - 2015-03-14 21:30 - 00000000 ____D C:\Users\mdspi_000\AppData\Local\Packages

2015-08-01 12:23 - 2015-07-10 14:35 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-08-01 12:17 - 2015-07-10 14:35 - 00000000 __RHD C:\Users\Default

2015-08-01 10:03 - 2015-03-08 00:55 - 00723968 ___SH C:\Users\Johnson\Desktop\Thumbs.db

2015-08-01 09:46 - 2015-03-08 00:44 - 00000000 __RDO C:\Users\Johnson\SkyDrive

 

==================== Files in the root of some directories =======

 

2015-08-29 12:24 - 2015-08-29 23:35 - 0000009 _____ () C:\Users\Johnson\AppData\Roaming\update.dat

2015-08-29 12:24 - 2015-08-29 12:24 - 261744128 _____ () C:\Users\Johnson\AppData\Roaming\Update.fg3

2015-06-20 20:34 - 2015-06-21 21:23 - 1065984 _____ () C:\Users\Johnson\AppData\Local\file__0.localstorage

2015-08-01 12:18 - 2015-08-01 12:18 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

2015-03-25 14:16 - 2015-08-02 13:43 - 0000230 _____ () C:\ProgramData\RICOH Aficio SP 100 DDSTSDCREG.ini

 

Some files in TEMP:

====================

C:\Users\Johnson\AppData\Local\Temp\Social%20Club%20v1.1.6.5%20Setup.exe

 

 

==================== Bamital & volsnap =================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\WINDOWS\system32\winlogon.exe => File is digitally signed

C:\WINDOWS\system32\wininit.exe => File is digitally signed

C:\WINDOWS\explorer.exe => File is digitally signed

C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed

C:\WINDOWS\system32\svchost.exe => File is digitally signed

C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed

C:\WINDOWS\system32\services.exe => File is digitally signed

C:\WINDOWS\system32\User32.dll => File is digitally signed

C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed

C:\WINDOWS\system32\userinit.exe => File is digitally signed

C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed

C:\WINDOWS\system32\rpcss.dll => File is digitally signed

C:\WINDOWS\system32\dnsapi.dll => File is digitally signed

C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed

C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2015-08-30 16:28

 

==================== End of FRST.txt ============================

Share this post


Link to post
Share on other sites
Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-08-2015

Ran by Johnson (2015-08-30 17:17:00)

Running from C:\Users\Johnson\Desktop

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-1512700685-153587559-2495740328-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-1512700685-153587559-2495740328-503 - Limited - Disabled)

Guest (S-1-5-21-1512700685-153587559-2495740328-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-1512700685-153587559-2495740328-1006 - Limited - Enabled)

Johnson (S-1-5-21-1512700685-153587559-2495740328-1001 - Administrator - Enabled) => C:\Users\Johnson

mdspi_000 (S-1-5-21-1512700685-153587559-2495740328-1004 - Administrator - Enabled) => C:\Users\mdspi_000

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

 

==================== Installed Programs ======================

 

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)

AirDroid 3.0.4.0 (HKLM-x32\...\AirDroid) (Version: 3.0.4.0 - Sand Studio)

Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)

Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)

Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.25648 - Electronic Arts)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)

Chicken Invaders 5 - Cluck of the Dark Side (HKLM-x32\...\Chicken Invaders 5 - Cluck of the Dark Side1.1) (Version: 1.1 - Foxy Games)

Cities Skylines (HKLM-x32\...\Cities Skylines_is1) (Version: 1.0 - Релиз от R.G. Steamgames)

Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)

Data Transfer Accelerator (HKLM-x32\...\Data Transfer Accelerator) (Version:  - )

Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)

Empire Earth II (HKLM-x32\...\{DF315348-721C-40B8-BAE2-58C6C7D935A2}) (Version:  - )

Empire Earth II Gold Edition (HKLM-x32\...\Empire Earth II Gold Edition_is1) (Version:  - GOG.com)

Evernote v. 5.8.4 (HKLM-x32\...\{C15841A6-C20A-11E4-977D-00163E98E7D6}) (Version: 5.8.4.6870 - Evernote Corp.)

f.lux (HKU\S-1-5-21-1512700685-153587559-2495740328-1001\...\Flux) (Version:  - )

Far Cry 4 Inc. Valley of the Yetis version 1.0.0 (HKLM-x32\...\Far Cry 4 Inc. Valley of the Yetis_is1) (Version: 1.0.0 - Ubisoft)

FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)

FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.)

Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden

Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)

Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)

Hitman Absolution - Professional Edition version 1.9.6 (HKLM-x32\...\Hitman Absolution - Professional Edition_is1) (Version: 1.9.6 - dzrepack games)

HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.245 - SurfRight B.V.)

IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)

Intel® Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)

iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)

Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)

KMSpico v9.3.1 (HKLM\...\KMSpico_is1) (Version: 9.3.1 - )

Life Is Strange Episode 2 (HKLM-x32\...\Life Is Strange Episode 2_is1) (Version:  - )

Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)

M-Audio MobilePre 1.1.8 (x64) (HKLM\...\{602C0055-6C97-43A1-9D41-5FAAA892C45B}) (Version: 1.1.8 - M-Audio)

Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)

Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)

Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)

MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)

MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 4.0.0.02 - MSI)

NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)

NVIDIA 3D Vision Driver 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.60 - NVIDIA Corporation)

NVIDIA Design Garage (HKLM-x32\...\{66C7814A-DBE1-4DE5-85A5-29D5F1D26EC4}) (Version: 1.0.0.0 - NVIDIA Corporation)

NVIDIA FaceWorks: Real-time Performance Capture Demo (HKLM-x32\...\FaceWorks) (Version: 1.0 - NVIDIA Corporation)

NVIDIA GeForce Experience 2.5.13.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.13.6 - NVIDIA Corporation)

NVIDIA Graphics Driver 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)

NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)

Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

PowerISO (HKLM-x32\...\PowerISO) (Version:  - )

PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)

qBittorrent 3.2.3 (HKLM-x32\...\qBittorrent) (Version: 3.2.3 - The qBittorrent project)

Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.14 - Razer Inc.)

Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26599 - Razer Inc.)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)

RegHunter (HKLM-x32\...\RegHunter) (Version: 1.3.3.1613 - Enigma Software Group, LLC)

RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)

Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.1 - Rockstar Games)

SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)

SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden

SHIELD Wireless Controller Driver (Version: 2.5.13.6 - NVIDIA Corporation) Hidden

Sid Meier's Civilization 5 (HKLM-x32\...\Sid Meier's Civilization 5_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, Panky)

Sid Meiers Civilization Beyond Earth (HKLM-x32\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )

SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)

Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)

Smart Organizing Monitor (HKLM-x32\...\{282BBE84-D583-4A87-A1CA-44D79C35AB72}) (Version: 1.00.0000 - RICOH)

Smart Organizing Monitor (HKLM-x32\...\{E4094BC9-2554-4E57-B4A0-8584DC433895}) (Version: 1.00.0000 - RICOH)

Sniper Elite 3, âåðñèÿ 1.0 (HKLM-x32\...\Sniper Elite 3_is1) (Version: 1.0 - )

SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.20.9.4533 - Enigma Software Group, LLC)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

