Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Browswer Hi-jacked by homepage-web.com


  • This topic is locked This topic is locked
19 replies to this topic

#1 Pl3as3HelpM3

Pl3as3HelpM3

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:01:30 AM

Posted 18 April 2015 - 02:00 PM

I just noticed this, there may be other problems as well, not entirely sure as I just noticed this.

The log for FRST is below: 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-04-2015 01
Ran by meghan at 2015-04-18 14:58:08
Running from C:\Users\meghan\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Azkend 2: The World Beneath (x32 Version: 2.2.0.98 - WildTangent) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{3611CA6C-5FCA-4900-A329-6A118123CCFC}) (Version: 7.1.355.0 - Microsoft Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 6.223.215.5 - Broadcom Corporation)
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.0.9130 - Broadcom Corporation)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
ConvertXtoDVD 4.1.19.365 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.19.365 - )
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Curse at Twilight (x32 Version: 3.0.2.51 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4.4824 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.6.3821 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.6.3604 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
Delicious - Emily's Wonder Wedding Premium Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DJ_AIO_06_F4500_SW_MIN (x32 Version: 140.0.851.000 - Hewlett-Packard) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.2 (HKLM-x32\...\{412F6426-A3C7-11E3-8A71-00163E98E7D6}) (Version: 5.2.0.2951 - Evernote Corp.)
F4500 (x32 Version: 140.0.851.000 - Hewlett-Packard) Hidden
Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
FarmVille 2 (HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Pokki_34e8f5c0c9e5744bf2cdb514283762dd0524776b) (Version: 1.0.4.55785 - Pokki)
Fishdom 3: Collector's Edition (x32 Version: 3.0.2.38 - WildTangent) Hidden
GenoPro 2.5.4.1 (HKLM-x32\...\GenoPro) (Version:  - GenoPro Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.90 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
Host App Service (HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Pokki) (Version: 0.269.7.611 - Pokki)
HP 3D DriveGuard (HKLM-x32\...\{F90A86C9-7779-47DD-AC06-8EE832C55F55}) (Version: 6.0.18.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{E2C8D0C2-1C97-4C05-939A-5B13A0FE655C}) (Version: 2.20.31 - Hewlett-Packard Company)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet F4500 All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{FD126052-310E-4364-937B-6B5564F24578}) (Version: 14.0 - HP)
HP Documentation (HKLM-x32\...\{082B1425-0F24-43FA-9B64-E8F617B0AD3B}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7493.4758 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{8C696B4B-6AB1-44BC-9416-96EAC474CABE}) (Version: 7.5.2.12 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{DEF23826-DB71-4654-BC00-D5D6C20802EA}) (Version: 1.1.4 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Utility Center (HKLM\...\{36F80C5F-DC0D-4DF4-AF09-DC1867F0EB0A}) (Version: 2.4.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.9.1000 - Intel Corporation)
Intel® Smart Connect Technology (HKLM\...\{51AC86D3-C431-48AD-9195-0D6C930D07CD}) (Version: 4.2.41.2710 - Intel Corporation)
Intel® Technology Access (HKLM-x32\...\{efc54997-dfa9-44b1-afac-3a7ac4f45730}) (Version: 1.3.6.1042 - Intel Corporation)
Intel® Update Manager (HKLM-x32\...\{43FA4AC8-46F8-423F-96FD-9A7D67048F1C}) (Version: 2.5.1634 - Intel Corporation)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Joining Hands 2 (x32 Version: 3.0.2.51 - WildTangent) Hidden
Kodi (HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Kodi) (Version:  - XBMC-Foundation)
Letters from Nowhere 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.0.2.0 - Lightworks)
Lost in Reefs 2 (x32 Version: 3.0.2.51 - WildTangent) Hidden
LUXOR Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Pinger (HKLM-x32\...\Pinger 1.4.0.1) (Version: 1.4.0.1 - Pinger Inc.)
Pinger (x32 Version: 1.4.0.1 - Pinger Inc.) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.273.40 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C1B00}) (Version: 12.27.0.141 - APN, LLC) <==== ATTENTION
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Solitaire Mystery Four Seasons (x32 Version: 3.0.2.51 - WildTangent) Hidden
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Sparkle 2 (x32 Version: 3.0.2.51 - WildTangent) Hidden
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Start Menu (HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Pokki_Start_Menu) (Version: 0.269.7.611 - Pokki)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.5.2 - Synaptics Incorporated)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{40930C8E-A677-414C-A72F-DFDEB10738FB}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
Viking Saga (x32 Version: 3.0.2.48 - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.0 - VideoLAN)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App for HP (x32 Version: 4.0.11.2 - WildTangent) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-1752052330-3805809195-2928626906-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
 
