Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Buried in pop-up ads. McAfee Can't remove it.... please help


  • This topic is locked This topic is locked
20 replies to this topic

#1 wgb55

wgb55

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 17 September 2014 - 07:28 PM

I have had this computer for one day and I got an virus. This is an Ispiron 3847 running window 8.   The McAfee software says it is the pup-fnk virus.  I click to remove but I get the same message every 15 sec or so.  I am getting a bunch of ad pop-ups now.  It's crazy.

 

So how do I get things cleaned up?

 

Thanks, 

 

Greg



BC AdBot (Login to Remove)

 


#2 pystryker

pystryker

  • Malware Response Team
  • 730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:59 PM

Posted 17 September 2014 - 08:38 PM

Hello and welcome to Bleeping Computer! My nickname is Pystryker :) , and I will be helping you with your issue today.


Before we get started, I have a few things I need to go over with you
  • If you are receiving help for this issue at another forum, please let me know so I can close this thread.
  • Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process.
  • Please do not attach your logs or put them inside code/quote tags. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise.
  • At the top of your post, please click on the "Follow this topic" button and make sure that the "Received notification" box is checked and set to "Instantly" This will send an email to you as soon as I reply to your topic, allowing us to solve your problem faster.
  • If any of your security programs give you a warning about any tool I ask you to use, please do not worry. All the links and tools I provide to you will be safe.
  • Please read through my instructions carefully and completely before executing them. I will lay the instructions out in a step by step order to make them easy to follow.
  • Please make sure that all the programs I ask you to download are downloaded to and run from your Desktop.
  • Please make sure you (if you are able) to print out these instructions so that you will be able to refer to them while working on your machine. Part of the solution(s) to your problem may involve us working in Safe Mode and you will need them to go by.
  • Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.
  • This is a complicated process. It requires several steps, patience, and careful following of my instructions in the order they are given to diagnose your problems to get your machine back in working order.
  • Please stay with me until the end of all steps and procedures and I declare your system clean. Just because there is a lack of symptoms does not indicate a clean machine. I promise to do the same for you.
  • Please make sure you reply within 3 days to my responses, if there is no reply within 3 days, the topic will be closed and you will need to request the topic be reopened.
  • Before we get started, please remember we will do our best to get your machine repaired. However, there are some cases where the only solution is a reformat and reinstall of the operating system. This is a worst case scenario though.
  • It is impossible for me to know what interactions may happen between your computer's software and the tools we will use to clean your machine. Therefore, I highly recommend you backup any critical personal files on your machine before we start.
  • If possible, please have your original Windows installation disks handy, just in case.
  • If you have any questions at all, please don't hesitate to ask. There's no such thing as a stupid question when dealing with malware.
  • If you are unsure of an instruction I give you, or if something unexepected occurs, Do NOT proceed! Stop and ask for clarification of the instruction or tell me what occurred.
  • Please remember, the fixes are for your machine and your machine ONLY! Do not use these fixes on any other machine, each fix is tailor made for your system only. Using a fix on another machine can and will cause serious damage.
  • Once we have cleaned your machine, we'll have some cleanup and prevention steps to go through. We will also provide you with some information about how to reduce your chances of infection and get some protections in place to help defend you against this in the future
  • Please be patient while I am analyzing your logs. I know you are probably scared and very frustrated with this problem, but I am a volunteer and sometimes life does get in the way. :)
Now, let's get started, shall we? :thumbsup:


Hello, let's get a look at your system and see what's going on. :)


Step 1: Scan with Farbar's Recovery Scan Tool (FRST)


Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Place a check in the box marked Addition.txt

    farbarmainpanel_zps77bf9e25.jpg
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.
Step 2: Scan with aswMBR
  • Please download aswMBR.exe to your desktop.
  • Double click the file to run it.
  • It will ask if you want to download the latest Avast! virus definitions, please answer yes.
aswmbrscan_zpsdc05b0f9.jpg
  • Click the Scan button to begin the scan.
If your computer supports Virtualization Technology, select Yes to use it for rootkit detection.


aswmbrsavelog_zps1aeef48e.jpg
  • Once the scan has finished, click on Save Log, save it to your desktop as asw.txt, and please post it in your next reply.
  • Click Exit
Things I need to see in your next post:


FRST Log

Addition.txt Log

aswMBR Log

I close my topics if there is no response after 3 days. Please PM a moderator or myself to reopen your topic.

Please PM me only if I'm helping you with your computer issues and I have not responded in 2 days. Please remember, I'm a volunteer and sometimes life does get in the way. :)

Please stay with me until I declare your machine clean. Absence of symptoms does not ensure your machine is clean.

If you'd like to make a donation via Paypal, please click here.





