Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Am I Clean?


  • This topic is locked This topic is locked
120 replies to this topic

#1 windows8newb

windows8newb

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 14 August 2014 - 09:33 PM

Hi, and thanks for your help, in advance.

 

I have a nearly brand new Dell computer with Windows 8.1

 

I was instructed to create a new topic from here:  http://www.bleepingcomputer.com/forums/t/544054/odd-entries-in-security-logs-of-event-viewer-infection-or-windows-8-oddity/#entry3448091

 

I had noticed odd entries in my event viewer Security log, attempts were made to query a blank password for my accounts.  That was the initial post.  I believe this to have been resolved.  However, I would like someone to take a deeper look, because...

 

While setting up this computer, I had gone to download Avast! but my trial McAfee said that it found a trojan (avast!.exe) 3 times.  I allowed it to run, but found that I now had AVG, not avast!.  This disturbed me, although the program seemed to be the actual antivirus and not anything weird, but I did a "system refresh" from the factory restore partition. 

 

---

 

Here is a list of the apps removed during system refresh:

 

 

App name Publisher Version

 
Adobe Flash Player 14 Plugin Adobe Systems Incorporated 14.0.0.145
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 9.0.30729.6161
Mozilla Firefox 31.0 (x86 en-US) Mozilla 31.0
Mozilla Maintenance Service Mozilla 31.0
OpenOffice 4.1.0 Apache Software Foundation 4.10.9764
Spybot - Search & Destroy Safer-Networking Ltd. 2.4.40
Visual Studio 2012 x64 Redistributables AVG Technologies 14.0.0.1
Visual Studio 2012 x86 Redistributables AVG Technologies CZ, s.r.o. 14.0.0.1

Thursday, August 7, 2014 9:32 AM

 

---

 

Now:

 

The computer is now running okay with firefox, avast!, malwarebytes, malwarebytes anti-rootkit, and CCleaner.  I had Spybot but I then switched to malwarebytes, and used CCleaner to clean up some of the reg edits left by Spybot, which I realize now may not have been a good idea.

 

But, there are some issues: 

 

In network discovery I occasionally see unknown phones connect VERY BRIEFLY to my network.  Also, the title of Firefox tabs occasionally changes to "Connecting" for no reason.  My local user "Snap-In" does not work, although it did before the system refresh.  Avast! says it blocked 1 virus (won't tell me what) and it also can't seem to update Chrome for me.

 

Most annoying, my internet randomly goes to "Limited" and will not find any network to connect to (Ethernet works), although my Android phone has no problem.

 

---

 

I was not able to run DDS, I got the error: 

"DDS is not meant to run in 'Compatibility Mode'.

The program shall now exit."

 

Thank you much.



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,699 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:55 AM

Posted 19 August 2014 - 09:35 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/544462 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 windows8newb

windows8newb
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 19 August 2014 - 10:15 PM

1)  Here is what I want help for, edited from my first post to slightly update some things.  I believe the computer is likely to be clean now, but I have to be 100% sure as I plan on using this for banking and managing investments (have not done so yet).

 

These could be oddities relating to Windows 8 (I upgraded from XP, and I've been without a PC for a while), but I wanted to check with someone knowledgable.

 

While setting up this computer ~3 weeks ago, I had gone to download Avast! but my trial McAfee said that it found a trojan (avast!.exe) 3 times.  I allowed it to run, but found that I now had AVG, not avast!.  This disturbed me, although the program seemed to be the legitimate, actual antivirus and not anything weird.  Still, I did a "system refresh" from the factory restore partition, like 3 days after I got the computer. 

 

---

 

Here is a list of the apps removed during system refresh:

 

 

App name Publisher Version

 
Adobe Flash Player 14 Plugin Adobe Systems Incorporated 14.0.0.145
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 9.0.30729.6161
Mozilla Firefox 31.0 (x86 en-US) Mozilla 31.0
Mozilla Maintenance Service Mozilla 31.0
OpenOffice 4.1.0 Apache Software Foundation 4.10.9764
Spybot - Search &amp; Destroy Safer-Networking Ltd. 2.4.40
Visual Studio 2012 x64 Redistributables AVG Technologies 14.0.0.1
Visual Studio 2012 x86 Redistributables AVG Technologies CZ, s.r.o. 14.0.0.1

Thursday, August 7, 2014 9:32 AM

 

---

 

Now:

 

The computer is now running okay with firefox, avast!, malwarebytes, malwarebytes anti-rootkit, and CCleaner.  I had Spybot but I then switched to malwarebytes, and used CCleaner to clean up some of the reg edits left by Spybot, which I realize now may not have been a good idea.  I didn't know until I poked around here some more that registry cleaners are not always a good idea.

 

But, there are some oddities: 

 

-In network discovery I occasionally see unknown phones connect VERY BRIEFLY to my network.  I don't like seeing this, although is it possible they're just hunting for a signal and briefly latching on to mine?  I have always had my WiFi secured with a very strong password, WPA2-AES security.

 

-Also, the title of Firefox tabs occasionally changes to "Connecting" for no reason.  Firefox runs okay, but Chrome is often slow (though I don't use it much so I don't care a lot).

 

-Sometimes my CPU and disc usage spike to over 50%.  I saw a lot of TiWorker.exe processes at this time.  I read that that's related to Microsoft updates, I think, but should there be a whole slew of them?

 

-While browsing, Avast! says it blocked 3 viruses (won't tell me what, but one was on bleepingcomputer.com itself) and it also can't seem to update Chrome for me.

 

-My internet randomly, but frequently, goes to "Limited" and will not find any network to connect to (Ethernet works), although my Android phone has no problem.  It gives different errors at these times.  Often it says the default gateway is not available.  Sometimes it says there is no wireless adapter :(  Sometimes it says WiFi does not have a valid IP configuration.  It did this to me twice while typing.

 

---Avast! full scan, boot scan, Malwarebytes, Malwarebytes Anti-Rootkit, and the on-demand downloadable tool Microsoft Safety Scanner or whatever it's called all come up 100% clean.

 

2)  I am not able to run DDS.  I have a Dell Inpsiron 5547 running Windows 8.1, version 6.3.9600, 64 bit. 

 

3) No, it came with a recovery partition but no discs (a first for me).  It actually didn't even come with a CD drive, I had to buy a USB plugin one.  I have created a recovery USB stick, after everything happened that I described above.

 

4)  Thank you for your time.  I hope someone can help me just check and make sure it's clean.



#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:55 PM

Posted 23 August 2014 - 01:29 PM

Greetings windows8newb and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. While I review our situation please run the below for me.

===================================================

Farbar Recovery Scan Tool (FRST)

--------------------
  • Download Farbar Recover Scan Tool for either 32 bit or 64 bit systems and save it to your desktop <<< Important
  • If you are unsure if you have 32 bit or 64 bit simply download and try one. If that doesn't run properly the other one should
  • Double click the icon
  • Click Yes to the disclaimer
  • Make sure the Addition.txt box is checked
  • Click Scan and allow the program to run
  • Click OK on the Scan complete screen, then OK on the Addition.txt pop up screen
  • 2 Notepad documents should now be open on your desktop.
  • Please copy and paste the contents of both in your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • FRST results
  • Addition log

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#5 windows8newb

windows8newb
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 23 August 2014 - 10:20 PM

HI Gary,  thanks so much for helping!  You may call me Alison. :lol:

 

I figured out what Avast! was blocking on this site, at least.  From looking at what it blocked and finding a very recent forum post, I think it was blocking an Amazon ad as a false positive.

 

I thought I should list my goals here. 

 

- I want to make sure that my computer is free of any malware, since I "refreshed" from a recovery partition and don't have discs. 

- I'd like to make recovery discs.  I have made a recovery USB drive, but I made it some time after I'd been using the computer.  So, if possible, if you can see my recovery partition in the logs, I'd like to use it if it's still pristine to make actual discs instead of a USB drive.

- I'd like to make sure I didn't mess up my registry by using CCleaner.

- Once we've got it all checked out, I have some basic security questions.  I'm new to windows 8 (obviously) and have actually been without a computer for a while.  I knew XP very well but I'm at a bit of a loss now.  With that said, what's on this computer now is basically what will be on this computer.  I don't download much, so I don't consider myself high risk, just a bit clueless sometimes.

 

Also, a note about my schedule.  I'm a shift worker with odd and irregular hours.  Mondays and Thursdays are my days off, and so that is when I can do the lion's share of the work, but I will try to do what I can on other days too :)  I will check here every day.

 

With that, here are the logs!  I right clicked and "ran as administrator".

 

---

 

(Logs were too long for this post, see following posts, sorry)



#6 windows8newb

windows8newb
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 23 August 2014 - 10:26 PM

Okay, it keeps telling me the log is too long.  I will have to split it in two.

 

FRST.txt part 1

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-08-2014
Ran by Admin (administrator) on CTHULHU on 23-08-2014 20:17:20
Running from C:\Users\Alison\Desktop
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe
(DELL Inc.) C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Dell Inc.) C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7506648 2013-12-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374424 2014-01-09] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5789512 2014-01-15] (Dell Inc.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2011-03-09] (CyberLink)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2012-06-14] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [234000 2012-06-14] (CyberLink Corp.)
HKLM-x32\...\Run: [LGODDFU] => C:\Program Files (x86)\lg_fwupdate\lgfw.exe [27760 2012-07-12] (Bitleader)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-07] (AVAST Software)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-46811878-2307496345-1293814372-1001\...\MountPoints2: {6b27b8cf-1e63-11e4-8257-a0886932a829} - "D:\autorun.exe"
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dell13.msn.com/?pc=DCJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
SearchScopes: HKLM - DefaultScope {5E61A694-3A1C-44EB-8140-CF25ECD8BF0A} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {5E61A694-3A1C-44EB-8140-CF25ECD8BF0A} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - DefaultScope {5E61A694-3A1C-44EB-8140-CF25ECD8BF0A} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {5E61A694-3A1C-44EB-8140-CF25ECD8BF0A} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKCU - DefaultScope {5E61A694-3A1C-44EB-8140-CF25ECD8BF0A} URL =
SearchScopes: HKCU - {5E61A694-3A1C-44EB-8140-CF25ECD8BF0A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.2.25

FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\w9m3322i.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Extension: WOT - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\w9m3322i.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-08-11]
FF Extension: FireGestures - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\w9m3322i.default\Extensions\firegestures@xuldev.org.xpi [2014-08-11]
FF Extension: NoScript - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\w9m3322i.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-08-11]
FF Extension: Adblock Plus - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\w9m3322i.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-07]