==================== Restore Points  =========================
 
25-03-2015 19:25:19 Windows Update
28-03-2015 10:51:47 Intel® Technology Access
05-04-2015 09:41:45 Windows Update
14-04-2015 20:34:13 Windows Update
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {0639D22A-E111-4EA7-98D6-796B18D489C2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {0B87F044-82D4-48D6-9AEB-6CFD75B191E4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-05] (Google Inc.)
Task: {11F7429F-76AD-4D94-A19C-1453A6C9E947} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-16] (Microsoft Corporation)
Task: {1A099766-7F32-40D2-A0B6-18BCCC2FB9A5} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2013-11-01] (Hewlett-Packard Development Company, L.P.)
Task: {243692AA-D794-424A-83D7-20F9B5A39FD4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-05] (Google Inc.)
Task: {24B68234-FB69-4496-A89A-311F2F7F6CBA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {47BA883C-5A31-47F6-8B6D-41CDE49F499A} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2014-06-09] ()
Task: {6B3D05DA-0832-46F4-AF03-F2F3BD6E3CF7} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2014-06-09] ()
Task: {6D9B7B57-BB62-499B-9701-C382787C553F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {88DA5DFC-3755-4E07-8A15-2C6634DE21AB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {8AE4DEB2-F9DB-4B85-979A-B6DE9A2D5BD9} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.)
Task: {8EB67EAB-7C78-4E5E-8AEF-7C0E4A0F0863} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {923ABF6B-D454-41A1-A3B3-0CB9B7439303} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-03-10] (Hewlett-Packard)
Task: {A4FB5D24-7F79-4164-B771-ED30D8762680} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {BECB60E5-1EE0-4AEF-BA19-40F2D7740E62} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {C8206C51-EC7D-4E95-A613-04A25A40C71F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {C9216FB9-9B45-4841-85C5-DD87975C0DEE} - System32\Tasks\HPCeeScheduleFormeghan => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {CBB77782-C9F4-4E56-9F15-8D49710F4803} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-23] (Microsoft Corporation)
Task: {DF1AC12F-7358-48CD-BD72-C87ADF1720A4} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {E9CA1CB8-57FE-4353-8381-67127B4AA427} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleFormeghan.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2014-03-28 16:31 - 2014-03-28 16:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 16:27 - 2014-03-28 16:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 16:27 - 2014-03-28 16:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 16:27 - 2014-03-28 16:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 16:48 - 2014-03-28 16:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 16:48 - 2014-03-28 16:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-03-17 13:43 - 2015-03-17 13:43 - 00087552 _____ () C:\Program Files\Intel Corporation\Intel® Technology Access\libglog.dll
2015-02-08 11:20 - 2015-02-08 11:20 - 01793248 _____ () C:\Program Files\Intel Corporation\Intel® Technology Access\cpprest120_1_4.dll
2015-03-17 14:15 - 2015-03-17 14:15 - 00355040 _____ () C:\Program Files\Intel Corporation\Intel® Technology Access\JsonCpp.dll
2013-12-04 11:44 - 2013-12-04 11:44 - 00200168 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
2013-12-04 11:44 - 2013-12-04 11:44 - 00054760 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\NetworkHeuristic.dll
2013-12-04 11:44 - 2013-12-04 11:44 - 00034792 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\ISCTNetMon.dll
2015-03-18 14:08 - 2015-03-18 14:08 - 08898720 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-03-28 16:36 - 2014-03-28 16:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2014-05-12 23:11 - 2013-12-10 11:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2015-01-04 00:06 - 2015-01-04 00:06 - 00569856 _____ () C:\Users\meghan\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
2015-01-04 00:06 - 2015-01-04 00:06 - 01400846 _____ () C:\Users\meghan\AppData\Local\Pokki\Engine\avcodec-54.dll
2015-01-04 00:06 - 2015-01-04 00:06 - 00151054 _____ () C:\Users\meghan\AppData\Local\Pokki\Engine\avutil-51.dll
2015-01-04 00:06 - 2015-01-04 00:06 - 00222734 _____ () C:\Users\meghan\AppData\Local\Pokki\Engine\avformat-54.dll
2012-09-23 21:43 - 2012-09-23 21:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll
2014-12-03 02:31 - 2014-12-03 02:31 - 14588632 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\NPSWF32.dll
2015-04-16 04:25 - 2015-04-13 17:55 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\libglesv2.dll
2015-04-16 04:25 - 2015-04-13 17:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\libegl.dll
2015-04-16 04:25 - 2015-04-13 17:55 - 14980424 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Users\meghan\OneDrive:ms-properties
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Theme1\img5.jpg
DNS Servers: 192.168.0.1
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1752052330-3805809195-2928626906-500 - Administrator - Disabled)
Guest (S-1-5-21-1752052330-3805809195-2928626906-501 - Limited - Disabled)
meghan (S-1-5-21-1752052330-3805809195-2928626906-1001 - Administrator - Enabled) => C:\Users\meghan
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (04/18/2015 11:28:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2831500
 