SurfEasy VPN 3.1.401 (HKLM-x32\...\SurfEasy VPN) (Version: 3.1.401 - SurfEasy Inc)

System Requirements Lab Detection (HKLM-x32\...\{558A9378-4DA3-4B0F-AC57-22CF76897D3D}) (Version: 6.1.4.0 - Husdawg, LLC)

TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)

TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43174 - TeamViewer)

The Movies + Stunts & Effects (HKLM-x32\...\The Movies + Stunts & Effects) (Version: 1.0 - )

Tom Clancy's Splinter Cell® Blacklist™ (HKLM-x32\...\{A6356F2F-D3E1-4D83-9AA2-72871DD0C298}) (Version: 1.02 - Ubisoft)

Total War: Attila (HKLM-x32\...\Total War: Attila_is1) (Version:  - )

Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)

VLC media player (HKLM\...\VLC media player) (Version: 2.2.0 - VideoLAN)

WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

 

==================== Custom CLSID (Whitelisted): ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1512700685-153587559-2495740328-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation)

 

==================== Restore Points =========================

 

24-08-2015 14:02:19 Installed DirectX

28-08-2015 22:16:11 Windows Update

28-08-2015 22:18:06 Windows Update

30-08-2015 14:01:54 JRT Pre-Junkware Removal

 

==================== Hosts content: ===============================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2013-08-22 18:55 - 2013-08-22 18:55 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (Whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)

Task: {01CC25DC-C3A0-4675-8E2D-EA86B28B7923} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)

Task: {0B11D442-CEAE-405D-BE89-4D19E93BB1C3} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)

Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)

Task: {0E2EF851-7055-4F6A-930D-5394183CC172} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)

Task: {0FDC9128-711D-4182-92B6-5251A371329A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION

Task: {1159633A-F387-410A-B297-AC407B991361} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION

Task: {19065AA8-626D-4167-9B53-6114771826F1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-18] (Piriform Ltd)

Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)

Task: {1B2908A8-302D-4C4E-BE43-C8BE533D35B3} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)

Task: {1F2BCA76-3168-41F6-B93B-60978EC51B43} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

Task: {3E7B8CFB-3EEF-4C23-B71C-5869BB59CD40} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => G:\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)

Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW

Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)

Task: {4287E3A3-844D-487B-831D-2719209E33F4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => G:\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)

Task: {4462018E-A1B6-4596-A2C9-971F3249EBBB} - System32\Tasks\AutoPico Daily Restart => G:\KMSpico\AutoPico.exe [2014-06-29] (@ByELDI)

Task: {4B2B09D4-415C-4FB1-BB1C-02D1573D0BB6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {500AF5B2-8824-40FA-A088-309E04DCEFC2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION

Task: {582D0D11-2B4B-4118-9CBD-FE2287142D57} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)

Task: {59DE3777-D111-4941-9CAC-8D7C742323FE} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-12] (Microsoft Corporation)

Task: {6B485B6F-E6D7-4D58-85B2-473AD0D9C890} - System32\Tasks\{0DEE513E-D10A-49C9-BF0E-915847CDA04F} => Chrome.exe http://ui.skype.com/ui/0/7.6.0.105/en/abandoninstall?page=tsProgressBar

Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask

Task: {74497D4F-2F56-4E53-861C-73AFDFB0AB5F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION

Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance

Task: {7DDC03D1-9958-4707-ACA8-5D725206B14F} - System32\Tasks\{199083DD-A1DF-4523-87E8-D5ACF1535A70} => pcalua.exe -a "D:\Left 4 Dead 2\left4dead2.exe" -d "D:\Left 4 Dead 2"

Task: {84F77EC9-226E-4FDC-859F-3F3B7409F725} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION

Task: {8D1EB302-DF5F-4474-9964-75D956195BEB} - System32\Tasks\KMS Server OnLogon Activate => C:\Windows\AutoKMS_VL_ALL\AutoKMS_VL_ALL.exe [2013-11-19] (MDL)

Task: {8DAEFA9F-A578-497D-8732-12A8608CC93F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)

Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-02] (Microsoft Corporation)

Task: {8F528C8F-92E5-4990-BD74-BD432B6C53FC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-08] (Google Inc.)

Task: {90FD9658-BA48-45DC-8446-B8E79BABD65C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION

Task: {9516467A-14D1-4DE8-8411-184A8ADA1ABD} - System32\Tasks\KMS Server Daily Activate => C:\Windows\AutoKMS_VL_ALL\AutoKMS_VL_ALL.exe [2013-11-19] (MDL)

Task: {9CE57A8C-5BED-4EC7-8D8D-DA79ABF0A1E1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-08] (Google Inc.)

Task: {9DD5C813-A3F3-4EC7-B0F1-46A6BCF7CDFC} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)

Task: {A14832D3-9C76-4A5A-A3AD-378727769BAC} - System32\Tasks\{61FCE884-3C36-416A-812D-A6EB91C555E8} => pcalua.exe -a "D:\The Movies\MoviesSE.exe" -d "D:\The Movies"

Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager

Task: {A90A6D3B-CB37-4C7F-8E00-4BB50E3CD0A0} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2015-08-30] (Enigma Software Group USA, LLC.)

Task: {B3577099-1FF7-49E5-9DF8-2B7DF832E58E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION

Task: {B545E776-C9F5-41AC-B37A-917E615EB57F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION

Task: {B864026D-A9C9-4BF8-83E4-806892E1C06F} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION

Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr

Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)

Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)

Task: {E7337E73-F18C-4E5F-9776-7C6EB164DC90} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DJ-I7-Johnson DJ-i7 => G:\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)

Task: {F0C43322-1E2B-46EF-A450-49B161170C34} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION

 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

 

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

 

==================== Loaded Modules (Whitelisted) ==============

 

2015-08-02 01:43 - 2015-08-02 01:43 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll

2015-08-19 10:57 - 2015-08-07 09:57 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2015-08-19 13:09 - 2015-08-11 14:44 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll

2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

2015-03-09 12:01 - 2015-03-09 12:01 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe

2015-02-05 05:54 - 2015-02-05 05:55 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe

2015-08-06 15:15 - 2015-07-30 11:35 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll

2015-08-06 15:15 - 2015-07-30 11:35 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll

2012-10-01 20:36 - 2012-10-01 20:36 - 06522480 _____ () G:\Microsoft Office\Office15\1033\GrooveIntlResource.dll

2015-07-10 16:29 - 2015-07-10 16:29 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll

2015-07-10 16:29 - 2015-07-10 16:29 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll

2015-08-12 15:27 - 2015-08-03 06:41 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll

2015-07-10 16:30 - 2015-07-10 18:44 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll

2015-08-19 13:09 - 2015-08-11 14:28 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll

2015-08-12 15:27 - 2015-08-03 06:39 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

2015-07-10 16:30 - 2015-07-10 18:44 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll

2015-05-05 00:55 - 2014-12-19 12:38 - 00020288 _____ () C:\Program Files\CCleaner\branding.dll

2015-08-28 20:05 - 2015-05-27 01:57 - 15803168 _____ () D:\Software.Inc.Alpha.5.4\Software Inc.exe