#3 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 17 September 2014 - 09:34 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by Greg (administrator) on BERGMAN_FAMILY on 17-09-2014 22:24:16
Running from C:\Users\Greg\Downloads
Platform: Windows 8.1 (Update 1) (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
() C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe
() C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe
(DELL Inc.) C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Dell Inc.) C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(McAfee, Inc.) C:\Program Files\mcafee\virusscan\McVsMap.exe
() C:\Program Files (x86)\ClearThink\bin\ClearThink.PurBrowse64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
() C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Crawler.com) C:\Program Files (x86)\Spyware Clear\SpywareClearUpdate.exe
() C:\Program Files (x86)\WSE_Lasaoren\BRS\brs.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(McAfee, Inc.) C:\Program Files\mcafee\virusscan\McVsShld.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
() C:\Program Files (x86)\ClearThink\updateClearThink.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [SpywareClearShield] => C:\Program Files (x86)\Spyware Clear\SpywareClearShield.exe
HKLM\...\Run: [SpywareClearUpdater] => C:\Program Files (x86)\Spyware Clear\SpywareClearUpdate.exe [5441928 2014-08-20] (Crawler.com)
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132736 2013-09-05] ( (Qualcomm®Atheros®))
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-4020320634-2591791008-1635142945-1001\...\Run: [BRS] => C:\Program Files (x86)\WSE_Lasaoren\BRS\brs.exe [1074688 2014-09-17] ()
Startup: C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {A25AC313-DD19-4238-ACA2-401D6BEE4321} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - DefaultScope {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKCU - {A25AC313-DD19-4238-ACA2-401D6BEE4321} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: ClearThink -> {7e6d4e3e-fc66-4036-9799-ce5c625c4c56} -> C:\Program Files (x86)\ClearThink\ClearThinkbho.dll (ClearThink)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-09-09]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://Lasaoren.com/?f=1&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
CHR StartupUrls: Default -> "hxxp://Lasaoren.com/?f=7&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir="
CHR DefaultSearchKeyword: Default -> lasaoren.com
CHR DefaultSearchProvider: Default -> Lasaoren
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR Profile: C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-16]
CHR Extension: (Google Docs) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-16]
CHR Extension: (Google Drive) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-16]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-16]
CHR Extension: (YouTube) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-16]
CHR Extension: (Google Search) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-16]
CHR Extension: (Google Sheets) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-16]
CHR Extension: (Google Wallet) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-16]
CHR Extension: (Gmail) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-16]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [312448 2013-09-05] (Windows ® Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2169016 2014-01-02] (Microsoft Corporation)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [293440 2014-04-01] (Aviata, Inc.)
S2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [202744 2014-04-10] (Dell Inc.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-09] (Intel Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-21] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-18] (Microsoft Corporation)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-24] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [603424 2014-06-12] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-07-24] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-06-20] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-06-20] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 My Dell Client Framework; C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe [168960 2014-01-10] (Dell Inc.) [File not signed]
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-09-09] (Microsoft Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-18] (Realtek Semiconductor)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915920 2014-04-04] (SoftThinks SAS)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-21] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-21] (Microsoft Corporation)
R2 Update ClearThink; C:\Program Files (x86)\ClearThink\updateClearThink.exe [325360 2014-09-17] ()
R2 Util ClearThink; C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe [324848 2014-09-17] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-30] (Microsoft Corporation)
R2 WysePocketCloud; C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe [16176 2013-08-22] ()
R2 WyseRemoteAccess; C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe [1785344 2013-08-19] (DELL Inc.) [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-16] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-05] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72128 2014-06-20] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [100312 2013-12-09] (Intel Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-06-20] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313544 2014-06-20] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70600 2014-06-20] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [523792 2014-06-20] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786296 2014-06-20] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [444720 2014-07-24] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-07-24] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348552 2014-06-20] (McAfee, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-30] (Microsoft Corporation)
R1 {c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64; C:\Windows\System32\drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys [44688 2014-09-17] (StdLib)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-17 22:24 - 2014-09-17 22:24 - 00021772 _____ () C:\Users\Greg\Downloads\FRST.txt
2014-09-17 22:23 - 2014-09-17 22:24 - 00000000 ____D () C:\FRST
2014-09-17 22:23 - 2014-09-17 22:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-09-17 22:22 - 2014-09-17 22:22 - 02105856 _____ (Farbar) C:\Users\Greg\Downloads\FRST64.exe
2014-09-17 22:21 - 2014-09-17 22:21 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-09-17 10:30 - 2014-09-17 10:30 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-09-17 10:30 - 2006-09-12 20:00 - 00234496 _____ (CANON INC.) C:\Windows\system32\CNMLM78.DLL
2014-09-17 10:22 - 2014-09-17 10:22 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\PCDr
2014-09-17 09:31 - 2014-09-17 09:31 - 00257400 _____ (Fusion Install ) C:\Users\Greg\Downloads\flashplayerpro_Setup.exe
2014-09-17 09:31 - 2014-09-17 09:31 - 00257400 _____ (Fusion Install ) C:\Users\Greg\Downloads\flashplayerpro_Setup (3).exe
2014-09-17 09:31 - 2014-09-17 09:31 - 00257400 _____ (Fusion Install ) C:\Users\Greg\Downloads\flashplayerpro_Setup (2).exe
2014-09-17 09:31 - 2014-09-17 09:31 - 00257400 _____ (Fusion Install ) C:\Users\Greg\Downloads\flashplayerpro_Setup (1).exe
2014-09-17 09:13 - 2014-09-17 09:13 - 00000000 ____D () C:\Users\Greg\Documents\OneNote Notebooks
2014-09-17 09:13 - 2014-05-02 12:33 - 00000118 ____H () C:\DBAR_Ver.txt
2014-09-17 09:12 - 2014-09-17 09:13 - 00000000 ____D () C:\ProgramData\softthinks
2014-09-17 09:12 - 2014-09-17 09:12 - 00000000 ____D () C:\Users\Greg\AppData\Local\softthinks
2014-09-17 09:09 - 2014-09-17 09:09 - 00244056 _____ () C:\Users\Greg\Downloads\Firefox Setup Stub 32.0.1 (1).exe
2014-09-17 09:09 - 2014-09-17 09:09 - 00003994 _____ () C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-09-17 09:09 - 2014-09-17 09:09 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-09-17 09:09 - 2014-09-17 09:09 - 00003206 _____ () C:\Windows\System32\Tasks\SystemToolsDailyTest
2014-09-17 09:08 - 2014-09-17 09:09 - 00244056 _____ () C:\Users\Greg\Downloads\Firefox Setup Stub 32.0.1.exe
2014-09-17 09:06 - 2014-09-17 09:06 - 00000000 ____D () C:\ProgramData\Spyware Clear
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\Users\Greg\Documents\Optimizer Pro
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Lasaoren
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\ProgramData\374311380
2014-09-17 08:59 - 2014-09-17 04:31 - 00044688 _____ (StdLib) C:\Windows\system32\Drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys
2014-09-17 08:55 - 2014-09-17 09:56 - 00000318 _____ () C:\Windows\Tasks\UpdaterEX.job
2014-09-17 08:55 - 2014-09-17 09:55 - 00000318 _____ () C:\Windows\Tasks\WSE_Lasaoren.job
2014-09-17 08:55 - 2014-09-17 09:06 - 00000000 ____D () C:\Program Files (x86)\Spyware Clear
2014-09-17 08:55 - 2014-09-17 09:04 - 00000000 ____D () C:\Program Files (x86)\ClearThink
2014-09-17 08:55 - 2014-09-17 08:56 - 00002656 _____ () C:\Windows\System32\Tasks\UpdaterEX
2014-09-17 08:55 - 2014-09-17 08:55 - 00002656 _____ () C:\Windows\System32\Tasks\WSE_Lasaoren
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\WSE_Lasaoren
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\UpdaterEX
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Program Files (x86)\WSE_Lasaoren
2014-09-17 08:54 - 2014-09-17 09:02 - 00000000 ____D () C:\Users\Greg\AppData\Local\StormAlerts
2014-09-17 08:54 - 2014-09-17 08:54 - 00857696 _____ ( ) C:\Users\Greg\Downloads\Firefox_Setup.exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00857696 _____ ( ) C:\Users\Greg\Downloads\Firefox_Setup (1).exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00284224 _____ (Mozilla) C:\Users\Greg\Downloads\Firefox_Setup_Stub_30.0.exe
2014-09-16 20:46 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys
2014-09-16 15:51 - 2014-09-16 15:51 - 00000000 __RHD () C:\MSOCache
2014-09-16 15:49 - 2014-09-17 22:21 - 00004994 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Bergman_Family-Greg Bergman_Family
2014-09-16 15:48 - 2014-09-17 09:09 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4020320634-2591791008-1635142945-1001
2014-09-16 15:48 - 2014-09-16 15:48 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-09-16 15:45 - 2014-09-16 15:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-09-16 15:44 - 2014-09-16 15:44 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-09-16 15:35 - 2014-09-16 15:35 - 00000000 ____D () C:\Windows\System32\Tasks\Aviata
2014-09-16 15:29 - 2014-09-17 22:21 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-16 15:29 - 2014-09-17 22:21 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-16 15:29 - 2014-09-17 10:34 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-16 15:29 - 2014-09-16 15:29 - 00003896 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-09-16 15:29 - 2014-09-16 15:29 - 00003660 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-09-16 15:29 - 2014-09-16 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-16 15:29 - 2014-09-16 15:29 - 00000000 ____D () C:\Program Files (x86)\Google
2014-09-16 15:28 - 2014-09-17 22:23 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5D5CFE40-AE91-483F-8E0A-C339D2A2899B}
2014-09-16 15:28 - 2014-09-16 15:29 - 00000000 ____D () C:\Users\Greg\AppData\Local\Google
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 __SHD () C:\Users\Greg\AppData\Local\EmieUserList
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 __SHD () C:\Users\Greg\AppData\Local\EmieSiteList
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Macromedia
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Deployment
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Apps\2.0
2014-09-16 15:27 - 2014-09-16 15:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-09-16 15:24 - 2014-09-17 10:26 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4020320634-2591791008-1635142945-1001
2014-09-16 15:21 - 2014-09-17 22:21 - 00000000 __RDO () C:\Users\Greg\OneDrive
2014-09-16 15:20 - 2014-09-17 10:16 - 00000000 ____D () C:\Users\Greg\Documents\Bluetooth Folder
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Intel Corporation
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\Power2Go8
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\BMExplorer
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\Aviata
2014-09-16 15:19 - 2014-09-16 22:01 - 00000000 ____D () C:\Users\Greg\AppData\Local\Packages
2014-09-16 15:19 - 2014-09-16 15:21 - 00000000 ____D () C:\Users\Greg
2014-09-16 15:19 - 2014-09-16 15:20 - 00000000 ____D () C:\ProgramData\Atheros
2014-09-16 15:19 - 2014-09-16 15:19 - 00001448 _____ () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-16 15:19 - 2014-09-16 15:19 - 00000020 ___SH () C:\Users\Greg\ntuser.ini
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Atheros
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Adobe
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Local\VirtualStore
2014-09-16 15:19 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Greg\Desktop\eBay.url
2014-09-16 15:19 - 2014-09-09 14:28 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-16 15:19 - 2014-03-18 06:06 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-09-16 15:19 - 2014-03-18 05:54 - 00000369 _____ () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-09-16 15:19 - 2014-03-18 05:54 - 00000369 _____ () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-09-16 15:19 - 2014-01-08 16:39 - 37660368 _____ (Dropbox, Inc.) C:\Users\Greg\Desktop\Install Dropbox.exe
2014-09-16 15:19 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-16 15:19 - 2013-08-22 11:36 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-09 16:16 - 2014-09-09 16:16 - 00000000 __SHD () C:\System Recovery
2014-09-09 15:20 - 2014-09-09 15:20 - 00031360 ___RH () C:\dell.sdr
2014-09-09 15:19 - 2014-09-09 15:19 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-09 15:19 - 2014-09-09 15:19 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-09 15:19 - 2014-09-09 15:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-09 15:19 - 2014-09-09 15:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-09 14:56 - 2014-01-29 22:04 - 02476976 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiVAD64.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00906224 _____ (Intel Corporation) C:\Windows\system32\igfxstarter.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00845296 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00770544 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00416240 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUMS64.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00397808 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00391152 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-09-09 14:56 - 2014-01-22 17:57 - 00450520 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-09-09 14:56 - 2014-01-22 17:57 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3412.dll
2014-09-09 14:56 - 2014-01-22 17:54 - 00002944 _____ () C:\Windows\system32\iglhxs64.vp
2014-09-09 14:56 - 2014-01-22 17:51 - 21088256 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 19380224 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 09081856 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 04221440 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-09-09 14:56 - 2014-01-22 17:51 - 00733184 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00624640 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00548864 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00527872 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526848 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526848 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00524800 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00524800 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00524288 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00524288 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00523776 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00522240 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00521728 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00517632 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00516096 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00514048 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00513536 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00373760 _____ () C:\Windows\system32\igdmd64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00371200 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00346624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00279040 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-09-09 14:56 - 2014-01-22 17:51 - 00243712 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00222208 _____ () C:\Windows\system32\igdde64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00160256 _____ () C:\Windows\system32\igdail64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00066560 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00029696 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00012288 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 25971712 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 18629632 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 03224064 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00493056 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00329216 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00299520 _____ () C:\Windows\SysWOW64\igdmd32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00182272 _____ () C:\Windows\SysWOW64\igdde32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00142848 _____ () C:\Windows\SysWOW64\igdail32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00025600 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-09-09 14:56 - 2014-01-22 17:44 - 20954112 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2014-09-09 14:56 - 2014-01-22 17:44 - 02896384 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2014-09-09 14:56 - 2014-01-22 17:44 - 00290816 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2014-09-09 14:56 - 2014-01-22 17:36 - 00241664 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-09-09 14:56 - 2014-01-22 17:36 - 00193536 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 04474368 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 04011168 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAAC64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 02813952 _____ () C:\Windows\system32\iglhxa64.cpa
2014-09-09 14:56 - 2014-01-22 17:35 - 02065920 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 01815040 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 01450656 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 01127424 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 01123328 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00785568 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00644768 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAudioFilter64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00602272 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMux64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00344736 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00214528 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00210592 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUtils64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00179712 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00177824 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiDDEAgent64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00163328 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00155136 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00137728 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00133120 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00128672 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMCUMD64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00094368 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiLogServer64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00044025 _____ () C:\Windows\system32\iglhxo64.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00043816 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00043494 _____ () C:\Windows\system32\iglhxc64.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00043298 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00043256 _____ () C:\Windows\system32\iglhxg64.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00042079 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00001125 _____ () C:\Windows\system32\iglhxa64.vp
2014-09-09 14:56 - 2014-01-22 17:34 - 03558912 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2014-09-09 14:56 - 2013-08-16 15:13 - 03859968 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athwbx.sys
2014-09-09 14:55 - 2014-01-29 22:04 - 07597040 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00771568 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00755184 _____ (Intel Corporation) C:\Windows\system32\GfxUIHotKeyMenu.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00530928 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00397296 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00153072 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2014-09-09 14:55 - 2014-01-22 17:51 - 07947776 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll
2014-09-09 14:55 - 2014-01-22 17:51 - 02384896 _____ () C:\Windows\system32\GfxRes.dll
2014-09-09 14:55 - 2014-01-22 17:51 - 00267407 _____ () C:\Windows\system32\Gfxres.th-TH.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00253466 _____ () C:\Windows\system32\Gfxres.el-GR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00235401 _____ () C:\Windows\system32\Gfxres.ru-RU.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00224256 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2014-09-09 14:55 - 2014-01-22 17:51 - 00201128 _____ () C:\Windows\system32\Gfxres.ar-SA.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00198725 _____ () C:\Windows\system32\Gfxres.ja-JP.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00194560 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-09-09 14:55 - 2014-01-22 17:51 - 00192758 _____ () C:\Windows\system32\Gfxres.he-IL.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00180936 _____ () C:\Windows\system32\Gfxres.ko-KR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00180850 _____ () C:\Windows\system32\Gfxres.it-IT.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00178473 _____ () C:\Windows\system32\Gfxres.es-ES.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00178290 _____ () C:\Windows\system32\Gfxres.fr-FR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00178123 _____ () C:\Windows\system32\Gfxres.de-DE.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00176838 _____ () C:\Windows\system32\Gfxres.ro-RO.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00175862 _____ () C:\Windows\system32\Gfxres.hu-HU.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00175571 _____ () C:\Windows\system32\Gfxres.tr-TR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00175067 _____ () C:\Windows\system32\Gfxres.nl-NL.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00174802 _____ () C:\Windows\system32\Gfxres.pl-PL.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00174269 _____ () C:\Windows\system32\Gfxres.pt-BR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00173792 _____ () C:\Windows\system32\Gfxres.fi-FI.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00173276 _____ () C:\Windows\system32\Gfxres.sk-SK.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00173059 _____ () C:\Windows\system32\Gfxres.sv-SE.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00172833 _____ () C:\Windows\system32\Gfxres.pt-PT.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00172554 _____ () C:\Windows\system32\Gfxres.cs-CZ.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00171691 _____ () C:\Windows\system32\Gfxres.hr-HR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00168215 _____ () C:\Windows\system32\Gfxres.sl-SI.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00166833 _____ () C:\Windows\system32\Gfxres.nb-NO.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00166220 _____ () C:\Windows\system32\Gfxres.da-DK.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00161534 _____ () C:\Windows\system32\Gfxres.en-US.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00154805 _____ () C:\Windows\system32\Gfxres.zh-TW.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00152993 _____ () C:\Windows\system32\Gfxres.zh-CN.resources
2014-09-09 14:55 - 2014-01-22 17:48 - 20433408 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2014-09-09 14:55 - 2014-01-22 17:48 - 06289408 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll
2014-09-09 14:55 - 2014-01-22 17:35 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-09-09 14:54 - 2014-09-09 14:54 - 00054841 _____ () C:\Windows\system32\DISMLog.log
2014-09-09 14:54 - 2013-12-09 18:27 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-09-09 14:54 - 2013-12-09 18:27 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-09-09 14:54 - 2013-08-01 22:40 - 00644968 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2014-09-09 14:54 - 2013-06-21 21:35 - 00816344 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys
2014-09-09 14:54 - 2013-06-21 21:35 - 00074456 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-09-09 14:52 - 2014-09-09 14:52 - 00003934 _____ () C:\Windows\SysWOW64\Drivers\1028_Dell_INS_3847.mrk
2014-09-09 14:52 - 2014-09-09 14:52 - 00003934 _____ () C:\Windows\system32\Drivers\1028_Dell_INS_3847.mrk
2014-09-09 14:51 - 2014-09-09 14:51 - 00000012 _____ () C:\Windows\csup.txt
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files\MSBuild
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-09-09 14:50 - 2014-03-18 09:59 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-09-09 14:50 - 2014-03-18 09:59 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2014-09-09 14:50 - 2014-03-18 09:59 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-09-09 14:50 - 2014-03-18 09:59 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-09-09 14:50 - 2014-03-18 09:59 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-09-09 14:50 - 2014-03-18 09:59 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-09-09 14:47 - 2014-09-09 14:50 - 00000000 ____D () C:\Windows\Scratch
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Windows\System32\Tasks\Dell
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\ProgramData\Aviata
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Program Files (x86)\Dell Product Registration
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Program Files (x86)\Dell
2014-09-09 14:47 - 2014-03-18 05:55 - 00035397 _____ () C:\Windows\Core.xml
2014-09-09 14:47 - 2014-01-08 16:39 - 37660368 _____ (Dropbox, Inc.) C:\Users\Default\Desktop\Install Dropbox.exe
2014-09-09 14:47 - 2014-01-08 16:39 - 37660368 _____ (Dropbox, Inc.) C:\Users\Default User\Desktop\Install Dropbox.exe
2014-09-09 14:46 - 2014-09-16 15:19 - 00000000 ____D () C:\Windows\Panther
2014-09-09 14:46 - 2014-09-09 16:00 - 00000000 ____D () C:\DELL
2014-09-09 14:46 - 2014-09-09 14:46 - 00000000 ____D () C:\Temp
2014-09-09 14:44 - 2014-09-17 09:13 - 00000000 ____D () C:\Program Files (x86)\Dell Backup and Recovery
2014-09-09 14:42 - 2014-09-17 09:04 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-09-09 14:42 - 2014-09-16 20:46 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2014-09-09 14:42 - 2014-09-16 20:45 - 00000000 ____D () C:\ProgramData\McAfee
2014-09-09 14:42 - 2014-09-09 14:43 - 00000000 ____D () C:\Program Files\mcafee
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files\mcafee.com
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\mcafee.com
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\Dell Update
2014-09-09 14:42 - 2014-06-20 10:30 - 00189912 _____ (McAfee, Inc.) C:\Windows\system32\mfevtps.exe
2014-09-09 14:41 - 2014-09-17 10:21 - 00000000 ____D () C:\ProgramData\PCDr
2014-09-09 14:41 - 2014-09-09 14:47 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-09-09 14:41 - 2014-09-09 14:41 - 00002223 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon.lnk
2014-09-09 14:41 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Default\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Default User\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Windows\eBayDesktopShortcut
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files\My Dell
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-09-09 14:41 - 2013-07-09 17:58 - 00263896 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2014-09-09 14:41 - 2013-04-25 22:12 - 09889352 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUStoricon.dll
2014-09-09 14:38 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Dell Wireless
2014-09-09 14:38 - 2014-09-09 14:39 - 00000000 ____D () C:\Program Files\Common Files\QCA_Bluetooth
2014-09-09 14:38 - 2014-09-09 14:38 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2014-09-09 14:38 - 2014-09-09 14:38 - 00000000 ____D () C:\Windows\Options
2014-09-09 14:38 - 2013-09-05 03:32 - 00011307 ____N () C:\Windows\system32\athwbx.cat
2014-09-09 14:38 - 2013-08-15 23:13 - 03859968 ____N (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\athwbx.sys
2014-09-09 14:37 - 2014-09-09 14:46 - 00000000 ____D () C:\ProgramData\Dell
2014-09-09 14:37 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-09-09 14:37 - 2014-09-09 14:37 - 00880342 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-09 14:37 - 2014-09-09 14:37 - 00849522 _____ () C:\Windows\system32\Drivers\rtwavesskdy.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00188557 _____ () C:\Windows\system32\Drivers\rtwaves40.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00017972 _____ () C:\Windows\system32\Drivers\rtwavesvpcap.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Intel
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files\Realtek