Chrome:
=======
CHR StartupUrls: "hxxp://www.google.com/"
CHR Extension: (Google Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-14]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-14]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-14]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-14]
CHR Extension: (Google Search) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-14]
CHR Extension: (avast! Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-14]
CHR Extension: (Google Wallet) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-14]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-07]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-07] (AVAST Software)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [139328 2014-02-19] (Aviata, Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [148688 2014-07-22] (Dell Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-18] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-06-20] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-06-20] (McAfee, Inc.)
R2 My Dell Client Framework; C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe [168960 2014-01-10] (Dell Inc.) [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-08] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915920 2013-11-21] (SoftThinks SAS)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)
R2 WysePocketCloud; C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe [16176 2013-08-22] ()
R2 WyseRemoteAccess; C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe [1785344 2013-08-19] (DELL Inc.) [File not signed]
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2014-01-08] (Intel® Corporation)
S2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-07] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-07] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-07] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-07] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-07] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-07] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-07] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-07] ()
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.)
S3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1408824 2013-10-18] (Motorola Solutions, Inc.)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72128 2014-06-20] (McAfee, Inc.)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-24] (OSR Open Systems Resources, Inc.)
R3 iaLPSS_GPIO; C:\Windows\System32\drivers\iaLPSS_GPIO.sys [24568 2013-10-02] (Intel Corporation)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [99320 2013-10-02] (Intel Corporation)
S3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [142280 2013-10-19] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [100824 2013-12-18] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-06-20] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313544 2014-06-20] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70600 2014-06-20] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [523792 2014-06-20] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786296 2014-06-20] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [444720 2014-06-18] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-06-18] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348552 2014-06-20] (McAfee, Inc.)
S3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3488744 2014-08-21] (Intel Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew02.sys [3550184 2014-08-21] (Intel Corporation)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [41200 2013-12-29] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-23 20:03 - 2014-08-23 20:17 - 00016622 _____ () C:\Users\Alison\Desktop\FRST.txt
2014-08-23 20:02 - 2014-08-23 20:17 - 00000000 ____D () C:\FRST
2014-08-23 20:02 - 2014-08-23 20:02 - 02103296 _____ (Farbar) C:\Users\Alison\Desktop\FRST64.exe
2014-08-21 19:48 - 2014-08-21 19:48 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-08-21 19:48 - 2014-08-21 19:48 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-08-21 19:26 - 2014-08-21 19:26 - 00000000 ____D () C:\WINDOWS\LastGood
2014-08-21 19:14 - 2014-08-21 19:14 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2014-08-21 19:14 - 2014-08-21 19:14 - 00000000 ____D () C:\Users\Administrator\Intel
2014-08-21 19:13 - 2014-08-21 19:13 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-08-21 19:13 - 2014-08-21 19:13 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-08-21 19:01 - 2014-08-21 19:10 - 223456832 _____ (Dell Inc.) C:\Users\Admin\Downloads\Network_Driver_DJRCW_WN_16.10.0_A01.EXE
2014-08-21 18:50 - 2014-08-21 18:50 - 00000216 _____ () C:\WirelessDiagLog.csv
2014-08-21 12:40 - 2014-08-21 12:41 - 00000094 _____ () C:\Users\Alison\Desktop\devices.txt
2014-08-21 10:42 - 2014-08-21 10:42 - 00000351 _____ () C:\Users\Alison\Desktop\Network - Shortcut.lnk
2014-08-21 10:25 - 2014-08-21 10:25 - 00000351 _____ () C:\Users\Admin\Desktop\Network - Shortcut.lnk
2014-08-21 10:07 - 2014-08-21 10:07 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-08-21 01:21 - 2014-08-21 01:21 - 03550184 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwew02.sys
2014-08-21 01:21 - 2014-08-21 01:21 - 03521152 _____ () C:\WINDOWS\system32\Drivers\Netwfw02.dat
2014-08-21 01:21 - 2014-08-21 01:21 - 03488744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwbw02.sys
2014-08-21 01:21 - 2014-08-21 01:21 - 02210544 _____ (Intel Corporation) C:\WINDOWS\system32\Netwuw02.dll
2014-08-16 18:26 - 2014-08-21 20:19 - 00000000 ____D () C:\Users\Alison\Desktop\notes
2014-08-14 16:05 - 2014-08-14 16:05 - 00002277 _____ () C:\Users\Admin\Desktop\Google Chrome.lnk
2014-08-14 14:36 - 2014-08-16 17:57 - 00007609 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
2014-08-14 10:23 - 2014-07-24 02:44 - 16874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-08-14 10:22 - 2014-07-24 08:28 - 00468288 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-08-14 10:22 - 2014-07-24 08:28 - 00419648 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-08-14 10:22 - 2014-07-24 08:28 - 00412992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-08-14 10:22 - 2014-07-24 08:28 - 00280384 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2014-08-14 10:22 - 2014-07-24 08:28 - 00143680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-08-14 10:22 - 2014-07-24 08:25 - 00054752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-08-14 10:22 - 2014-07-24 08:23 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-08-14 10:22 - 2014-07-24 08:23 - 00125472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-08-14 10:22 - 2014-07-24 08:20 - 21266336 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-08-14 10:22 - 2014-07-24 08:20 - 00645592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-08-14 10:22 - 2014-07-24 08:20 - 00263400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-08-14 10:22 - 2014-07-24 08:16 - 02574208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-08-14 10:22 - 2014-07-24 08:16 - 00211216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2014-08-14 10:22 - 2014-07-24 08:07 - 07424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-08-14 10:22 - 2014-07-24 08:07 - 02009920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-08-14 10:22 - 2014-07-24 08:05 - 01660048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-08-14 10:22 - 2014-07-24 08:05 - 01519560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-08-14 10:22 - 2014-07-24 08:05 - 01488008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-08-14 10:22 - 2014-07-24 08:05 - 01356840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-08-14 10:22 - 2014-07-24 08:03 - 02141920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-08-14 10:22 - 2014-07-24 08:03 - 00882136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-08-14 10:22 - 2014-07-24 08:03 - 00818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-08-14 10:22 - 2014-07-24 08:03 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2014-08-14 10:22 - 2014-07-24 08:03 - 00233888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-08-14 10:22 - 2014-07-24 08:03 - 00205512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2014-08-14 10:22 - 2014-07-24 07:57 - 02515264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-08-14 10:22 - 2014-07-24 07:57 - 00475968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-08-14 10:22 - 2014-07-24 06:50 - 00098048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2014-08-14 10:22 - 2014-07-24 06:48 - 02410976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-08-14 10:22 - 2014-07-24 06:48 - 00180208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2014-08-14 10:22 - 2014-07-24 06:46 - 18760328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-08-14 10:22 - 2014-07-24 06:46 - 00477200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2014-08-14 10:22 - 2014-07-24 06:36 - 02145472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-08-14 10:22 - 2014-07-24 06:36 - 00707536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2014-08-14 10:22 - 2014-07-24 06:36 - 00674512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-08-14 10:22 - 2014-07-24 06:36 - 00355800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-08-14 10:22 - 2014-07-24 06:36 - 00180720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2014-08-14 10:22 - 2014-07-24 04:51 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL
2014-08-14 10:22 - 2014-07-24 04:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL
2014-08-14 10:22 - 2014-07-24 04:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTT102.DLL
2014-08-14 10:22 - 2014-07-24 04:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL
2014-08-14 10:22 - 2014-07-24 04:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL
2014-08-14 10:22 - 2014-07-24 04:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL
2014-08-14 10:22 - 2014-07-24 04:51 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL
2014-08-14 10:22 - 2014-07-24 04:47 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-08-14 10:22 - 2014-07-24 04:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2014-08-14 10:22 - 2014-07-24 04:45 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2014-08-14 10:22 - 2014-07-24 04:44 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-08-14 10:22 - 2014-07-24 04:43 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2014-08-14 10:22 - 2014-07-24 04:42 - 01200640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-08-14 10:22 - 2014-07-24 04:42 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-08-14 10:22 - 2014-07-24 04:42 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2014-08-14 10:22 - 2014-07-24 04:41 - 00118272 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2014-08-14 10:22 - 2014-07-24 04:41 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2014-08-14 10:22 - 2014-07-24 04:33 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-08-14 10:22 - 2014-07-24 04:33 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-08-14 10:22 - 2014-07-24 04:22 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2014-08-14 10:22 - 2014-07-24 04:06 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll
2014-08-14 10:22 - 2014-07-24 04:05 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2014-08-14 10:22 - 2014-07-24 04:05 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-08-14 10:22 - 2014-07-24 03:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL
2014-08-14 10:22 - 2014-07-24 03:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTT102.DLL
2014-08-14 10:22 - 2014-07-24 03:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL
2014-08-14 10:22 - 2014-07-24 03:51 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL
2014-08-14 10:22 - 2014-07-24 03:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL
2014-08-14 10:22 - 2014-07-24 03:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL
2014-08-14 10:22 - 2014-07-24 03:51 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL
2014-08-14 10:22 - 2014-07-24 03:49 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2014-08-14 10:22 - 2014-07-24 03:33 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-08-14 10:22 - 2014-07-24 03:32 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2014-08-14 10:22 - 2014-07-24 03:20 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2014-08-14 10:22 - 2014-07-24 03:18 - 01089024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2014-08-14 10:22 - 2014-07-24 03:12 - 00878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2014-08-14 10:22 - 2014-07-24 03:10 - 01844224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-08-14 10:22 - 2014-07-24 03:10 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-08-14 10:22 - 2014-07-24 03:10 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-08-14 10:22 - 2014-07-24 03:10 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll
2014-08-14 10:22 - 2014-07-24 03:09 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-08-14 10:22 - 2014-07-24 03:06 - 00438272 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-08-14 10:22 - 2014-07-24 03:05 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2014-08-14 10:22 - 2014-07-24 02:53 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2014-08-14 10:22 - 2014-07-24 02:52 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2014-08-14 10:22 - 2014-07-24 02:42 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2014-08-14 10:22 - 2014-07-24 02:40 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2014-08-14 10:22 - 2014-07-24 02:39 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-08-14 10:22 - 2014-07-24 02:33 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2014-08-14 10:22 - 2014-07-24 02:32 - 01048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2014-08-14 10:22 - 2014-07-24 02:27 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-08-14 10:22 - 2014-07-24 02:27 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-08-14 10:22 - 2014-07-24 02:25 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-08-14 10:22 - 2014-07-24 02:24 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-08-14 10:22 - 2014-07-24 02:23 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-08-14 10:22 - 2014-07-24 02:21 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2014-08-14 10:22 - 2014-07-24 02:18 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2014-08-14 10:22 - 2014-07-24 02:16 - 12730880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-08-14 10:22 - 2014-07-24 02:14 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-08-14 10:22 - 2014-07-24 02:13 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2014-08-14 10:22 - 2014-07-24 02:12 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2014-08-14 10:22 - 2014-07-24 02:11 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-08-14 10:22 - 2014-07-24 02:11 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2014-08-14 10:22 - 2014-07-24 02:10 - 00540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2014-08-14 10:22 - 2014-07-24 02:09 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2014-08-14 10:22 - 2014-07-24 02:04 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2014-08-14 10:22 - 2014-07-24 02:04 - 00183808 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2014-08-14 10:22 - 2014-07-24 02:03 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2014-08-14 10:22 - 2014-07-24 02:02 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2014-08-14 10:22 - 2014-07-24 02:00 - 13292544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-08-14 10:22 - 2014-07-24 01:58 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2014-08-14 10:22 - 2014-07-24 01:53 - 01261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-08-14 10:22 - 2014-07-24 01:53 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-08-14 10:22 - 2014-07-24 01:52 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-08-14 10:22 - 2014-07-24 01:49 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-08-14 10:22 - 2014-07-24 01:49 - 01287680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-08-14 10:22 - 2014-07-24 01:49 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-08-14 10:22 - 2014-07-24 01:49 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2014-08-14 10:22 - 2014-07-24 01:48 - 00659968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-08-14 10:22 - 2014-07-24 01:47 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-08-14 10:22 - 2014-07-24 01:43 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2014-08-14 10:22 - 2014-07-24 01:40 - 11794944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-08-14 10:22 - 2014-07-24 01:39 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2014-08-14 10:22 - 2014-07-24 01:38 - 00371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-08-14 10:22 - 2014-07-24 01:36 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2014-08-14 10:22 - 2014-07-24 01:32 - 01532416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-08-14 10:22 - 2014-07-24 01:31 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-08-14 10:22 - 2014-07-24 01:30 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-08-14 10:22 - 2014-07-24 01:30 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2014-08-14 10:22 - 2014-07-24 01:29 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-08-14 10:22 - 2014-07-24 01:29 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-08-14 10:22 - 2014-07-24 01:28 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2014-08-14 10:22 - 2014-07-24 01:27 - 00907776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-08-14 10:22 - 2014-07-24 01:24 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-08-14 10:22 - 2014-07-24 01:23 - 01404416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2014-08-14 10:22 - 2014-07-24 01:22 - 00487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-08-14 10:22 - 2014-07-24 01:21 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-08-14 10:22 - 2014-07-24 01:21 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-08-14 10:22 - 2014-07-24 01:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2014-08-14 10:22 - 2014-07-24 01:19 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-08-14 10:22 - 2014-07-24 01:18 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-08-14 10:22 - 2014-07-24 01:18 - 00795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2014-08-14 10:22 - 2014-07-24 01:18 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-08-14 10:22 - 2014-07-24 01:16 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-08-14 10:22 - 2014-07-24 01:16 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2014-08-14 10:22 - 2014-07-24 01:15 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-08-14 10:22 - 2014-07-24 01:15 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2014-08-14 10:22 - 2014-07-24 01:15 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2014-08-14 10:22 - 2014-07-24 01:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2014-08-14 10:22 - 2014-07-24 01:12 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-08-14 10:22 - 2014-07-24 01:10 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-08-14 10:22 - 2014-07-24 01:10 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-08-14 10:22 - 2014-07-24 01:10 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-08-14 10:22 - 2014-07-24 01:10 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2014-08-14 10:22 - 2014-07-24 01:08 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-08-14 10:22 - 2014-07-24 01:08 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2014-08-14 10:22 - 2014-07-24 01:07 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-08-14 10:22 - 2014-07-24 01:06 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-08-14 10:22 - 2014-07-24 01:05 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2014-08-14 10:22 - 2014-07-24 01:04 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-08-14 10:22 - 2014-07-24 01:02 - 03465216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-08-14 10:22 - 2014-07-24 01:01 - 05833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-08-14 10:22 - 2014-07-24 01:01 - 01992192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2014-08-14 10:22 - 2014-07-24 01:01 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-08-14 10:22 - 2014-07-24 01:00 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-08-14 10:22 - 2014-07-24 00:58 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-08-14 10:22 - 2014-07-24 00:58 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2014-08-14 10:22 - 2014-07-24 00:54 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2014-08-14 10:22 - 2014-07-24 00:50 - 01182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2014-08-14 10:22 - 2014-07-24 00:50 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-08-14 10:22 - 2014-07-24 00:49 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2014-08-14 10:22 - 2014-07-24 00:47 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-08-14 10:22 - 2014-07-24 00:46 - 08652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-08-14 10:22 - 2014-07-24 00:44 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2014-08-14 10:22 - 2014-07-24 00:43 - 02696704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-08-14 10:22 - 2014-07-24 00:43 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-08-14 10:22 - 2014-07-24 00:43 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2014-08-14 10:22 - 2014-07-24 00:41 - 00459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-08-14 10:22 - 2014-07-24 00:39 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-08-14 10:22 - 2014-07-24 00:38 - 06649344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-08-14 10:22 - 2014-07-24 00:38 - 05777408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-08-14 10:22 - 2014-07-24 00:33 - 03360768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-08-14 10:22 - 2014-07-24 00:30 - 02318336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-08-14 10:22 - 2014-07-24 00:28 - 01600000 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2014-08-14 10:22 - 2014-07-23 21:11 - 00513544 _____ () C:\WINDOWS\SysWOW64\locale.nls
2014-08-14 10:22 - 2014-07-23 21:11 - 00513544 _____ () C:\WINDOWS\system32\locale.nls
2014-08-14 10:22 - 2014-07-11 22:55 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2014-08-14 10:22 - 2014-07-11 22:23 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-08-14 10:22 - 2014-07-11 21:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2014-08-14 10:22 - 2014-07-11 21:33 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-08-14 10:22 - 2014-07-11 21:13 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-08-14 10:22 - 2014-07-09 16:19 - 00387391 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-08-14 10:22 - 2014-07-04 13:18 - 00149312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-08-14 10:22 - 2014-07-04 05:59 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-08-14 10:22 - 2014-07-04 03:29 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2014-08-14 10:22 - 2014-07-04 03:20 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2014-08-14 10:22 - 2014-07-04 03:06 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2014-08-14 10:22 - 2014-07-04 03:00 - 01351168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2014-08-14 10:22 - 2014-07-04 02:30 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2014-08-14 10:22 - 2014-07-04 02:27 - 00474112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-08-14 10:22 - 2014-06-26 23:22 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-08-14 10:22 - 2014-06-25 17:32 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-08-14 10:22 - 2014-06-25 17:29 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2014-08-14 10:22 - 2014-06-19 16:37 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-08-14 10:22 - 2014-06-18 19:13 - 00310080 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-08-14 10:22 - 2014-06-13 23:03 - 02389504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-08-14 10:22 - 2014-06-13 22:46 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-08-14 10:22 - 2014-06-07 05:46 - 00216368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2014-08-14 10:22 - 2014-06-07 03:20 - 00189016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2014-08-14 10:22 - 2014-06-05 07:00 - 01118040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-08-14 10:22 - 2014-06-05 03:18 - 01018368 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2014-08-14 10:22 - 2014-06-05 02:42 - 00889856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2014-08-14 10:22 - 2014-05-30 22:00 - 01463808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2014-08-14 10:22 - 2014-05-30 21:18 - 01319936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2014-08-14 10:22 - 2014-05-28 23:23 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-08-14 10:22 - 2014-05-28 22:25 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2014-08-14 10:22 - 2014-05-28 22:20 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-08-14 10:22 - 2014-05-28 21:36 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-08-14 10:22 - 2014-05-26 00:26 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2014-08-14 10:22 - 2014-05-10 03:12 - 00387896 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2014-08-14 10:22 - 2014-05-10 01:46 - 00335680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2014-08-14 10:22 - 2014-05-05 21:41 - 00486744 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-08-14 10:22 - 2014-05-05 17:55 - 00391000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2014-08-14 10:22 - 2014-03-24 19:27 - 00160600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2014-08-14 10:22 - 2014-03-24 19:27 - 00123920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2014-08-14 10:22 - 2014-03-24 18:20 - 00128568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2014-08-14 10:22 - 2014-03-24 18:20 - 00127544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2014-08-14 10:21 - 2014-08-05 17:48 - 02374816 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-08-14 10:21 - 2014-08-05 16:46 - 02088648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-08-14 09:57 - 2014-07-25 07:52 - 23645696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-08-14 09:57 - 2014-07-25 06:51 - 17524224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-08-14 09:57 - 2014-07-25 06:28 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-08-14 09:57 - 2014-07-25 06:25 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-08-14 09:57 - 2014-07-25 06:25 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-08-14 09:57 - 2014-07-25 05:59 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-08-14 09:57 - 2014-07-25 05:40 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-08-14 09:57 - 2014-07-25 05:34 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-08-14 09:57 - 2014-07-25 05:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-08-14 09:57 - 2014-07-25 05:28 - 05824512 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-08-14 09:57 - 2014-07-25 05:28 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-08-14 09:57 - 2014-07-25 05:21 - 02184704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-08-14 09:57 - 2014-07-25 05:17 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-08-14 09:57 - 2014-07-25 05:10 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-08-14 09:57 - 2014-07-25 05:08 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-08-14 09:57 - 2014-07-25 05:06 - 04204032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-08-14 09:57 - 2014-07-25 04:52 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-08-14 09:57 - 2014-07-25 04:47 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-08-14 09:57 - 2014-07-25 04:43 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-08-14 09:57 - 2014-07-25 04:43 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-14 09:57 - 2014-07-25 04:42 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-08-14 09:57 - 2014-07-25 04:39 - 02087936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-08-14 09:57 - 2014-07-25 04:34 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-08-14 09:57 - 2014-07-25 04:29 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-08-14 09:57 - 2014-07-25 04:23 - 13547008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-08-14 09:57 - 2014-07-25 04:13 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-08-14 09:57 - 2014-07-25 04:09 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-08-14 09:57 - 2014-07-25 04:07 - 02001920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-08-14 09:57 - 2014-07-25 04:03 - 11772928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-08-14 09:57 - 2014-07-25 03:52 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-08-14 09:57 - 2014-07-25 03:26 - 01431040 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-08-14 09:57 - 2014-07-25 03:17 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-08-14 09:57 - 2014-07-25 03:09 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-08-14 09:57 - 2014-07-25 03:05 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-08-14 09:57 - 2014-07-25 03:00 - 01169920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-08-14 09:56 - 2014-08-06 19:12 - 01336624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-08-14 09:56 - 2014-08-06 15:39 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-14 09:56 - 2014-08-06 15:38 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-08-14 09:56 - 2014-08-01 22:44 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-08-14 09:56 - 2014-08-01 20:56 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-08-14 09:56 - 2014-08-01 20:11 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-08-14 09:56 - 2014-07-15 11:16 - 03048880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-08-14 09:56 - 2014-07-15 01:29 - 03118080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-08-14 09:56 - 2014-07-15 01:22 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-08-14 09:56 - 2014-07-15 01:03 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2014-08-14 09:56 - 2014-07-11 21:17 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-08-14 09:56 - 2014-06-19 18:48 - 01273184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2014-08-14 09:56 - 2014-06-19 16:52 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2014-08-14 09:56 - 2014-06-12 18:15 - 00517528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-08-14 09:56 - 2014-06-12 18:14 - 01557848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-08-14 09:56 - 2014-06-12 17:10 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-08-14 09:56 - 2014-06-09 15:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-08-14 09:56 - 2014-06-09 15:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-08-14 09:56 - 2014-06-06 04:34 - 02133504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-08-14 09:56 - 2014-06-04 02:27 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-08-14 09:56 - 2014-06-03 22:31 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-08-14 09:56 - 2014-06-03 22:22 - 02790912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-08-14 09:56 - 2014-06-03 21:43 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-08-14 09:56 - 2014-06-03 21:38 - 03304448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-08-11 10:12 - 2014-08-11 10:12 - 00000000 ____D () C:\Users\Admin\AppData\Local\Macromedia