2015-02-27 21:30 - 2015-02-27 21:30 - 00143891 _____ () C:\Program Files\VideoLAN\VLC\libvlc.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 02750483 _____ () C:\Program Files\VideoLAN\VLC\libvlccore.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00617491 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00079379 _____ () C:\Program Files\VideoLAN\VLC\libgcc_s_seh-1.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00038419 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00035347 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00083987 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00075795 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 02479123 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00111123 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00257043 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00083475 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libvdr_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00051731 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00066579 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00672275 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00825363 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00132627 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libzip_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00047635 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\librar_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00136211 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 01596947 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00341523 _____ () C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 01478163 _____ () C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00021011 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00060435 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00032275 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libes_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00044051 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00331283 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00021011 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00192019 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 12270611 _____ () C:\Program Files\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00836115 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00020499 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00027667 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00088083 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00027667 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00036883 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00026643 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00078355 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00041491 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00022547 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00030739 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00030739 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00023571 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00021523 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_hevc_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00023571 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00755731 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libupnp_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00136723 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00026131 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libpodcast_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00023059 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmediadirs_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libwindrive_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00227347 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00101395 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00101395 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libasf_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00323091 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00023571 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00345619 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 01528339 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00025107 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libdts_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00042003 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00048659 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00430099 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00031251 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 01806867 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00418835 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00024083 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liba52_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00026643 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00141331 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00188435 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00083987 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 01507859 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00029203 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00017939 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00018451 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00022035 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00043539 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00086547 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00019987 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libtta_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00026643 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00086547 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00026131 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libwav_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00025619 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 01060883 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libsid_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libdiracsys_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 01420819 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00388627 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libogg_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00803347 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\liblive555_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00027155 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libau_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00020499 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00022035 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libpva_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00042003 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll

2015-02-27 21:30 - 2015-02-27 21:30 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libidummy_plugin.dll

2012-10-01 20:37 - 2012-10-01 20:37 - 06522480 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll

2015-08-19 10:57 - 2015-08-18 05:01 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

2015-08-22 12:09 - 2015-08-18 10:53 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\libglesv2.dll

2015-08-22 12:09 - 2015-08-18 10:53 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\libegl.dll

2015-08-28 20:05 - 2015-05-27 01:57 - 02109728 _____ () D:\Software.Inc.Alpha.5.4\Software Inc_Data\Mono\mono.dll

 

==================== Alternate Data Streams (Whitelisted) =========

 

(If an entry is included in the fixlist, only the ADS will be removed.)

 

AlternateDataStreams: C:\Users\Johnson\SkyDrive:ms-properties

AlternateDataStreams: C:\Users\mdspi_000\OneDrive:ms-properties

 

==================== Safe Mode (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

 

==================== EXE Association (Whitelisted) ===============

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

 

 

==================== Internet Explorer trusted/restricted ===============

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Johnson\Pictures\6857199-night-sky-wallpaper.jpg

DNS Servers: 192.168.1.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall is enabled.

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(Currently there is no automatic fix for this section.)

 

HKLM\...\StartupApproved\Run: => "iTunesHelper"

HKLM\...\StartupApproved\Run32: => "Adobe ARM"

HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"

HKLM\...\StartupApproved\Run32: => "Razer Synapse"

HKLM\...\StartupApproved\Run32: => "Data Transfer Accelerator"

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk"

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"

HKU\S-1-5-21-1512700685-153587559-2495740328-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

 

==================== FirewallRules (Whitelisted) ===============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139

FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe

FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe

FirewallRules: [{FE4C8486-C2C0-4867-8602-237567E93CBD}] => (Allow) D:\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe

FirewallRules: [{06218C2B-A9C1-4F6B-AD7B-6743EA05027A}] => (Allow) D:\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe

FirewallRules: [uDP Query User{7C2370BA-AF34-4773-BDB7-230564E29536}D:\counter-strike global offensive\counter-strike global offensive\csgo.exe] => (Allow) D:\counter-strike global offensive\counter-strike global offensive\csgo.exe

FirewallRules: [TCP Query User{A59F4AF6-DD72-4745-A595-9DD0731A3CB4}D:\counter-strike global offensive\counter-strike global offensive\csgo.exe] => (Allow) D:\counter-strike global offensive\counter-strike global offensive\csgo.exe

FirewallRules: [{E1FE78E6-C9F5-47EE-A4C4-18FD82BA74D0}] => (Allow) LPort=1688

FirewallRules: [{4B8E9F7E-8021-4D47-9CA3-4F6333F65296}] => (Allow) G:\iTunes\iTunes.exe

FirewallRules: [{45E325F0-6A5C-48F6-B992-2F58380B5DD5}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe

FirewallRules: [{0A162A61-C258-42DA-825C-2C3AF997E72C}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe

FirewallRules: [uDP Query User{99FAB481-F305-4DA2-B2C9-2D03B38C3304}D:\far cry 4 inc. valley of the yetis\bin\farcry4.exe] => (Block) D:\far cry 4 inc. valley of the yetis\bin\farcry4.exe

FirewallRules: [TCP Query User{7B0EB8B8-4864-42B9-BFA5-B5FEAD43A338}D:\far cry 4 inc. valley of the yetis\bin\farcry4.exe] => (Block) D:\far cry 4 inc. valley of the yetis\bin\farcry4.exe

FirewallRules: [uDP Query User{570614CB-019C-42AF-9F7B-CB1874A223CC}D:\far cry 4 inc. valley of the yetis\bin\farcry4.exe] => (Block) D:\far cry 4 inc. valley of the yetis\bin\farcry4.exe

FirewallRules: [TCP Query User{253EA424-ACCD-4B91-B61D-FCC3A2DA76DB}D:\far cry 4 inc. valley of the yetis\bin\farcry4.exe] => (Block) D:\far cry 4 inc. valley of the yetis\bin\farcry4.exe

FirewallRules: [uDP Query User{01555427-32BD-4062-A692-4A810AD14E77}D:\need for speed rivals\nfs14.exe] => (Block) D:\need for speed rivals\nfs14.exe

FirewallRules: [TCP Query User{19F17946-4C62-4A9D-8CE2-51B50155DEFB}D:\need for speed rivals\nfs14.exe] => (Block) D:\need for speed rivals\nfs14.exe

FirewallRules: [{32B05A52-EB76-4D44-925F-3F557ABF7091}] => (Allow) LPort=1689

FirewallRules: [uDP Query User{1023BD71-AD4D-455C-AFE9-DB0030CB460E}D:\grand theft auto v\gta5.exe] => (Allow) D:\grand theft auto v\gta5.exe

FirewallRules: [TCP Query User{322B4E54-865B-4005-8D99-C19E86AFE8E8}D:\grand theft auto v\gta5.exe] => (Allow) D:\grand theft auto v\gta5.exe

FirewallRules: [{E08EC8B0-7D00-4611-A4E6-CF51A558D82D}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe

FirewallRules: [{745F9F9A-8DF2-41C3-9EDB-59C75FC3072B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe

FirewallRules: [{08448CFD-7397-4D8F-9ABC-69197EE5427B}] => (Allow) G:\KMSpico\AutoPico.exe