2014-09-09 14:37 - 2013-12-09 18:27 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-09-09 14:37 - 2013-08-14 00:19 - 03588184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-09-09 14:37 - 2013-08-13 20:41 - 00147160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-09-09 14:37 - 2013-08-13 19:49 - 00626293 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-09-09 14:37 - 2013-08-13 18:22 - 02796248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-09-09 14:37 - 2013-08-13 18:04 - 31171584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCORES64.dat
2014-09-09 14:37 - 2013-08-09 19:45 - 02585304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-09-09 14:37 - 2013-08-08 23:57 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-09-09 14:37 - 2013-08-07 21:41 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-09-09 14:37 - 2013-08-06 08:56 - 06219096 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-09-09 14:37 - 2013-08-06 08:56 - 01908568 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-09-09 14:37 - 2013-08-06 08:56 - 00312152 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-09-09 14:37 - 2013-08-06 08:56 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-09-09 14:37 - 2013-08-05 22:11 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-09-09 14:37 - 2013-08-03 00:16 - 01005784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-09-09 14:37 - 2013-08-01 14:59 - 05694760 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-09-09 14:37 - 2013-07-30 18:04 - 00397080 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2014-09-09 14:37 - 2013-07-30 17:18 - 01994008 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2014-09-09 14:37 - 2013-07-30 17:18 - 01725720 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2014-09-09 14:37 - 2013-07-28 14:48 - 27518208 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-09-09 14:37 - 2013-07-26 18:05 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 02032896 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 01044736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 00933120 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 00660224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 00650496 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-09-09 14:37 - 2013-07-23 19:40 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-09-09 14:37 - 2013-07-23 19:39 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-09-09 14:37 - 2013-07-23 19:39 - 01916672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-09-09 14:37 - 2013-07-23 19:39 - 01399040 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek364.dll
2014-09-09 14:37 - 2013-07-23 19:39 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-09-09 14:37 - 2013-07-22 20:36 - 00194816 _____ (Waves Audio) C:\Windows\system32\MaxxAudioVienna264.dll
2014-09-09 14:37 - 2013-06-06 01:42 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-09-09 14:37 - 2013-04-24 21:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-09-09 14:37 - 2013-04-23 18:54 - 00154184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkXInterface64.dll
2014-09-09 14:37 - 2013-02-20 21:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-09-09 14:37 - 2013-01-11 19:27 - 00628504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll
2014-09-09 14:37 - 2013-01-11 19:27 - 00563992 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll
2014-09-09 14:37 - 2012-11-14 14:41 - 00378000 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2014-09-09 14:37 - 2012-08-31 23:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-09-09 14:37 - 2012-08-31 23:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-09-09 14:37 - 2012-08-31 23:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-09-09 14:37 - 2012-08-31 23:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-09-09 14:37 - 2012-08-31 23:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-09-09 14:37 - 2012-07-16 01:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-09-09 14:37 - 2012-06-08 20:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2014-09-09 14:37 - 2012-06-08 20:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2014-09-09 14:37 - 2012-03-08 14:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-09-09 14:37 - 2011-12-20 18:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-09-09 14:37 - 2011-12-16 17:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2014-09-09 14:37 - 2011-11-22 19:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-09-09 14:37 - 2010-11-03 22:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-09-09 14:37 - 2010-09-27 13:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-09-09 14:37 - 2009-11-24 12:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-09-09 14:37 - 2009-11-24 12:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-09-09 14:37 - 2009-11-24 12:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-09-09 14:37 - 2009-11-24 12:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-09-09 14:37 - 2009-11-18 10:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2014-09-09 14:36 - 2014-09-09 14:36 - 00000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-09-09 14:36 - 2014-09-09 14:36 - 00000000 ____D () C:\Users\Public\CyberLink
2014-09-09 14:35 - 2014-09-09 14:36 - 00000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-09-09 14:34 - 2014-09-09 14:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2014-09-09 14:34 - 2014-09-09 14:36 - 00000000 ____D () C:\ProgramData\install_clap
2014-09-09 14:34 - 2014-09-09 14:36 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-09-09 14:34 - 2014-09-09 14:35 - 00000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-09-09 14:34 - 2014-09-09 14:34 - 00003160 _____ () C:\Windows\System32\Tasks\CLVDLauncher
2014-09-09 14:34 - 2014-09-09 14:34 - 00003160 _____ () C:\Windows\System32\Tasks\CLMLSvc_P2G8
2014-09-09 14:34 - 2014-09-09 14:34 - 00000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-09-09 14:34 - 2013-03-05 15:01 - 00091712 _____ (CyberLink) C:\Windows\system32\Drivers\CLVirtualDrive.sys
2014-09-09 14:33 - 2014-09-09 14:47 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-09 14:33 - 2014-09-09 14:36 - 00000000 ____D () C:\ProgramData\Temp
2014-09-09 14:33 - 2014-09-09 14:36 - 00000000 ____D () C:\ProgramData\CyberLink
2014-09-09 14:33 - 2014-09-09 14:34 - 00000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2014-09-09 14:33 - 2014-09-09 14:34 - 00000000 ____D () C:\ProgramData\CLSK
2014-09-09 14:32 - 2014-09-09 14:32 - 00003384 _____ () C:\Windows\System32\Tasks\PocketCloudUpdater
2014-09-09 14:32 - 2014-09-09 14:32 - 00003172 _____ () C:\Windows\System32\Tasks\PocketCloudVirtualChannel
2014-09-09 14:32 - 2014-09-09 14:32 - 00003070 _____ () C:\Windows\System32\Tasks\PocketCloud
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\PocketCloud
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wyse
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\Program Files (x86)\Wyse
2014-09-09 14:30 - 2014-09-09 14:30 - 21232792 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 18679216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 16875520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 13286400 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 12732416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 11791360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 08653824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 06641152 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 05833728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 05770752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 04268544 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02900992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02641920 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02519384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 02479616 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02373784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 02331000 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02270208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02088160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 02030080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01679128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 01542768 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01466864 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01339240 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01306624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01200296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01112536 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01095488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01066496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00958464 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00839168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00836096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00731648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00567296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00565536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00518552 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00492256 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00488280 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00467800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-09-09 14:30 - 2014-09-09 14:30 - 00467504 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00463264 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-09-09 14:30 - 2014-09-09 14:30 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00406912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00406512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00402944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00390488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00388408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00387210 _____ () C:\Windows\system32\ApnDatabase.xml
2014-09-09 14:30 - 2014-09-09 14:30 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00360512 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00356848 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00355832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00244888 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00180056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00136024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00113648 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00094016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-09-09 14:27 - 2014-04-09 08:00 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-09-09 14:27 - 2014-04-08 23:32 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-09-09 14:27 - 2014-04-08 23:31 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-09-09 14:27 - 2014-04-08 23:23 - 01705984 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-09-09 14:27 - 2014-04-08 23:21 - 03408896 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-09-09 14:27 - 2014-03-08 03:53 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-09-09 14:27 - 2014-03-08 03:12 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-09-09 14:27 - 2014-03-08 02:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-09-09 14:27 - 2014-02-26 02:48 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\lockscreencn.dll
2014-09-09 14:26 - 2014-09-17 10:20 - 00449544 _____ () C:\Windows\WindowsUpdate.log
2014-09-09 14:26 - 2014-03-08 04:30 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2014-09-09 14:26 - 2014-03-08 02:37 - 02843136 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-09-09 14:26 - 2014-03-08 02:22 - 01035264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-09-09 14:26 - 2014-03-08 01:56 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-09-09 14:26 - 2014-03-08 01:51 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-09-09 14:26 - 2013-10-30 20:29 - 00236888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-09-09 14:26 - 2013-10-30 20:29 - 00124760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-09-09 14:26 - 2013-10-30 20:28 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-09-09 14:22 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files\Intel
2014-09-09 14:22 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-09-09 14:22 - 2014-09-09 14:22 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-09-09 14:22 - 2014-09-09 14:22 - 00000000 ____D () C:\Intel
2014-09-09 14:22 - 2014-01-22 17:35 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2014-09-09 14:22 - 2014-01-22 17:35 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-17 22:24 - 2014-09-17 22:24 - 00021772 _____ () C:\Users\Greg\Downloads\FRST.txt
2014-09-17 22:24 - 2014-09-17 22:23 - 00000000 ____D () C:\FRST
2014-09-17 22:23 - 2014-09-17 22:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-09-17 22:23 - 2014-09-16 15:28 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5D5CFE40-AE91-483F-8E0A-C339D2A2899B}
2014-09-17 22:23 - 2013-08-22 09:25 - 00000226 _____ () C:\Windows\win.ini
2014-09-17 22:22 - 2014-09-17 22:22 - 02105856 _____ (Farbar) C:\Users\Greg\Downloads\FRST64.exe
2014-09-17 22:21 - 2014-09-17 22:21 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-09-17 22:21 - 2014-09-16 15:49 - 00004994 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Bergman_Family-Greg Bergman_Family
2014-09-17 22:21 - 2014-09-16 15:29 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-17 22:21 - 2014-09-16 15:29 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-17 22:21 - 2014-09-16 15:21 - 00000000 __RDO () C:\Users\Greg\OneDrive
2014-09-17 22:20 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\system32\sru
2014-09-17 10:34 - 2014-09-16 15:29 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-17 10:30 - 2014-09-17 10:30 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-09-17 10:26 - 2014-09-16 15:24 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4020320634-2591791008-1635142945-1001
2014-09-17 10:22 - 2014-09-17 10:22 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\PCDr
2014-09-17 10:21 - 2014-09-09 14:41 - 00000000 ____D () C:\ProgramData\PCDr
2014-09-17 10:20 - 2014-09-09 14:26 - 00449544 _____ () C:\Windows\WindowsUpdate.log
2014-09-17 10:18 - 2014-03-18 05:53 - 00865408 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-17 10:16 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\Documents\Bluetooth Folder
2014-09-17 09:56 - 2014-09-17 08:55 - 00000318 _____ () C:\Windows\Tasks\UpdaterEX.job
2014-09-17 09:55 - 2014-09-17 08:55 - 00000318 _____ () C:\Windows\Tasks\WSE_Lasaoren.job
2014-09-17 09:31 - 2014-09-17 09:31 - 00257400 _____ (Fusion Install ) C:\Users\Greg\Downloads\flashplayerpro_Setup.exe
2014-09-17 09:31 - 2014-09-17 09:31 - 00257400 _____ (Fusion Install ) C:\Users\Greg\Downloads\flashplayerpro_Setup (3).exe
2014-09-17 09:31 - 2014-09-17 09:31 - 00257400 _____ (Fusion Install ) C:\Users\Greg\Downloads\flashplayerpro_Setup (2).exe
2014-09-17 09:31 - 2014-09-17 09:31 - 00257400 _____ (Fusion Install ) C:\Users\Greg\Downloads\flashplayerpro_Setup (1).exe
2014-09-17 09:13 - 2014-09-17 09:13 - 00000000 ____D () C:\Users\Greg\Documents\OneNote Notebooks
2014-09-17 09:13 - 2014-09-17 09:12 - 00000000 ____D () C:\ProgramData\softthinks
2014-09-17 09:13 - 2014-09-09 14:44 - 00000000 ____D () C:\Program Files (x86)\Dell Backup and Recovery
2014-09-17 09:12 - 2014-09-17 09:12 - 00000000 ____D () C:\Users\Greg\AppData\Local\softthinks
2014-09-17 09:09 - 2014-09-17 09:09 - 00244056 _____ () C:\Users\Greg\Downloads\Firefox Setup Stub 32.0.1 (1).exe
2014-09-17 09:09 - 2014-09-17 09:09 - 00003994 _____ () C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-09-17 09:09 - 2014-09-17 09:09 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-09-17 09:09 - 2014-09-17 09:09 - 00003206 _____ () C:\Windows\System32\Tasks\SystemToolsDailyTest
2014-09-17 09:09 - 2014-09-17 09:08 - 00244056 _____ () C:\Users\Greg\Downloads\Firefox Setup Stub 32.0.1.exe
2014-09-17 09:09 - 2014-09-16 15:48 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4020320634-2591791008-1635142945-1001
2014-09-17 09:06 - 2014-09-17 09:06 - 00000000 ____D () C:\ProgramData\Spyware Clear
2014-09-17 09:06 - 2014-09-17 08:55 - 00000000 ____D () C:\Program Files (x86)\Spyware Clear
2014-09-17 09:05 - 2013-08-22 09:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-09-17 09:04 - 2014-09-17 08:55 - 00000000 ____D () C:\Program Files (x86)\ClearThink
2014-09-17 09:04 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-09-17 09:04 - 2014-03-18 05:44 - 00002856 _____ () C:\Windows\PFRO.log
2014-09-17 09:04 - 2013-08-22 10:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-17 09:04 - 2013-08-22 10:44 - 00379528 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-17 09:04 - 2013-08-22 09:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-09-17 09:02 - 2014-09-17 08:54 - 00000000 ____D () C:\Users\Greg\AppData\Local\StormAlerts
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\Users\Greg\Documents\Optimizer Pro
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Lasaoren
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\ProgramData\374311380
2014-09-17 08:56 - 2014-09-17 08:55 - 00002656 _____ () C:\Windows\System32\Tasks\UpdaterEX
2014-09-17 08:55 - 2014-09-17 08:55 - 00002656 _____ () C:\Windows\System32\Tasks\WSE_Lasaoren
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\WSE_Lasaoren
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\UpdaterEX
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Program Files (x86)\WSE_Lasaoren
2014-09-17 08:54 - 2014-09-17 08:54 - 00857696 _____ ( ) C:\Users\Greg\Downloads\Firefox_Setup.exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00857696 _____ ( ) C:\Users\Greg\Downloads\Firefox_Setup (1).exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00284224 _____ (Mozilla) C:\Users\Greg\Downloads\Firefox_Setup_Stub_30.0.exe
2014-09-17 04:31 - 2014-09-17 08:59 - 00044688 _____ (StdLib) C:\Windows\system32\Drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys
2014-09-16 22:06 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-09-16 22:01 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Local\Packages
2014-09-16 20:46 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2014-09-16 20:45 - 2014-09-09 14:42 - 00000000 ____D () C:\ProgramData\McAfee
2014-09-16 20:45 - 2013-08-22 11:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-09-16 15:51 - 2014-09-16 15:51 - 00000000 __RHD () C:\MSOCache
2014-09-16 15:48 - 2014-09-16 15:48 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-09-16 15:45 - 2014-09-16 15:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-09-16 15:44 - 2014-09-16 15:44 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-09-16 15:35 - 2014-09-16 15:35 - 00000000 ____D () C:\Windows\System32\Tasks\Aviata
2014-09-16 15:29 - 2014-09-16 15:29 - 00003896 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-09-16 15:29 - 2014-09-16 15:29 - 00003660 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-09-16 15:29 - 2014-09-16 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-16 15:29 - 2014-09-16 15:29 - 00000000 ____D () C:\Program Files (x86)\Google
2014-09-16 15:29 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Google
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 __SHD () C:\Users\Greg\AppData\Local\EmieUserList
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 __SHD () C:\Users\Greg\AppData\Local\EmieSiteList
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Macromedia
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Deployment
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Apps\2.0
2014-09-16 15:27 - 2014-09-16 15:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-09-16 15:27 - 2013-08-22 10:46 - 00013993 _____ () C:\Windows\setupact.log
2014-09-16 15:21 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Intel Corporation
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\Power2Go8
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\BMExplorer
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\Aviata
2014-09-16 15:20 - 2014-09-16 15:19 - 00000000 ____D () C:\ProgramData\Atheros
2014-09-16 15:19 - 2014-09-16 15:19 - 00001448 _____ () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-16 15:19 - 2014-09-16 15:19 - 00000020 ___SH () C:\Users\Greg\ntuser.ini
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Atheros
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Adobe
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Local\VirtualStore
2014-09-16 15:19 - 2014-09-09 14:46 - 00000000 ____D () C:\Windows\Panther
2014-09-16 15:09 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\rescache
2014-09-09 16:16 - 2014-09-09 16:16 - 00000000 __SHD () C:\System Recovery
2014-09-09 16:00 - 2014-09-09 14:46 - 00000000 ____D () C:\DELL
2014-09-09 15:20 - 2014-09-09 15:20 - 00031360 ___RH () C:\dell.sdr
2014-09-09 15:19 - 2014-09-09 15:19 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-09 15:19 - 2014-09-09 15:19 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-09 15:19 - 2014-09-09 15:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-09 15:19 - 2014-09-09 15:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-09 14:58 - 2013-08-22 11:37 - 00002899 _____ () C:\Windows\DtcInstall.log
2014-09-09 14:54 - 2014-09-09 14:54 - 00054841 _____ () C:\Windows\system32\DISMLog.log
2014-09-09 14:52 - 2014-09-09 14:52 - 00003934 _____ () C:\Windows\SysWOW64\Drivers\1028_Dell_INS_3847.mrk
2014-09-09 14:52 - 2014-09-09 14:52 - 00003934 _____ () C:\Windows\system32\Drivers\1028_Dell_INS_3847.mrk
2014-09-09 14:51 - 2014-09-09 14:51 - 00000012 _____ () C:\Windows\csup.txt
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files\MSBuild
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-09-09 14:50 - 2014-09-09 14:47 - 00000000 ____D () C:\Windows\Scratch
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Windows\System32\Tasks\Dell
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\ProgramData\Aviata
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Program Files (x86)\Dell Product Registration
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Program Files (x86)\Dell
2014-09-09 14:47 - 2014-09-09 14:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-09-09 14:47 - 2014-09-09 14:33 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-09 14:46 - 2014-09-09 14:46 - 00000000 ____D () C:\Temp
2014-09-09 14:46 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Dell
2014-09-09 14:46 - 2013-08-22 11:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2014-09-09 14:46 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\system32\Recovery
2014-09-09 14:43 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files\mcafee
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files\mcafee.com
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\mcafee.com
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\Dell Update
2014-09-09 14:41 - 2014-09-16 15:19 - 00000141 _____ () C:\Users\Greg\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00002223 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon.lnk
2014-09-09 14:41 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Default\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Default User\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Windows\eBayDesktopShortcut
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files\My Dell
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-09-09 14:41 - 2014-09-09 14:38 - 00000000 ____D () C:\Program Files (x86)\Dell Wireless
2014-09-09 14:41 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-09-09 14:39 - 2014-09-09 14:38 - 00000000 ____D () C:\Program Files\Common Files\QCA_Bluetooth
2014-09-09 14:38 - 2014-09-09 14:38 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2014-09-09 14:38 - 2014-09-09 14:38 - 00000000 ____D () C:\Windows\Options
2014-09-09 14:37 - 2014-09-09 14:37 - 00880342 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-09 14:37 - 2014-09-09 14:37 - 00849522 _____ () C:\Windows\system32\Drivers\rtwavesskdy.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00188557 _____ () C:\Windows\system32\Drivers\rtwaves40.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00017972 _____ () C:\Windows\system32\Drivers\rtwavesvpcap.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Intel
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files\Realtek
2014-09-09 14:37 - 2014-09-09 14:22 - 00000000 ____D () C:\Program Files\Intel
2014-09-09 14:37 - 2014-09-09 14:22 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-09-09 14:37 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-09 14:36 - 2014-09-09 14:36 - 00000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-09-09 14:36 - 2014-09-09 14:36 - 00000000 ____D () C:\Users\Public\CyberLink
2014-09-09 14:36 - 2014-09-09 14:35 - 00000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-09-09 14:36 - 2014-09-09 14:34 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2014-09-09 14:36 - 2014-09-09 14:34 - 00000000 ____D () C:\ProgramData\install_clap
2014-09-09 14:36 - 2014-09-09 14:34 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-09-09 14:36 - 2014-09-09 14:33 - 00000000 ____D () C:\ProgramData\Temp
2014-09-09 14:36 - 2014-09-09 14:33 - 00000000 ____D () C:\ProgramData\CyberLink
2014-09-09 14:35 - 2014-09-09 14:34 - 00000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-09-09 14:34 - 2014-09-09 14:34 - 00003160 _____ () C:\Windows\System32\Tasks\CLVDLauncher
2014-09-09 14:34 - 2014-09-09 14:34 - 00003160 _____ () C:\Windows\System32\Tasks\CLMLSvc_P2G8
2014-09-09 14:34 - 2014-09-09 14:34 - 00000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-09-09 14:34 - 2014-09-09 14:33 - 00000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2014-09-09 14:34 - 2014-09-09 14:33 - 00000000 ____D () C:\ProgramData\CLSK
2014-09-09 14:32 - 2014-09-09 14:32 - 00003384 _____ () C:\Windows\System32\Tasks\PocketCloudUpdater
2014-09-09 14:32 - 2014-09-09 14:32 - 00003172 _____ () C:\Windows\System32\Tasks\PocketCloudVirtualChannel
2014-09-09 14:32 - 2014-09-09 14:32 - 00003070 _____ () C:\Windows\System32\Tasks\PocketCloud
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\PocketCloud
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wyse
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\Program Files (x86)\Wyse
2014-09-09 14:30 - 2014-09-09 14:30 - 21232792 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 18679216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 16875520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 13286400 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 12732416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 11791360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 08653824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 06641152 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 05833728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 05770752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 04268544 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02900992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02641920 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02519384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 02479616 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02373784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 02331000 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02270208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02088160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 02030080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01679128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 01542768 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01466864 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01339240 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01306624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01200296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01112536 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01095488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01066496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00958464 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00839168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00836096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00731648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00567296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00565536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00518552 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00492256 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00488280 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00467800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-09-09 14:30 - 2014-09-09 14:30 - 00467504 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00463264 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-09-09 14:30 - 2014-09-09 14:30 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00406912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00406512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00402944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00390488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00388408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00387210 _____ () C:\Windows\system32\ApnDatabase.xml
2014-09-09 14:30 - 2014-09-09 14:30 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00360512 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00356848 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00355832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00244888 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00180056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00136024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00113648 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00094016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-09-09 14:30 - 2013-08-22 11:36 - 00000000 ___RD () C:\Windows\ToastData
2014-09-09 14:30 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\system32\setup
2014-09-09 14:30 - 2013-08-22 11:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-09-09 14:28 - 2014-09-16 15:19 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\FileManager
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\Camera
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-09-09 14:22 - 2014-09-09 14:22 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-09-09 14:22 - 2014-09-09 14:22 - 00000000 ____D () C:\Intel
 