2014-08-11 10:08 - 2014-08-11 10:08 - 00000000 __SHD () C:\Users\Admin\AppData\Local\EmieUserList
2014-08-11 10:08 - 2014-08-11 10:08 - 00000000 __SHD () C:\Users\Admin\AppData\Local\EmieSiteList
2014-08-11 10:08 - 2014-08-11 10:08 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Macromedia
2014-08-11 10:07 - 2014-08-11 10:07 - 00000424 _____ () C:\Users\Admin\Desktop\This PC - Shortcut.lnk
2014-08-11 10:06 - 2014-08-11 10:06 - 00000363 _____ () C:\Users\Admin\Desktop\Control Panel - Shortcut.lnk
2014-08-11 10:04 - 2014-08-11 10:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\OpenOffice
2014-08-11 10:02 - 2014-08-11 10:02 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Mozilla
2014-08-11 10:02 - 2014-08-11 10:02 - 00000000 ____D () C:\Users\Admin\AppData\Local\Mozilla
2014-08-10 17:16 - 2014-08-14 16:08 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-08-10 17:13 - 2014-08-14 16:16 - 00000000 ____D () C:\Users\Admin\Desktop\mbar
2014-08-10 16:13 - 2014-08-10 16:13 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-08-10 16:13 - 2014-08-10 16:13 - 00000836 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-10 16:13 - 2014-08-10 16:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-08-10 16:13 - 2014-08-10 16:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-10 16:10 - 2014-08-21 10:09 - 00092888 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-08-10 16:10 - 2014-08-21 10:08 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-08-10 16:10 - 2014-08-10 16:10 - 00001116 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-10 16:10 - 2014-08-10 16:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-10 16:10 - 2014-08-10 16:10 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-10 16:10 - 2014-08-10 16:10 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-10 16:10 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-08-10 16:10 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-08-10 16:00 - 2014-08-10 16:00 - 00000085 _____ () C:\WINDOWS\wininit.ini
2014-08-10 15:59 - 2014-08-07 15:52 - 00450709 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140810-155934.backup
2014-08-10 14:33 - 2014-08-10 14:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-08-10 13:48 - 2014-08-10 13:48 - 00000000 ____D () C:\Users\Admin\Desktop\LocaleMetaData
2014-08-10 13:35 - 2014-08-21 19:44 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-46811878-2307496345-1293814372-1004
2014-08-10 13:31 - 2014-08-10 13:31 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Intel Corporation
2014-08-10 13:30 - 2014-08-14 16:06 - 00000000 ____D () C:\Users\Admin\AppData\Local\Google
2014-08-10 13:30 - 2014-08-10 13:30 - 00001444 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-10 13:30 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\Documents\My Received Files
2014-08-10 13:30 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\AVAST Software
2014-08-10 13:30 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Adobe
2014-08-10 13:30 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\AppData\Local\Power2Go
2014-08-10 13:29 - 2014-08-21 19:28 - 00000000 ____D () C:\Users\Admin
2014-08-10 13:29 - 2014-08-10 13:32 - 00000000 ____D () C:\Users\Admin\AppData\Local\Packages
2014-08-10 13:29 - 2014-08-10 13:29 - 00000020 ___SH () C:\Users\Admin\ntuser.ini
2014-08-10 13:29 - 2014-08-10 13:29 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Intel
2014-08-10 13:29 - 2014-08-10 13:29 - 00000000 ____D () C:\Users\Admin\AppData\Local\VirtualStore
2014-08-10 13:29 - 2014-08-07 11:09 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-10 13:29 - 2014-08-07 11:09 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-10 13:29 - 2014-02-21 21:37 - 00000369 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-08-10 13:29 - 2014-02-21 21:37 - 00000369 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-08-10 13:29 - 2013-08-22 08:36 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-10 13:29 - 2013-08-22 08:36 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-10 13:05 - 2014-08-10 13:05 - 00001546 _____ () C:\Users\Alison\Desktop\bones - Shortcut.lnk
2014-08-10 11:10 - 2014-08-10 11:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Glulxe
2014-08-10 11:10 - 2014-08-10 11:10 - 00000000 ____D () C:\Program Files (x86)\WinGlulxe
2014-08-10 11:06 - 2014-08-10 11:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Frotz
2014-08-10 11:06 - 2014-08-10 11:06 - 00000000 ____D () C:\Program Files (x86)\Windows Frotz
2014-08-10 10:37 - 2014-08-10 10:37 - 00001044 _____ () C:\Users\Alison\Desktop\crawl - Shortcut.lnk
2014-08-09 19:24 - 2014-08-23 20:06 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-09 19:24 - 2014-08-14 15:57 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-08-09 19:24 - 2014-08-09 19:24 - 00000000 ____D () C:\Users\Alison\AppData\Local\Macromedia
2014-08-07 20:18 - 2014-08-07 20:18 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\OpenOffice
2014-08-07 18:22 - 2014-08-23 19:59 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-08-07 18:22 - 2014-08-10 10:06 - 00002205 _____ () C:\Users\Alison\Desktop\Google Chrome.lnk
2014-08-07 18:22 - 2014-08-07 18:22 - 00001984 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-07 18:22 - 2014-08-07 18:22 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\AVAST Software
2014-08-07 18:22 - 2014-08-07 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-07 18:22 - 2014-08-07 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-07 18:21 - 2014-08-23 19:59 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-07 18:21 - 2014-08-21 19:31 - 00000914 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-07 18:21 - 2014-08-09 19:26 - 00003886 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-08-07 18:21 - 2014-08-09 19:26 - 00003650 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-08-07 18:21 - 2014-08-07 18:22 - 00000000 ____D () C:\Users\Alison\AppData\Local\Google
2014-08-07 18:21 - 2014-08-07 18:21 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-07 18:20 - 2014-08-07 18:22 - 00427360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 01041168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00307344 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-08-07 18:20 - 2014-08-07 18:20 - 00224896 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00093568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00092008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00079184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00065776 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-08-07 18:20 - 2014-08-07 18:20 - 00029208 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-08-07 18:19 - 2014-08-07 18:19 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-07 18:17 - 2014-08-07 18:19 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-07 16:37 - 2014-08-07 16:37 - 00001128 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2014-08-07 16:37 - 2014-08-07 16:37 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2014-08-07 16:36 - 2014-08-07 16:37 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-08-07 16:35 - 2014-08-07 16:35 - 00000000 ____D () C:\Users\Alison\Desktop\OpenOffice 4.1.0 (en-US) Installation Files
2014-08-07 16:24 - 2014-08-07 16:24 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-08-07 15:52 - 2014-08-07 15:46 - 00450709 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140807-155243.backup
2014-08-07 15:46 - 2013-08-22 06:25 - 00000824 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.20140807-154648.backup
2014-08-07 15:38 - 2014-08-10 16:00 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-07 15:38 - 2014-08-10 16:00 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-07 15:38 - 2014-08-07 15:38 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking
2014-08-07 15:21 - 2014-08-07 15:21 - 00000000 ____D () C:\Users\Alison\AppData\Local\Power2Go
2014-08-07 15:17 - 2014-08-07 15:17 - 00001398 _____ () C:\Users\Public\Desktop\CyberLink Media Suite 10.lnk
2014-08-07 15:16 - 2014-08-07 17:12 - 00000307 _____ () C:\WINDOWS\lgfwup.ini
2014-08-07 15:16 - 2014-08-07 15:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG Tool Kit
2014-08-07 15:16 - 2014-08-07 15:16 - 00000000 ____D () C:\ProgramData\install_clap
2014-08-07 15:16 - 1998-07-22 00:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb6stkit.dll
2014-08-07 15:16 - 1998-07-22 00:00 - 00102160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6KO.DLL
2014-08-07 15:16 - 1998-06-24 00:00 - 00115016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSINET.OCX
2014-08-07 15:15 - 2014-08-07 17:12 - 00000000 ____D () C:\Program Files (x86)\lg_fwupdate
2014-08-07 15:15 - 2014-08-07 15:15 - 00003148 _____ () C:\WINDOWS\System32\Tasks\MirageAgent
2014-08-07 15:15 - 2012-07-11 13:18 - 00023664 _____ (BitLeader) C:\WINDOWS\SysWOW64\lgfwunis.exe
2014-08-07 15:15 - 2001-08-29 21:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemdisp.tlb
2014-08-07 15:12 - 2014-08-07 15:12 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\CyberLink
2014-08-07 15:10 - 2014-08-07 15:17 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2014-08-07 15:10 - 2014-08-07 15:17 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-08-07 15:09 - 2014-08-07 16:24 - 00000000 ____D () C:\ProgramData\CyberLink
2014-08-07 15:09 - 2014-08-07 15:09 - 00000000 ____D () C:\ProgramData\CLSK
2014-08-07 15:08 - 2014-08-07 15:17 - 00000000 ____D () C:\ProgramData\Temp
2014-08-07 14:38 - 2014-08-07 14:38 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-07 14:38 - 2014-08-07 14:38 - 00001161 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Mozilla
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\Users\Alison\AppData\Local\Mozilla
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\ProgramData\Mozilla
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-07 11:50 - 2014-08-07 11:50 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-08-07 11:42 - 2014-07-09 21:16 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-08-07 11:42 - 2014-07-09 21:03 - 04756992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-08-07 11:42 - 2014-07-09 20:33 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-08-07 11:37 - 2014-08-07 11:37 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-08-07 11:29 - 2014-06-01 19:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-08-07 11:29 - 2014-05-31 03:07 - 00440664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-08-07 11:29 - 2014-05-31 03:07 - 00089944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-08-07 11:29 - 2014-05-31 03:07 - 00027480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-08-07 11:29 - 2014-05-30 23:30 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-08-07 11:29 - 2014-05-30 23:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2014-08-07 11:29 - 2014-05-30 23:26 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2014-08-07 11:29 - 2014-05-30 21:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2014-08-07 11:29 - 2014-05-30 21:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2014-08-07 11:29 - 2014-05-30 21:01 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll
2014-08-07 11:29 - 2014-05-27 02:56 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-08-07 11:29 - 2014-05-27 02:53 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2014-08-07 11:29 - 2014-05-13 00:01 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-08-07 11:29 - 2014-05-12 21:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-08-07 11:29 - 2014-05-12 21:26 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-08-07 11:29 - 2014-05-12 20:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-08-07 11:29 - 2014-05-03 04:29 - 01726224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-08-07 11:29 - 2014-05-03 02:20 - 01473080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-08-07 11:29 - 2014-05-02 22:36 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-08-07 11:29 - 2014-05-02 22:19 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-08-07 11:29 - 2014-05-02 22:08 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2014-08-07 11:29 - 2014-05-02 22:07 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2014-08-07 11:29 - 2014-05-02 21:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2014-08-07 11:29 - 2014-05-02 21:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2014-08-07 11:29 - 2014-05-02 21:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2014-08-07 11:29 - 2014-05-02 16:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat
2014-08-07 11:29 - 2014-04-29 23:43 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2014-08-07 11:29 - 2014-04-29 23:41 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-08-07 11:29 - 2014-04-29 23:41 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2014-08-07 11:29 - 2014-04-29 23:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2014-08-07 11:29 - 2014-04-29 22:45 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-08-07 11:29 - 2014-04-29 21:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2014-08-07 11:29 - 2014-04-29 21:24 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-08-07 11:29 - 2014-04-29 21:23 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-08-07 11:29 - 2014-04-29 21:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-08-07 11:29 - 2014-04-29 21:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-08-07 11:29 - 2014-04-29 21:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-08-07 11:29 - 2014-04-29 20:59 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-08-07 11:29 - 2014-04-29 20:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-08-07 11:29 - 2014-04-29 20:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2014-08-07 11:29 - 2014-04-29 20:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2014-08-07 11:29 - 2014-04-29 20:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2014-08-07 11:29 - 2014-04-29 20:42 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-08-07 11:29 - 2014-04-28 15:40 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-08-07 11:29 - 2014-04-26 09:39 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-08-07 11:29 - 2014-04-14 02:37 - 02125344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-08-07 11:29 - 2014-04-14 01:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-08-07 11:29 - 2014-04-13 22:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-08-07 11:18 - 2014-08-07 11:18 - 00000424 _____ () C:\Users\Alison\Desktop\My Computer.lnk
2014-08-07 11:12 - 2014-08-01 17:17 - 00704480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-08-07 11:12 - 2014-08-01 17:17 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-07 11:06 - 2014-04-13 20:29 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2014-08-07 11:05 - 2014-08-14 09:59 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-08-07 11:05 - 2014-08-07 11:05 - 00000000 __SHD () C:\Users\Alison\AppData\Local\EmieUserList
2014-08-07 11:05 - 2014-08-07 11:05 - 00000000 __SHD () C:\Users\Alison\AppData\Local\EmieSiteList
2014-08-07 11:05 - 2014-05-29 20:03 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-08-07 11:04 - 2014-05-18 23:31 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe
2014-08-07 11:04 - 2014-05-18 23:21 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2014-08-07 11:04 - 2014-05-18 22:23 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe
2014-08-07 11:04 - 2014-05-09 20:46 - 02151424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-08-07 11:04 - 2014-05-09 20:22 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-08-07 11:04 - 2014-04-29 21:43 - 01975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2014-08-07 11:04 - 2014-04-29 21:26 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2014-08-07 11:04 - 2014-04-29 20:47 - 01509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2014-08-07 11:04 - 2014-04-18 00:51 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-08-07 11:04 - 2014-04-08 15:46 - 00086688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt_map.dll
2014-08-07 11:04 - 2014-04-08 15:46 - 00028320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt100.dll
2014-08-07 11:04 - 2014-04-08 11:54 - 00080032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt_map.dll
2014-08-07 11:04 - 2014-04-08 11:54 - 00026784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt100.dll
2014-08-07 11:04 - 2014-04-06 09:20 - 01403856 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-08-07 11:04 - 2014-04-06 09:20 - 01379064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-08-07 11:04 - 2014-04-06 09:20 - 00765408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-08-07 11:04 - 2014-04-06 09:20 - 00491744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-08-07 11:04 - 2014-04-06 09:20 - 00364640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-08-07 11:04 - 2014-04-06 08:16 - 01209616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-08-07 11:04 - 2014-04-06 08:16 - 00669856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-08-07 11:04 - 2014-04-06 08:16 - 00387896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-08-07 11:04 - 2014-04-06 08:16 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-08-07 11:04 - 2014-04-06 04:01 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-08-07 11:04 - 2014-04-06 03:52 - 00955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-08-07 11:04 - 2014-04-06 03:37 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-08-07 11:04 - 2014-04-06 03:05 - 01222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-08-07 11:04 - 2014-04-06 02:59 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2014-08-07 11:04 - 2014-03-28 08:58 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2014-08-07 11:04 - 2014-03-17 22:00 - 07173120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-08-07 11:04 - 2014-03-17 21:52 - 05104640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2014-08-07 11:04 - 2014-03-16 22:09 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-08-07 11:04 - 2014-03-13 23:26 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-08-07 11:03 - 2014-06-06 06:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-08-07 11:03 - 2014-06-06 05:18 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-08-07 11:03 - 2014-05-31 03:06 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-08-07 11:03 - 2014-05-30 19:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-08-07 11:03 - 2014-05-30 19:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-08-07 11:03 - 2014-05-29 05:02 - 00565576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-08-07 11:03 - 2014-05-29 00:55 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-08-07 11:03 - 2014-05-28 23:40 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-08-07 11:03 - 2014-04-18 07:57 - 00032600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-08-07 11:03 - 2014-04-18 07:44 - 01466856 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-08-07 11:03 - 2014-04-18 06:29 - 01200288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-08-07 11:03 - 2014-04-18 02:44 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2014-08-07 11:03 - 2014-04-14 02:20 - 00324888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2014-08-07 11:03 - 2014-04-14 01:01 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2014-08-07 11:03 - 2014-04-10 21:51 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-08-07 11:03 - 2014-04-10 21:23 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-08-07 11:03 - 2014-04-09 04:53 - 00337240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-08-07 11:03 - 2014-04-08 23:39 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2014-08-07 11:03 - 2014-04-08 22:44 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2014-08-07 11:03 - 2014-04-08 20:33 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-08-07 11:03 - 2014-04-07 19:01 - 00589656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-08-07 11:03 - 2014-04-06 09:34 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-08-07 11:03 - 2014-04-06 09:34 - 00275800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2014-08-07 11:03 - 2014-04-06 09:30 - 00201920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2014-08-07 11:03 - 2014-04-06 09:24 - 00360792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2014-08-07 11:03 - 2014-04-06 09:20 - 00609448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2014-08-07 11:03 - 2014-04-06 09:20 - 00467496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-08-07 11:03 - 2014-04-06 09:20 - 00463256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-08-07 11:03 - 2014-04-06 09:20 - 00244880 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-08-07 11:03 - 2014-04-06 09:20 - 00028408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2014-08-07 11:03 - 2014-04-06 08:22 - 00178184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2014-08-07 11:03 - 2014-04-06 08:16 - 00518544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2014-08-07 11:03 - 2014-04-06 08:16 - 00406504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-08-07 11:03 - 2014-04-06 08:16 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-08-07 11:03 - 2014-04-06 05:58 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2014-08-07 11:03 - 2014-04-06 05:51 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2014-08-07 11:03 - 2014-04-06 05:33 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2014-08-07 11:03 - 2014-04-06 05:24 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2014-08-07 11:03 - 2014-04-06 05:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll
2014-08-07 11:03 - 2014-04-06 04:26 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2014-08-07 11:03 - 2014-04-06 04:20 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-08-07 11:03 - 2014-04-03 01:12 - 00307304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-08-07 11:03 - 2014-04-03 01:12 - 00130144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2014-08-07 11:03 - 2014-04-02 21:03 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2014-08-07 11:03 - 2014-04-02 21:03 - 00111528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2014-08-07 11:03 - 2014-04-02 19:23 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tlscsp.dll
2014-08-07 11:03 - 2014-04-02 19:22 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlscsp.dll
2014-08-07 11:03 - 2014-03-30 22:35 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-08-07 11:03 - 2014-03-26 22:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2014-08-07 11:03 - 2014-03-26 21:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2014-08-07 11:03 - 2014-03-26 20:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-08-07 11:03 - 2014-03-26 20:10 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-08-07 11:03 - 2014-03-23 19:30 - 00257880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-08-07 11:03 - 2014-03-23 19:30 - 00123224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-08-07 11:03 - 2014-03-23 19:27 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-08-07 11:03 - 2014-03-19 01:15 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2014-08-07 11:03 - 2014-03-19 00:24 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-08-07 11:03 - 2014-03-19 00:17 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2014-08-07 11:03 - 2014-03-16 21:11 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-08-07 11:03 - 2014-03-13 23:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2014-08-07 11:03 - 2014-03-13 00:42 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-08-07 11:03 - 2014-03-12 23:51 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-08-07 11:02 - 2014-06-28 00:07 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-08-07 11:02 - 2014-05-01 06:31 - 00055328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2014-08-07 11:02 - 2014-04-30 22:24 - 02834944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2014-08-07 11:02 - 2014-04-11 01:25 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-08-07 11:02 - 2014-04-10 22:53 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-08-07 11:02 - 2014-04-10 20:54 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-08-07 11:02 - 2014-04-10 20:06 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-08-07 11:02 - 2014-04-10 20:05 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-08-07 11:02 - 2014-04-10 20:02 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-08-07 11:02 - 2014-04-10 20:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-08-07 11:02 - 2014-04-10 19:57 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-08-07 10:55 - 2014-08-07 10:55 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Macromedia