FirewallRules: [{356604F2-858C-4D71-8FB9-F14D6AA8C4A1}] => (Allow) G:\KMSpico\AutoPico.exe

FirewallRules: [{1095A21F-54CA-4FD5-AABA-88E5E7DC135F}] => (Allow) D:\Tom Clancy's Splinter Cell® Blacklist™\src\SYSTEM\gu.exe

FirewallRules: [{84D4C342-A155-4226-B229-1AFE5A10C98A}] => (Allow) D:\Tom Clancy's Splinter Cell® Blacklist™\src\SYSTEM\gu.exe

FirewallRules: [{3F2F7BFB-998B-476C-88CD-1B615A8B6630}] => (Allow) D:\Tom Clancy's Splinter Cell® Blacklist™\src\SYSTEM\Blacklist_DX11_game.exe

FirewallRules: [{8418B348-2C5E-4978-B1FA-E0C2BC4237AC}] => (Allow) D:\Tom Clancy's Splinter Cell® Blacklist™\src\SYSTEM\Blacklist_DX11_game.exe

FirewallRules: [{40106820-2C47-437A-BDAD-506B8C0AD4D9}] => (Allow) D:\Tom Clancy's Splinter Cell® Blacklist™\src\SYSTEM\Blacklist_game.exe

FirewallRules: [{EE3AFED9-85C0-4CD0-A4A0-EE9E9CD301E5}] => (Allow) D:\Tom Clancy's Splinter Cell® Blacklist™\src\SYSTEM\Blacklist_game.exe

FirewallRules: [{CA9E8949-BFEE-4F9D-87EE-1F0A8B1D1E04}] => (Allow) D:\Tom Clancy's Splinter Cell® Blacklist™\Blacklist_Launcher.exe

FirewallRules: [{3D642377-4677-470C-BD95-8F3741E03E33}] => (Allow) D:\Tom Clancy's Splinter Cell® Blacklist™\Blacklist_Launcher.exe

FirewallRules: [{70185BC8-7394-4A58-B5B5-14B3F37ACC3B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

FirewallRules: [{12FC1F0F-38E9-4E89-A972-A3AA1583FCF9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

FirewallRules: [{071A0539-37BE-481A-95E0-6FF7BB7CA472}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe

FirewallRules: [{705CF7B0-A611-4655-BBE6-B50DF9FB86E0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe

FirewallRules: [{F23A81A8-9591-4C02-8EF6-BCA2E04A3AE0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{D3D89E7E-C678-452C-88C0-719AAD6C0178}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{36AEAFE2-ED39-45D4-897D-0E14E8439418}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe

FirewallRules: [{0956B36A-599A-47A6-ABC8-E322D4D74624}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe

FirewallRules: [{6206E4AE-0828-48C5-8AAB-0A3FAC7847BC}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe

FirewallRules: [{FB198DE7-262D-41FB-A99C-23FE5A6C93C7}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe

FirewallRules: [{CA1A68DB-46B9-45FE-977F-5761B5FF7415}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe

FirewallRules: [{F123E73E-CEC3-4936-B9BB-5C40BAA176C0}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe

FirewallRules: [{11C1BFE5-7C9A-4B49-8F5A-4F30764D0450}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{CF6B1D15-0FAD-4561-87AD-78725488D4D9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{0125C100-6978-4475-AB54-2FB31F5A6BB7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{20085E98-58E7-4BC4-BE91-9E893D32975A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{E04DAAED-9FC5-4116-9DDB-84178B4B3927}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

FirewallRules: [{80D847E7-406F-401F-8A0F-289F8184EDA3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

FirewallRules: [{4B9F7F48-E5F7-4CD2-8BF7-492199BF79C8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe

FirewallRules: [{694CD59C-DF4F-4C99-B0C2-3F2F1F408706}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe

FirewallRules: [uDP Query User{C290A647-589B-4893-AABF-9867DF2D8C2B}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe

FirewallRules: [TCP Query User{4579D483-107B-4143-A17C-432E7BA8FC97}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe

FirewallRules: [uDP Query User{6776D82F-2415-4C90-9ACD-271BBC998F58}D:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) D:\program files (x86)\origin games\battlefield 4\bf4.exe

FirewallRules: [TCP Query User{29716674-8FCB-495E-9496-79FE3A91BD3E}D:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) D:\program files (x86)\origin games\battlefield 4\bf4.exe

FirewallRules: [{F9EB7016-F857-4882-AB96-D395DDA5FD22}] => (Allow) G:\Microsoft Office\Office15\outlook.exe

FirewallRules: [{7B951FC5-A8FE-4384-94FF-9BD2241D0C63}] => (Allow) G:\Microsoft Office\Office15\UcMapi.exe

FirewallRules: [{326D7072-BE5C-4D78-8DA6-17015CC5F8E7}] => (Allow) G:\Microsoft Office\Office15\UcMapi.exe

FirewallRules: [{C42545D0-9A47-4299-A6A8-5669A4F4673F}] => (Allow) G:\Microsoft Office\Office15\lync.exe

FirewallRules: [{6C7CA886-7157-4DA2-901B-87AF84AEF030}] => (Allow) G:\Microsoft Office\Office15\lync.exe

FirewallRules: [{96840023-D299-442F-B436-4A294DC95490}] => (Allow) D:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe

FirewallRules: [{3EDC4BBB-E73D-4F44-ABC6-C622DC44A3E9}] => (Allow) D:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe

FirewallRules: [{E7C9713D-B17D-45CE-95A5-06EB3C382A6C}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe

FirewallRules: [{3947935D-5CB8-4E74-8B5D-7607E66F116B}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe

FirewallRules: [{410DC7D5-3ACC-4543-9E0D-3554D5346906}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe

FirewallRules: [{0A180853-C8FB-49EE-807F-2F57AC335F82}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe

FirewallRules: [{18625244-2AC9-4091-AA0A-6426CC9243CA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe

FirewallRules: [{8F4FABCF-D9AE-437F-99BD-4301FC452981}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe

FirewallRules: [{0EC46747-CEB0-439A-ACFF-9617D2BA598D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe

FirewallRules: [{893962CF-A080-4DE8-9FC3-7F463378126F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe

FirewallRules: [{C4361CD1-68F1-405F-8C8C-109F8D46C9C4}] => (Allow) D:\Steam\bin\steamwebhelper.exe

FirewallRules: [{9FA8F6C1-AC98-4D75-AE64-164DCB0F2682}] => (Allow) D:\Steam\bin\steamwebhelper.exe

FirewallRules: [{1972B92E-DFA8-4BB3-AABE-E5337B3B1B25}] => (Allow) D:\Steam\Steam.exe

FirewallRules: [{624A6CD2-7AD4-4CD1-8B4D-ECCB9CC3C9D7}] => (Allow) D:\Steam\Steam.exe

FirewallRules: [{D46F24BF-699A-4B9B-A40A-89B79F30F966}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

FirewallRules: [{A9D58CAA-4F48-4B11-8F9B-4AD3CEF1C8BA}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe

FirewallRules: [{C264C064-7FAE-43C7-9736-02FE2D78AFB8}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe

FirewallRules: [TCP Query User{3C34D6B9-E0F5-4B43-A70B-13CA3457B6DB}D:\total war - attila\attila.exe] => (Block) D:\total war - attila\attila.exe