Some content of TEMP:
====================
C:\Users\Greg\AppData\Local\Temp\optprosetup.exe
C:\Users\Greg\AppData\Local\Temp\SetupHomeStudentRetail.x86.en-US_HomeStudentRetail_2NXTG-TF3G6-7TH7T-7RM3T-GMQT3_act_1_.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-09-09 14:21
 
==================== End Of Log ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-09-2014
Ran by Greg at 2014-09-17 22:25:12
Running from C:\Users\Greg\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Amazon 1Button App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.4 - Amazon)
ClearThink (HKLM\...\ClearThink) (Version: 2014.09.17.083241 - ClearThink)
CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (x32 Version: 10.0.1.3214 - CyberLink Corp.) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.3123 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.1.3126 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (x32 Version: 12.0.3205.55 - CyberLink Corp.) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.7.1.2 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.7.1.2 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{17FFE63C-6734-4950-B488-134B5A2505F7}) (Version: 2.04.0280 - Aviata Inc.)
Dell Update (HKLM-x32\...\{9E4750A7-90F6-4181-8A8A-B1ADF4216E93}) (Version: 1.0.1059.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
DSC/AA Factory Installer (Version: 3.5.6426.22 - PC-Doctor, Inc.) Hidden
Extended Update (HKCU\...\UpdaterEX) (Version:  - Extended Update) <==== ATTENTION
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 12.8.988 - McAfee, Inc.)
Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
My Dell Client Framework (HKLM-x32\...\InstallShield_{05F1B866-2372-4E82-9AA8-C64FB11CEF8B}) (Version: 1.0.0.3 - Dell)
My Dell Client Framework (x32 Version: 1.0.0.3 - Dell) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PocketCloud (HKLM-x32\...\{D9752C7D-A595-4687-A0D5-362E9C311C55}) (Version: 2.7.14 - Wyse Technology)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.304 - Qualcomm Atheros Communications)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7016 - Realtek Semiconductor Corp.)
WSE_Lasaoren (HKLM-x32\...\WSE_Lasaoren) (Version:  - WSE_Lasaoren)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-4020320634-2591791008-1635142945-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Greg\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\FileSyncApi64.dll (Microsoft Corporation)
 
==================== Restore Points  =========================
 
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0683BC80-3261-49DE-A13A-F65BC2CED5BA} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Bergman_Family-Greg Bergman_Family => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2014-09-16] (Microsoft Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0EAD5505-7A19-414A-BEE9-286FE510A56D} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {18DD9998-E2E3-4421-9ECA-3DBCE1C774D6} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-04-01] (Aviata Inc)
Task: {2060052B-06EB-44EB-BD29-B857419A4CC5} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2013-12-17] (Microsoft Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {21199D4C-F9E7-4A63-8AFD-C469861365D8} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2E9661E8-0567-47AD-A139-D465F7797F45} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-16] (Google Inc.)
Task: {34811A09-80A5-4100-87A1-27E24BC9D8D8} - System32\Tasks\UpdaterEX => C:\Users\Greg\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {41B8D210-6247-496E-9944-9CCDBA0D0B47} - System32\Tasks\PocketCloudVirtualChannel => C:\Program Files (x86)\Wyse\PocketCloud\WPCRDPVirtualChannelServer.exe [2013-08-22] ()
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {59B0F231-F449-4A3A-8F73-0A2B38287BDB} - System32\Tasks\PocketCloud => C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudDesktopApp.exe [2013-08-22] ()
Task: {59BB80AF-3999-4889-BCB9-E7DB4F521975} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {606A8EB4-8FAC-48F1-89D7-88C54072090F} - System32\Tasks\WSE_Lasaoren => C:\Users\Greg\AppData\Roaming\WSE_Lasaoren\UpdateProc\UpdateTask.exe [2014-09-17] ()
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {71245876-F13E-4403-9E13-02B84B0750F2} - System32\Tasks\PocketCloudUpdater => C:\Program
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {749F135C-5C6A-4884-BE6B-41F4EEA3D239} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-16] (Google Inc.)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {98292BAF-42C3-4FC1-9056-7EB1EE3B3C57} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A0B2CF19-8F95-4CE1-93BE-7525A088A0FB} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4020320634-2591791008-1635142945-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {A9DD5C1B-1D16-4FDF-BA65-D33B121771C7} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-10] (PC-Doctor, Inc.)
Task: {BD262BB7-243F-4969-8F75-74A608DA1E51} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-04] (CyberLink)
Task: {CBDA51B5-18F3-4C3F-BBAD-09E7E42FDD0E} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-03-18] (Microsoft Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D352DA66-6B83-46D8-9915-8E7B856C5978} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E3320D12-D387-41E6-B86E-E2FB098EE83F} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-10] (PC-Doctor, Inc.)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F249F8B2-06F7-4424-9C20-5F912204FB9C} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-04-01] (Aviata Inc)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\Greg\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\WSE_Lasaoren.job => C:\Users\Greg\AppData\Roaming\WSE_LA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
 
==================== Loaded Modules (whitelisted) =============
 
2014-09-16 15:44 - 2013-10-31 17:13 - 00102568 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-09-16 15:44 - 2014-01-02 18:41 - 00621736 _____ () C:\Program Files\Microsoft Office 15\ClientX64\StreamServer.dll
2014-09-17 08:58 - 2014-09-17 08:58 - 00324848 _____ () C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe
2013-08-22 14:40 - 2013-08-22 14:40 - 00016176 _____ () C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe
2013-08-22 14:40 - 2013-08-22 14:40 - 00040240 _____ () C:\Program Files (x86)\Wyse\PocketCloud\AetherServiceLib.dll
2013-08-22 14:40 - 2013-08-22 14:40 - 00046384 _____ () C:\Program Files (x86)\Wyse\PocketCloud\AetherHelperLib.dll
2014-01-10 17:53 - 2014-01-10 17:53 - 00016384 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Interfaces.dll
2014-01-10 17:53 - 2014-01-10 17:53 - 00081408 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Objects.dll
2014-01-10 17:53 - 2014-01-10 17:53 - 00815616 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Resources.dll
2014-01-10 18:24 - 2014-01-10 18:24 - 00052736 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.Client.Pulse.Agent.Plugins.SelfUpdate.dll
2014-01-10 18:24 - 2014-01-10 18:24 - 00019968 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.Client.Pulse.Agent.Common.dll
2014-09-17 08:59 - 2014-09-17 16:40 - 00349936 _____ () C:\Program Files (x86)\ClearThink\bin\ClearThink.PurBrowse64.exe
2014-09-16 15:45 - 2014-09-16 15:45 - 08878248 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-09-09 14:46 - 2014-03-12 15:22 - 00020256 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIcon.dll
2014-09-09 14:46 - 2014-03-12 15:22 - 00019232 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayNotBackuped.dll
2014-03-18 05:40 - 2014-03-18 05:40 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\ErrorReporting.dll
2014-09-17 08:59 - 2014-09-17 19:40 - 00114928 ____N () C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter64.exe
2013-09-05 02:20 - 2013-09-05 02:20 - 00011264 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-09-05 02:17 - 2013-09-05 02:17 - 00086016 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\Map\MAP.dll
2013-09-05 02:24 - 2013-09-05 02:24 - 00012928 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe
2014-09-17 08:55 - 2014-09-17 08:55 - 01074688 _____ () C:\Program Files (x86)\WSE_Lasaoren\BRS\brs.exe
2014-09-17 04:45 - 2014-09-17 22:23 - 00325360 _____ () C:\Program Files (x86)\ClearThink\updateClearThink.exe
2014-04-10 17:30 - 2014-04-10 17:30 - 00134664 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2014-09-09 14:36 - 2013-12-09 18:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2014-09-17 08:59 - 2014-09-17 22:20 - 00398064 _____ () C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserFilter.Helper.dll
2014-09-16 15:29 - 2014-09-03 23:01 - 01098056 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libglesv2.dll
2014-09-16 15:29 - 2014-09-03 23:01 - 00174408 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libegl.dll
2014-09-16 15:44 - 2014-09-16 15:45 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2014-09-16 15:44 - 2014-09-16 15:44 - 00316584 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2014-09-16 15:44 - 2014-09-16 15:44 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll
2014-09-16 15:29 - 2014-09-03 23:01 - 08577864 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\pdf.dll
2014-09-16 15:29 - 2014-09-03 23:01 - 00331592 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll
2014-09-16 15:29 - 2014-09-03 23:01 - 01660232 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ffmpegsumo.dll
2014-09-09 14:34 - 2013-03-04 23:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-05 14:41 - 2013-03-05 14:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-09-16 15:29 - 2014-09-03 23:01 - 14891848 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Users\Greg\OneDrive:ms-properties
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (09/16/2014 03:19:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004E028
Command-line arguments:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c7c00280-b24d-4e82-89ca-4f1288eb1d9e;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
 
Error: (09/16/2014 03:12:27 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
 
Error: (09/16/2014 03:12:20 PM) (Source: Windows Search Service Profile Notification) (EventID: 2) (User: )
Description: Unable to remove Windows Search Service indexed data for user '<Event xmlns='http://schemas.microsoft.com/win/2004/08/events/event'><System><Provider Name='Microsoft-Windows-Search-ProfileNotify' Guid='{FC6F77DD-769A-470E-BCF9-1B6555A118BE}' EventSourceName='Windows Search Service Profile Notification'/><EventID Qualifiers='49152'>2</EventID><Version>0</Version><Level>2</Level><Task>0</Task><Opcode>0</Opcode><Keywords>0x80000000000000</Keywords><TimeCreated SystemTime='2014-09-16T19:12:20.000000000Z'/><EventRecordID>559</EventRecordID><Correlation/><Execution ProcessID='0' ThreadID='0'/><Channel>Application</Channel><Computer>Bergman_Family</Computer><Security/></System><ProcessingErrorData><ErrorCode>15005</ErrorCode><DataItemName>__binLength</DataItemName><EventPayload>42006500720067006D0061006E005F00460061006D0069006C0079005C00410064006D0069006E006900730074007200610074006F00720000003000780038003000300034003200310030003300000000000000</EventPayload></ProcessingErrorData></Event>' in response to user profile deletion.  Error code %2.
 
%3.
 
Error: (09/16/2014 03:12:17 PM) (Source: AVLogEvent) (EventID: 5005) (User: NT AUTHORITY)
Description: Content is missing.
Error Code:a7f42014
 
 
System errors:
=============
Error: (09/17/2014 10:16:34 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.
 
Error: (09/17/2014 09:03:42 AM) (Source: DCOM) (EventID: 10010) (User: BERGMAN_FAMILY)
Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}
 
Error: (09/17/2014 08:38:04 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.
 
Error: (09/17/2014 08:38:04 AM) (Source: DCOM) (EventID: 10016) (User: BERGMAN_FAMILY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Bergman_FamilyGregS-1-5-21-4020320634-2591791008-1635142945-1001LocalHost (Using LRPC)Microsoft.BingWeather_3.0.2.233_x64__8wekyb3d8bbweS-1-15-2-2040986369-264322980-3882385089-1970153872-3662121739-3363227934-2464603330
 
Error: (09/17/2014 06:56:24 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.
 
Error: (09/16/2014 09:54:55 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.
 
Error: (09/16/2014 08:45:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Anti-Spam Service service failed to start due to the following error: 
%%1053
 
Error: (09/16/2014 08:45:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Anti-Spam Service service to connect.
 
Error: (09/16/2014 08:45:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Proxy Service service failed to start due to the following error: 
%%1053
 
Error: (09/16/2014 08:45:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Proxy Service service to connect.
 
 
Microsoft Office Sessions:
=========================
Error: (09/16/2014 03:19:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004E028RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c7c00280-b24d-4e82-89ca-4f1288eb1d9e;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
 
Error: (09/16/2014 03:12:27 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
 
Error: (09/16/2014 03:12:20 PM) (Source: Windows Search Service Profile Notification) (EventID: 2) (User: )
Description: <Event xmlns='http://schemas.microsoft.com/win/2004/08/events/event'><System><Provider Name='Microsoft-Windows-Search-ProfileNotify' Guid='{FC6F77DD-769A-470E-BCF9-1B6555A118BE}' EventSourceName='Windows Search Service Profile Notification'/><EventID Qualifiers='49152'>2</EventID><Version>0</Version><Level>2</Level><Task>0</Task><Opcode>0</Opcode><Keywords>0x80000000000000</Keywords><TimeCreated SystemTime='2014-09-16T19:12:20.000000000Z'/><EventRecordID>559</EventRecordID><Correlation/><Execution ProcessID='0' ThreadID='0'/><Channel>Application</Channel><Computer>Bergman_Family</Computer><Security/></System><ProcessingErrorData><ErrorCode>15005</ErrorCode><DataItemName>__binLength</DataItemName><EventPayload>42006500720067006D0061006E005F00460061006D0069006C0079005C00410064006D0069006E006900730074007200610074006F00720000003000780038003000300034003200310030003300000000000000</EventPayload></ProcessingErrorData></Event>
 
Error: (09/16/2014 03:12:17 PM) (Source: AVLogEvent) (EventID: 5005) (User: NT AUTHORITY)
Description: a7f42014
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 13%
Total physical RAM: 16300.94 MB
Available physical RAM: 14179.57 MB
Total Pagefile: 19244.94 MB
Available Pagefile: 16672.75 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:919.56 GB) (Free:884.16 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 34F1845B)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================
 
aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-09-17 22:30:29
-----------------------------
22:30:29.217    OS Version: Windows x64 6.2.9200 
22:30:29.217    Number of processors: 4 586 0x3C03
22:30:29.217    ComputerName: BERGMAN_FAMILY  UserName: Greg
22:30:30.114    Initialze error C000010E - driver not loaded
22:31:16.106    AVAST engine defs: 14091701
22:32:12.440    The log file has been saved successfully to "C:\Users\Greg\Desktop\asw.txt"


#4 pystryker

pystryker

  • Malware Response Team
  • 730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:59 PM

Posted 17 September 2014 - 10:31 PM

Hello, let's get to work. :)

Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.