2014-08-07 10:35 - 2014-02-07 18:08 - 00139600 _____ () C:\WINDOWS\system32\systemsf.ebd
2014-08-07 10:34 - 2014-02-22 09:59 - 01290688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2014-08-07 10:34 - 2014-02-22 09:59 - 00526304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2014-08-07 10:34 - 2014-02-22 09:15 - 01929608 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2014-08-07 10:34 - 2014-02-22 09:15 - 01206000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2014-08-07 10:34 - 2014-02-22 09:00 - 00249688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2014-08-07 10:34 - 2014-02-22 08:55 - 01435304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2014-08-07 10:34 - 2014-02-22 08:55 - 00244848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2014-08-07 10:34 - 2014-02-22 08:53 - 03394384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-08-07 10:34 - 2014-02-22 08:50 - 00761792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2014-08-07 10:34 - 2014-02-22 08:49 - 00148824 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-08-07 10:34 - 2014-02-22 08:48 - 01791752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-08-07 10:34 - 2014-02-22 08:46 - 01927600 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-08-07 10:34 - 2014-02-22 08:46 - 01445616 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2014-08-07 10:34 - 2014-02-22 08:46 - 01000424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2014-08-07 10:34 - 2014-02-22 08:46 - 00669896 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2014-08-07 10:34 - 2014-02-22 08:44 - 00539992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2014-08-07 10:34 - 2014-02-22 08:41 - 01215832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2014-08-07 10:34 - 2014-02-22 08:41 - 00800552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2014-08-07 10:34 - 2014-02-22 08:41 - 00391008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2014-08-07 10:34 - 2014-02-22 07:52 - 01767440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2014-08-07 10:34 - 2014-02-22 07:51 - 01063976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2014-08-07 10:34 - 2014-02-22 07:42 - 01017936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2014-08-07 10:34 - 2014-02-22 07:42 - 00422968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2014-08-07 10:34 - 2014-02-22 07:38 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-08-07 10:34 - 2014-02-22 07:38 - 01077944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2014-08-07 10:34 - 2014-02-22 07:04 - 01011280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2014-08-07 10:34 - 2014-02-22 07:04 - 00650736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2014-08-07 10:34 - 2014-02-22 07:04 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2014-08-07 10:34 - 2014-02-22 05:24 - 02825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2014-08-07 10:34 - 2014-02-22 05:22 - 01163264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2014-08-07 10:34 - 2014-02-22 05:08 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OobeFldr.dll
2014-08-07 10:34 - 2014-02-22 05:07 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2014-08-07 10:34 - 2014-02-22 05:07 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofUtil.dll
2014-08-07 10:34 - 2014-02-22 04:28 - 02428928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2014-08-07 10:34 - 2014-02-22 04:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2014-08-07 10:34 - 2014-02-22 04:17 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OobeFldr.dll
2014-08-07 10:34 - 2014-02-22 04:16 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2014-08-07 10:34 - 2014-02-22 03:47 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe
2014-08-07 10:34 - 2014-02-22 03:41 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2014-08-07 10:34 - 2014-02-22 03:38 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll
2014-08-07 10:34 - 2014-02-22 03:36 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2014-08-07 10:34 - 2014-02-22 03:34 - 11742720 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2014-08-07 10:34 - 2014-02-22 03:25 - 01428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2014-08-07 10:34 - 2014-02-22 03:18 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2014-08-07 10:34 - 2014-02-22 03:09 - 01224192 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2014-08-07 10:34 - 2014-02-22 03:02 - 08946688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2014-08-07 10:34 - 2014-02-22 03:01 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2014-08-07 10:34 - 2014-02-22 02:57 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2014-08-07 10:34 - 2014-02-22 02:53 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2014-08-07 10:34 - 2014-02-22 02:52 - 01132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2014-08-07 10:34 - 2014-02-22 02:47 - 01192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2014-08-07 10:34 - 2014-02-22 02:45 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2014-08-07 10:34 - 2014-02-22 02:38 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2014-08-07 10:34 - 2014-02-22 02:35 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2014-08-07 10:34 - 2014-02-22 02:35 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofTasks.dll
2014-08-07 10:34 - 2014-02-22 02:34 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2014-08-07 10:34 - 2014-02-22 02:33 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2014-08-07 10:34 - 2014-02-22 02:28 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2014-08-07 10:34 - 2014-02-22 02:26 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2014-08-07 10:34 - 2014-02-22 02:26 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2014-08-07 10:34 - 2014-02-22 02:24 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2014-08-07 10:34 - 2014-02-22 02:23 - 03494912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2014-08-07 10:34 - 2014-02-22 02:23 - 01576960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2014-08-07 10:34 - 2014-02-22 02:23 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2014-08-07 10:34 - 2014-02-22 02:16 - 11776000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2014-08-07 10:34 - 2014-02-22 02:14 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2014-08-07 10:34 - 2014-02-22 02:14 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2014-08-07 10:34 - 2014-02-22 02:13 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2014-08-07 10:34 - 2014-02-22 02:11 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-08-07 10:34 - 2014-02-22 02:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-08-07 10:34 - 2014-02-22 02:10 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-08-07 10:34 - 2014-02-22 02:04 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\perftrack.dll
2014-08-07 10:34 - 2014-02-22 02:01 - 13933568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2014-08-07 10:34 - 2014-02-22 02:00 - 01341440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2014-08-07 10:34 - 2014-02-22 02:00 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2014-08-07 10:34 - 2014-02-22 01:59 - 01621504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2014-08-07 10:34 - 2014-02-22 01:59 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-08-07 10:34 - 2014-02-22 01:54 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-08-07 10:34 - 2014-02-22 01:51 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2014-08-07 10:34 - 2014-02-22 01:51 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2014-08-07 10:34 - 2014-02-22 01:51 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2014-08-07 10:34 - 2014-02-22 01:47 - 00517120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-08-07 10:34 - 2014-02-22 01:45 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2014-08-07 10:34 - 2014-02-22 01:40 - 02368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2014-08-07 10:34 - 2014-02-22 01:39 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2014-08-07 10:34 - 2014-02-22 01:37 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2014-08-07 10:34 - 2014-02-22 01:37 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2014-08-07 10:34 - 2014-02-22 01:22 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-08-07 10:34 - 2014-02-22 01:21 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-08-07 10:34 - 2014-02-22 01:06 - 01640960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-08-07 10:34 - 2014-02-22 01:03 - 01496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2014-08-07 10:34 - 2014-02-22 01:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2014-08-07 10:34 - 2014-02-22 01:00 - 00514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2014-08-07 10:34 - 2014-02-21 21:33 - 00262335 _____ () C:\WINDOWS\system32\dfpinc.dat
2014-08-07 10:34 - 2014-01-29 01:53 - 01653352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-08-07 10:34 - 2014-01-29 00:44 - 01369736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-08-07 10:33 - 2014-02-22 09:59 - 00461176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-08-07 10:33 - 2014-02-22 09:59 - 00407536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-08-07 10:33 - 2014-02-22 09:59 - 00289752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2014-08-07 10:33 - 2014-02-22 09:59 - 00209160 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2014-08-07 10:33 - 2014-02-22 09:59 - 00139464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2014-08-07 10:33 - 2014-02-22 09:58 - 00036200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2014-08-07 10:33 - 2014-02-22 09:15 - 00531128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2014-08-07 10:33 - 2014-02-22 09:15 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\system32\powrprof.dll
2014-08-07 10:33 - 2014-02-22 09:15 - 00188464 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2014-08-07 10:33 - 2014-02-22 09:15 - 00071888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2014-08-07 10:33 - 2014-02-22 09:02 - 00170952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2014-08-07 10:33 - 2014-02-22 09:02 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2014-08-07 10:33 - 2014-02-22 09:02 - 00080048 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2014-08-07 10:33 - 2014-02-22 09:00 - 00236888 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-08-07 10:33 - 2014-02-22 09:00 - 00151384 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-08-07 10:33 - 2014-02-22 09:00 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2014-08-07 10:33 - 2014-02-22 08:59 - 00027480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2014-08-07 10:33 - 2014-02-22 08:55 - 00162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2014-08-07 10:33 - 2014-02-22 08:55 - 00152848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2014-08-07 10:33 - 2014-02-22 08:55 - 00131168 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-08-07 10:33 - 2014-02-22 08:55 - 00105864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-08-07 10:33 - 2014-02-22 08:50 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2014-08-07 10:33 - 2014-02-22 08:50 - 00043408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2014-08-07 10:33 - 2014-02-22 08:50 - 00032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2014-08-07 10:33 - 2014-02-22 08:49 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-08-07 10:33 - 2014-02-22 08:49 - 00189784 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2014-08-07 10:33 - 2014-02-22 08:49 - 00079192 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2014-08-07 10:33 - 2014-02-22 08:44 - 00924504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2014-08-07 10:33 - 2014-02-22 08:43 - 00142576 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2014-08-07 10:33 - 2014-02-22 08:43 - 00094560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2014-08-07 10:33 - 2014-02-22 08:41 - 00372360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2014-08-07 10:33 - 2014-02-22 07:52 - 00251504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2014-08-07 10:33 - 2014-02-22 07:51 - 00140456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2014-08-07 10:33 - 2014-02-22 07:42 - 00410568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-08-07 10:33 - 2014-02-22 07:42 - 00369288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-08-07 10:33 - 2014-02-22 07:42 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2014-08-07 10:33 - 2014-02-22 07:42 - 00137344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2014-08-07 10:33 - 2014-02-22 07:41 - 00033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2014-08-07 10:33 - 2014-02-22 07:38 - 00506120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2014-08-07 10:33 - 2014-02-22 07:38 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-08-07 10:33 - 2014-02-22 07:18 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2014-08-07 10:33 - 2014-02-22 07:18 - 00041320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2014-08-07 10:33 - 2014-02-22 07:18 - 00029912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2014-08-07 10:33 - 2014-02-22 07:11 - 00490136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2014-08-07 10:33 - 2014-02-22 07:08 - 00079496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2014-08-07 10:33 - 2014-02-22 07:04 - 00317584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2014-08-07 10:33 - 2014-02-22 05:20 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-08-07 10:33 - 2014-02-22 05:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-08-07 10:33 - 2014-02-22 05:17 - 00902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2014-08-07 10:33 - 2014-02-22 05:17 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2014-08-07 10:33 - 2014-02-22 05:17 - 00874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2014-08-07 10:33 - 2014-02-22 05:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2014-08-07 10:33 - 2014-02-22 05:14 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys
2014-08-07 10:33 - 2014-02-22 05:14 - 00033280 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2014-08-07 10:33 - 2014-02-22 05:11 - 00272896 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-08-07 10:33 - 2014-02-22 05:09 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2014-08-07 10:33 - 2014-02-22 05:07 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2014-08-07 10:33 - 2014-02-22 05:07 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\clrhost.dll
2014-08-07 10:33 - 2014-02-22 05:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-08-07 10:33 - 2014-02-22 05:03 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2014-08-07 10:33 - 2014-02-22 05:03 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2014-08-07 10:33 - 2014-02-22 05:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2014-08-07 10:33 - 2014-02-22 05:01 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2014-08-07 10:33 - 2014-02-22 04:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2014-08-07 10:33 - 2014-02-22 04:57 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-08-07 10:33 - 2014-02-22 04:54 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2014-08-07 10:33 - 2014-02-22 04:50 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2014-08-07 10:33 - 2014-02-22 04:47 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2014-08-07 10:33 - 2014-02-22 04:47 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2014-08-07 10:33 - 2014-02-22 04:46 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-08-07 10:33 - 2014-02-22 04:45 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2014-08-07 10:33 - 2014-02-22 04:45 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhevents.dll
2014-08-07 10:33 - 2014-02-22 04:42 - 00038680 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2014-08-07 10:33 - 2014-02-22 04:41 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PkgMgr.exe
2014-08-07 10:33 - 2014-02-22 04:34 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2014-08-07 10:33 - 2014-02-22 04:32 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2014-08-07 10:33 - 2014-02-22 04:30 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-08-07 10:33 - 2014-02-22 04:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2014-08-07 10:33 - 2014-02-22 04:25 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-08-07 10:33 - 2014-02-22 04:25 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2014-08-07 10:33 - 2014-02-22 04:24 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2014-08-07 10:33 - 2014-02-22 04:24 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2014-08-07 10:33 - 2014-02-22 04:24 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2014-08-07 10:33 - 2014-02-22 04:22 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-08-07 10:33 - 2014-02-22 04:22 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-08-07 10:33 - 2014-02-22 04:17 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2014-08-07 10:33 - 2014-02-22 04:16 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2014-08-07 10:33 - 2014-02-22 04:16 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clrhost.dll
2014-08-07 10:33 - 2014-02-22 04:15 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2014-08-07 10:33 - 2014-02-22 04:14 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cleanmgr.exe
2014-08-07 10:33 - 2014-02-22 04:06 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2014-08-07 10:33 - 2014-02-22 04:05 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2014-08-07 10:33 - 2014-02-22 04:05 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2014-08-07 10:33 - 2014-02-22 04:02 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2014-08-07 10:33 - 2014-02-22 04:02 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2014-08-07 10:33 - 2014-02-22 04:01 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2014-08-07 10:33 - 2014-02-22 03:59 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2014-08-07 10:33 - 2014-02-22 03:58 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2014-08-07 10:33 - 2014-02-22 03:58 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAConn.dll
2014-08-07 10:33 - 2014-02-22 03:57 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2014-08-07 10:33 - 2014-02-22 03:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-08-07 10:33 - 2014-02-22 03:56 - 02862592 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2014-08-07 10:33 - 2014-02-22 03:56 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
2014-08-07 10:33 - 2014-02-22 03:56 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2014-08-07 10:33 - 2014-02-22 03:53 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PkgMgr.exe
2014-08-07 10:33 - 2014-02-22 03:52 - 02288640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2014-08-07 10:33 - 2014-02-22 03:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2014-08-07 10:33 - 2014-02-22 03:51 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2014-08-07 10:33 - 2014-02-22 03:47 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2014-08-07 10:33 - 2014-02-22 03:47 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2014-08-07 10:33 - 2014-02-22 03:46 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2014-08-07 10:33 - 2014-02-22 03:41 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2014-08-07 10:33 - 2014-02-22 03:40 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-08-07 10:33 - 2014-02-22 03:37 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2014-08-07 10:33 - 2014-02-22 03:34 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-08-07 10:33 - 2014-02-22 03:33 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2014-08-07 10:33 - 2014-02-22 03:30 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cleanmgr.exe
2014-08-07 10:33 - 2014-02-22 03:27 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2014-08-07 10:33 - 2014-02-22 03:25 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2014-08-07 10:33 - 2014-02-22 03:21 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2014-08-07 10:33 - 2014-02-22 03:20 - 01152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2014-08-07 10:33 - 2014-02-22 03:18 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-08-07 10:33 - 2014-02-22 03:17 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2014-08-07 10:33 - 2014-02-22 03:16 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2014-08-07 10:33 - 2014-02-22 03:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2014-08-07 10:33 - 2014-02-22 03:15 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2014-08-07 10:33 - 2014-02-22 03:14 - 02811392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2014-08-07 10:33 - 2014-02-22 03:14 - 02165760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2014-08-07 10:33 - 2014-02-22 03:14 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2014-08-07 10:33 - 2014-02-22 03:13 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2014-08-07 10:33 - 2014-02-22 03:13 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2014-08-07 10:33 - 2014-02-22 03:12 - 00797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-08-07 10:33 - 2014-02-22 03:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2014-08-07 10:33 - 2014-02-22 03:05 - 01757184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-08-07 10:33 - 2014-02-22 03:04 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2014-08-07 10:33 - 2014-02-22 03:04 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2014-08-07 10:33 - 2014-02-22 03:04 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2014-08-07 10:33 - 2014-02-22 03:02 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2014-08-07 10:33 - 2014-02-22 03:01 - 01227776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2014-08-07 10:33 - 2014-02-22 03:00 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2014-08-07 10:33 - 2014-02-22 02:59 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-08-07 10:33 - 2014-02-22 02:56 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2014-08-07 10:33 - 2014-02-22 02:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2014-08-07 10:33 - 2014-02-22 02:53 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-08-07 10:33 - 2014-02-22 02:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2014-08-07 10:33 - 2014-02-22 02:49 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-08-07 10:33 - 2014-02-22 02:48 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-08-07 10:33 - 2014-02-22 02:45 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2014-08-07 10:33 - 2014-02-22 02:45 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2014-08-07 10:33 - 2014-02-22 02:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2014-08-07 10:33 - 2014-02-22 02:44 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2014-08-07 10:33 - 2014-02-22 02:44 - 00182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\korwbrkr.dll
2014-08-07 10:33 - 2014-02-22 02:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2014-08-07 10:33 - 2014-02-22 02:43 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-08-07 10:33 - 2014-02-22 02:40 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2014-08-07 10:33 - 2014-02-22 02:36 - 01392640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-08-07 10:33 - 2014-02-22 02:36 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2014-08-07 10:33 - 2014-02-22 02:36 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2014-08-07 10:33 - 2014-02-22 02:36 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2014-08-07 10:33 - 2014-02-22 02:34 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2014-08-07 10:33 - 2014-02-22 02:32 - 01162752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2014-08-07 10:33 - 2014-02-22 02:31 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-08-07 10:33 - 2014-02-22 02:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2014-08-07 10:33 - 2014-02-22 02:29 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2014-08-07 10:33 - 2014-02-22 02:28 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2014-08-07 10:33 - 2014-02-22 02:27 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-08-07 10:33 - 2014-02-22 02:25 - 00399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2014-08-07 10:33 - 2014-02-22 02:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-08-07 10:33 - 2014-02-22 02:25 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-08-07 10:33 - 2014-02-22 02:25 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2014-08-07 10:33 - 2014-02-22 02:25 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
2014-08-07 10:33 - 2014-02-22 02:23 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2014-08-07 10:33 - 2014-02-22 02:22 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2014-08-07 10:33 - 2014-02-22 02:19 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-08-07 10:33 - 2014-02-22 02:18 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-08-07 10:33 - 2014-02-22 02:15 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2014-08-07 10:33 - 2014-02-22 02:12 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2014-08-07 10:33 - 2014-02-22 02:09 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2014-08-07 10:33 - 2014-02-22 02:08 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-08-07 10:33 - 2014-02-22 02:07 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2014-08-07 10:33 - 2014-02-22 02:07 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2014-08-07 10:33 - 2014-02-22 02:06 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2014-08-07 10:33 - 2014-02-22 02:04 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\slpts.dll
2014-08-07 10:33 - 2014-02-22 02:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2014-08-07 10:33 - 2014-02-22 01:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2014-08-07 10:33 - 2014-02-22 01:55 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slpts.dll
2014-08-07 10:33 - 2014-02-22 01:54 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2014-08-07 10:33 - 2014-02-22 01:54 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2014-08-07 10:33 - 2014-02-22 01:54 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2014-08-07 10:33 - 2014-02-22 01:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2014-08-07 10:33 - 2014-02-22 01:53 - 00876544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2014-08-07 10:33 - 2014-02-22 01:52 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-08-07 10:33 - 2014-02-22 01:51 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-08-07 10:33 - 2014-02-22 01:49 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2014-08-07 10:33 - 2014-02-22 01:48 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2014-08-07 10:33 - 2014-02-22 01:47 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2014-08-07 10:33 - 2014-02-22 01:47 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2014-08-07 10:33 - 2014-02-22 01:47 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AltTab.dll
2014-08-07 10:33 - 2014-02-22 01:46 - 03312128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2014-08-07 10:33 - 2014-02-22 01:45 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-08-07 10:33 - 2014-02-22 01:45 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2014-08-07 10:33 - 2014-02-22 01:44 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2014-08-07 10:33 - 2014-02-22 01:44 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provsvc.dll
2014-08-07 10:33 - 2014-02-22 01:44 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2014-08-07 10:33 - 2014-02-22 01:43 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2014-08-07 10:33 - 2014-02-22 01:43 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2014-08-07 10:33 - 2014-02-22 01:43 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2014-08-07 10:33 - 2014-02-22 01:43 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2014-08-07 10:33 - 2014-02-22 01:43 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-08-07 10:33 - 2014-02-22 01:42 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2014-08-07 10:33 - 2014-02-22 01:42 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2014-08-07 10:33 - 2014-02-22 01:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2014-08-07 10:33 - 2014-02-22 01:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2014-08-07 10:33 - 2014-02-22 01:39 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provsvc.dll