FirewallRules: [uDP Query User{58ABF88A-C682-4B1D-946A-8FD2FCE14963}D:\total war - attila\attila.exe] => (Block) D:\total war - attila\attila.exe

FirewallRules: [TCP Query User{F775210E-1676-4079-B78E-CB56D3341B60}D:\total war - attila\attila.exe] => (Block) D:\total war - attila\attila.exe

FirewallRules: [uDP Query User{1EE2AA8E-BD5F-46DB-8969-77704D132246}D:\total war - attila\attila.exe] => (Block) D:\total war - attila\attila.exe

FirewallRules: [{DCA6E543-F3E9-4DDF-A487-286B0A4F4686}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

FirewallRules: [{C09E8D57-4F2F-4662-9198-602A3837F008}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

FirewallRules: [{86B5FCF6-A348-4860-B9AA-9EE3CB32D944}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe

FirewallRules: [{A74D5D4E-E6FB-44C7-B405-FFECBC022045}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe

FirewallRules: [{31A795B0-3D19-49EA-9A58-816D82C86780}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe

FirewallRules: [{7C224564-F5A0-4C14-989A-BF18E9AEE291}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

FirewallRules: [{7E2FBBC1-4FC6-4E8A-B4EF-00610F73B3EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

FirewallRules: [{64B05B56-E5EF-4047-96FB-CFA5D56EF8D7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

FirewallRules: [{E8B5F6FD-BFA3-4812-965D-2A4541C874D2}] => (Block) D:\The Movies\MoviesSE.exe

FirewallRules: [{A56E3D29-534F-4EFF-944F-E7251801E0C8}] => (Block) D:\The Movies\MoviesSE.exe

 

==================== Faulty Device Manager Devices =============

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (08/30/2015 04:30:26 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost (7264) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

 

Error: (08/30/2015 04:30:26 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost (7264) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

 

Error: (08/30/2015 04:30:14 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost (7264) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

 

Error: (08/30/2015 04:30:14 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost (7264) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

 

Error: (08/30/2015 04:30:02 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost (7264) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

 

Error: (08/30/2015 04:30:02 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost (7264) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

 

Error: (08/30/2015 04:29:50 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost (7264) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

 

Error: (08/30/2015 04:29:50 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost (7264) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

 

Error: (08/30/2015 04:29:40 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost (7264) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

 

Error: (08/30/2015 04:29:40 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost (7264) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

 

 

System errors:

=============

Error: (08/30/2015 04:30:26 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6}

 

Error: (08/30/2015 03:15:45 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

 

Error: (08/30/2015 03:12:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Service KMSELDI service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (08/30/2015 03:11:59 PM) (Source: Service Control Manager) (EventID: 7024) (User: )

Description: The HomeGroup Listener service terminated with the following service-specific error: 

%%2147944153

 

Error: (08/30/2015 03:11:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The User Data Access_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

 

Error: (08/30/2015 03:11:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The User Data Storage_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

 

Error: (08/30/2015 03:11:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Contact Data_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

 

Error: (08/30/2015 03:11:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Sync Host_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

 

Error: (08/30/2015 02:57:14 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

 

Error: (08/30/2015 02:54:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Service KMSELDI service terminated unexpectedly.  It has done this 1 time(s).

 

 

Microsoft Office:

=========================

Error: (08/30/2015 04:30:26 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost7264-1032

 

Error: (08/30/2015 04:30:26 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost7264C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Access is denied.

 

Error: (08/30/2015 04:30:14 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost7264-1032

 

Error: (08/30/2015 04:30:14 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost7264C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Access is denied.

 

Error: (08/30/2015 04:30:02 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost7264-1032

 

Error: (08/30/2015 04:30:02 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost7264C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Access is denied.

 

Error: (08/30/2015 04:29:50 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost7264-1032

 

Error: (08/30/2015 04:29:50 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost7264C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Access is denied.

 

Error: (08/30/2015 04:29:40 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost7264-1032

 

Error: (08/30/2015 04:29:40 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost7264C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Access is denied.

 

 

CodeIntegrity:

===================================

  Date: 2015-08-30 17:14:02.275

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 17:14:02.265

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 16:30:51.878

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 15:25:02.721

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 15:25:02.713

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 15:25:02.613

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 15:25:02.605

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 15:25:02.525

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 15:25:02.518

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2015-08-30 15:25:02.457

  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

 

==================== Memory info =========================== 

 

Processor: Intel® Core i7-3770 CPU @ 3.40GHz

Percentage of memory in use: 47%

Total physical RAM: 8154.59 MB

Available physical RAM: 4243.01 MB

Total Virtual: 16346.59 MB

Available Virtual: 11362.68 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:443.52 GB) (Free:353.9 GB) NTFS

Drive d: (Games) (Fixed) (Total:488.28 GB) (Free:227.65 GB) NTFS

Drive e: (Downloads) (Fixed) (Total:488.28 GB) (Free:201.31 GB) NTFS

Drive f: (Misc) (Fixed) (Total:344.76 GB) (Free:337.96 GB) NTFS

Drive g: (Software) (Fixed) (Total:97.66 GB) (Free:93.21 GB) NTFS

 

==================== MBR & Partition Table ==================

 

==================== End of Addition.txt ============================

Share this post


Link to post
Share on other sites
Users shortcut scan result (x64) Version:29-08-2015

Ran by Johnson (2015-08-30 17:19:18)

Running from C:\Users\Johnson\Desktop

Boot Mode: Normal

 

==================== Shortcuts =============================

 

(The entries could be listed to be restored or removed.)

 

 

 