Step 1: Program Uninstalls and Chrome Changes


Please uninstall the following programs from your machine as they are adware/malware related:
  • Extended Update
  • WSE_Lasaoren
  • ClearThink
Change Chrome's Default Search Provider


We need to change your default Search Provider in Chrome. Please follow the instructions below.
  • Open Chrome and type this in the address bar: chrome:settings
  • When the Settings page opens, look under Search and then click the box that has your current search provider listed. Change it from the malware related search engine to another (Such as Google.)
  • Once you have changed it, click on Manage Search Engines and delete Lasaoren from the list.
  • Once you have removed it, close the window.
Step 2: Fix with FRST


Note: Before performing this step, please move FRST64.exe from here C:\Users\Greg\Downloads to your Desktop or the fix will not work.
  • Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy.
  • Right-click in the open notepad and select Paste).
  • Save it on the desktop as fixlist.txt

Start
() C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe
C:\Program Files (x86)\ClearThink
() C:\Program Files (x86)\ClearThink\bin\ClearThink.PurBrowse64.exe
() C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter64.exe
() C:\Program Files (x86)\ClearThink\updateClearThink.exe
HKLM\...\Run: [SpywareClearShield] => C:\Program Files (x86)\Spyware Clear\SpywareClearShield.exe
HKLM\...\Run: [SpywareClearUpdater] => C:\Program Files (x86)\Spyware Clear\SpywareClearUpdate.exe [5441928 2014-08-20] (Crawler.com)
C:\Program Files (x86)\Spyware Clear
SearchScopes: HKLM - DefaultScope {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
SearchScopes: HKLM - {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
SearchScopes: HKCU - DefaultScope {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
SearchScopes: HKCU - {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
BHO-x32: ClearThink -> {7e6d4e3e-fc66-4036-9799-ce5c625c4c56} -> C:\Program Files (x86)\ClearThink\ClearThinkbho.dll (ClearThink)
CHR HomePage: Default -> hxxp://Lasaoren.com/?f=1&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
CHR StartupUrls: Default -> "hxxp://Lasaoren.com/?f=7&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir="
CHR DefaultSearchKeyword: Default -> lasaoren.com
CHR DefaultSearchURL: Default -> http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
R2 Update ClearThink; C:\Program Files (x86)\ClearThink\updateClearThink.exe [325360 2014-09-17] ()
R2 Util ClearThink; C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe [324848 2014-09-17] ()
R1 {c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64; C:\Windows\System32\drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys [44688 2014-09-17] (StdLib)
C:\Windows\System32\drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys
C:\Users\Greg\Downloads\flashplayerpro*.*
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Lasaoren
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\ProgramData\374311380
2014-09-17 08:55 - 2014-09-17 09:56 - 00000318 _____ () C:\Windows\Tasks\UpdaterEX.job
2014-09-17 08:55 - 2014-09-17 09:55 - 00000318 _____ () C:\Windows\Tasks\WSE_Lasaoren.job
2014-09-17 08:55 - 2014-09-17 09:06 - 00000000 ____D () C:\Program Files (x86)\Spyware Clear
2014-09-17 08:55 - 2014-09-17 09:04 - 00000000 ____D () C:\Program Files (x86)\ClearThink
2014-09-17 08:55 - 2014-09-17 08:56 - 00002656 _____ () C:\Windows\System32\Tasks\UpdaterEX
2014-09-17 08:55 - 2014-09-17 08:55 - 00002656 _____ () C:\Windows\System32\Tasks\WSE_Lasaoren
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\WSE_Lasaoren
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\UpdaterEX
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Program Files (x86)\WSE_Lasaoren
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\Users\Greg\Documents\Optimizer Pro
2014-09-17 09:06 - 2014-09-17 09:06 - 00000000 ____D () C:\ProgramData\Spyware Clear
2014-09-17 09:02 - 2014-09-17 08:54 - 00000000 ____D () C:\Users\Greg\AppData\Local\StormAlerts
Task: {34811A09-80A5-4100-87A1-27E24BC9D8D8} - System32\Tasks\UpdaterEX => C:\Users\Greg\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\Greg\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\WSE_Lasaoren.job => C:\Users\Greg\AppData\Roaming\WSE_LA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Emptytemp:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state on
CMD: ipconfig /flushdns
End


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.


Run FRST and press the Fix button just once and wait. The tool will make a log on the desktop (Fixlog.txt) please post it in your next reply.


Step 3: Junkware Removal Too


thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 4: AdwCleaner


Download ADWcleaner by clicking here. Please save it to your Desktop


adwcleaner2_zps680e0e15.jpg
  • Double click (Vista and 7 Users)right click the adwcleaner.exe file and click Run as Adminstrator and accept the UAC prompt to run AdwCleaner
  • Close any open windows or browsers.
  • Pause your Anti-Virus program if it is running.
  • Once it starts, click on the Scan button.
  • Let the scan complete itself. This may take a few minutes.
  • Once the scan has finished, it will say "Pending, uncheck elements you don't want to remove.", don't worry about unchecking anything and then click the Clean button. When finished, it will ask to reboot. Please reboot.
  • When the machine has rebooted, a log will be produced. Please copy/paste that in your next reply. Here's how:
    • Click the Report button and the log will open. Copy and Paste the contents of the log file into your next reply.
    This report is also saved at C:\AdwCleaner[R0].txt
Step 5: Fresh FRST Scan
  • Start Farbar's Recovery Scan Tool and press the Scan button.
  • FRST will scan your system and produce one log this time. Please post it in your next reply.
Things I need to see in your next post:

Please post each of these logs as a separate reply in this thread.

Fixlog.txt Log

Junkware Removal Tool Log

AdwCleaner Log

Fresh FRST Log

Question: How is the machine running?

I close my topics if there is no response after 3 days. Please PM a moderator or myself to reopen your topic.

Please PM me only if I'm helping you with your computer issues and I have not responded in 2 days. Please remember, I'm a volunteer and sometimes life does get in the way. :)

Please stay with me until I declare your machine clean. Absence of symptoms does not ensure your machine is clean.

If you'd like to make a donation via Paypal, please click here.





#5 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 18 September 2014 - 11:53 AM

Here is the first log.  By the way, Chrome has stopped working.

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-09-2014
Ran by Greg at 2014-09-18 12:11:06 Run:1
Running from C:\Users\Greg\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
() C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe
C:\Program Files (x86)\ClearThink
() C:\Program Files (x86)\ClearThink\bin\ClearThink.PurBrowse64.exe
() C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter64.exe
() C:\Program Files (x86)\ClearThink\updateClearThink.exe
HKLM\...\Run: [SpywareClearShield] => C:\Program Files (x86)\Spyware Clear\SpywareClearShield.exe
HKLM\...\Run: [SpywareClearUpdater] => C:\Program Files (x86)\Spyware Clear\SpywareClearUpdate.exe [5441928 2014-08-20] (Crawler.com)
C:\Program Files (x86)\Spyware Clear
SearchScopes: HKLM - DefaultScope {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
SearchScopes: HKLM - {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
SearchScopes: HKCU - DefaultScope {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
SearchScopes: HKCU - {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
BHO-x32: ClearThink -> {7e6d4e3e-fc66-4036-9799-ce5c625c4c56} -> C:\Program Files (x86)\ClearThink\ClearThinkbho.dll (ClearThink)
CHR HomePage: Default -> hxxp://Lasaoren.com/?f=1&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
CHR StartupUrls: Default -> "hxxp://Lasaoren.com/?f=7&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir="
CHR DefaultSearchKeyword: Default -> lasaoren.com
CHR DefaultSearchURL: Default -> http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_dnldstr_14_38_ie&cd=2XzuyEtN2Y1L1Qzu0Fzz0B0CtCtBzy0B0FzztBtC0CtBtDzytN0D0Tzu0SzyzytCtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StA0AyEyBtAtDyB0AtGyCtDyC0DtG0C0D0B0EtGyD0ByD0DtGtDyCzyzyzz0FyCtDzy0B0EtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyB0DzztCyC0CtDtG0EyDyB0DtGyEyD0CzytG0Bzy0C0EtGyByEyCyEzzyCtC0Bzz0Bzz0F2Q&cr=2093382581&ir=
R2 Update ClearThink; C:\Program Files (x86)\ClearThink\updateClearThink.exe [325360 2014-09-17] ()
R2 Util ClearThink; C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe [324848 2014-09-17] ()
R1 {c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64; C:\Windows\System32\drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys [44688 2014-09-17] (StdLib)
C:\Windows\System32\drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys
C:\Users\Greg\Downloads\flashplayerpro*.*
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Lasaoren
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\ProgramData\374311380
2014-09-17 08:55 - 2014-09-17 09:56 - 00000318 _____ () C:\Windows\Tasks\UpdaterEX.job
2014-09-17 08:55 - 2014-09-17 09:55 - 00000318 _____ () C:\Windows\Tasks\WSE_Lasaoren.job
2014-09-17 08:55 - 2014-09-17 09:06 - 00000000 ____D () C:\Program Files (x86)\Spyware Clear
2014-09-17 08:55 - 2014-09-17 09:04 - 00000000 ____D () C:\Program Files (x86)\ClearThink
2014-09-17 08:55 - 2014-09-17 08:56 - 00002656 _____ () C:\Windows\System32\Tasks\UpdaterEX
2014-09-17 08:55 - 2014-09-17 08:55 - 00002656 _____ () C:\Windows\System32\Tasks\WSE_Lasaoren
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\WSE_Lasaoren
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\UpdaterEX
2014-09-17 08:55 - 2014-09-17 08:55 - 00000000 ____D () C:\Program Files (x86)\WSE_Lasaoren
2014-09-17 09:00 - 2014-09-17 09:00 - 00000000 ____D () C:\Users\Greg\Documents\Optimizer Pro
2014-09-17 09:06 - 2014-09-17 09:06 - 00000000 ____D () C:\ProgramData\Spyware Clear
2014-09-17 09:02 - 2014-09-17 08:54 - 00000000 ____D () C:\Users\Greg\AppData\Local\StormAlerts
Task: {34811A09-80A5-4100-87A1-27E24BC9D8D8} - System32\Tasks\UpdaterEX => C:\Users\Greg\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\Greg\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\WSE_Lasaoren.job => C:\Users\Greg\AppData\Roaming\WSE_LA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Emptytemp:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state on
CMD: ipconfig /flushdns
End

*****************



#6 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 18 September 2014 - 12:03 PM

Chrome is working now.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.6 (09.18.2014:1)
OS: Windows 8.1 x64
Ran by Greg on Thu 09/18/2014 at 12:57:54.17
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installcore
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\optimizer pro
 