2014-08-07 10:33 - 2014-02-22 01:38 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2014-08-07 10:33 - 2014-02-22 01:36 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2014-08-07 10:33 - 2014-02-22 01:33 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2014-08-07 10:33 - 2014-02-22 01:31 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2014-08-07 10:33 - 2014-02-22 01:30 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2014-08-07 10:33 - 2014-02-22 01:29 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2014-08-07 10:33 - 2014-02-22 01:24 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2014-08-07 10:33 - 2014-02-22 01:21 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2014-08-07 10:33 - 2014-02-22 01:20 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2014-08-07 10:33 - 2014-02-22 01:19 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2014-08-07 10:33 - 2014-02-22 01:17 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2014-08-07 10:33 - 2014-02-22 00:54 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2014-08-07 10:33 - 2014-01-31 02:55 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2014-08-07 10:33 - 2014-01-31 02:35 - 03085824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2014-08-07 10:33 - 2014-01-31 02:19 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2014-08-07 10:33 - 2014-01-31 02:15 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2014-08-07 10:33 - 2014-01-31 02:10 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-08-07 10:33 - 2014-01-31 02:08 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2014-08-07 10:33 - 2014-01-31 02:04 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2014-08-07 10:33 - 2014-01-29 01:52 - 00551256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2014-08-07 10:33 - 2014-01-29 01:40 - 00994136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2014-08-07 10:33 - 2014-01-28 17:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2014-08-07 10:33 - 2014-01-28 17:18 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2014-08-07 10:33 - 2014-01-28 17:17 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-08-07 10:33 - 2014-01-27 12:53 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2014-08-07 10:33 - 2014-01-27 12:48 - 00167424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-08-07 10:33 - 2014-01-21 23:21 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2014-08-07 10:33 - 2014-01-21 22:50 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2014-08-07 10:33 - 2014-01-17 10:24 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2014-08-07 10:33 - 2014-01-17 10:04 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2014-08-07 10:33 - 2014-01-07 18:30 - 00745328 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-08-07 10:33 - 2014-01-07 17:33 - 00552632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-08-07 10:33 - 2013-12-10 00:35 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2014-08-07 10:33 - 2013-12-04 11:41 - 00226304 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2014-08-07 10:33 - 2013-11-27 02:10 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2014-08-07 10:33 - 2013-11-27 01:56 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2014-08-07 10:33 - 2013-11-10 16:41 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2014-08-07 10:32 - 2014-02-22 05:17 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\f3ahvoas.dll
2014-08-07 10:32 - 2014-02-22 05:17 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-08-07 10:32 - 2014-02-22 05:17 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-08-07 10:32 - 2014-02-22 05:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-08-07 10:32 - 2014-02-22 05:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-08-07 10:32 - 2014-02-22 05:08 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncui.dll
2014-08-07 10:32 - 2014-02-22 05:08 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2014-08-07 10:32 - 2014-02-22 05:08 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2014-08-07 10:32 - 2014-02-22 05:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2014-08-07 10:32 - 2014-02-22 05:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2014-08-07 10:32 - 2014-02-22 05:04 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2014-08-07 10:32 - 2014-02-22 05:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2014-08-07 10:32 - 2014-02-22 05:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-08-07 10:32 - 2014-02-22 04:59 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-08-07 10:32 - 2014-02-22 04:50 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2014-08-07 10:32 - 2014-02-22 04:48 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ocsetapi.dll
2014-08-07 10:32 - 2014-02-22 04:47 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsdyn.dll
2014-08-07 10:32 - 2014-02-22 04:39 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvcctl.dll
2014-08-07 10:32 - 2014-02-22 04:37 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2014-08-07 10:32 - 2014-02-22 04:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2014-08-07 10:32 - 2014-02-22 04:25 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\f3ahvoas.dll
2014-08-07 10:32 - 2014-02-22 04:25 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-08-07 10:32 - 2014-02-22 04:25 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-08-07 10:32 - 2014-02-22 04:24 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SSShim.dll
2014-08-07 10:32 - 2014-02-22 04:24 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-08-07 10:32 - 2014-02-22 04:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-08-07 10:32 - 2014-02-22 04:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-08-07 10:32 - 2014-02-22 04:16 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-08-07 10:32 - 2014-02-22 04:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2014-08-07 10:32 - 2014-02-22 04:13 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2014-08-07 10:32 - 2014-02-22 04:11 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2014-08-07 10:32 - 2014-02-22 04:09 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2014-08-07 10:32 - 2014-02-22 04:08 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2014-08-07 10:32 - 2014-02-22 04:08 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2014-08-07 10:32 - 2014-02-22 04:07 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\scavengeui.dll
2014-08-07 10:32 - 2014-02-22 04:07 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2014-08-07 10:32 - 2014-02-22 04:07 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-08-07 10:32 - 2014-02-22 04:05 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2014-08-07 10:32 - 2014-02-22 04:05 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentHost.dll
2014-08-07 10:32 - 2014-02-22 04:04 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfrgui.exe
2014-08-07 10:32 - 2014-02-22 03:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2014-08-07 10:32 - 2014-02-22 03:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ocsetapi.dll
2014-08-07 10:32 - 2014-02-22 03:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-08-07 10:32 - 2014-02-22 03:55 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2014-08-07 10:32 - 2014-02-22 03:55 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrTasks.exe
2014-08-07 10:32 - 2014-02-22 03:50 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2014-08-07 10:32 - 2014-02-22 03:47 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2014-08-07 10:32 - 2014-02-22 03:41 - 02566656 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2014-08-07 10:32 - 2014-02-22 03:38 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-08-07 10:32 - 2014-02-22 03:35 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2014-08-07 10:32 - 2014-02-22 03:35 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitagent.exe
2014-08-07 10:32 - 2014-02-22 03:32 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2014-08-07 10:32 - 2014-02-22 03:27 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-08-07 10:32 - 2014-02-22 03:21 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe
2014-08-07 10:32 - 2014-02-22 03:17 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2014-08-07 10:32 - 2014-02-22 03:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2014-08-07 10:32 - 2014-02-22 03:12 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2014-08-07 10:32 - 2014-02-22 03:09 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2014-08-07 10:32 - 2014-02-22 03:03 - 02544128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2014-08-07 10:32 - 2014-02-22 02:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2014-08-07 10:32 - 2014-02-22 02:54 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2014-08-07 10:32 - 2014-02-22 02:54 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2014-08-07 10:32 - 2014-02-22 02:53 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-08-07 10:32 - 2014-02-22 02:52 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2014-08-07 10:32 - 2014-02-22 02:51 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2014-08-07 10:32 - 2014-02-22 02:48 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2014-08-07 10:32 - 2014-02-22 02:48 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2014-08-07 10:32 - 2014-02-22 02:46 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2014-08-07 10:32 - 2014-02-22 02:39 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2014-08-07 10:32 - 2014-02-22 02:28 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2014-08-07 10:32 - 2014-02-22 02:27 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2014-08-07 10:32 - 2014-02-22 02:26 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-08-07 10:32 - 2014-02-22 02:26 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2014-08-07 10:32 - 2014-02-22 02:23 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2014-08-07 10:32 - 2014-02-22 02:22 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2014-08-07 10:32 - 2014-02-22 02:19 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\korwbrkr.dll
2014-08-07 10:32 - 2014-02-22 02:16 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxshared.dll
2014-08-07 10:32 - 2014-02-22 02:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2014-08-07 10:32 - 2014-02-22 02:02 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2014-08-07 10:32 - 2014-02-22 01:58 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-08-07 10:32 - 2014-02-22 01:55 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-08-07 10:32 - 2014-02-22 01:55 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2014-08-07 10:32 - 2014-02-22 01:55 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\energytask.dll
2014-08-07 10:32 - 2014-02-22 01:55 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2014-08-07 10:32 - 2014-02-22 01:54 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AepRoam.dll
2014-08-07 10:32 - 2014-02-22 01:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-08-07 10:32 - 2014-02-22 01:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2014-08-07 10:32 - 2014-02-22 01:48 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2014-08-07 10:32 - 2014-02-22 01:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2014-08-07 10:32 - 2014-02-22 01:48 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2014-08-07 10:32 - 2014-02-22 01:45 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2014-08-07 10:32 - 2014-02-22 01:40 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2014-08-07 10:32 - 2014-02-22 01:39 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2014-08-07 10:32 - 2014-02-22 01:35 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2014-08-07 10:32 - 2014-02-22 01:33 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2014-08-07 10:32 - 2014-02-22 01:24 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2014-08-07 10:32 - 2014-02-22 01:22 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-08-07 10:32 - 2014-02-22 01:20 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2014-08-07 10:32 - 2014-02-22 01:17 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2014-08-07 10:32 - 2014-02-21 21:43 - 00002440 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
2014-08-07 10:32 - 2014-02-21 21:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-08-07 10:32 - 2014-02-21 21:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-08-07 10:32 - 2014-02-07 18:08 - 00100197 _____ () C:\WINDOWS\SysWOW64\RacRules.xml
2014-08-07 10:32 - 2014-02-07 18:08 - 00100197 _____ () C:\WINDOWS\system32\RacRules.xml
2014-08-07 10:32 - 2014-01-31 23:00 - 00011109 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-08-07 10:32 - 2014-01-31 23:00 - 00011109 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-08-07 10:32 - 2014-01-31 23:00 - 00007762 _____ () C:\WINDOWS\SysWOW64\connectedsearch-suggestions.searchconnector-ms
2014-08-07 10:32 - 2014-01-31 23:00 - 00007762 _____ () C:\WINDOWS\system32\connectedsearch-suggestions.searchconnector-ms
2014-08-07 10:32 - 2014-01-31 23:00 - 00007130 _____ () C:\WINDOWS\SysWOW64\connectedsearch-zeroinput.searchconnector-ms
2014-08-07 10:32 - 2014-01-31 23:00 - 00007130 _____ () C:\WINDOWS\system32\connectedsearch-zeroinput.searchconnector-ms
2014-08-07 10:32 - 2014-01-31 23:00 - 00002255 _____ () C:\WINDOWS\SysWOW64\WimBootCompress.ini
2014-08-07 10:32 - 2014-01-31 23:00 - 00002255 _____ () C:\WINDOWS\system32\WimBootCompress.ini
2014-08-07 10:32 - 2014-01-31 05:09 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2014-08-07 10:32 - 2013-11-27 02:47 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\finger.exe
2014-08-07 10:32 - 2013-11-27 02:20 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\finger.exe
2014-08-07 10:29 - 2014-03-19 21:19 - 01291200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-08-07 10:29 - 2014-03-19 20:41 - 00376152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2014-08-07 10:29 - 2014-03-19 20:40 - 01112536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-08-07 10:29 - 2014-03-19 17:53 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-08-07 10:29 - 2014-03-19 17:48 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2014-08-07 10:29 - 2014-03-19 16:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-08-07 10:29 - 2014-03-19 16:39 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-08-07 10:29 - 2014-03-19 16:36 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2014-08-07 10:29 - 2014-03-19 00:13 - 00836096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-08-07 10:29 - 2014-03-18 22:50 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2014-08-07 10:29 - 2014-03-18 22:20 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2014-08-07 10:29 - 2014-03-13 05:35 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2014-08-07 10:29 - 2014-03-11 08:45 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-08-07 10:29 - 2014-03-11 08:02 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2014-08-07 10:29 - 2014-03-11 07:25 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-08-07 10:29 - 2014-03-11 07:05 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2014-08-07 10:29 - 2014-03-11 06:02 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-08-07 10:29 - 2014-03-08 13:47 - 00180056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-08-07 10:29 - 2014-03-08 13:40 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2014-08-07 10:29 - 2014-03-08 13:38 - 01542768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2014-08-07 10:29 - 2014-03-08 08:29 - 00356848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-08-07 10:29 - 2014-03-08 04:34 - 01095488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2014-08-07 10:29 - 2014-03-08 02:02 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxproxy.dll
2014-08-07 10:29 - 2014-03-08 01:33 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2014-08-07 10:29 - 2014-03-08 01:25 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SetNetworkLocation.dll
2014-08-07 10:29 - 2014-03-08 01:12 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxproxy.dll
2014-08-07 10:29 - 2014-03-08 00:47 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2014-08-07 10:29 - 2014-03-08 00:04 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2014-08-07 10:29 - 2014-03-08 00:03 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-08-07 10:29 - 2014-03-07 23:48 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-08-07 10:29 - 2014-03-07 23:41 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2014-08-07 10:29 - 2014-03-07 23:40 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2014-08-07 10:29 - 2014-03-07 23:37 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-08-07 10:29 - 2014-03-07 23:31 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-08-07 10:29 - 2014-03-07 23:30 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-08-07 10:29 - 2014-03-07 23:25 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2014-08-07 10:29 - 2014-03-07 23:04 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2014-08-07 10:29 - 2014-03-07 22:58 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2014-08-07 10:29 - 2014-03-07 22:41 - 01306624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-08-07 10:29 - 2014-03-07 22:11 - 00924160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-08-07 10:29 - 2014-03-06 07:34 - 02331000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2014-08-07 10:29 - 2014-03-06 07:34 - 00113648 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2014-08-07 10:29 - 2014-03-06 05:53 - 02141912 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-08-07 10:29 - 2014-03-06 05:51 - 00379224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-08-07 10:29 - 2014-03-06 05:39 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2014-08-07 10:29 - 2014-03-06 04:19 - 00094016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2014-08-07 10:29 - 2014-03-06 04:13 - 01779800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-08-07 10:29 - 2014-03-06 03:46 - 01679128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2014-08-07 10:29 - 2014-03-06 02:24 - 00111616 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2014-08-07 10:29 - 2014-03-06 02:24 - 00033280 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2014-08-07 10:29 - 2014-03-06 02:22 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2014-08-07 10:29 - 2014-03-06 02:22 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2014-08-07 10:29 - 2014-03-06 02:19 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2014-08-07 10:29 - 2014-03-06 02:19 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2014-08-07 10:29 - 2014-03-06 02:19 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2014-08-07 10:29 - 2014-03-06 02:19 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-08-07 10:29 - 2014-03-06 02:08 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2014-08-07 10:29 - 2014-03-06 01:41 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevPropMgr.dll
2014-08-07 10:29 - 2014-03-06 01:38 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2014-08-07 10:29 - 2014-03-06 01:20 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-08-07 10:29 - 2014-03-06 01:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\l2gpstore.dll
2014-08-07 10:29 - 2014-03-06 01:00 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2014-08-07 10:29 - 2014-03-06 00:46 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2014-08-07 10:29 - 2014-03-06 00:16 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2014-08-07 10:29 - 2014-03-06 00:02 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2014-08-07 10:29 - 2014-03-05 23:51 - 02900992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-08-07 10:29 - 2014-03-05 23:31 - 02479616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-08-07 10:29 - 2014-03-05 23:29 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2014-08-07 10:29 - 2014-03-05 23:27 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2014-08-07 10:29 - 2014-03-05 23:24 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2014-08-07 10:29 - 2014-03-05 23:23 - 02270208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-08-07 10:29 - 2014-03-05 23:23 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2014-08-07 10:29 - 2014-03-05 23:21 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-08-07 10:29 - 2014-03-05 23:11 - 02030080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-08-07 10:29 - 2014-03-05 23:09 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-08-07 10:29 - 2014-03-05 23:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2014-08-07 10:29 - 2014-03-05 23:04 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2014-08-07 10:29 - 2014-03-05 23:01 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-08-07 10:29 - 2014-03-05 22:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2014-08-07 10:29 - 2014-03-05 22:47 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2014-08-07 10:29 - 2014-03-05 22:42 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2014-08-07 10:29 - 2014-03-04 00:16 - 00655360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2014-08-07 10:29 - 2014-03-04 00:13 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2014-08-07 10:29 - 2014-03-04 00:08 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2014-08-07 10:29 - 2014-03-04 00:00 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2014-08-07 10:29 - 2014-03-03 23:56 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2014-08-07 10:29 - 2014-03-03 23:42 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2014-08-07 10:29 - 2014-03-03 23:39 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2014-08-07 10:29 - 2014-03-03 23:32 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2014-08-07 10:29 - 2014-03-03 23:15 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-08-07 10:29 - 2014-03-03 23:05 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2014-08-07 10:29 - 2014-03-03 23:03 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2014-08-07 10:29 - 2014-03-03 23:03 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-08-07 10:29 - 2014-03-03 22:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-08-07 10:29 - 2014-03-03 22:52 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2014-08-07 10:29 - 2013-12-23 16:28 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2014-08-07 10:29 - 2013-12-23 16:26 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2014-08-07 10:28 - 2014-08-09 20:03 - 00000000 ____D () C:\Windows.old
2014-08-07 10:28 - 2014-08-07 10:28 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-08-07 10:18 - 2014-08-07 10:18 - 00003986 _____ () C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-08-07 10:18 - 2014-08-07 10:18 - 00003440 _____ () C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2014-08-07 10:18 - 2014-08-07 10:18 - 00003196 _____ () C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2014-08-07 10:08 - 2014-08-07 14:06 - 00000000 ___HD () C:\$SysReset
2014-08-07 10:03 - 2014-08-14 10:00 - 99218768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-08-07 10:03 - 2014-08-14 10:00 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-08-07 09:59 - 2014-02-22 05:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-08-07 09:59 - 2014-02-22 04:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-08-07 09:59 - 2014-01-04 08:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-08-07 09:59 - 2014-01-04 08:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-08-07 09:59 - 2013-12-31 16:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-08-07 09:59 - 2013-12-30 16:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-08-07 09:59 - 2013-12-30 16:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-08-07 09:59 - 2013-12-27 01:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-08-07 09:59 - 2013-12-27 00:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-08-07 09:59 - 2013-12-21 00:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-08-07 09:59 - 2013-12-17 00:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-08-07 09:58 - 2014-01-07 00:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-08-07 09:58 - 2014-01-06 22:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-08-07 09:57 - 2014-01-27 12:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-08-07 09:57 - 2014-01-27 11:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-08-07 09:57 - 2014-01-27 11:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-08-07 09:57 - 2014-01-27 10:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-08-07 09:57 - 2014-01-27 10:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-08-07 09:57 - 2013-12-21 07:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-08-07 09:57 - 2013-12-21 01:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-08-07 09:57 - 2013-12-08 17:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-08-07 09:57 - 2013-12-08 16:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-08-07 09:57 - 2013-11-20 23:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-08-07 09:57 - 2013-11-20 22:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-08-07 09:52 - 2014-08-07 09:52 - 00000363 _____ () C:\Users\Alison\Desktop\Control Panel - Shortcut.lnk
2014-08-07 09:46 - 2014-08-23 20:04 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-46811878-2307496345-1293814372-1001
2014-08-07 09:46 - 2014-08-07 09:46 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Aviata
2014-08-07 09:46 - 2014-08-07 09:46 - 00000000 ____D () C:\Users\Alison\AppData\Local\softthinks
2014-08-07 09:46 - 2014-08-07 09:46 - 00000000 ____D () C:\ProgramData\softthinks
2014-08-07 09:45 - 2014-08-07 09:45 - 00000000 ____D () C:\Users\Alison\AppData\Local\Aviata
2014-08-07 09:39 - 2014-08-07 09:39 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Intel Corporation
2014-08-07 09:37 - 2014-08-10 13:30 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-08-07 09:36 - 2014-08-07 16:56 - 00000000 ____D () C:\Users\Alison\AppData\Local\VirtualStore
2014-08-07 09:36 - 2014-08-07 09:36 - 00001444 _____ () C:\Users\Alison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-07 09:36 - 2014-08-07 09:36 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Adobe
2014-08-07 09:35 - 2014-08-07 09:35 - 00000020 ___SH () C:\Users\Alison\ntuser.ini
2014-08-07 09:35 - 2014-08-07 09:35 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Intel
2014-08-07 09:32 - 2014-08-07 09:32 - 00001292 _____ () C:\Users\Administrator\AppData\Local\Application.xml
2014-08-07 09:31 - 2014-08-07 18:02 - 00000000 ____D () C:\Users\Alison
2014-08-07 09:31 - 2013-08-22 08:36 - 00000000 ___RD () C:\Users\Alison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-07 09:31 - 2013-08-22 08:36 - 00000000 ___RD () C:\Users\Alison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-07 09:31 - 2013-08-22 08:36 - 00000000 ___RD () C:\Users\Alison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-07 09:31 - 2013-08-22 08:36 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-07 09:30 - 2014-08-07 09:32 - 00024768 _____ () C:\WINDOWS\diagwrn.xml
2014-08-07 09:30 - 2014-08-07 09:32 - 00024768 _____ () C:\WINDOWS\diagerr.xml
2014-08-03 17:38 - 2013-12-05 15:16 - 00000114 ____H () C:\DBAR_Ver.txt
2014-08-03 16:50 - 2014-08-03 16:50 - 00000000 ____D () C:\Users\Alison\Desktop\Stories in Word
2014-08-03 15:10 - 2014-08-03 16:59 - 00000000 ___RD () C:\Users\Alison\Desktop\IMPORTANT
2014-08-03 15:09 - 2014-08-04 19:23 - 00000000 ____D () C:\Users\Alison\Desktop\From Sedna
2014-08-03 14:52 - 2014-08-03 15:49 - 00000000 ___HD () C:\$AVG
2014-08-03 14:40 - 2014-08-03 14:44 - 00000000 ___RD () C:\Users\Alison\SkyDrive
2014-08-03 14:32 - 2014-08-03 14:32 - 00000000 ____D () C:\Users\Alison\Documents\My Received Files
2014-08-03 14:31 - 2014-08-07 09:36 - 00000000 ____D () C:\Users\Alison\AppData\Local\Packages