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\01 - File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\03 - Documents.lnk -> C:\Users\Johnson\Documents ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\04 - Downloads.lnk -> C:\Users\Johnson\Downloads ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\05 - Music.lnk -> C:\Users\Johnson\Music ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\06 - Pictures.lnk -> C:\Users\Johnson\Pictures ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\07 - Videos.lnk -> C:\Users\Johnson\Videos ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\10 - UserProfile.lnk -> C:\Users\Johnson ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\SC_Reader.ico ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Devices Flow.lnk -> C:\Windows\DevicesFlow\DevicesFlow.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiracastView.lnk -> C:\Windows\MiracastView\MiracastView.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintDialog.lnk -> C:\Windows\PrintDialog\PrintDialog.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization Beyond Earth.lnk -> D:\Sid Meiers Civilization Beyond Earth\CivilizationBe_DX11.exe (Firaxis Games)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk -> C:\Program Files\WinRAR\Rar.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\What is new in the latest version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine\Heaven Benchmark 4.0\Heaven Benchmark 4.0.lnk -> G:\Heaven Benchmark 4.0\heaven.bat ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine\Heaven Benchmark 4.0\Uninstall.lnk -> G:\Heaven Benchmark 4.0\unins000.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine\Heaven Benchmark 4.0\User manual.lnk -> G:\Heaven Benchmark 4.0\documentation\User_Manual.pdf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft\Far Cry 4 Inc. Valley of the Yetis\Play Far Cry 4.lnk -> D:\Far Cry 4 Inc. Valley of the Yetis\bin\FarCry4.exe (Ubisoft Entertainment)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft\Far Cry 4 Inc. Valley of the Yetis\Uninstall.lnk -> D:\Far Cry 4 Inc. Valley of the Yetis\Uninstall\unins000.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Movies\StarMaker.lnk -> D:\The Movies\StarMaker.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Movies\The Movies Stunts & Effects.lnk -> D:\The Movies\MoviesSE.exe (Lionhead Studios Limited)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Movies\Uninstall The Movies + Stunts & Effects.lnk -> C:\Windows\Installer\The Movies\Uninstall.exe (Pantaray Research Ltd.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client\TeamSpeak 3 Client.lnk -> G:\Teamspeak 3\ts3client_win64.exe (TeamSpeak Systems GmbH)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client\Uninstall.lnk -> G:\Teamspeak 3\Uninstall.exe (TeamSpeak Systems GmbH)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> D:\Steam\Steam.exe (Valve Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 3\Sniper Elite 3.lnk -> D:\Sniper Elite 3\Launcher\Sniper3Launcher.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 3\Óäàëèòü èãðó.lnk -> D:\Sniper Elite 3\unins000.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Organizing Monitor for SP 100 Series\Smart Organizing Monitor for SP 100 Series Status.lnk -> C:\Program Files (x86)\Smart Organizing Monitor for SP 100 Series\RHEG_STMON.exe (RICOH Co., Ltd.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype for desktop.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\Read Me.lnk -> D:\Program Files (x86)\Origin Games\SimCity\Support\readme\readme.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\SimCity™ End User License Agreement.lnk -> D:\Program Files (x86)\Origin Games\SimCity\Support\eula\en_US_eula.rtf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\SimCity™.lnk -> D:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts Inc.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™\Technical Support.lnk -> D:\Program Files (x86)\Origin Games\SimCity\Support\EA Help\Technical Support.en_US.rtf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Grand Theft Auto V\Grand Theft Auto V.lnk -> D:\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent\qBittorrent.lnk -> C:\Program Files (x86)\qBittorrent\qbittorrent.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent\Uninstall.lnk -> C:\Program Files (x86)\qBittorrent\uninst.exe (The qBittorrent project)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO\PowerISO Help.lnk -> G:\Program Files (x86)\PowerISO\PowerISO.chm ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO\PowerISO Virtual Drive Manager.lnk -> G:\Program Files (x86)\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO\PowerISO.lnk -> G:\Program Files (x86)\PowerISO\PowerISO.exe (PowerISO Computing, Inc.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO\Uninstall PowerISO.lnk -> G:\Program Files (x86)\PowerISO\uninstall.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\LaunchGFExperience.exe (NVIDIA Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\Design Garage\Design Garage User Guide.lnk -> C:\Program Files (x86)\NVIDIA Corporation\Design Garage\NVIDIA-Design-Garage-User-Guide.pdf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\Design Garage\Design Garage.lnk -> C:\Windows\Installer\{66C7814A-DBE1-4DE5-85A5-29D5F1D26EC4}\DesignGarage.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe (NVIDIA Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI\MSI Gaming APP\MSI Gaming APP.lnk -> C:\Program Files (x86)\MSI\MSI Gaming APP\SGamingApp.exe (Micro-Star Int'l Co., Ltd.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI\MSI Gaming APP\Uninstall MSI Gaming APP.lnk -> C:\Program Files (x86)\MSI\MSI Gaming APP\unins000.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\xlicons.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\InfoPath Filler 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\inficon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Lync 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\lyncicon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\joticon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\outicon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\pptico.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\pubs.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Send to OneNote 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\joticon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\SkyDrive Pro 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\grv_icons.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\wordicon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Database Compare 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\dbcicons.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Lync Recording Manager.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\lyncicon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Office 2013 Language Preferences.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\misc.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Office 2013 Upload Center.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\msouc.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Spreadsheet Compare 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\sscicons.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Telemetry Dashboard for Office 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\osmadminicon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013 Tools\Telemetry Log for Office 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\osmclienticon.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center\Microsoft Mouse and Keyboard Center.lnk -> C:\Windows\Installer\{23D2AFC7-C01E-4413-9D9A-0BABF52569BF}\DeviceCenter.ico ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Uninstall Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio\MobilePre\MobilePre Control Panel.lnk -> C:\Program Files (x86)\M-Audio\MobilePre\Panel.exe (M-Audio)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio\MobilePre\ReadMe.txt.lnk -> C:\Program Files\M-Audio\MobilePre\ReadMe.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\javacpl.exe (Oracle Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\About iTunes.lnk -> G:\iTunes\iTunes.Resources\en.lproj\About iTunes.rtf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk -> G:\iTunes\iTunes.exe (Apple Inc.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12.lnk -> G:\FL Studio 12\FL.exe (Image-Line)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro\HitmanPro.lnk -> C:\Program Files\HitmanPro\HitmanPro.exe (SurfRight B.V.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\Empire Earth II Gold Edition\Empire Earth II - The Art of Supremacy.lnk -> D:\Empire Earth II\EE2X.exe (Mad Doc Software)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\Empire Earth II Gold Edition\Empire Earth II.lnk -> D:\Empire Earth II\EE2.exe (Mad Doc Software)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\Empire Earth II Gold Edition\Uninstall Empire Earth II Gold Edition.lnk -> D:\Empire Earth II\unins000.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\Empire Earth II Gold Edition\Documents\Editor Readme.lnk -> D:\Empire Earth II\Map Making Walkthrough.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\Empire Earth II Gold Edition\Documents\Manual (The Art of Supremacy).lnk -> D:\Empire Earth II\Manual_add.pdf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\Empire Earth II Gold Edition\Documents\Manual.lnk -> D:\Empire Earth II\Manual.pdf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\Empire Earth II Gold Edition\Documents\Readme (The Art of Supremacy).lnk -> D:\Empire Earth II\README_add.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\Empire Earth II Gold Edition\Documents\Readme.lnk -> D:\Empire Earth II\README.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\External Hard Drive Utilities\Data Transfer Accelerator\Data Transfer Accelerator.LNK -> C:\Program Files (x86)\Data Transfer Accelerator\Data Transfer Accelerator.exe (FNet Co., Ltd.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\External Hard Drive Utilities\Data Transfer Accelerator\Uninstall.LNK -> C:\Program Files (x86)\Data Transfer Accelerator\Uninstall.exe (FNet Co., Ltd.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote\Evernote.lnk -> C:\Windows\Installer\{C15841A6-C20A-11E4-977D-00163E98E7D6}\Evernote.ico ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dzrepack games\Hitman Absolution - Professional Edition\Hitman Absolution - Professional Edition.lnk -> D:\Hitman Absolution\HMA.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dzrepack games\Hitman Absolution - Professional Edition\Uninstall Hitman Absolution - Professional Edition.lnk -> D:\Hitman Absolution\unins000.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4\Battlefield 4 End User License Agreement.lnk -> D:\Program Files (x86)\Origin Games\Battlefield 4\Support\eula\en_US_eula.rtf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4\Battlefield 4(64 bit).lnk -> D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe (EA Digital Illusions CE AB)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4\Battlefield 4.lnk -> D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe (EA Digital Illusions CE AB)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4\Technical Support.lnk -> D:\Program Files (x86)\Origin Games\Battlefield 4\Support\EA Help\Technical Support.en_US.rtf ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirDroid\AirDroid.lnk -> G:\AirDroid\Launcher.exe (Sand Studio)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirDroid\Uninstall.lnk -> G:\AirDroid\uninst.exe ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)

Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{EC1F1D39-C516-4A8E-877F-253B301F1C5A}\PlayTasks\2\Manual.lnk -> D:\Empire Earth II\Manual_add.pdf ()

Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{EC1F1D39-C516-4A8E-877F-253B301F1C5A}\PlayTasks\1\Readme.lnk -> D:\Empire Earth II\README_add.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{15608548-A4E4-4EAA-ADA4-A3DEE31F39DF}\PlayTasks\3\Editor Readme.lnk -> D:\Empire Earth II\Map Making Walkthrough.txt ()

Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{15608548-A4E4-4EAA-ADA4-A3DEE31F39DF}\PlayTasks\2\Manual.lnk -> D:\Empire Earth II\Manual.pdf ()

Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{15608548-A4E4-4EAA-ADA4-A3DEE31F39DF}\PlayTasks\1\Readme.lnk -> D:\Empire Earth II\README.txt ()

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\Johnson\Documents ()

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\Johnson\Pictures ()

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)

Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\Pictures\Music - Shortcut.lnk -> C:\Users\Johnson\Music ()

Shortcut: C:\Users\Johnson\Links\Desktop.lnk -> C:\Users\Johnson\Desktop ()

Shortcut: C:\Users\Johnson\Links\Downloads.lnk -> C:\Users\Johnson\Downloads ()

Shortcut: C:\Users\Johnson\Desktop\CivilizationV_DX11.exe - Shortcut.lnk -> D:\Sid Meier's Civilization 5\CivilizationV_DX11.exe (Firaxis Games)

Shortcut: C:\Users\Johnson\Desktop\RegHunter.lnk -> C:\Program Files\Enigma Software Group\RegHunter\RegHunter.exe (Enigma Software Group USA, LLC.)

Shortcut: C:\Users\Johnson\Desktop\SpyHunter.lnk -> C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.)

Shortcut: C:\Users\Johnson\Desktop\Start Emsisoft Emergency Kit.lnk -> G:\EEK\bin\a2emergencykit.exe (Emsisoft Ltd)

Shortcut: C:\Users\Johnson\Desktop\Start Tor Browser.lnk -> G:\Tor Browser\Browser\firefox.exe (Mozilla Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cities.lnk -> D:\Cities Skylines\Cities.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Johnson\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk -> C:\Windows\System32\fodhelper.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sims 4 by BuZeR.lnk -> D:\The Sims 4 Digital Deluxe Edition v1.10.57.1020\Sims 4 by BuZeR\Game\Bin\TS4.exe (No File)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk -> G:\Tor Browser\Browser\firefox.exe (Mozilla Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk -> C:\Program Files\WinRAR\Rar.txt ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\What is new in the latest version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uninstall.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe (Ubisoft)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uplay.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe (Ubisoft)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SurfEasy VPN\SurfEasy VPN.lnk -> C:\Program Files (x86)\SurfEasy VPN\client\SurfEasyVPN.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SurfEasy VPN\Uninstall.lnk -> C:\Program Files (x86)\SurfEasy VPN\Uninstall.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> D:\Steam\Steam.exe (Valve Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter\SpyHunter.lnk -> C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\ReadMe.lnk -> C:\Program Files (x86)\RivaTuner Statistics Server\Doc\ReadMe.pdf ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\RivaTuner Statistics Server.lnk -> C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\Uninstall.lnk -> C:\Program Files (x86)\RivaTuner Statistics Server\Uninstall.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\SDK\RivaTuner Statistics Server localization reference.lnk -> C:\Program Files (x86)\RivaTuner Statistics Server\SDK\Doc\Localization reference.pdf ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\SDK\RivaTuner Statistics Server skin format reference.lnk -> C:\Program Files (x86)\RivaTuner Statistics Server\SDK\Doc\USF skin format reference.pdf ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\SDK\Samples.lnk -> C:\Program Files (x86)\RivaTuner Statistics Server\SDK\Samples ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegHunter\RegHunter.lnk -> C:\Program Files\Enigma Software Group\RegHunter\RegHunter.exe (Enigma Software Group USA, LLC.)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA Demos\FaceWorks Real-time Performance Capture Configuration.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Demos\FaceWorks\bin\DemoLauncher.exe (NVIDIA Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\MSI Afterburner.lnk -> C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\ReadMe.lnk -> C:\Program Files (x86)\MSI Afterburner\Doc\ReadMe.pdf ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\Uninstall.lnk -> C:\Program Files (x86)\MSI Afterburner\Uninstall.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\MSI Afterburner localization reference.lnk -> C:\Program Files (x86)\MSI Afterburner\SDK\Doc\Localization reference.pdf ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\MSI Afterburner skin format reference.lnk -> C:\Program Files (x86)\MSI Afterburner\SDK\Doc\USF skin format reference.pdf ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\Samples.lnk -> C:\Program Files (x86)\MSI Afterburner\SDK\Samples ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12 (64bit).lnk -> G:\FL Studio 12\FL64.exe (Image-Line)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12.lnk -> G:\FL Studio 12\FL.exe (Image-Line)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\IL Download Manager.lnk -> C:\Program Files (x86)\Image-Line\Downloader\ILDownloadManager.exe (Image-Line)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\More....lnk -> C:\Program Files (x86)\Image-Line\Shared\Start ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux\Flux.lnk -> C:\Users\Johnson\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux\Uninstall.lnk -> C:\Users\Johnson\AppData\Local\FluxSoftware\Flux\uninstall.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chicken Invaders 5 - Cluck of the Dark Side\Chicken Invaders 5 - Cluck of the Dark Side.lnk -> D:\Chicken Invaders 5\Start_Game.bat ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2\ASIO4ALL v2 Instruction Manual.lnk -> G:\ASIO4ALL v2\ASIO4ALL v2 Instruction Manual.pdf ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2\ASIO4ALL Web Site.lnk -> G:\ASIO4ALL v2\ASIO4ALL Web Site.url ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2\Uninstall.lnk -> G:\ASIO4ALL v2\uninstall.exe ()

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\SendTo\Evernote.lnk -> C:\Program Files (x86)\Evernote\Evernote\Evernote.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AirDroid.lnk -> G:\AirDroid\Launcher.exe (Sand Studio)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

Shortcut: C:\Users\Johnson\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\qBittorrent.lnk -> C:\Program Files (x86)\qBittorrent\qbittorrent.exe ()

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\GameExplorer\{EC1F1D39-C516-4A8E-877F-253B301F1C5A}\PlayTasks\2\Manual.lnk -> D:\Empire Earth II\Manual_add.pdf ()

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\GameExplorer\{EC1F1D39-C516-4A8E-877F-253B301F1C5A}\PlayTasks\1\Readme.lnk -> D:\Empire Earth II\README_add.txt ()

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\GameExplorer\{15608548-A4E4-4EAA-ADA4-A3DEE31F39DF}\PlayTasks\3\Editor Readme.lnk -> D:\Empire Earth II\Map Making Walkthrough.txt ()