 
 
~~~ Files
 
Successfully deleted: [File] "C:\Users\Greg\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage"
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 09/18/2014 at 13:00:17.98
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#7 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 18 September 2014 - 12:13 PM

# AdwCleaner v3.310 - Report created 18/09/2014 at 13:08:05
# Updated 12/09/2014 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : Greg - BERGMAN_FAMILY
# Running from : C:\Users\Greg\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Scheduled Tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{26B19FA4-E8A1-4A1B-A163-1A1E46F830DD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKCU\Software\UpdaterEX
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17037
 
 
-\\ Google Chrome v37.0.2062.120
 
[ File : C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [2161 octets] - [18/09/2014 13:06:43]
AdwCleaner[S0].txt - [2061 octets] - [18/09/2014 13:08:05]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2121 octets] ##########


#8 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 18 September 2014 - 12:17 PM

Here is the last log.  Fresh FRST Scan

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by Greg (administrator) on BERGMAN_FAMILY on 18-09-2014 13:14:17
Running from C:\Users\Greg\Desktop
Platform: Windows 8.1 (Update 1) (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe
(DELL Inc.) C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Dell Inc.) C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132736 2013-09-05] ( (Qualcomm®Atheros®))
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
Startup: C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {A25AC313-DD19-4238-ACA2-401D6BEE4321} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - {F6A24641-B8C2-4B55-8E10-C01A25A00196} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKCU - {A25AC313-DD19-4238-ACA2-401D6BEE4321} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-09-09]
 
Chrome: 
=======
CHR HomePage: Default -> 
CHR DefaultSearchKeyword: Default -> 3B6FEC95A13769DBB90DBC3365F3B1ACDFCBC39FE2F7B09431B61BD7E5EE67DB
CHR DefaultSearchProvider: Default -> 239421B03551CA2A7C7AC29179F5B37F94C62D98E836696CDD0B01EC693AEF44
CHR DefaultSearchURL: Default -> F318D4BCE7FF684BD4A5F70723C3D4852213798409F1F17C6BA0F9D678A1FEB5
CHR Profile: C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-18]
CHR Extension: (Lasaoren New Tab) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehjldlodmkdlooagebfnaghgmkfccipn [2014-09-18]
CHR Extension: (Google Wallet) - C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-18]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [312448 2013-09-05] (Windows ® Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2169016 2014-01-02] (Microsoft Corporation)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [293440 2014-04-01] (Aviata, Inc.)
S2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [202744 2014-04-10] (Dell Inc.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-09] (Intel Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-21] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-18] (Microsoft Corporation)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-24] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [603424 2014-06-12] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-07-24] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-06-20] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-06-20] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 My Dell Client Framework; C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe [168960 2014-01-10] (Dell Inc.) [File not signed]
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-09-09] (Microsoft Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-18] (Realtek Semiconductor)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915920 2014-04-04] (SoftThinks SAS)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-21] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-21] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-30] (Microsoft Corporation)
R2 WysePocketCloud; C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe [16176 2013-08-22] ()
R2 WyseRemoteAccess; C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe [1785344 2013-08-19] (DELL Inc.) [File not signed]
S2 0150701411056481mcinstcleanup; C:\Windows\TEMP\015070~1.EXE -cleanup -nolog [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-16] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-05] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72128 2014-06-20] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [100312 2013-12-09] (Intel Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-06-20] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313544 2014-06-20] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70600 2014-06-20] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [523792 2014-06-20] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786296 2014-06-20] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [444720 2014-07-24] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-07-24] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348552 2014-06-20] (McAfee, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-30] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-18 13:14 - 2014-09-18 13:14 - 00016238 _____ () C:\Users\Greg\Desktop\FRST.txt
2014-09-18 13:14 - 2014-09-18 13:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-09-18 13:10 - 2014-09-18 13:10 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-09-18 13:07 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-18 13:04 - 2014-09-18 13:04 - 01373475 _____ () C:\Users\Greg\Downloads\AdwCleaner (1).exe
2014-09-18 13:03 - 2014-09-18 13:08 - 00000000 ____D () C:\AdwCleaner
2014-09-18 13:03 - 2014-09-18 13:03 - 01373475 _____ () C:\Users\Greg\Desktop\AdwCleaner.exe
2014-09-18 13:00 - 2014-09-18 13:00 - 00001026 _____ () C:\Users\Greg\Desktop\JRT.txt
2014-09-18 12:57 - 2014-09-18 12:57 - 01016830 _____ (Thisisu) C:\Users\Greg\Downloads\JRT (1).exe
2014-09-18 12:57 - 2014-09-18 12:57 - 00000000 ____D () C:\Windows\ERUNT
2014-09-18 12:56 - 2014-09-18 12:57 - 01016830 _____ (Thisisu) C:\Users\Greg\Downloads\JRT.exe
2014-09-17 22:32 - 2014-09-17 22:32 - 00000490 _____ () C:\Users\Greg\Desktop\asw.txt
2014-09-17 22:29 - 2014-09-17 22:29 - 05185536 _____ (AVAST Software) C:\Users\Greg\Downloads\aswmbr.exe
2014-09-17 22:25 - 2014-09-17 22:25 - 00026803 _____ () C:\Users\Greg\Downloads\Addition.txt
2014-09-17 22:24 - 2014-09-17 22:25 - 00129422 _____ () C:\Users\Greg\Downloads\FRST.txt
2014-09-17 22:23 - 2014-09-18 13:14 - 00000000 ____D () C:\FRST
2014-09-17 22:22 - 2014-09-17 22:22 - 02105856 _____ (Farbar) C:\Users\Greg\Desktop\FRST64.exe
2014-09-17 10:30 - 2014-09-17 10:30 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-09-17 10:30 - 2006-09-12 20:00 - 00234496 _____ (CANON INC.) C:\Windows\system32\CNMLM78.DLL
2014-09-17 10:22 - 2014-09-17 10:22 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\PCDr
2014-09-17 09:13 - 2014-09-17 09:13 - 00000000 ____D () C:\Users\Greg\Documents\OneNote Notebooks
2014-09-17 09:13 - 2014-05-02 12:33 - 00000118 ____H () C:\DBAR_Ver.txt
2014-09-17 09:12 - 2014-09-17 09:13 - 00000000 ____D () C:\ProgramData\softthinks
2014-09-17 09:12 - 2014-09-17 09:12 - 00000000 ____D () C:\Users\Greg\AppData\Local\softthinks
2014-09-17 09:09 - 2014-09-17 09:09 - 00244056 _____ () C:\Users\Greg\Downloads\Firefox Setup Stub 32.0.1 (1).exe
2014-09-17 09:09 - 2014-09-17 09:09 - 00003994 _____ () C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-09-17 09:09 - 2014-09-17 09:09 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-09-17 09:09 - 2014-09-17 09:09 - 00003206 _____ () C:\Windows\System32\Tasks\SystemToolsDailyTest
2014-09-17 09:08 - 2014-09-17 09:09 - 00244056 _____ () C:\Users\Greg\Downloads\Firefox Setup Stub 32.0.1.exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00857696 _____ ( ) C:\Users\Greg\Downloads\Firefox_Setup.exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00857696 _____ ( ) C:\Users\Greg\Downloads\Firefox_Setup (1).exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00284224 _____ (Mozilla) C:\Users\Greg\Downloads\Firefox_Setup_Stub_30.0.exe
2014-09-16 20:46 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys
2014-09-16 15:51 - 2014-09-16 15:51 - 00000000 __RHD () C:\MSOCache
2014-09-16 15:49 - 2014-09-18 13:10 - 00004994 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Bergman_Family-Greg Bergman_Family
2014-09-16 15:48 - 2014-09-17 09:09 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4020320634-2591791008-1635142945-1001
2014-09-16 15:48 - 2014-09-16 15:48 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-09-16 15:45 - 2014-09-16 15:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-09-16 15:44 - 2014-09-16 15:44 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-09-16 15:35 - 2014-09-16 15:35 - 00000000 ____D () C:\Windows\System32\Tasks\Aviata
2014-09-16 15:29 - 2014-09-18 13:11 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-16 15:29 - 2014-09-18 13:10 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-16 15:29 - 2014-09-18 12:12 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-16 15:29 - 2014-09-16 15:29 - 00003896 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-09-16 15:29 - 2014-09-16 15:29 - 00003660 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-09-16 15:29 - 2014-09-16 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-16 15:29 - 2014-09-16 15:29 - 00000000 ____D () C:\Program Files (x86)\Google
2014-09-16 15:28 - 2014-09-18 12:51 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5D5CFE40-AE91-483F-8E0A-C339D2A2899B}
2014-09-16 15:28 - 2014-09-16 15:29 - 00000000 ____D () C:\Users\Greg\AppData\Local\Google
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 __SHD () C:\Users\Greg\AppData\Local\EmieUserList
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 __SHD () C:\Users\Greg\AppData\Local\EmieSiteList
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Macromedia
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Deployment
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Apps\2.0
2014-09-16 15:27 - 2014-09-16 15:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-09-16 15:24 - 2014-09-18 13:03 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4020320634-2591791008-1635142945-1001
2014-09-16 15:21 - 2014-09-18 13:10 - 00000000 __RDO () C:\Users\Greg\OneDrive
2014-09-16 15:20 - 2014-09-18 12:00 - 00000000 ____D () C:\Users\Greg\Documents\Bluetooth Folder
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Intel Corporation
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\Power2Go8
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\BMExplorer
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\Aviata
2014-09-16 15:19 - 2014-09-16 22:01 - 00000000 ____D () C:\Users\Greg\AppData\Local\Packages
2014-09-16 15:19 - 2014-09-16 15:21 - 00000000 ____D () C:\Users\Greg
2014-09-16 15:19 - 2014-09-16 15:20 - 00000000 ____D () C:\ProgramData\Atheros
2014-09-16 15:19 - 2014-09-16 15:19 - 00001448 _____ () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-16 15:19 - 2014-09-16 15:19 - 00000020 ___SH () C:\Users\Greg\ntuser.ini
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Atheros
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Adobe
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Local\VirtualStore
2014-09-16 15:19 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Greg\Desktop\eBay.url
2014-09-16 15:19 - 2014-09-09 14:28 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-16 15:19 - 2014-03-18 06:06 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-09-16 15:19 - 2014-03-18 05:54 - 00000369 _____ () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-09-16 15:19 - 2014-03-18 05:54 - 00000369 _____ () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-09-16 15:19 - 2014-01-08 16:39 - 37660368 _____ (Dropbox, Inc.) C:\Users\Greg\Desktop\Install Dropbox.exe
2014-09-16 15:19 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-16 15:19 - 2013-08-22 11:36 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-09 16:16 - 2014-09-09 16:16 - 00000000 __SHD () C:\System Recovery
2014-09-09 15:20 - 2014-09-09 15:20 - 00031360 ___RH () C:\dell.sdr
2014-09-09 15:19 - 2014-09-09 15:19 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-09 15:19 - 2014-09-09 15:19 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-09 15:19 - 2014-09-09 15:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-09 15:19 - 2014-09-09 15:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-09 14:56 - 2014-01-29 22:04 - 02476976 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiVAD64.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00906224 _____ (Intel Corporation) C:\Windows\system32\igfxstarter.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00845296 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00770544 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00416240 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUMS64.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00397808 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00391152 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-09-09 14:56 - 2014-01-29 22:04 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-09-09 14:56 - 2014-01-22 17:57 - 00450520 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-09-09 14:56 - 2014-01-22 17:57 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3412.dll
2014-09-09 14:56 - 2014-01-22 17:54 - 00002944 _____ () C:\Windows\system32\iglhxs64.vp
2014-09-09 14:56 - 2014-01-22 17:51 - 21088256 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 19380224 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 09081856 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 04221440 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-09-09 14:56 - 2014-01-22 17:51 - 00733184 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00624640 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00548864 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00527872 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526848 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526848 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00524800 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00524800 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00524288 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00524288 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00523776 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00522240 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00521728 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00517632 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00516096 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00514048 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00513536 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00373760 _____ () C:\Windows\system32\igdmd64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00371200 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-09-09 14:56 - 2014-01-22 17:51 - 00346624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00279040 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-09-09 14:56 - 2014-01-22 17:51 - 00243712 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00222208 _____ () C:\Windows\system32\igdde64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00160256 _____ () C:\Windows\system32\igdail64.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00066560 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00029696 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-09-09 14:56 - 2014-01-22 17:51 - 00012288 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 25971712 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 18629632 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 03224064 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00493056 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00329216 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00299520 _____ () C:\Windows\SysWOW64\igdmd32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00182272 _____ () C:\Windows\SysWOW64\igdde32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00142848 _____ () C:\Windows\SysWOW64\igdail32.dll
2014-09-09 14:56 - 2014-01-22 17:48 - 00025600 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-09-09 14:56 - 2014-01-22 17:44 - 20954112 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2014-09-09 14:56 - 2014-01-22 17:44 - 02896384 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2014-09-09 14:56 - 2014-01-22 17:44 - 00290816 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2014-09-09 14:56 - 2014-01-22 17:36 - 00241664 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-09-09 14:56 - 2014-01-22 17:36 - 00193536 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 04474368 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 04011168 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAAC64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 02813952 _____ () C:\Windows\system32\iglhxa64.cpa
2014-09-09 14:56 - 2014-01-22 17:35 - 02065920 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 01815040 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 01450656 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 01127424 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 01123328 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00785568 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00644768 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAudioFilter64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00602272 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMux64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00344736 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00214528 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00210592 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUtils64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00179712 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00177824 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiDDEAgent64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00163328 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00155136 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00137728 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00133120 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00128672 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMCUMD64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00094368 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiLogServer64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2014-09-09 14:56 - 2014-01-22 17:35 - 00044025 _____ () C:\Windows\system32\iglhxo64.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00043816 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00043494 _____ () C:\Windows\system32\iglhxc64.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00043298 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00043256 _____ () C:\Windows\system32\iglhxg64.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00042079 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-09-09 14:56 - 2014-01-22 17:35 - 00001125 _____ () C:\Windows\system32\iglhxa64.vp
2014-09-09 14:56 - 2014-01-22 17:34 - 03558912 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2014-09-09 14:56 - 2013-08-16 15:13 - 03859968 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athwbx.sys
2014-09-09 14:55 - 2014-01-29 22:04 - 07597040 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00771568 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00755184 _____ (Intel Corporation) C:\Windows\system32\GfxUIHotKeyMenu.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00530928 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00397296 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2014-09-09 14:55 - 2014-01-29 22:04 - 00153072 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2014-09-09 14:55 - 2014-01-22 17:51 - 07947776 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll
2014-09-09 14:55 - 2014-01-22 17:51 - 02384896 _____ () C:\Windows\system32\GfxRes.dll
2014-09-09 14:55 - 2014-01-22 17:51 - 00267407 _____ () C:\Windows\system32\Gfxres.th-TH.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00253466 _____ () C:\Windows\system32\Gfxres.el-GR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00235401 _____ () C:\Windows\system32\Gfxres.ru-RU.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00224256 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2014-09-09 14:55 - 2014-01-22 17:51 - 00201128 _____ () C:\Windows\system32\Gfxres.ar-SA.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00198725 _____ () C:\Windows\system32\Gfxres.ja-JP.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00194560 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-09-09 14:55 - 2014-01-22 17:51 - 00192758 _____ () C:\Windows\system32\Gfxres.he-IL.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00180936 _____ () C:\Windows\system32\Gfxres.ko-KR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00180850 _____ () C:\Windows\system32\Gfxres.it-IT.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00178473 _____ () C:\Windows\system32\Gfxres.es-ES.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00178290 _____ () C:\Windows\system32\Gfxres.fr-FR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00178123 _____ () C:\Windows\system32\Gfxres.de-DE.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00176838 _____ () C:\Windows\system32\Gfxres.ro-RO.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00175862 _____ () C:\Windows\system32\Gfxres.hu-HU.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00175571 _____ () C:\Windows\system32\Gfxres.tr-TR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00175067 _____ () C:\Windows\system32\Gfxres.nl-NL.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00174802 _____ () C:\Windows\system32\Gfxres.pl-PL.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00174269 _____ () C:\Windows\system32\Gfxres.pt-BR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00173792 _____ () C:\Windows\system32\Gfxres.fi-FI.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00173276 _____ () C:\Windows\system32\Gfxres.sk-SK.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00173059 _____ () C:\Windows\system32\Gfxres.sv-SE.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00172833 _____ () C:\Windows\system32\Gfxres.pt-PT.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00172554 _____ () C:\Windows\system32\Gfxres.cs-CZ.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00171691 _____ () C:\Windows\system32\Gfxres.hr-HR.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00168215 _____ () C:\Windows\system32\Gfxres.sl-SI.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00166833 _____ () C:\Windows\system32\Gfxres.nb-NO.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00166220 _____ () C:\Windows\system32\Gfxres.da-DK.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00161534 _____ () C:\Windows\system32\Gfxres.en-US.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00154805 _____ () C:\Windows\system32\Gfxres.zh-TW.resources
2014-09-09 14:55 - 2014-01-22 17:51 - 00152993 _____ () C:\Windows\system32\Gfxres.zh-CN.resources
2014-09-09 14:55 - 2014-01-22 17:48 - 20433408 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2014-09-09 14:55 - 2014-01-22 17:48 - 06289408 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll
2014-09-09 14:55 - 2014-01-22 17:35 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-09-09 14:54 - 2014-09-09 14:54 - 00054841 _____ () C:\Windows\system32\DISMLog.log