 

(SEE PART TWO FOR THE REST OF FRST)


FRST.txt part 2

 

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-23 20:17 - 2014-08-23 20:03 - 00016622 _____ () C:\Users\Alison\Desktop\FRST.txt
2014-08-23 20:17 - 2014-08-23 20:02 - 00000000 ____D () C:\FRST
2014-08-23 20:06 - 2014-08-09 19:24 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-23 20:04 - 2014-08-07 09:46 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-46811878-2307496345-1293814372-1001
2014-08-23 20:02 - 2014-08-23 20:02 - 02103296 _____ (Farbar) C:\Users\Alison\Desktop\FRST64.exe
2014-08-23 20:02 - 2014-04-09 20:51 - 01614371 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-23 20:00 - 2014-04-09 20:58 - 00000000 ____D () C:\Program Files (x86)\Dell Backup and Recovery
2014-08-23 20:00 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-08-23 19:59 - 2014-08-07 18:22 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-08-23 19:59 - 2014-08-07 18:21 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-23 19:58 - 2013-08-22 07:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-21 20:19 - 2014-08-16 18:26 - 00000000 ____D () C:\Users\Alison\Desktop\notes
2014-08-21 19:48 - 2014-08-21 19:48 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-08-21 19:48 - 2014-08-21 19:48 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-08-21 19:44 - 2014-08-10 13:35 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-46811878-2307496345-1293814372-1004
2014-08-21 19:31 - 2014-08-07 18:21 - 00000914 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-21 19:28 - 2014-08-10 13:29 - 00000000 ____D () C:\Users\Admin
2014-08-21 19:26 - 2014-08-21 19:26 - 00000000 ____D () C:\WINDOWS\LastGood
2014-08-21 19:26 - 2014-04-09 20:51 - 00000000 ____D () C:\Intel
2014-08-21 19:18 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-08-21 19:14 - 2014-08-21 19:14 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2014-08-21 19:14 - 2014-08-21 19:14 - 00000000 ____D () C:\Users\Administrator\Intel
2014-08-21 19:14 - 2014-04-09 20:51 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-21 19:14 - 2014-04-09 20:38 - 00000000 ____D () C:\Users\Administrator
2014-08-21 19:13 - 2014-08-21 19:13 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-08-21 19:13 - 2014-08-21 19:13 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-08-21 19:13 - 2014-04-09 20:52 - 00000000 ____D () C:\ProgramData\Intel
2014-08-21 19:13 - 2014-04-09 20:52 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-08-21 19:12 - 2014-04-09 20:52 - 00000000 ____D () C:\Program Files\Intel
2014-08-21 19:11 - 2014-04-09 20:55 - 00000000 ____D () C:\ProgramData\Dell
2014-08-21 19:10 - 2014-08-21 19:01 - 223456832 _____ (Dell Inc.) C:\Users\Admin\Downloads\Network_Driver_DJRCW_WN_16.10.0_A01.EXE
2014-08-21 18:50 - 2014-08-21 18:50 - 00000216 _____ () C:\WirelessDiagLog.csv
2014-08-21 14:42 - 2013-08-22 06:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-08-21 12:41 - 2014-08-21 12:40 - 00000094 _____ () C:\Users\Alison\Desktop\devices.txt
2014-08-21 10:42 - 2014-08-21 10:42 - 00000351 _____ () C:\Users\Alison\Desktop\Network - Shortcut.lnk
2014-08-21 10:25 - 2014-08-21 10:25 - 00000351 _____ () C:\Users\Admin\Desktop\Network - Shortcut.lnk
2014-08-21 10:18 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-08-21 10:09 - 2014-08-10 16:10 - 00092888 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-08-21 10:08 - 2014-08-10 16:10 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-08-21 10:07 - 2014-08-21 10:07 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-08-21 10:04 - 2014-04-09 20:56 - 00000000 ____D () C:\Program Files (x86)\Dell Update
2014-08-21 10:04 - 2014-04-09 20:51 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-08-21 01:21 - 2014-08-21 01:21 - 03550184 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwew02.sys
2014-08-21 01:21 - 2014-08-21 01:21 - 03521152 _____ () C:\WINDOWS\system32\Drivers\Netwfw02.dat
2014-08-21 01:21 - 2014-08-21 01:21 - 03488744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwbw02.sys
2014-08-21 01:21 - 2014-08-21 01:21 - 02210544 _____ (Intel Corporation) C:\WINDOWS\system32\Netwuw02.dll
2014-08-17 11:50 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-08-16 17:57 - 2014-08-14 14:36 - 00007609 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
2014-08-16 17:47 - 2014-04-09 20:33 - 00000000 ___DC () C:\WINDOWS\Panther
2014-08-16 13:41 - 2014-04-09 20:44 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-08-16 13:36 - 2013-08-22 07:44 - 00360248 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-08-14 16:16 - 2014-08-10 17:13 - 00000000 ____D () C:\Users\Admin\Desktop\mbar
2014-08-14 16:08 - 2014-08-10 17:16 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-08-14 16:06 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\AppData\Local\Google
2014-08-14 16:05 - 2014-08-14 16:05 - 00002277 _____ () C:\Users\Admin\Desktop\Google Chrome.lnk
2014-08-14 15:57 - 2014-08-09 19:24 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-08-14 10:25 - 2013-08-22 12:12 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-14 10:25 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-08-14 10:25 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-08-14 10:25 - 2013-08-22 08:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-14 10:25 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-08-14 10:25 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\setup
2014-08-14 10:25 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\InputMethod
2014-08-14 10:25 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2014-08-14 10:25 - 2013-08-22 06:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-08-14 10:23 - 2013-08-22 08:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-08-14 10:02 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-08-14 10:00 - 2014-08-07 10:03 - 99218768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-08-14 10:00 - 2014-08-07 10:03 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-08-14 09:59 - 2014-08-07 11:05 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-08-11 10:12 - 2014-08-11 10:12 - 00000000 ____D () C:\Users\Admin\AppData\Local\Macromedia
2014-08-11 10:08 - 2014-08-11 10:08 - 00000000 __SHD () C:\Users\Admin\AppData\Local\EmieUserList
2014-08-11 10:08 - 2014-08-11 10:08 - 00000000 __SHD () C:\Users\Admin\AppData\Local\EmieSiteList
2014-08-11 10:08 - 2014-08-11 10:08 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Macromedia
2014-08-11 10:07 - 2014-08-11 10:07 - 00000424 _____ () C:\Users\Admin\Desktop\This PC - Shortcut.lnk
2014-08-11 10:06 - 2014-08-11 10:06 - 00000363 _____ () C:\Users\Admin\Desktop\Control Panel - Shortcut.lnk
2014-08-11 10:04 - 2014-08-11 10:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\OpenOffice
2014-08-11 10:02 - 2014-08-11 10:02 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Mozilla
2014-08-11 10:02 - 2014-08-11 10:02 - 00000000 ____D () C:\Users\Admin\AppData\Local\Mozilla
2014-08-10 16:13 - 2014-08-10 16:13 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-08-10 16:13 - 2014-08-10 16:13 - 00000836 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-10 16:13 - 2014-08-10 16:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-08-10 16:13 - 2014-08-10 16:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-10 16:10 - 2014-08-10 16:10 - 00001116 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-10 16:10 - 2014-08-10 16:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-10 16:10 - 2014-08-10 16:10 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-10 16:10 - 2014-08-10 16:10 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-10 16:00 - 2014-08-10 16:00 - 00000085 _____ () C:\WINDOWS\wininit.ini
2014-08-10 16:00 - 2014-08-07 15:38 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-10 16:00 - 2014-08-07 15:38 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-10 14:33 - 2014-08-10 14:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-08-10 14:31 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-08-10 13:48 - 2014-08-10 13:48 - 00000000 ____D () C:\Users\Admin\Desktop\LocaleMetaData
2014-08-10 13:32 - 2014-08-10 13:29 - 00000000 ____D () C:\Users\Admin\AppData\Local\Packages
2014-08-10 13:31 - 2014-08-10 13:31 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Intel Corporation
2014-08-10 13:30 - 2014-08-10 13:30 - 00001444 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-10 13:30 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\Documents\My Received Files
2014-08-10 13:30 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\AVAST Software
2014-08-10 13:30 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Adobe
2014-08-10 13:30 - 2014-08-10 13:30 - 00000000 ____D () C:\Users\Admin\AppData\Local\Power2Go
2014-08-10 13:30 - 2014-08-07 09:37 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-08-10 13:29 - 2014-08-10 13:29 - 00000020 ___SH () C:\Users\Admin\ntuser.ini
2014-08-10 13:29 - 2014-08-10 13:29 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Intel
2014-08-10 13:29 - 2014-08-10 13:29 - 00000000 ____D () C:\Users\Admin\AppData\Local\VirtualStore
2014-08-10 13:05 - 2014-08-10 13:05 - 00001546 _____ () C:\Users\Alison\Desktop\bones - Shortcut.lnk
2014-08-10 11:10 - 2014-08-10 11:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Glulxe
2014-08-10 11:10 - 2014-08-10 11:10 - 00000000 ____D () C:\Program Files (x86)\WinGlulxe
2014-08-10 11:06 - 2014-08-10 11:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Frotz
2014-08-10 11:06 - 2014-08-10 11:06 - 00000000 ____D () C:\Program Files (x86)\Windows Frotz
2014-08-10 11:02 - 2013-08-22 04:22 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-08-10 11:02 - 2013-08-22 04:22 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-08-10 11:02 - 2013-08-22 04:17 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-08-10 11:02 - 2013-08-22 04:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-08-10 11:02 - 2013-08-22 04:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-08-10 11:02 - 2013-08-21 21:05 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-08-10 11:02 - 2013-08-21 21:03 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-08-10 11:02 - 2013-08-21 20:59 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-08-10 11:02 - 2013-08-21 20:56 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-08-10 11:02 - 2013-08-21 20:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-08-10 11:02 - 2013-08-21 20:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-08-10 11:02 - 2013-08-21 20:51 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-08-10 11:02 - 2013-08-21 20:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-08-10 11:02 - 2013-08-21 20:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-08-10 10:37 - 2014-08-10 10:37 - 00001044 _____ () C:\Users\Alison\Desktop\crawl - Shortcut.lnk
2014-08-10 10:06 - 2014-08-07 18:22 - 00002205 _____ () C:\Users\Alison\Desktop\Google Chrome.lnk
2014-08-09 20:03 - 2014-08-07 10:28 - 00000000 ____D () C:\Windows.old
2014-08-09 19:26 - 2014-08-07 18:21 - 00003886 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-08-09 19:26 - 2014-08-07 18:21 - 00003650 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-08-09 19:24 - 2014-08-09 19:24 - 00000000 ____D () C:\Users\Alison\AppData\Local\Macromedia
2014-08-07 20:18 - 2014-08-07 20:18 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\OpenOffice
2014-08-07 18:24 - 2014-04-09 21:00 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Dell
2014-08-07 18:24 - 2014-04-09 21:00 - 00000000 ____D () C:\Program Files (x86)\Dell Product Registration
2014-08-07 18:22 - 2014-08-07 18:22 - 00001984 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-07 18:22 - 2014-08-07 18:22 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\AVAST Software
2014-08-07 18:22 - 2014-08-07 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-07 18:22 - 2014-08-07 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-07 18:22 - 2014-08-07 18:21 - 00000000 ____D () C:\Users\Alison\AppData\Local\Google
2014-08-07 18:22 - 2014-08-07 18:20 - 00427360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-08-07 18:21 - 2014-08-07 18:21 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-07 18:20 - 2014-08-07 18:20 - 01041168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00307344 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-08-07 18:20 - 2014-08-07 18:20 - 00224896 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00093568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00092008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00079184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00065776 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-08-07 18:20 - 2014-08-07 18:20 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-08-07 18:20 - 2014-08-07 18:20 - 00029208 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-08-07 18:19 - 2014-08-07 18:19 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-07 18:19 - 2014-08-07 18:17 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-07 18:14 - 2014-04-09 20:56 - 00000000 ____D () C:\ProgramData\McAfee
2014-08-07 18:14 - 2014-04-09 20:56 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2014-08-07 18:02 - 2014-08-07 09:31 - 00000000 ____D () C:\Users\Alison
2014-08-07 17:56 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\registration
2014-08-07 17:12 - 2014-08-07 15:16 - 00000307 _____ () C:\WINDOWS\lgfwup.ini
2014-08-07 17:12 - 2014-08-07 15:15 - 00000000 ____D () C:\Program Files (x86)\lg_fwupdate
2014-08-07 17:09 - 2013-08-22 08:36 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-08-07 16:56 - 2014-08-07 09:36 - 00000000 ____D () C:\Users\Alison\AppData\Local\VirtualStore
2014-08-07 16:37 - 2014-08-07 16:37 - 00001128 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2014-08-07 16:37 - 2014-08-07 16:37 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2014-08-07 16:37 - 2014-08-07 16:36 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-08-07 16:35 - 2014-08-07 16:35 - 00000000 ____D () C:\Users\Alison\Desktop\OpenOffice 4.1.0 (en-US) Installation Files
2014-08-07 16:24 - 2014-08-07 16:24 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-08-07 16:24 - 2014-08-07 15:09 - 00000000 ____D () C:\ProgramData\CyberLink
2014-08-07 15:52 - 2014-08-10 15:59 - 00450709 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140810-155934.backup
2014-08-07 15:46 - 2014-08-07 15:52 - 00450709 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140807-155243.backup
2014-08-07 15:38 - 2014-08-07 15:38 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking
2014-08-07 15:21 - 2014-08-07 15:21 - 00000000 ____D () C:\Users\Alison\AppData\Local\Power2Go
2014-08-07 15:17 - 2014-08-07 15:17 - 00001398 _____ () C:\Users\Public\Desktop\CyberLink Media Suite 10.lnk
2014-08-07 15:17 - 2014-08-07 15:10 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2014-08-07 15:17 - 2014-08-07 15:10 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-08-07 15:17 - 2014-08-07 15:08 - 00000000 ____D () C:\ProgramData\Temp
2014-08-07 15:16 - 2014-08-07 15:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG Tool Kit
2014-08-07 15:16 - 2014-08-07 15:16 - 00000000 ____D () C:\ProgramData\install_clap
2014-08-07 15:16 - 2014-04-09 20:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-07 15:15 - 2014-08-07 15:15 - 00003148 _____ () C:\WINDOWS\System32\Tasks\MirageAgent
2014-08-07 15:12 - 2014-08-07 15:12 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\CyberLink
2014-08-07 15:09 - 2014-08-07 15:09 - 00000000 ____D () C:\ProgramData\CLSK
2014-08-07 14:38 - 2014-08-07 14:38 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-07 14:38 - 2014-08-07 14:38 - 00001161 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Mozilla
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\Users\Alison\AppData\Local\Mozilla
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\ProgramData\Mozilla
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-07 14:38 - 2014-08-07 14:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-07 14:06 - 2014-08-07 10:08 - 00000000 ___HD () C:\$SysReset
2014-08-07 11:50 - 2014-08-07 11:50 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-08-07 11:37 - 2014-08-07 11:37 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-08-07 11:33 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-08-07 11:33 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-08-07 11:33 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-08-07 11:18 - 2014-08-07 11:18 - 00000424 _____ () C:\Users\Alison\Desktop\My Computer.lnk
2014-08-07 11:09 - 2014-08-10 13:29 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-07 11:09 - 2014-08-10 13:29 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-07 11:09 - 2013-08-22 08:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-07 11:09 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-07 11:09 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-07 11:05 - 2014-08-07 11:05 - 00000000 __SHD () C:\Users\Alison\AppData\Local\EmieUserList
2014-08-07 11:05 - 2014-08-07 11:05 - 00000000 __SHD () C:\Users\Alison\AppData\Local\EmieSiteList
2014-08-07 10:55 - 2014-08-07 10:55 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Macromedia
2014-08-07 10:46 - 2013-08-22 08:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-07 10:46 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-08-07 10:46 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2014-08-07 10:46 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2014-08-07 10:46 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2014-08-07 10:46 - 2013-08-22 06:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2014-08-07 10:46 - 2013-08-22 06:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-08-07 10:46 - 2013-08-22 06:36 - 00000000 ____D () C:\WINDOWS\servicing
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\zh-HK
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\uk-UA
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\tr-TR
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\th-TH
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sl-SI
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sk-SK
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\ro-RO
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\lv-LV
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\lt-LT
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\hr-HR
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\he-IL
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\et-EE
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\bg-BG
2014-08-07 10:45 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\ar-SA
2014-08-07 10:45 - 2013-08-22 06:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-08-07 10:45 - 2013-08-22 06:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-08-07 10:28 - 2014-08-07 10:28 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-08-07 10:28 - 2013-08-22 08:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-08-07 10:18 - 2014-08-07 10:18 - 00003986 _____ () C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-08-07 10:18 - 2014-08-07 10:18 - 00003440 _____ () C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2014-08-07 10:18 - 2014-08-07 10:18 - 00003196 _____ () C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2014-08-07 10:17 - 2014-04-09 20:55 - 00000000 ____D () C:\ProgramData\PCDr
2014-08-07 10:10 - 2013-08-22 06:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-08-07 10:01 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-08-07 10:01 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-08-07 09:52 - 2014-08-07 09:52 - 00000363 _____ () C:\Users\Alison\Desktop\Control Panel - Shortcut.lnk
2014-08-07 09:46 - 2014-08-07 09:46 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Aviata
2014-08-07 09:46 - 2014-08-07 09:46 - 00000000 ____D () C:\Users\Alison\AppData\Local\softthinks
2014-08-07 09:46 - 2014-08-07 09:46 - 00000000 ____D () C:\ProgramData\softthinks
2014-08-07 09:45 - 2014-08-07 09:45 - 00000000 ____D () C:\Users\Alison\AppData\Local\Aviata
2014-08-07 09:41 - 2014-04-09 20:51 - 00000000 ____D () C:\WINDOWS\softwaredistribution.bak
2014-08-07 09:39 - 2014-08-07 09:39 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Intel Corporation
2014-08-07 09:36 - 2014-08-07 09:36 - 00001444 _____ () C:\Users\Alison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-07 09:36 - 2014-08-07 09:36 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Adobe
2014-08-07 09:36 - 2014-08-03 14:31 - 00000000 ____D () C:\Users\Alison\AppData\Local\Packages
2014-08-07 09:35 - 2014-08-07 09:35 - 00000020 ___SH () C:\Users\Alison\ntuser.ini
2014-08-07 09:35 - 2014-08-07 09:35 - 00000000 ____D () C:\Users\Alison\AppData\Roaming\Intel
2014-08-07 09:32 - 2014-08-07 09:32 - 00001292 _____ () C:\Users\Administrator\AppData\Local\Application.xml
2014-08-07 09:32 - 2014-08-07 09:30 - 00024768 _____ () C:\WINDOWS\diagwrn.xml
2014-08-07 09:32 - 2014-08-07 09:30 - 00024768 _____ () C:\WINDOWS\diagerr.xml
2014-08-07 09:32 - 2013-08-22 08:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-08-07 09:30 - 2013-08-22 06:36 - 00000000 __RHD () C:\Users\Default
2014-08-06 19:12 - 2014-08-14 09:56 - 01336624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-08-06 15:39 - 2014-08-14 09:56 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-06 15:38 - 2014-08-14 09:56 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-08-05 17:48 - 2014-08-14 10:21 - 02374816 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-08-05 16:46 - 2014-08-14 10:21 - 02088648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-08-04 19:23 - 2014-08-03 15:09 - 00000000 ____D () C:\Users\Alison\Desktop\From Sedna
2014-08-03 16:59 - 2014-08-03 15:10 - 00000000 ___RD () C:\Users\Alison\Desktop\IMPORTANT
2014-08-03 16:50 - 2014-08-03 16:50 - 00000000 ____D () C:\Users\Alison\Desktop\Stories in Word
2014-08-03 15:49 - 2014-08-03 14:52 - 00000000 ___HD () C:\$AVG
2014-08-03 14:44 - 2014-08-03 14:40 - 00000000 ___RD () C:\Users\Alison\SkyDrive
2014-08-03 14:32 - 2014-08-03 14:32 - 00000000 ____D () C:\Users\Alison\Documents\My Received Files
2014-08-01 22:44 - 2014-08-14 09:56 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-08-01 20:56 - 2014-08-14 09:56 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-08-01 20:11 - 2014-08-14 09:56 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-08-01 17:17 - 2014-08-07 11:12 - 00704480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-08-01 17:17 - 2014-08-07 11:12 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-25 07:52 - 2014-08-14 09:57 - 23645696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-25 06:51 - 2014-08-14 09:57 - 17524224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-25 06:28 - 2014-08-14 09:57 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-07-25 06:25 - 2014-08-14 09:57 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-25 06:25 - 2014-08-14 09:57 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-07-25 05:59 - 2014-08-14 09:57 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-07-25 05:40 - 2014-08-14 09:57 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-25 05:34 - 2014-08-14 09:57 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-07-25 05:30 - 2014-08-14 09:57 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-07-25 05:28 - 2014-08-14 09:57 - 05824512 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-25 05:28 - 2014-08-14 09:57 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-07-25 05:21 - 2014-08-14 09:57 - 02184704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-25 05:17 - 2014-08-14 09:57 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-25 05:10 - 2014-08-14 09:57 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-25 05:08 - 2014-08-14 09:57 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-07-25 05:06 - 2014-08-14 09:57 - 04204032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-25 04:52 - 2014-08-14 09:57 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-25 04:47 - 2014-08-14 09:57 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-25 04:43 - 2014-08-14 09:57 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-25 04:43 - 2014-08-14 09:57 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 04:42 - 2014-08-14 09:57 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-25 04:39 - 2014-08-14 09:57 - 02087936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-25 04:34 - 2014-08-14 09:57 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-25 04:29 - 2014-08-14 09:57 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-25 04:23 - 2014-08-14 09:57 - 13547008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-25 04:13 - 2014-08-14 09:57 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-25 04:09 - 2014-08-14 09:57 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-25 04:07 - 2014-08-14 09:57 - 02001920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-25 04:03 - 2014-08-14 09:57 - 11772928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-25 03:52 - 2014-08-14 09:57 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-25 03:26 - 2014-08-14 09:57 - 01431040 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-25 03:17 - 2014-08-14 09:57 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-25 03:09 - 2014-08-14 09:57 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-25 03:05 - 2014-08-14 09:57 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-25 03:00 - 2014-08-14 09:57 - 01169920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-24 08:28 - 2014-08-14 10:22 - 00468288 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-07-24 08:28 - 2014-08-14 10:22 - 00419648 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-07-24 08:28 - 2014-08-14 10:22 - 00412992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-07-24 08:28 - 2014-08-14 10:22 - 00280384 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2014-07-24 08:28 - 2014-08-14 10:22 - 00143680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-07-24 08:25 - 2014-08-14 10:22 - 00054752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-24 08:23 - 2014-08-14 10:22 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-07-24 08:23 - 2014-08-14 10:22 - 00125472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-07-24 08:20 - 2014-08-14 10:22 - 21266336 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-07-24 08:20 - 2014-08-14 10:22 - 00645592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-07-24 08:20 - 2014-08-14 10:22 - 00263400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-07-24 08:16 - 2014-08-14 10:22 - 02574208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-07-24 08:16 - 2014-08-14 10:22 - 00211216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2014-07-24 08:07 - 2014-08-14 10:22 - 07424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-07-24 08:07 - 2014-08-14 10:22 - 02009920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-07-24 08:05 - 2014-08-14 10:22 - 01660048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-07-24 08:05 - 2014-08-14 10:22 - 01519560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-07-24 08:05 - 2014-08-14 10:22 - 01488008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-07-24 08:05 - 2014-08-14 10:22 - 01356840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-07-24 08:03 - 2014-08-14 10:22 - 02141920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-07-24 08:03 - 2014-08-14 10:22 - 00882136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-07-24 08:03 - 2014-08-14 10:22 - 00818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-07-24 08:03 - 2014-08-14 10:22 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2014-07-24 08:03 - 2014-08-14 10:22 - 00233888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-07-24 08:03 - 2014-08-14 10:22 - 00205512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2014-07-24 07:57 - 2014-08-14 10:22 - 02515264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-07-24 07:57 - 2014-08-14 10:22 - 00475968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-07-24 06:50 - 2014-08-14 10:22 - 00098048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2014-07-24 06:48 - 2014-08-14 10:22 - 02410976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-07-24 06:48 - 2014-08-14 10:22 - 00180208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2014-07-24 06:46 - 2014-08-14 10:22 - 18760328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-07-24 06:46 - 2014-08-14 10:22 - 00477200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2014-07-24 06:36 - 2014-08-14 10:22 - 02145472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-07-24 06:36 - 2014-08-14 10:22 - 00707536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2014-07-24 06:36 - 2014-08-14 10:22 - 00674512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-07-24 06:36 - 2014-08-14 10:22 - 00355800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-07-24 06:36 - 2014-08-14 10:22 - 00180720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2014-07-24 06:29 - 2014-04-09 20:35 - 02406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2014-07-24 04:51 - 2014-08-14 10:22 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL
2014-07-24 04:51 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL
2014-07-24 04:51 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTT102.DLL
2014-07-24 04:51 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL
2014-07-24 04:51 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL
2014-07-24 04:51 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL
2014-07-24 04:51 - 2014-08-14 10:22 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL
2014-07-24 04:47 - 2014-08-14 10:22 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-07-24 04:46 - 2014-08-14 10:22 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2014-07-24 04:45 - 2014-08-14 10:22 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2014-07-24 04:44 - 2014-08-14 10:22 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-07-24 04:43 - 2014-08-14 10:22 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2014-07-24 04:42 - 2014-08-14 10:22 - 01200640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-07-24 04:42 - 2014-08-14 10:22 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-07-24 04:42 - 2014-08-14 10:22 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2014-07-24 04:41 - 2014-08-14 10:22 - 00118272 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2014-07-24 04:41 - 2014-08-14 10:22 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2014-07-24 04:33 - 2014-08-14 10:22 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-07-24 04:33 - 2014-08-14 10:22 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-07-24 04:22 - 2014-08-14 10:22 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2014-07-24 04:06 - 2014-08-14 10:22 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll
2014-07-24 04:05 - 2014-08-14 10:22 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2014-07-24 04:05 - 2014-08-14 10:22 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-07-24 03:52 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL
2014-07-24 03:52 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTT102.DLL
2014-07-24 03:52 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL
2014-07-24 03:51 - 2014-08-14 10:22 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL
2014-07-24 03:51 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL
2014-07-24 03:51 - 2014-08-14 10:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL
2014-07-24 03:51 - 2014-08-14 10:22 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL
2014-07-24 03:49 - 2014-08-14 10:22 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2014-07-24 03:33 - 2014-08-14 10:22 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-07-24 03:32 - 2014-08-14 10:22 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2014-07-24 03:20 - 2014-08-14 10:22 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2014-07-24 03:18 - 2014-08-14 10:22 - 01089024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2014-07-24 03:12 - 2014-08-14 10:22 - 00878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2014-07-24 03:10 - 2014-08-14 10:22 - 01844224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-07-24 03:10 - 2014-08-14 10:22 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-24 03:10 - 2014-08-14 10:22 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-07-24 03:10 - 2014-08-14 10:22 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll
2014-07-24 03:09 - 2014-08-14 10:22 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-07-24 03:06 - 2014-08-14 10:22 - 00438272 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-07-24 03:05 - 2014-08-14 10:22 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2014-07-24 02:53 - 2014-08-14 10:22 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2014-07-24 02:52 - 2014-08-14 10:22 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2014-07-24 02:44 - 2014-08-14 10:23 - 16874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-07-24 02:42 - 2014-08-14 10:22 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2014-07-24 02:40 - 2014-08-14 10:22 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2014-07-24 02:39 - 2014-08-14 10:22 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-07-24 02:33 - 2014-08-14 10:22 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2014-07-24 02:32 - 2014-08-14 10:22 - 01048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2014-07-24 02:27 - 2014-08-14 10:22 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-07-24 02:27 - 2014-08-14 10:22 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-24 02:25 - 2014-08-14 10:22 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-07-24 02:24 - 2014-08-14 10:22 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-07-24 02:23 - 2014-08-14 10:22 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-07-24 02:21 - 2014-08-14 10:22 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2014-07-24 02:18 - 2014-08-14 10:22 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2014-07-24 02:16 - 2014-08-14 10:22 - 12730880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-07-24 02:14 - 2014-08-14 10:22 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-07-24 02:13 - 2014-08-14 10:22 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2014-07-24 02:12 - 2014-08-14 10:22 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2014-07-24 02:11 - 2014-08-14 10:22 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-07-24 02:11 - 2014-08-14 10:22 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2014-07-24 02:10 - 2014-08-14 10:22 - 00540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2014-07-24 02:09 - 2014-08-14 10:22 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2014-07-24 02:04 - 2014-08-14 10:22 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2014-07-24 02:04 - 2014-08-14 10:22 - 00183808 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2014-07-24 02:03 - 2014-08-14 10:22 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2014-07-24 02:02 - 2014-08-14 10:22 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2014-07-24 02:00 - 2014-08-14 10:22 - 13292544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-24 01:58 - 2014-08-14 10:22 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2014-07-24 01:53 - 2014-08-14 10:22 - 01261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-07-24 01:53 - 2014-08-14 10:22 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-07-24 01:52 - 2014-08-14 10:22 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-07-24 01:49 - 2014-08-14 10:22 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-07-24 01:49 - 2014-08-14 10:22 - 01287680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-07-24 01:49 - 2014-08-14 10:22 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-07-24 01:49 - 2014-08-14 10:22 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2014-07-24 01:48 - 2014-08-14 10:22 - 00659968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-07-24 01:47 - 2014-08-14 10:22 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-07-24 01:43 - 2014-08-14 10:22 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2014-07-24 01:40 - 2014-08-14 10:22 - 11794944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-24 01:39 - 2014-08-14 10:22 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2014-07-24 01:38 - 2014-08-14 10:22 - 00371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-07-24 01:36 - 2014-08-14 10:22 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2014-07-24 01:32 - 2014-08-14 10:22 - 01532416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-07-24 01:31 - 2014-08-14 10:22 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-07-24 01:30 - 2014-08-14 10:22 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-07-24 01:30 - 2014-08-14 10:22 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2014-07-24 01:29 - 2014-08-14 10:22 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-07-24 01:29 - 2014-08-14 10:22 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-07-24 01:28 - 2014-08-14 10:22 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2014-07-24 01:27 - 2014-08-14 10:22 - 00907776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-07-24 01:24 - 2014-08-14 10:22 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-24 01:23 - 2014-08-14 10:22 - 01404416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2014-07-24 01:22 - 2014-08-14 10:22 - 00487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-07-24 01:21 - 2014-08-14 10:22 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-07-24 01:21 - 2014-08-14 10:22 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-07-24 01:20 - 2014-08-14 10:22 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2014-07-24 01:19 - 2014-08-14 10:22 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-07-24 01:18 - 2014-08-14 10:22 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-07-24 01:18 - 2014-08-14 10:22 - 00795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2014-07-24 01:18 - 2014-08-14 10:22 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-24 01:16 - 2014-08-14 10:22 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-07-24 01:16 - 2014-08-14 10:22 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2014-07-24 01:15 - 2014-08-14 10:22 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-24 01:15 - 2014-08-14 10:22 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2014-07-24 01:15 - 2014-08-14 10:22 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2014-07-24 01:13 - 2014-08-14 10:22 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2014-07-24 01:12 - 2014-08-14 10:22 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-24 01:10 - 2014-08-14 10:22 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-07-24 01:10 - 2014-08-14 10:22 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-07-24 01:10 - 2014-08-14 10:22 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-07-24 01:10 - 2014-08-14 10:22 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2014-07-24 01:08 - 2014-08-14 10:22 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-07-24 01:08 - 2014-08-14 10:22 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2014-07-24 01:07 - 2014-08-14 10:22 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-07-24 01:06 - 2014-08-14 10:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-24 01:05 - 2014-08-14 10:22 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2014-07-24 01:04 - 2014-08-14 10:22 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-24 01:02 - 2014-08-14 10:22 - 03465216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-24 01:01 - 2014-08-14 10:22 - 05833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-07-24 01:01 - 2014-08-14 10:22 - 01992192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2014-07-24 01:01 - 2014-08-14 10:22 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-07-24 01:00 - 2014-08-14 10:22 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-07-24 00:58 - 2014-08-14 10:22 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-07-24 00:58 - 2014-08-14 10:22 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2014-07-24 00:54 - 2014-08-14 10:22 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2014-07-24 00:50 - 2014-08-14 10:22 - 01182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2014-07-24 00:50 - 2014-08-14 10:22 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-24 00:49 - 2014-08-14 10:22 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2014-07-24 00:47 - 2014-08-14 10:22 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-07-24 00:46 - 2014-08-14 10:22 - 08652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-07-24 00:44 - 2014-08-14 10:22 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2014-07-24 00:43 - 2014-08-14 10:22 - 02696704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-07-24 00:43 - 2014-08-14 10:22 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-24 00:43 - 2014-08-14 10:22 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2014-07-24 00:41 - 2014-08-14 10:22 - 00459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-07-24 00:39 - 2014-08-14 10:22 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-07-24 00:38 - 2014-08-14 10:22 - 06649344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-07-24 00:38 - 2014-08-14 10:22 - 05777408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-07-24 00:33 - 2014-08-14 10:22 - 03360768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-07-24 00:30 - 2014-08-14 10:22 - 02318336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-07-24 00:28 - 2014-08-14 10:22 - 01600000 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-18 10:50