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\GameExplorer\{15608548-A4E4-4EAA-ADA4-A3DEE31F39DF}\PlayTasks\2\Manual.lnk -> D:\Empire Earth II\Manual.pdf ()

Shortcut: C:\Users\Johnson\AppData\Local\Microsoft\Windows\GameExplorer\{15608548-A4E4-4EAA-ADA4-A3DEE31F39DF}\PlayTasks\1\Readme.lnk -> D:\Empire Earth II\README.txt ()

Shortcut: C:\Users\mdspi_000\Links\Desktop.lnk -> C:\Users\mdspi_000\Desktop ()

Shortcut: C:\Users\mdspi_000\Links\Downloads.lnk -> C:\Users\mdspi_000\Downloads ()

Shortcut: C:\Users\mdspi_000\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\mdspi_000\Documents ()

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\mdspi_000\Pictures ()

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AirDroid.lnk -> G:\AirDroid\Launcher.exe (Sand Studio)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

Shortcut: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)

Shortcut: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)

Shortcut: C:\Users\Public\Desktop\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\LaunchGFExperience.exe (NVIDIA Corporation)

Shortcut: C:\Users\Public\Desktop\Grand Theft Auto V.lnk -> D:\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games)

Shortcut: C:\Users\Public\Desktop\HitmanPro.lnk -> C:\Program Files\HitmanPro\HitmanPro.exe (SurfRight B.V.)

Shortcut: C:\Users\Public\Desktop\Play Far Cry 4.lnk -> D:\Far Cry 4 Inc. Valley of the Yetis\bin\FarCry4.exe (Ubisoft Entertainment)

Shortcut: C:\Users\Public\Desktop\Sid Meiers Civilization Beyond Earth.lnk -> D:\Sid Meiers Civilization Beyond Earth\CivilizationBe_DX11.exe (Firaxis Games)

Shortcut: C:\Users\Public\Desktop\Sniper Elite 3.lnk -> D:\Sniper Elite 3\Launcher\Sniper3Launcher.exe ()

Shortcut: C:\Users\Public\Desktop\StarMaker.lnk -> D:\The Movies\StarMaker.exe ()

Shortcut: C:\Users\Public\Desktop\The Movies Stunts & Effects.lnk -> D:\The Movies\MoviesSE.exe (Lionhead Studios Limited)

Shortcut: C:\Users\Public\Desktop\Tom Clancy's Splinter Cell® Blacklist™.lnk -> D:\Tom Clancy's Splinter Cell® Blacklist™\src\SYSTEM\gu.exe (Ubisoft)

Shortcut: C:\Users\Public\Desktop\Total War - Attila.lnk -> D:\Total War - Attila\Attila.exe (The Creative Assembly Ltd)

 

 

 

 

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> -sta {C90FB8CA-3295-4462-A721-2935E83694BA}

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Organizing Monitor for SP 100 Series\Smart Organizing Monitor Uninstall.lnk -> C:\Program Files (x86)\InstallShield Installation Information\{E4094BC9-2554-4E57-B4A0-8584DC433895}\setup.exe (RICOH) -> -runfromtemp -l0x0409 -uninst -removeonly

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Grand Theft Auto V\GTA Online.lnk -> D:\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games) -> -StraightIntoFreemode

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse\Razer Synapse.lnk -> C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Razer Inc.) -> -launch

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe (NVIDIA Corporation) -> /show

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\InfoPath Designer 2013.lnk -> C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\inficon.exe () ->  /design 

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio\MobilePre\Uninstall M-Audio MobilePre.lnk -> C:\Windows\System32\msiexec.exe (Microsoft Corporation) -> /x {602C0055-6C97-43A1-9D41-5FAAA892C45B}

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\javacpl.exe (Oracle Corporation) -> -tab about

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\javacpl.exe (Oracle Corporation) -> -tab update

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro\Remove HitmanPro 3.7.lnk -> C:\Program Files\HitmanPro\HitmanPro.exe (SurfRight B.V.) -> /uninstall

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX

ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo

ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0

ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Word\Diabetes%20natural%20remedies304611730722987157\Diabetes%20natural%20remedies.docx.lnk -> C:\Users\Johnson\Documents\Diabetes natural remedies.docx () -> 14

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter\SpyHunter Emergency Startup.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> "C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.com"

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter\Uninstall.lnk -> C:\Users\Johnson\AppData\Roaming\Enigma Software Group\sh_installer.exe (Enigma Software Group USA, LLC.) -> -r sh

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegHunter\Uninstall.lnk -> C:\Users\Johnson\AppData\Roaming\Enigma Software Group\rh_installer.exe (Enigma Software Group USA, LLC.) -> -r rh

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA Demos\FaceWorks Real-time Performance Capture.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Demos\FaceWorks\bin\DemoLauncher.exe (NVIDIA Corporation) -> rundemo

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Keep - notes and lists.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chicken Invaders 5 - Cluck of the Dark Side\Uninstall Chicken Invaders 5 - Cluck of the Dark Side.lnk -> D:\Chicken Invaders 5\uninstall.exe (Indigo Rose Corporation) -> "/U:D:\Chicken Invaders 5\\Uninstall\uninstall.xml"

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto:

ShortcutWithArgument: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0

ShortcutWithArgument: C:\Users\Johnson\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0

ShortcutWithArgument: C:\Users\mdspi_000\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}

 

 

InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> hxxp://support.steampowered.com/

InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI\MSI Gaming APP\MSI Website.url -> hxxp://www.msi.com/index.php

InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> hxxp://www.piriform.com/ccleaner

InternetURL: C:\Users\Johnson\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142

InternetURL: C:\Users\Johnson\Desktop\Counter-Strike Global Offensive.url -> steam://rungameid/730

InternetURL: C:\Users\Johnson\Desktop\Dirty Bomb.url -> steam://rungameid/333930

InternetURL: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Counter-Strike Global Offensive.url -> steam://rungameid/730

InternetURL: C:\Users\Johnson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Dirty Bomb.url -> steam://rungameid/333930

InternetURL: C:\Users\mdspi_000\OneDrive\Documents\DEVA's Notebook.url -> hxxps://skydrive.live.com/redir.aspx?cid=d3e48f18356245a9&resid=D3E48F18356245A9!412&type=3

InternetURL: C:\Users\mdspi_000\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142

InternetURL: C:\Users\mdspi_000\Favorites\Phone\Nokia support.url -> hxxp://link.nokia.com/entry/van/nsupport/520

InternetURL: C:\Users\mdspi_000\Favorites\Phone\Nokia.com.url -> hxxp://nokia.mobi/entry/van/main/520

InternetURL: C:\Users\mdspi_000\Favorites\Phone\Windows Phone Tips.url -> hxxp://go.microsoft.com/fwlink/?LinkId=247436

 

==================== End of Shortcut.txt =============================

Share this post


Link to post
Share on other sites

KMSpico v9.3.1
Task: {4462018E-A1B6-4596-A2C9-971F3249EBBB} - System32\Tasks\AutoPico Daily Restart => G:\KMSpico\AutoPico.exe [2014-06-29] (@ByELDI)

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.