2014-09-09 14:54 - 2013-12-09 18:27 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-09-09 14:54 - 2013-12-09 18:27 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-09-09 14:54 - 2013-08-01 22:40 - 00644968 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2014-09-09 14:54 - 2013-06-21 21:35 - 00816344 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys
2014-09-09 14:54 - 2013-06-21 21:35 - 00074456 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-09-09 14:52 - 2014-09-09 14:52 - 00003934 _____ () C:\Windows\SysWOW64\Drivers\1028_Dell_INS_3847.mrk
2014-09-09 14:52 - 2014-09-09 14:52 - 00003934 _____ () C:\Windows\system32\Drivers\1028_Dell_INS_3847.mrk
2014-09-09 14:51 - 2014-09-09 14:51 - 00000012 _____ () C:\Windows\csup.txt
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files\MSBuild
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-09-09 14:50 - 2014-03-18 09:59 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-09-09 14:50 - 2014-03-18 09:59 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2014-09-09 14:50 - 2014-03-18 09:59 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-09-09 14:50 - 2014-03-18 09:59 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-09-09 14:50 - 2014-03-18 09:59 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-09-09 14:50 - 2014-03-18 09:59 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-09-09 14:47 - 2014-09-09 14:50 - 00000000 ____D () C:\Windows\Scratch
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Windows\System32\Tasks\Dell
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\ProgramData\Aviata
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Program Files (x86)\Dell Product Registration
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Program Files (x86)\Dell
2014-09-09 14:47 - 2014-03-18 05:55 - 00035397 _____ () C:\Windows\Core.xml
2014-09-09 14:47 - 2014-01-08 16:39 - 37660368 _____ (Dropbox, Inc.) C:\Users\Default\Desktop\Install Dropbox.exe
2014-09-09 14:47 - 2014-01-08 16:39 - 37660368 _____ (Dropbox, Inc.) C:\Users\Default User\Desktop\Install Dropbox.exe
2014-09-09 14:46 - 2014-09-16 15:19 - 00000000 ____D () C:\Windows\Panther
2014-09-09 14:46 - 2014-09-09 16:00 - 00000000 ____D () C:\DELL
2014-09-09 14:46 - 2014-09-09 14:46 - 00000000 ____D () C:\Temp
2014-09-09 14:44 - 2014-09-18 13:11 - 00000000 ____D () C:\Program Files (x86)\Dell Backup and Recovery
2014-09-09 14:42 - 2014-09-18 12:07 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2014-09-09 14:42 - 2014-09-18 12:07 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-09-09 14:42 - 2014-09-16 20:45 - 00000000 ____D () C:\ProgramData\McAfee
2014-09-09 14:42 - 2014-09-09 14:43 - 00000000 ____D () C:\Program Files\mcafee
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files\mcafee.com
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\mcafee.com
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\Dell Update
2014-09-09 14:42 - 2014-06-20 10:30 - 00189912 _____ (McAfee, Inc.) C:\Windows\system32\mfevtps.exe
2014-09-09 14:41 - 2014-09-17 10:21 - 00000000 ____D () C:\ProgramData\PCDr
2014-09-09 14:41 - 2014-09-09 14:47 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-09-09 14:41 - 2014-09-09 14:41 - 00002223 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon.lnk
2014-09-09 14:41 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Default\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Default User\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Windows\eBayDesktopShortcut
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files\My Dell
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-09-09 14:41 - 2013-07-09 17:58 - 00263896 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2014-09-09 14:41 - 2013-04-25 22:12 - 09889352 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUStoricon.dll
2014-09-09 14:38 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Dell Wireless
2014-09-09 14:38 - 2014-09-09 14:39 - 00000000 ____D () C:\Program Files\Common Files\QCA_Bluetooth
2014-09-09 14:38 - 2014-09-09 14:38 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2014-09-09 14:38 - 2014-09-09 14:38 - 00000000 ____D () C:\Windows\Options
2014-09-09 14:38 - 2013-09-05 03:32 - 00011307 ____N () C:\Windows\system32\athwbx.cat
2014-09-09 14:38 - 2013-08-15 23:13 - 03859968 ____N (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\athwbx.sys
2014-09-09 14:37 - 2014-09-09 14:46 - 00000000 ____D () C:\ProgramData\Dell
2014-09-09 14:37 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-09-09 14:37 - 2014-09-09 14:37 - 00880342 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-09 14:37 - 2014-09-09 14:37 - 00849522 _____ () C:\Windows\system32\Drivers\rtwavesskdy.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00188557 _____ () C:\Windows\system32\Drivers\rtwaves40.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00017972 _____ () C:\Windows\system32\Drivers\rtwavesvpcap.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Intel
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files\Realtek
2014-09-09 14:37 - 2013-12-09 18:27 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-09-09 14:37 - 2013-08-14 00:19 - 03588184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-09-09 14:37 - 2013-08-13 20:41 - 00147160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-09-09 14:37 - 2013-08-13 19:49 - 00626293 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-09-09 14:37 - 2013-08-13 18:22 - 02796248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-09-09 14:37 - 2013-08-13 18:04 - 31171584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCORES64.dat
2014-09-09 14:37 - 2013-08-09 19:45 - 02585304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-09-09 14:37 - 2013-08-08 23:57 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-09-09 14:37 - 2013-08-07 21:41 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-09-09 14:37 - 2013-08-06 08:56 - 06219096 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-09-09 14:37 - 2013-08-06 08:56 - 01908568 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-09-09 14:37 - 2013-08-06 08:56 - 00312152 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-09-09 14:37 - 2013-08-06 08:56 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-09-09 14:37 - 2013-08-05 22:11 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-09-09 14:37 - 2013-08-03 00:16 - 01005784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-09-09 14:37 - 2013-08-01 14:59 - 05694760 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-09-09 14:37 - 2013-07-30 18:04 - 00397080 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2014-09-09 14:37 - 2013-07-30 17:18 - 01994008 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2014-09-09 14:37 - 2013-07-30 17:18 - 01725720 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2014-09-09 14:37 - 2013-07-28 14:48 - 27518208 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-09-09 14:37 - 2013-07-26 18:05 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 02032896 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 01044736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 00933120 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 00660224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-09-09 14:37 - 2013-07-24 14:07 - 00650496 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-09-09 14:37 - 2013-07-23 19:40 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-09-09 14:37 - 2013-07-23 19:39 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-09-09 14:37 - 2013-07-23 19:39 - 01916672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-09-09 14:37 - 2013-07-23 19:39 - 01399040 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek364.dll
2014-09-09 14:37 - 2013-07-23 19:39 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-09-09 14:37 - 2013-07-22 20:36 - 00194816 _____ (Waves Audio) C:\Windows\system32\MaxxAudioVienna264.dll
2014-09-09 14:37 - 2013-06-06 01:42 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-09-09 14:37 - 2013-04-24 21:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-09-09 14:37 - 2013-04-23 18:54 - 00154184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkXInterface64.dll
2014-09-09 14:37 - 2013-02-20 21:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-09-09 14:37 - 2013-01-11 19:27 - 00628504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll
2014-09-09 14:37 - 2013-01-11 19:27 - 00563992 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll
2014-09-09 14:37 - 2012-11-14 14:41 - 00378000 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2014-09-09 14:37 - 2012-08-31 23:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-09-09 14:37 - 2012-08-31 23:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-09-09 14:37 - 2012-08-31 23:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-09-09 14:37 - 2012-08-31 23:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-09-09 14:37 - 2012-08-31 23:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-09-09 14:37 - 2012-07-16 01:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-09-09 14:37 - 2012-06-08 20:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2014-09-09 14:37 - 2012-06-08 20:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2014-09-09 14:37 - 2012-03-08 14:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-09-09 14:37 - 2011-12-20 18:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-09-09 14:37 - 2011-12-16 17:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2014-09-09 14:37 - 2011-11-22 19:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-09-09 14:37 - 2011-05-31 13:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-09-09 14:37 - 2010-11-08 10:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-09-09 14:37 - 2010-11-03 22:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-09-09 14:37 - 2010-09-27 13:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-09-09 14:37 - 2009-11-24 12:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-09-09 14:37 - 2009-11-24 12:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-09-09 14:37 - 2009-11-24 12:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-09-09 14:37 - 2009-11-24 12:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-09-09 14:37 - 2009-11-18 10:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2014-09-09 14:36 - 2014-09-09 14:36 - 00000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-09-09 14:36 - 2014-09-09 14:36 - 00000000 ____D () C:\Users\Public\CyberLink
2014-09-09 14:35 - 2014-09-09 14:36 - 00000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-09-09 14:34 - 2014-09-09 14:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2014-09-09 14:34 - 2014-09-09 14:36 - 00000000 ____D () C:\ProgramData\install_clap
2014-09-09 14:34 - 2014-09-09 14:36 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-09-09 14:34 - 2014-09-09 14:35 - 00000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-09-09 14:34 - 2014-09-09 14:34 - 00003160 _____ () C:\Windows\System32\Tasks\CLVDLauncher
2014-09-09 14:34 - 2014-09-09 14:34 - 00003160 _____ () C:\Windows\System32\Tasks\CLMLSvc_P2G8
2014-09-09 14:34 - 2014-09-09 14:34 - 00000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-09-09 14:34 - 2013-03-05 15:01 - 00091712 _____ (CyberLink) C:\Windows\system32\Drivers\CLVirtualDrive.sys
2014-09-09 14:33 - 2014-09-09 14:47 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-09 14:33 - 2014-09-09 14:36 - 00000000 ____D () C:\ProgramData\Temp
2014-09-09 14:33 - 2014-09-09 14:36 - 00000000 ____D () C:\ProgramData\CyberLink
2014-09-09 14:33 - 2014-09-09 14:34 - 00000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2014-09-09 14:33 - 2014-09-09 14:34 - 00000000 ____D () C:\ProgramData\CLSK
2014-09-09 14:32 - 2014-09-09 14:32 - 00003384 _____ () C:\Windows\System32\Tasks\PocketCloudUpdater
2014-09-09 14:32 - 2014-09-09 14:32 - 00003172 _____ () C:\Windows\System32\Tasks\PocketCloudVirtualChannel
2014-09-09 14:32 - 2014-09-09 14:32 - 00003070 _____ () C:\Windows\System32\Tasks\PocketCloud
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\PocketCloud
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wyse
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\Program Files (x86)\Wyse
2014-09-09 14:30 - 2014-09-09 14:30 - 21232792 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 18679216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 16875520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 13286400 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 12732416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 11791360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 08653824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 06641152 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 05833728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 05770752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 04268544 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02900992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02641920 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02519384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 02479616 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02373784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 02331000 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02270208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02088160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 02030080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01679128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 01542768 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01466864 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01339240 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01306624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01200296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01112536 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01095488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01066496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00958464 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00839168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00836096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00731648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00567296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00565536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00518552 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00492256 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00488280 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00467800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-09-09 14:30 - 2014-09-09 14:30 - 00467504 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00463264 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-09-09 14:30 - 2014-09-09 14:30 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00406912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00406512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00402944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00390488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00388408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00387210 _____ () C:\Windows\system32\ApnDatabase.xml
2014-09-09 14:30 - 2014-09-09 14:30 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00360512 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00356848 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00355832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00244888 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00180056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00136024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00113648 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00094016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-09-09 14:27 - 2014-04-09 08:00 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-09-09 14:27 - 2014-04-08 23:32 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-09-09 14:27 - 2014-04-08 23:31 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-09-09 14:27 - 2014-04-08 23:23 - 01705984 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-09-09 14:27 - 2014-04-08 23:21 - 03408896 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-09-09 14:27 - 2014-03-08 03:53 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-09-09 14:27 - 2014-03-08 03:12 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-09-09 14:27 - 2014-03-08 02:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-09-09 14:27 - 2014-02-26 02:48 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\lockscreencn.dll
2014-09-09 14:26 - 2014-09-18 12:12 - 01867106 _____ () C:\Windows\WindowsUpdate.log
2014-09-09 14:26 - 2014-03-08 04:30 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2014-09-09 14:26 - 2014-03-08 02:37 - 02843136 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-09-09 14:26 - 2014-03-08 02:22 - 01035264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-09-09 14:26 - 2014-03-08 01:56 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-09-09 14:26 - 2014-03-08 01:51 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-09-09 14:26 - 2013-10-30 20:29 - 00236888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-09-09 14:26 - 2013-10-30 20:29 - 00124760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-09-09 14:26 - 2013-10-30 20:28 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-09-09 14:22 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files\Intel
2014-09-09 14:22 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-09-09 14:22 - 2014-09-09 14:22 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-09-09 14:22 - 2014-09-09 14:22 - 00000000 ____D () C:\Intel
2014-09-09 14:22 - 2014-01-22 17:35 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2014-09-09 14:22 - 2014-01-22 17:35 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-18 13:14 - 2014-09-18 13:14 - 00016238 _____ () C:\Users\Greg\Desktop\FRST.txt
2014-09-18 13:14 - 2014-09-18 13:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-09-18 13:14 - 2014-09-17 22:23 - 00000000 ____D () C:\FRST
2014-09-18 13:13 - 2014-03-18 05:53 - 00865408 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-18 13:11 - 2014-09-16 15:29 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-18 13:11 - 2014-09-09 14:44 - 00000000 ____D () C:\Program Files (x86)\Dell Backup and Recovery
2014-09-18 13:10 - 2014-09-18 13:10 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-09-18 13:10 - 2014-09-16 15:49 - 00004994 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Bergman_Family-Greg Bergman_Family
2014-09-18 13:10 - 2014-09-16 15:29 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-18 13:10 - 2014-09-16 15:21 - 00000000 __RDO () C:\Users\Greg\OneDrive
2014-09-18 13:09 - 2014-03-18 05:44 - 00012226 _____ () C:\Windows\PFRO.log
2014-09-18 13:09 - 2013-08-22 10:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-18 13:09 - 2013-08-22 09:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-09-18 13:08 - 2014-09-18 13:03 - 00000000 ____D () C:\AdwCleaner
2014-09-18 13:04 - 2014-09-18 13:04 - 01373475 _____ () C:\Users\Greg\Downloads\AdwCleaner (1).exe
2014-09-18 13:03 - 2014-09-18 13:03 - 01373475 _____ () C:\Users\Greg\Desktop\AdwCleaner.exe
2014-09-18 13:03 - 2014-09-16 15:24 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4020320634-2591791008-1635142945-1001
2014-09-18 13:00 - 2014-09-18 13:00 - 00001026 _____ () C:\Users\Greg\Desktop\JRT.txt
2014-09-18 13:00 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\system32\sru
2014-09-18 12:57 - 2014-09-18 12:57 - 01016830 _____ (Thisisu) C:\Users\Greg\Downloads\JRT (1).exe
2014-09-18 12:57 - 2014-09-18 12:57 - 00000000 ____D () C:\Windows\ERUNT
2014-09-18 12:57 - 2014-09-18 12:56 - 01016830 _____ (Thisisu) C:\Users\Greg\Downloads\JRT.exe
2014-09-18 12:51 - 2014-09-16 15:28 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5D5CFE40-AE91-483F-8E0A-C339D2A2899B}
2014-09-18 12:12 - 2014-09-16 15:29 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-18 12:12 - 2014-09-09 14:26 - 01867106 _____ () C:\Windows\WindowsUpdate.log
2014-09-18 12:07 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2014-09-18 12:07 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-09-18 12:00 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\Documents\Bluetooth Folder
2014-09-18 05:45 - 2013-08-22 09:25 - 00000226 _____ () C:\Windows\win.ini
2014-09-17 22:38 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-09-17 22:32 - 2014-09-17 22:32 - 00000490 _____ () C:\Users\Greg\Desktop\asw.txt
2014-09-17 22:31 - 2013-08-22 11:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-09-17 22:29 - 2014-09-17 22:29 - 05185536 _____ (AVAST Software) C:\Users\Greg\Downloads\aswmbr.exe
2014-09-17 22:25 - 2014-09-17 22:25 - 00026803 _____ () C:\Users\Greg\Downloads\Addition.txt
2014-09-17 22:25 - 2014-09-17 22:24 - 00129422 _____ () C:\Users\Greg\Downloads\FRST.txt
2014-09-17 22:22 - 2014-09-17 22:22 - 02105856 _____ (Farbar) C:\Users\Greg\Desktop\FRST64.exe
2014-09-17 10:30 - 2014-09-17 10:30 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-09-17 10:22 - 2014-09-17 10:22 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\PCDr
2014-09-17 10:21 - 2014-09-09 14:41 - 00000000 ____D () C:\ProgramData\PCDr
2014-09-17 09:13 - 2014-09-17 09:13 - 00000000 ____D () C:\Users\Greg\Documents\OneNote Notebooks
2014-09-17 09:13 - 2014-09-17 09:12 - 00000000 ____D () C:\ProgramData\softthinks
2014-09-17 09:12 - 2014-09-17 09:12 - 00000000 ____D () C:\Users\Greg\AppData\Local\softthinks
2014-09-17 09:09 - 2014-09-17 09:09 - 00244056 _____ () C:\Users\Greg\Downloads\Firefox Setup Stub 32.0.1 (1).exe
2014-09-17 09:09 - 2014-09-17 09:09 - 00003994 _____ () C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-09-17 09:09 - 2014-09-17 09:09 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-09-17 09:09 - 2014-09-17 09:09 - 00003206 _____ () C:\Windows\System32\Tasks\SystemToolsDailyTest
2014-09-17 09:09 - 2014-09-17 09:08 - 00244056 _____ () C:\Users\Greg\Downloads\Firefox Setup Stub 32.0.1.exe
2014-09-17 09:09 - 2014-09-16 15:48 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4020320634-2591791008-1635142945-1001
2014-09-17 09:05 - 2013-08-22 09:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-09-17 09:04 - 2013-08-22 10:44 - 00379528 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-17 08:54 - 2014-09-17 08:54 - 00857696 _____ ( ) C:\Users\Greg\Downloads\Firefox_Setup.exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00857696 _____ ( ) C:\Users\Greg\Downloads\Firefox_Setup (1).exe
2014-09-17 08:54 - 2014-09-17 08:54 - 00284224 _____ (Mozilla) C:\Users\Greg\Downloads\Firefox_Setup_Stub_30.0.exe
2014-09-16 22:01 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Local\Packages
2014-09-16 20:45 - 2014-09-09 14:42 - 00000000 ____D () C:\ProgramData\McAfee
2014-09-16 20:45 - 2013-08-22 11:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-09-16 15:51 - 2014-09-16 15:51 - 00000000 __RHD () C:\MSOCache
2014-09-16 15:48 - 2014-09-16 15:48 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-09-16 15:45 - 2014-09-16 15:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-09-16 15:44 - 2014-09-16 15:44 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-09-16 15:35 - 2014-09-16 15:35 - 00000000 ____D () C:\Windows\System32\Tasks\Aviata
2014-09-16 15:29 - 2014-09-16 15:29 - 00003896 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-09-16 15:29 - 2014-09-16 15:29 - 00003660 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-09-16 15:29 - 2014-09-16 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-16 15:29 - 2014-09-16 15:29 - 00000000 ____D () C:\Program Files (x86)\Google
2014-09-16 15:29 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Google