==================== End Of Log ============================



#7 windows8newb

windows8newb
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 23 August 2014 - 10:28 PM

---

 

Addition.txt

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-08-2014
Ran by Admin at 2014-08-23 20:17:53
Running from C:\Users\Alison\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Amazon 1Button App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.4 - Amazon)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink Media Suite 10 (x32 Version: 10.0.0.2812 - CyberLink Corp.) Hidden
CyberLink Power2Go 7 (x32 Version: 7.0.0.3328 - CyberLink Corp.) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.0 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{03A9F528-A754-460F-B2C1-AC125A147114}) (Version: 2.8.5000.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{764E68FE-C2F9-410E-90A8-CE7F8B9A36E2}) (Version: 2.03.0204 - Aviata Inc.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.0.5.1 - Synaptics Incorporated)
Dell Update (HKLM-x32\...\{D9D0E75C-F791-402A-98E2-A2F43E7B0CE3}) (Version: 1.1.1054.0 - Dell Inc.)
DSC/AA Factory Installer (Version: 3.5.6426.22 - PC-Doctor, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.22.1760 - Intel Corporation)
Intel® PRO/Wireless Driver (Version: 16.10.0000.1228 - Intel Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 3.0.1342.2) (HKLM\...\{302600C1-6BDF-4FD1-1311-148929CC1385}) (Version: 3.1.1311.0402 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.2.1000 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{994e2754-d9a8-4942-8357-5409780c0fce}) (Version: 16.10.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (Version: 16.10.0.0307 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
LG ODD Auto Firmware Update (HKLM-x32\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - )
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Mozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
My Dell Client Framework (HKLM-x32\...\InstallShield_{05F1B866-2372-4E82-9AA8-C64FB11CEF8B}) (Version: 1.0.0.3 - Dell)
My Dell Client Framework (x32 Version: 1.0.0.3 - Dell) Hidden
OpenOffice 4.1.0 (HKLM-x32\...\{C87EF11D-36E9-479D-9898-7541EA1E8A6A}) (Version: 4.10.9764 - Apache Software Foundation)
PocketCloud (HKLM-x32\...\{D9752C7D-A595-4687-A0D5-362E9C311C55}) (Version: 2.7.14 - Wyse Technology)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.16.007 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7152 - Realtek Semiconductor Corp.)
Windows Frotz (HKLM-x32\...\WindowsFrotz) (Version:  - )
Windows Glulxe (HKLM-x32\...\WinGlulxe) (Version:  - )
YouCam (x32 Version: 3.1.5324 - CyberLink Corp.) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-46811878-2307496345-1293814372-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points  =========================

07-08-2014 17:00:28 Windows Update
07-08-2014 18:23:20 After installing major updates, before going online 8/6
07-08-2014 23:39:11 Before Installing Kaspersky with Spybot
08-08-2014 00:02:46 Restore Operation
08-08-2014 00:28:37 Before uninstalling mcafee
08-08-2014 00:54:04 Restore Operation
10-08-2014 18:02:29 Windows Modules Installer
10-08-2014 23:05:11 Before installing Malwarebytes
14-08-2014 16:58:11 Windows Update
21-08-2014 17:07:02 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 06:25 - 2014-08-10 15:59 - 00000938 ____R C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {119BE38D-9868-40D6-B0B7-EEE754C7BD3D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {24DEA1E8-6435-482D-ADFB-6925FF47AD30} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-08-14] (Microsoft Corporation)
Task: {26FD47C5-8F80-465F-AFBF-01494780C01C} - System32\Tasks\PocketCloudVirtualChannel => C:\Program Files (x86)\Wyse\PocketCloud\WPCRDPVirtualChannelServer.exe [2013-08-22] ()
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {34AEBDA9-733B-4769-BF9D-40A094AD4909} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-21] (Microsoft Corporation)
Task: {37CE0DE6-711E-4D9B-8395-3F95BE006482} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4431BC76-8F91-4BC4-B10E-96F0A3AC67FF} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-10] (PC-Doctor, Inc.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {56C2694E-7DF1-4B0C-93BE-4E5D0DDF3CA8} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {5865DA93-7555-4168-AA15-4E268DB2C880} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {755C40EB-5AD9-491E-8239-A44FE8FBFEDF} - System32\Tasks\PocketCloud => C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudDesktopApp.exe [2013-08-22] ()
Task: {76CC7A9C-7A1A-4624-865A-03EB9337AEF7} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-07] (AVAST Software)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7B8A4D13-7B75-43EC-8A17-AC502A2F3C9E} - System32\Tasks\PocketCloudUpdater => C:\Program
Task: {7F90017A-95BA-437E-B339-563D127FD515} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-06-14] (CyberLink)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {87A83B7F-E08C-4832-B597-DE1D84319FC9} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {940C0733-D40C-4201-BD71-50D5786BF8B4} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {AAFF3C95-DB18-465C-AFFC-9A0BD5EB7D84} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-10] (PC-Doctor, Inc.)
Task: {AF867450-2B3B-4ABD-84FA-046CE7F49D6D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-07] (Google Inc.)
Task: {B1266A2F-838E-427B-ABC6-7113FA9DE156} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {B33487B3-F509-45E8-84F3-A0B577C74D22} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-07] (Google Inc.)
Task: {C9FE19C8-349B-435E-B3DB-F2B2249F5959} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-29] (Synaptics Incorporated)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E4B52F4F-05A3-4B66-AF5D-6D6445DB0EFA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-14] (Adobe Systems Incorporated)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-22 11:40 - 2013-08-22 11:40 - 00016176 _____ () C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe
2013-08-22 11:40 - 2013-08-22 11:40 - 00040240 _____ () C:\Program Files (x86)\Wyse\PocketCloud\AetherServiceLib.dll
2013-08-22 11:40 - 2013-08-22 11:40 - 00046384 _____ () C:\Program Files (x86)\Wyse\PocketCloud\AetherHelperLib.dll
2014-01-10 14:53 - 2014-01-10 14:53 - 00016384 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Interfaces.dll
2014-01-10 14:53 - 2014-01-10 14:53 - 00081408 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Objects.dll
2014-01-10 14:53 - 2014-01-10 14:53 - 00815616 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Resources.dll
2014-01-10 15:24 - 2014-01-10 15:24 - 00052736 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.Client.Pulse.Agent.Plugins.SelfUpdate.dll
2014-01-10 15:24 - 2014-01-10 15:24 - 00019968 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.Client.Pulse.Agent.Common.dll
2014-04-09 20:59 - 2013-08-19 09:21 - 00020256 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIcon.dll
2014-04-09 20:59 - 2013-08-19 09:21 - 00019232 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayNotBackuped.dll
2014-04-09 20:59 - 2013-08-19 09:21 - 00035104 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRShellExtension.dll
2014-08-07 18:20 - 2014-08-07 18:20 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-08-21 09:59 - 2014-08-21 09:59 - 02800128 _____ () C:\Program Files\AVAST Software\Avast\defs\14082100\algo.dll
2014-08-23 19:59 - 2014-08-23 19:59 - 02801152 _____ () C:\Program Files\AVAST Software\Avast\defs\14082303\algo.dll
2011-03-09 14:21 - 2011-03-09 14:21 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2011-03-09 14:21 - 2011-03-09 14:21 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-08-07 18:20 - 2014-08-07 18:20 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-07 14:38 - 2014-07-16 22:42 - 03800688 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-04-09 20:52 - 2013-12-18 10:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Alison\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "LGODDFU"
HKLM\...\StartupApproved\Run32: => "YouCam Tray"
HKLM\...\StartupApproved\Run32: => "YouCam Mirage"

==================== Faulty Device Manager Devices =============

Name: Intel® Wireless Bluetooth® 4.0 + HS Adapter
Description: Intel® Wireless Bluetooth® 4.0 + HS Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Intel Corporation
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/21/2014 07:38:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mmc.exe, version: 6.3.9600.16384, time stamp: 0x5215ef8f
Faulting module name: ntdll.dll, version: 6.3.9600.17114, time stamp: 0x53649e73
Exception code: 0xc0000374
Fault offset: 0x00000000000f87a8
Faulting process id: 0xbb4
Faulting application start time: 0xmmc.exe0
Faulting application path: mmc.exe1
Faulting module path: mmc.exe2
Report Id: mmc.exe3
Faulting package full name: mmc.exe4
Faulting package-relative application ID: mmc.exe5

Error: (08/21/2014 07:32:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ZeroConfigService.exe, version: 16.10.0.0, time stamp: 0x52cda7eb
Faulting module name: MurocApi.dll, version: 16.10.0.0, time stamp: 0x52cda6c5
Exception code: 0xc0000005
Fault offset: 0x000000000002bcd8
Faulting process id: 0xb2c
Faulting application start time: 0xZeroConfigService.exe0
Faulting application path: ZeroConfigService.exe1
Faulting module path: ZeroConfigService.exe2
Report Id: ZeroConfigService.exe3
Faulting package full name: ZeroConfigService.exe4
Faulting package-relative application ID: ZeroConfigService.exe5

Error: (08/21/2014 07:29:13 PM) (Source: PerfNet) (EventID: 2005) (User: )
Description:

Error: (08/21/2014 07:13:17 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "select * from CIntelWLANEvent" could not be reactivated in namespace "//./ROOT/default" because of error 0x80041010. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/21/2014 06:54:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (08/21/2014 11:33:58 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (08/21/2014 10:04:07 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: NT AUTHORITY)
Description: Application or service 'User Profile Service' could not be shut down.

Error: (08/21/2014 10:04:07 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: NT AUTHORITY)
Description: Application or service 'Application Information' could not be shut down.

Error: (08/21/2014 10:03:59 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: NT AUTHORITY)
Description: Application or service 'User Profile Service' could not be shut down.

Error: (08/21/2014 10:03:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: igfxCUIService.exe, version: 6.15.10.3621, time stamp: 0x5376e21a
Faulting module name: igfxCUIService.exe, version: 6.15.10.3621, time stamp: 0x5376e21a
Exception code: 0xc0000005
Fault offset: 0x000000000001116f
Faulting process id: 0x2d8
Faulting application start time: 0xigfxCUIService.exe0
Faulting application path: igfxCUIService.exe1
Faulting module path: igfxCUIService.exe2
Report Id: igfxCUIService.exe3
Faulting package full name: igfxCUIService.exe4
Faulting package-relative application ID: igfxCUIService.exe5


System errors:
=============
Error: (08/23/2014 07:58:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Anti-Malware Core service failed to start due to the following error:
%%2

Error: (08/21/2014 07:41:41 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: Miniport Intel® Dual Band Wireless-AC 3160, {D5F6736B-486D-4B15-885A-4E7265911A4D}, had event 74

Error: (08/21/2014 07:41:41 PM) (Source: NETwNb64) (EventID: 5006) (User: )
Description: Intel® Dual Band Wireless-AC 3160 : The version number is incorrect for this driver.

Error: (08/21/2014 07:41:41 PM) (Source: NETwNb64) (EventID: 5001) (User: )
Description: Intel® Dual Band Wireless-AC 3160 : Could not allocate the resources necessary for operation.

Error: (08/21/2014 07:39:15 PM) (Source: DCOM) (EventID: 10016) (User: Cthulhu)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}CthulhuAdminS-1-5-21-46811878-2307496345-1293814372-1004LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/21/2014 07:39:15 PM) (Source: DCOM) (EventID: 10016) (User: Cthulhu)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}CthulhuAdminS-1-5-21-46811878-2307496345-1293814372-1004LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/21/2014 07:38:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Anti-Malware Core service failed to start due to the following error:
%%2

Error: (08/21/2014 07:36:36 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: Miniport Intel® Dual Band Wireless-AC 3160, {D5F6736B-486D-4B15-885A-4E7265911A4D}, had event 74

Error: (08/21/2014 07:36:36 PM) (Source: NETwNb64) (EventID: 5006) (User: )
Description: Intel® Dual Band Wireless-AC 3160 : The version number is incorrect for this driver.

Error: (08/21/2014 07:36:35 PM) (Source: NETwNb64) (EventID: 5001) (User: )
Description: Intel® Dual Band Wireless-AC 3160 : Could not allocate the resources necessary for operation.


Microsoft Office Sessions:
=========================
Error: (08/21/2014 07:38:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mmc.exe6.3.9600.163845215ef8fntdll.dll6.3.9600.1711453649e73c000037400000000000f87a8bb401cfbdb1a562feadC:\WINDOWS\system32\mmc.exeC:\WINDOWS\SYSTEM32\ntdll.dll5470c7f2-29a5-11e4-8275-ecf4bb9652f5

Error: (08/21/2014 07:32:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: ZeroConfigService.exe16.10.0.052cda7ebMurocApi.dll16.10.0.052cda6c5c0000005000000000002bcd8b2c01cfbdb155cb79efC:\Program Files\Intel\WiFi\bin\ZeroConfigService.exeC:\Program Files\Intel\WiFi\bin\MurocApi.dll9c7544c4-29a4-11e4-8275-ecf4bb9652f5

Error: (08/21/2014 07:29:13 PM) (Source: PerfNet) (EventID: 2005) (User: )
Description:

Error: (08/21/2014 07:13:17 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: //./ROOT/defaultselect * from CIntelWLANEvent0x80041010

Error: (08/21/2014 06:54:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (08/21/2014 11:33:58 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: -2147024883

Error: (08/21/2014 10:04:07 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: NT AUTHORITY)
Description: 0C:\Windows\System32\svchost.exeUser Profile Service03017516143003A005C00500072006F006700720061006D002000460069006C00650073002000280078003800360029005C00440065006C006C0020005500700064006100740065005C00440065006C006C00550070005300650072007600690063006500410064006D0069006E002E006500780065000000

Error: (08/21/2014 10:04:07 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: NT AUTHORITY)
Description: 0C:\Windows\System32\svchost.exeApplication Information030262161516143003A005C00500072006F006700720061006D002000460069006C00650073002000280078003800360029005C00440065006C006C0020005500700064006100740065005C00440065006C006C00550070005300650072007600690063006500410064006D0069006E002E006500780065000000

Error: (08/21/2014 10:03:59 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: NT AUTHORITY)
Description: 0C:\Windows\System32\svchost.exeUser Profile Service03017516143003A005C00500072006F006700720061006D002000460069006C00650073002000280078003800360029005C00440065006C006C0020005500700064006100740065005C00440065006C006C00550070005300650072007600690063006500410064006D0069006E002E006500780065000000

Error: (08/21/2014 10:03:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: igfxCUIService.exe6.15.10.36215376e21aigfxCUIService.exe6.15.10.36215376e21ac0000005000000000001116f2d801cfbd6122fc7a8eC:\WINDOWS\system32\igfxCUIService.exeC:\WINDOWS\system32\igfxCUIService.exe247f1c4b-2955-11e4-826f-ecf4bb9652f5


==================== Memory info ===========================

Processor: Intel® Core™ i7-4510U CPU @ 2.00GHz
Percentage of memory in use: 21%
Total physical RAM: 8072.96 MB
Available physical RAM: 6335.83 MB
Total Pagefile: 9352.96 MB
Available Pagefile: 7519.18 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:920.26 GB) (Free:735.23 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 269669C3)

Partition: GPT Partition Type.

==================== End Of Log ============================



#8 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:55 PM

Posted 23 August 2014 - 10:34 PM

Hi Alison and welcome. Thanks for posting the information and filling me in about your schedule. I am actually closing up for the evening but wanted to wait until you posted to let you know I am here and aware you have provided the logs. The reports are too long because you completed a recovery of your system within the last 30 days and the report lists information for files/folders that were created or modified within the past 30 days.

I will be reviewing what you posted first thing in the morning so you can expect a reply bright and early tomorrow. Thanks for your understanding and patience.

See you soon!
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#9 windows8newb

windows8newb
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 23 August 2014 - 10:37 PM

Not a problem, it's my bed time too.  Good night!



#10 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:55 PM

Posted 24 August 2014 - 08:47 AM

Good morning Alison and thank you for your patience while I reviewed your logs.

Nothing of any real concern although I would like to address a couple of programs installed on your computer, Spybot and McAfee. In addition, your concern is well founded regarding CCleaner, not because any damage has been done but because the use of any registry cleaner can have disasterous results. BleepingComputer strongly cautions against the use of the registry cleaner component of CCleaner (or any other registry cleaners). If you are not well versed on registry issues you could potentially make your computer unuseable. It is the significance of something going wrong, not necessarily the probability of that happening.

I do need clarification about one thing regarding the backup on your USB device. There is a difference between creating a factory condition Recovery Disk which takes your computer back to an out of the box state and creating an image of your hard drive after some computer activity. Can you tell me which one you have?

Please consider and do this.

===================================================

Spybot S&D No Longer Recommended

--------------------

MVPS.org is no longer recommending Spybot S&D due to poor testing results. (scroll down on the web site and read under Freeware Antispyware Products)

I recommend uninstalling Spybot Search & Destroy at least while we are addressing your issues. The presence of this program can make cleaning your computer more difficult.

If you choose to uninstall please go to Start, Control Panel, Add/Remove Programs (or Programs and Features) and uninstall the program.

===================================================

Uninstall McAfee Remnants

--------------------

If you are not going to use McAfee (often times installed by default by the computer manufacturer) please do this.
  • Please download McAfee Consumer Product Removal Tool and save it to your desktop
  • Double click the icon to launch the program
  • Select Run
  • Click Next
  • Select Agree then Next
  • Complete Security Validation and click Next (letters are case sensitive)
  • When prompted click Restart
===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it to your desktop (<<<Important) as fixlist.txt
HKU\S-1-5-21-46811878-2307496345-1293814372-1001\...\MountPoints2: {6b27b8cf-1e63-11e4-8257-a0886932a829} - "D:\autorun.exe"
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {5E61A694-3A1C-44EB-8140-CF25ECD8BF0A} URL =
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • USB backup information
  • Did the program(s) uninstall correctly?
  • Fixlog
  • Any computer performance issues?

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#11 windows8newb

windows8newb
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 24 August 2014 - 12:31 PM

Hi Gary,  :hello:

USB backup:

It was my intention to create recovery media that would restore my computer to an out-of-the-box state, so I hope that I succeeded at that.  I used the "Create a recovery drive" under Control Panel->Recovery.  I believe it simply asked me to "Copy the factory recovery partition from the PC to the recovery drive".  However, if you can ascertain that the recovery partition is good, I'd like to redo that using DVDs as I know that is more secure.  I'd also like to make a Ubuntu rescue CD at some point.  I have never needed something like that, but my motto is, "Be Prepared".

Programs:

I do not see Spybot S&D in my programs list.  I believe I did uninstall it.  If I did not remove all traces of it, please direct me on how to do that.

McAfee remover seems to have run just fine.  I forgot to right-click and "Run as administrator", is that okay?

 

Fixlog is at the end.

Performance:

As far as performance issues, there are a few things that I thought I would ask about to set my mind at ease. 

 

I still see unknown phones and a router occasionally appearing in my network discovery.  I can't connect to them or do anything with them.  It's always the same three, and only briefly appear.  My guess is that my computer is seeing another router broadcasting its id and just letting me know it's out there.  And my guess about the phones is that they are looking for any signal automatically and trying to latch onto my network (but failing because I have it secured with a long WPA2 password).

 

Would it cause any performance issues with my network if I set my router to "stealth" and to not broadcast its SSID?  I see these options in its software.

Avast! is a little more sensitive than I'm used to.  While I was on this very site, browsing a thread about the Ramnit worm, Avast! popped up and said it had blocked a trojan.  A subsequent scan revealed nothing.  But, that was alarming. 

Sometimes firefox tabs briefly flash to "connecting".  Sometimes the mouse cursor freezes and can't be moved for a couple of minutes.  And once or twice the screen flashes black as if refreshing.  I believe these may be driver issues, but I wanted to check.  Twice, the computer failed to wake from sleep (just showed a black screen).  Once you give me a clean bill of health here, I'm sure I'll be visiting the hardware section of the forum if these issues persist.

 

I might have finally fixed my intermittent limited connectivity issue by completely uninstalling and reinstalling the wireless adapter, but I need to spend more time using the computer to be sure.

 

***Overall, these issues are minor and the computer is running well, but just wanted to list any oddities while I'm here.  Sorry for the wall of text.

Fixlog:

If you see anything odd in my fixlog, I did do a system restore point this morning.  I was messing about with the drivers for my touchpad and got myself in trouble (totally disabled it).  But I had created a system restore point immediately prior just in case, so only restored back about ten minutes. 

 

All the tools you asked me to run were run after the restore and were run in the order you listed them.  When I ran FRST, the fixlist disappeared from my desktop and Firefox closed itself; I assume this is normal.

---

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-08-2014
Ran by Alison at 2014-08-24 10:16:03 Run:1
Running from C:\Users\Alison\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-46811878-2307496345-1293814372-1001\...\MountPoints2: {6b27b8cf-1e63-11e4-8257-a0886932a829} - "D:\autorun.exe"
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {5E61A694-3A1C-44EB-8140-CF25ECD8BF0A} URL =
*****************

"HKU\S-1-5-21-46811878-2307496345-1293814372-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b27b8cf-1e63-11e4-8257-a0886932a829}" => Key deleted successfully.
"HKCR\CLSID\{6b27b8cf-1e63-11e4-8257-a0886932a829}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Error deleting key. The key could be protected.
"HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Error deleting key. The key could be protected.
"HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5E61A694-3A1C-44EB-8140-CF25ECD8BF0A}" => Key not found.
"HKCR\CLSID\{5E61A694-3A1C-44EB-8140-CF25ECD8BF0A}" => Key not found.

==== End of Fixlog ====



#12 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:55 PM

Posted 24 August 2014 - 02:15 PM

Hi Alison,

First, if you could, hold off on doing anything intrusive to your computer other than what is instructed in our Topic. I want to make sure I know exactly where we are at otherwise my instructions may not be healthy or appropriate.

Creating a Recovery Disk does not compromise the Recovery Partition on the hard drive so it should still be there and useful. The Recovery (USB) Disk you created is automatically made to take the computer back to the out of the box state even if you have used the computer in the meantime. We can try to create another one but don't be surprised if you are not allowed to do that since often times you are only allowed to do that once. We may be able to work with the USB to create an additional CD Recovery disk if you can not create a new one. Go ahead and try it.

Regarding Ubuntu, do you simply want to create a general Linux based OS disk or are you looking for a true Rescue CD (like AVG Rescue CD)?

Removing McAfee the way you did is just fine.

Your computer is designed to look for any connecting points within range. That may include phones which can also perform router type functions. Nothing to worry about.

Turning off your router ID broadcast will not affect the performance. Those device already set up to automatically connect to the router will still work that way. However, for new devices you would either have to turn on broadcasting so the router could be seen or you could manually enter the router name and password.

Avast, as well as other antivirus programs, can warn you about actual and potential malware. I use Avast and I have the same thing happen to me. It doesn't mean it is certain the site is bad, it just meets enough of the criteria to make it suspect. Nothing to worry about with that.

Monitor your internet and we can poke around with the web browsing issue once we are done to see if we can do anything about that.

That FRST behavior is normal.

Please do this.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it to your desktop (<<<Important) as fixlist.txt
2014-08-07 15:38 - 2014-08-10 16:00 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-07 15:38 - 2014-08-10 16:00 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

Farbar's MiniRegTool

--------------------
  • Please download MiniRegTool.zip (for 32 bit systems) or MiniRegTool64.zip (for 64 bit systems) and save it to your desktop
  • Unzip the folder and double click the icon
  • When you run the tool this is what you will see

MiniReg.gif

  • Copy and paste the following into the edit box:

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}

  • Check the Delete Keys/Values including Locked/Null embedded radio button.
  • Press the Go button and post the result.
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Fixlog
  • MiniRegTool report

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#13 windows8newb

windows8newb
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 24 August 2014 - 04:52 PM

Hi Gary,

Thank you for your thorough reply to my roughly one million questions!  I have some unexpected free time today so I can continue working on this.

I am sorry about doing a system restore.  I guess I got impatient with the mouse issue and wasn't thinking clearly - even though it's fairly minor.  I will only do what we discuss now until everything is cleared up and the thread is closed.  As far as uninstalling and reinstalling the wireless adapter, I did that on Thursday night (8/21), but I hadn't had time to use the computer much since then.  But that part, at least, happened before I created any logs for you.

"Creating a Recovery Disk does not compromise the Recovery Partition on the hard drive so it should still be there and useful."  Thank you, this is what I was wondering.  I thought maybe making the media somehow affected the partition.  As if it was "used up".  I will try to make the discs later and not now, unless you want me to do it during the course of this thread - I don't have any blank CDs/DVDs at the moment so I need to buy some (which is why I used a USB instead of discs in the first place!).

Regarding Ubuntu, I'm not sure yet.  I've been thinking about possibly putting a Linux dual boot on my computer (not now, but at some point in the future), but I would have to do some more reading about it first.  I've been talking about it with a friend who is far more knowledgable than I, and she's a Linux fan and has been introducing me to it on her computer.  I will hold off on that until I consider it some more.  At this point it's just an idea I'm tossing around.

Thank you so much for your time.  I really appreciate your hard work.  :)

---

FRST logs (I ran FRST with administrator privileges)

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-08-2014
Ran by Admin at 2014-08-24 14:38:12 Run:2
Running from C:\Users\Alison\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
2014-08-07 15:38 - 2014-08-10 16:00 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-07 15:38 - 2014-08-10 16:00 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
*****************

C:\ProgramData\Spybot - Search & Destroy => Moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2 => Moved successfully.

==== End of Fixlog ====

---

MiniRegTool64 (I ran this with administrator privileges)

MiniRegTool64 by Farbar Version:21-07-2014
Ran by Admin (administrator) on 2014-08-24 14:44:35

====================================
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} " not found.
 



#14 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:55 PM

Posted 24 August 2014 - 05:09 PM

That is looking pretty good. Any current issues?
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#15 windows8newb

windows8newb
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 24 August 2014 - 05:20 PM

Hi Gary,

 

I haven't been on the computer long enough today, so am not sure if the mouse issue or the screen flashing black for a split second will recur again.  I suspect it will, but I think it must be a driver something.

 

Literally as I was typing this reply, the computer dropped my wireless, with the troubleshooter offering no explanation other than "There is a problem with the wireless adapter or the access point".  Waited a few minutes and it came back.  My Android phone had no trouble, so it must be my computer.  However, since we've resolved it's not a malware issue, I'll figure something else out.  Would assigning my computer a static instead of a dynamic IP fix this?  I seem to recall doing that once with a computer, vaguely, like eight years ago.

 

I have a file "Registry Backup" that I think was made when I first downloaded and ran CCleaner on August 10.  What should I do with this?  Put it in a safe place on the computer, or delete it?

 

Again, thanks so much!






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users