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 __SHD () C:\Users\Greg\AppData\Local\EmieUserList
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 __SHD () C:\Users\Greg\AppData\Local\EmieSiteList
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Macromedia
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Deployment
2014-09-16 15:28 - 2014-09-16 15:28 - 00000000 ____D () C:\Users\Greg\AppData\Local\Apps\2.0
2014-09-16 15:27 - 2014-09-16 15:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-09-16 15:27 - 2013-08-22 10:46 - 00013993 _____ () C:\Windows\setupact.log
2014-09-16 15:21 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Intel Corporation
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\Power2Go8
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\BMExplorer
2014-09-16 15:20 - 2014-09-16 15:20 - 00000000 ____D () C:\Users\Greg\AppData\Local\Aviata
2014-09-16 15:20 - 2014-09-16 15:19 - 00000000 ____D () C:\ProgramData\Atheros
2014-09-16 15:19 - 2014-09-16 15:19 - 00001448 _____ () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-16 15:19 - 2014-09-16 15:19 - 00000020 ___SH () C:\Users\Greg\ntuser.ini
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Atheros
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Roaming\Adobe
2014-09-16 15:19 - 2014-09-16 15:19 - 00000000 ____D () C:\Users\Greg\AppData\Local\VirtualStore
2014-09-16 15:19 - 2014-09-09 14:46 - 00000000 ____D () C:\Windows\Panther
2014-09-16 15:09 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\rescache
2014-09-09 16:16 - 2014-09-09 16:16 - 00000000 __SHD () C:\System Recovery
2014-09-09 16:00 - 2014-09-09 14:46 - 00000000 ____D () C:\DELL
2014-09-09 15:20 - 2014-09-09 15:20 - 00031360 ___RH () C:\dell.sdr
2014-09-09 15:19 - 2014-09-09 15:19 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-09 15:19 - 2014-09-09 15:19 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-09 15:19 - 2014-09-09 15:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-09 15:19 - 2014-09-09 15:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-09 14:58 - 2013-08-22 11:37 - 00002899 _____ () C:\Windows\DtcInstall.log
2014-09-09 14:54 - 2014-09-09 14:54 - 00054841 _____ () C:\Windows\system32\DISMLog.log
2014-09-09 14:52 - 2014-09-09 14:52 - 00003934 _____ () C:\Windows\SysWOW64\Drivers\1028_Dell_INS_3847.mrk
2014-09-09 14:52 - 2014-09-09 14:52 - 00003934 _____ () C:\Windows\system32\Drivers\1028_Dell_INS_3847.mrk
2014-09-09 14:51 - 2014-09-09 14:51 - 00000012 _____ () C:\Windows\csup.txt
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files\MSBuild
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-09-09 14:50 - 2014-09-09 14:50 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-09-09 14:50 - 2014-09-09 14:47 - 00000000 ____D () C:\Windows\Scratch
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Windows\System32\Tasks\Dell
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\ProgramData\Aviata
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Program Files (x86)\Dell Product Registration
2014-09-09 14:47 - 2014-09-09 14:47 - 00000000 ____D () C:\Program Files (x86)\Dell
2014-09-09 14:47 - 2014-09-09 14:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-09-09 14:47 - 2014-09-09 14:33 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-09 14:46 - 2014-09-09 14:46 - 00000000 ____D () C:\Temp
2014-09-09 14:46 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Dell
2014-09-09 14:46 - 2013-08-22 11:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2014-09-09 14:46 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\system32\Recovery
2014-09-09 14:43 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files\mcafee
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files\mcafee.com
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\mcafee.com
2014-09-09 14:42 - 2014-09-09 14:42 - 00000000 ____D () C:\Program Files (x86)\Dell Update
2014-09-09 14:41 - 2014-09-16 15:19 - 00000141 _____ () C:\Users\Greg\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00002223 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon.lnk
2014-09-09 14:41 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Default\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00000141 _____ () C:\Users\Default User\Desktop\eBay.url
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Windows\eBayDesktopShortcut
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files\My Dell
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2014-09-09 14:41 - 2014-09-09 14:41 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-09-09 14:41 - 2014-09-09 14:38 - 00000000 ____D () C:\Program Files (x86)\Dell Wireless
2014-09-09 14:41 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-09-09 14:39 - 2014-09-09 14:38 - 00000000 ____D () C:\Program Files\Common Files\QCA_Bluetooth
2014-09-09 14:38 - 2014-09-09 14:38 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2014-09-09 14:38 - 2014-09-09 14:38 - 00000000 ____D () C:\Windows\Options
2014-09-09 14:37 - 2014-09-09 14:37 - 00880342 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-09 14:37 - 2014-09-09 14:37 - 00849522 _____ () C:\Windows\system32\Drivers\rtwavesskdy.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00188557 _____ () C:\Windows\system32\Drivers\rtwaves40.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00017972 _____ () C:\Windows\system32\Drivers\rtwavesvpcap.dat
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\Intel
2014-09-09 14:37 - 2014-09-09 14:37 - 00000000 ____D () C:\Program Files\Realtek
2014-09-09 14:37 - 2014-09-09 14:22 - 00000000 ____D () C:\Program Files\Intel
2014-09-09 14:37 - 2014-09-09 14:22 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-09-09 14:37 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-09 14:36 - 2014-09-09 14:36 - 00000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-09-09 14:36 - 2014-09-09 14:36 - 00000000 ____D () C:\Users\Public\CyberLink
2014-09-09 14:36 - 2014-09-09 14:35 - 00000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-09-09 14:36 - 2014-09-09 14:34 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2014-09-09 14:36 - 2014-09-09 14:34 - 00000000 ____D () C:\ProgramData\install_clap
2014-09-09 14:36 - 2014-09-09 14:34 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-09-09 14:36 - 2014-09-09 14:33 - 00000000 ____D () C:\ProgramData\Temp
2014-09-09 14:36 - 2014-09-09 14:33 - 00000000 ____D () C:\ProgramData\CyberLink
2014-09-09 14:35 - 2014-09-09 14:34 - 00000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-09-09 14:34 - 2014-09-09 14:34 - 00003160 _____ () C:\Windows\System32\Tasks\CLVDLauncher
2014-09-09 14:34 - 2014-09-09 14:34 - 00003160 _____ () C:\Windows\System32\Tasks\CLMLSvc_P2G8
2014-09-09 14:34 - 2014-09-09 14:34 - 00000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-09-09 14:34 - 2014-09-09 14:33 - 00000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2014-09-09 14:34 - 2014-09-09 14:33 - 00000000 ____D () C:\ProgramData\CLSK
2014-09-09 14:32 - 2014-09-09 14:32 - 00003384 _____ () C:\Windows\System32\Tasks\PocketCloudUpdater
2014-09-09 14:32 - 2014-09-09 14:32 - 00003172 _____ () C:\Windows\System32\Tasks\PocketCloudVirtualChannel
2014-09-09 14:32 - 2014-09-09 14:32 - 00003070 _____ () C:\Windows\System32\Tasks\PocketCloud
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\PocketCloud
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wyse
2014-09-09 14:32 - 2014-09-09 14:32 - 00000000 ____D () C:\Program Files (x86)\Wyse
2014-09-09 14:30 - 2014-09-09 14:30 - 21232792 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 18679216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 16875520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 13286400 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 12732416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 11791360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 08653824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 06641152 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 05833728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 05770752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 04268544 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02900992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02641920 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02519384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 02479616 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02373784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 02331000 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02270208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02088160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 02030080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 02013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01679128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 01542768 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01466864 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01339240 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01306624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01200296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01112536 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01095488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01066496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00958464 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00839168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00836096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00731648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00567296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00565536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00518552 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00492256 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00488280 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00467800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-09-09 14:30 - 2014-09-09 14:30 - 00467504 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00463264 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-09-09 14:30 - 2014-09-09 14:30 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00406912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00406512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00402944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00390488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00388408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00387210 _____ () C:\Windows\system32\ApnDatabase.xml
2014-09-09 14:30 - 2014-09-09 14:30 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00360512 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00356848 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00355832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-09-09 14:30 - 2014-09-09 14:30 - 00262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00244888 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00180056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00136024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00113648 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00094016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-09-09 14:30 - 2014-09-09 14:30 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-09-09 14:30 - 2014-09-09 14:30 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-09-09 14:30 - 2014-09-09 14:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-09-09 14:30 - 2013-08-22 11:36 - 00000000 ___RD () C:\Windows\ToastData
2014-09-09 14:30 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\system32\setup
2014-09-09 14:28 - 2014-09-16 15:19 - 00000000 ___RD () C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\FileManager
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Windows\Camera
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-09-09 14:28 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-09-09 14:22 - 2014-09-09 14:22 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-09-09 14:22 - 2014-09-09 14:22 - 00000000 ____D () C:\Intel
 
Some content of TEMP:
====================
C:\Users\Greg\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-09-09 14:21
 
==================== End Of Log ============================


#9 pystryker

pystryker

  • Malware Response Team
  • 730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:59 PM

Posted 18 September 2014 - 07:50 PM

Looking good, a few more steps to go. However, the fixlog.txt log was incomplete. There should be another section showing the results of the first fixlist we did. Please post it along with the other requested logs. :thumbsup: How is the machine running?

Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.

Step 1: Remove Chrome Extension


There is an extension in Chrome that need to be removed, please follow the instructions below to remove it.

Start Chrome and type this into the address bar: chrome:extensions

This will display a page of all the installed extensions. Please remove the extension Lasaoren by clicking the trash can icon.

Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.

Step 2: Fix with FRST
  • Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy.
  • Right-click in the open notepad and select Paste).
  • Save it on the desktop as fixlist.txt

Start
C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehjldlodmkdlooagebfnaghgmkfccipn
End


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.


Run FRST and press the Fix button just once and wait. The tool will make a log on the desktop (Fixlog.txt) please post it in your next reply.
Step 3: Scan with Malwarebytes


Please download Malwarebytes Anti-Malware to your desktop
Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

MBAMsettings_zpsb6b9ada0.jpg

Go back to the Dashboard and select Scan Now

MBAMScan_zps8ba7d192.jpg

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot_zps9089ab30.jpg

MBAMLog_zpsade07f42.jpg

On completion of the scan (or after the reboot), start MBAM,

Click History, then Application Logs, then check the Select box by the first Scan Log in the list.

Click View, then click Export, select text file and save to the desktop as MBAM.txt and post in your next reply.



Step 4: Scan with ESET Online Scanner


Please note: You can use Internet Explorer or Firefox for this step. Either browser used will have to be ran in admin mode.

Right click on either the Internet Explorer icon or the Firefox icon in the Start Menu or Quick Launch Bar on the Task bar and select Run as Administrator from the menu.

If you use Firefox, you will be prompted to download esetsmartinstaller_enu.exe. Please do so, then double click it to install it.

Please click on this link and then click the ESET Online Scanner bar ---->esetbar_zps93905f48.jpg
  • Select the option YES, I accept the Terms of Use then click on Start
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked.
  • Make sure that the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
  • Scan for potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth Technology
  • Now click on Start
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically. The scan may take several hours.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • Now click on Finish
  • Use notepad to open the logfile located at C:\Program Files(x86)\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.
Step 5: SecurityCheck Scan


Download Security Checksecuritycheck_zpsb7736812.jpg by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • NOTE: If SecurityCheck aborts and you get the following message: UNSUPPORTED OPERATING SYSTEM! ABORTED! try rebooting the system and then run SecurityCheck again.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Things I need to see in your next post:
  • Bot fixlog.txt logs
  • ESET Scan Log
  • MBAM Log
  • SecurityCheck Log

I close my topics if there is no response after 3 days. Please PM a moderator or myself to reopen your topic.

Please PM me only if I'm helping you with your computer issues and I have not responded in 2 days. Please remember, I'm a volunteer and sometimes life does get in the way. :)

Please stay with me until I declare your machine clean. Absence of symptoms does not ensure your machine is clean.

If you'd like to make a donation via Paypal, please click here.





#10 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 19 September 2014 - 01:14 PM

Log file from step 2

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-09-2014
Ran by Greg at 2014-09-19 14:11:02 Run:2
Running from C:\Users\Greg\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
Start
C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehjldlodmkdlooagebfnaghgmkfccipn
End
*****************
 
"C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehjldlodmkdlooagebfnaghgmkfccipn" => File/Directory not found.
 
==== End of Fixlog ====


#11 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 19 September 2014 - 01:33 PM

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 9/19/2014
Scan Time: 2:16:13 PM
Logfile: MBAM.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.09.19.05
Rootkit Database: v2014.09.18.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Greg
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 298510
Time Elapsed: 5 min, 15 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 3
PUP.Optional.ClearThink.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{7E6D4E3E-FC66-4036-9799-CE5C625C4C56}, Quarantined, [0616fef14536ce68ca4eaade1fe3ea16], 
PUP.Optional.ClearThink.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{7E6D4E3E-FC66-4036-9799-CE5C625C4C56}, Quarantined, [0616fef14536ce68ca4eaade1fe3ea16], 
PUP.Optional.Lasaoren.A, HKU\S-1-5-21-4020320634-2591791008-1635142945-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Lasaoren, Quarantined, [8993628d5625b68070b50371b2521ce4], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#12 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 19 September 2014 - 03:14 PM

Here is the next log file.

 

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK
# product=EOS
# version=8
# IEXPLORE.EXE=11.00.9600.16384 (winblue_rtm.130821-1623)
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=f1ac89562e68fd48922e655d0f854596
# engine=20232
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-09-19 08:10:34
# local_time=2014-09-19 04:10:34 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=6.3.9600 NT 
# compatibility_mode_1='McAfee Anti-Virus and Anti-Spyware'
# compatibility_mode=5129 16777214 100 97 0 97457250 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 0 15884202 0 0
# scanned=192950
# found=8
# cleaned=0
# scan_time=5428
sh=A47B784B81C676B233067360CBF9E9F01329A27B ft=1 fh=4757d7360847fa8f vn="a variant of Win32/AdWare.iBryte.BH application" ac=I fn="C:\FRST\Quarantine\C\Users\Greg\Downloads\flashplayerproflashplayerpro_Setup (1)..xBAD"
sh=A47B784B81C676B233067360CBF9E9F01329A27B ft=1 fh=4757d7360847fa8f vn="a variant of Win32/AdWare.iBryte.BH application" ac=I fn="C:\FRST\Quarantine\C\Users\Greg\Downloads\flashplayerproflashplayerpro_Setup (2)..xBAD"
sh=A47B784B81C676B233067360CBF9E9F01329A27B ft=1 fh=4757d7360847fa8f vn="a variant of Win32/AdWare.iBryte.BH application" ac=I fn="C:\FRST\Quarantine\C\Users\Greg\Downloads\flashplayerproflashplayerpro_Setup (3)..xBAD"
sh=A47B784B81C676B233067360CBF9E9F01329A27B ft=1 fh=4757d7360847fa8f vn="a variant of Win32/AdWare.iBryte.BH application" ac=I fn="C:\FRST\Quarantine\C\Users\Greg\Downloads\flashplayerproflashplayerpro_Setup..xBAD"
sh=DD87618FA2A51356FB5782AF88DD21F2A7A85F5B ft=1 fh=652a7d9eed9276bd vn="a variant of Win64/Riskware.NetFilter.F application" ac=I fn="C:\FRST\Quarantine\C\Windows\System32\drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys.xBAD"
sh=25B9F4013FB34153FFA27E460D4B8594C79FE337 ft=1 fh=15384691e6094ee0 vn="a variant of Win32/HiddenStart.A potentially unsafe application" ac=I fn="C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\hstart.exe"
sh=6901927CD8E24343530744C7592C74F2F143758A ft=1 fh=8e428864f39fe4fe vn="a variant of Win32/InstallCore.QB potentially unwanted application" ac=I fn="C:\Users\Greg\Downloads\Firefox_Setup (1).exe"
sh=6901927CD8E24343530744C7592C74F2F143758A ft=1 fh=8e428864f39fe4fe vn="a variant of Win32/InstallCore.QB potentially unwanted application" ac=I fn="C:\Users\Greg\Downloads\Firefox_Setup.exe"


#13 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 19 September 2014 - 03:17 PM

The computer is running better.  Not getting all the pop ups now.  Here is the last of the logs.
 
 
 Results of screen317's Security Check version 0.99.87  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
McAfee Anti-Virus and Anti-Spyware   
Windows Defender                     
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Google Chrome 37.0.2062.120  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log`````````````````````` 


#14 pystryker

pystryker

  • Malware Response Team
  • 730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:59 PM

Posted 19 September 2014 - 06:17 PM

The computer is running better. Not getting all the pop ups now. Here is the last of the logs.


Excellent :) There are a couple of files to get rid of and then I'd like to run once last scan to make sure nothing nefarious is hiding.


Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.

Step 1: Fix with FRST
  • Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy.
  • Right-click in the open notepad and select Paste).
  • Save it on the desktop as fixlist.txt

Start
C:\Users\Greg\Downloads\Firefox_Setup*.*
End


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.


Run FRST and press the Fix button just once and wait. The tool will make a log on the desktop (Fixlog.txt) please post it in your next reply.\


Step 2: Scan with TDSSKiller


Please download TDSSKiller to the desktop.

Alternate download is here.
  • Right-click on TDSSKiller.exe and select Run as Administrator to start the program and follow the prompts.
  • When the main GUI(graphical user interface) window opens, click on Change Parameters
  • Under Additional options, select both Verify driver digital signatures & Detect TDLFS File System >> OK
  • Click on Start Scan, the scan will run.
  • When the scan has finished, if it finds anything please click on the drop down arrow next to Cure and select Skip
  • A Report will have been created by TDSSKiller in your root directory C:\
  • To find the log go to Start(Windows 7 Orb) > Computer > C: >> TDSSKiller.V.V.V.VV_DD.DD.YYYY_TT.TT.TT_log <-- The letters denote the version and date & time etc.
  • Post the contents of that log in your next reply please.
Note: Do not have TDSSKiller remove anything if found at this point in time!

Things I need to see in your next post:

Please post each of these logs as a separate reply in this thread.

Fixlog.txt Log

TDSSKiller Log

I close my topics if there is no response after 3 days. Please PM a moderator or myself to reopen your topic.

Please PM me only if I'm helping you with your computer issues and I have not responded in 2 days. Please remember, I'm a volunteer and sometimes life does get in the way. :)

Please stay with me until I declare your machine clean. Absence of symptoms does not ensure your machine is clean.

If you'd like to make a donation via Paypal, please click here.





#15 wgb55

wgb55
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 19 September 2014 - 07:51 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-09-2014
Ran by Greg at 2014-09-19 20:45:56 Run:3
Running from C:\Users\Greg\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
Start
C:\Users\Greg\Downloads\Firefox_Setup*.*
End
*****************
 
C:\Users\Greg\Downloads\Firefox_Setup*.* => Moved successfully.
 
==== End of Fixlog ====





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users