Error: (04/18/2015 11:28:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2831500
 
Error: (04/18/2015 11:28:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/18/2015 11:28:10 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2830000
 
Error: (04/18/2015 11:28:10 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2830000
 
Error: (04/18/2015 11:28:10 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/18/2015 11:28:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2828594
 
Error: (04/18/2015 11:28:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2828594
 
Error: (04/18/2015 11:28:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/18/2015 11:28:07 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2827141
 
 
System errors:
=============
Error: (04/04/2015 09:06:41 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:47:40 PM on ‎2015-‎04-‎04 was unexpected.
 
Error: (04/04/2015 09:02:35 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 80.
 
Error: (03/29/2015 02:02:29 PM) (Source: DCOM) (EventID: 10010) (User: MEGHANB-XO)
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (03/29/2015 02:01:59 PM) (Source: DCOM) (EventID: 10010) (User: MEGHANB-XO)
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (03/29/2015 11:01:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Defender Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
 
Error: (03/29/2015 10:30:29 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (03/29/2015 10:30:26 AM) (Source: DCOM) (EventID: 10010) (User: MEGHANB-XO)
Description: {03E64E17-B220-4052-9B9B-155F9CB8E016}
 
Error: (03/29/2015 10:29:12 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The McAfee Home Network service hung on starting.
 
Error: (03/19/2015 00:30:59 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000009f (0x0000000000000003, 0xffffe000045d2880, 0xffffd00168d69960, 0xffffe000097db790)C:\Windows\Minidump\031915-23703-01.dmp031915-23703-01
 
Error: (03/19/2015 00:30:57 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 12:07:13 AM on ‎2015-‎03-‎19 was unexpected.
 
 
Microsoft Office Sessions:
=========================
Error: (04/18/2015 11:28:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2831500
 
Error: (04/18/2015 11:28:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2831500
 
Error: (04/18/2015 11:28:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/18/2015 11:28:10 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2830000
 
Error: (04/18/2015 11:28:10 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2830000
 
Error: (04/18/2015 11:28:10 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/18/2015 11:28:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2828594
 
Error: (04/18/2015 11:28:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2828594
 
Error: (04/18/2015 11:28:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/18/2015 11:28:07 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2827141
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-04-05 19:02:55.342
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-03-29 15:16:15.136
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 50%
Total physical RAM: 6074.15 MB
Available physical RAM: 2990.13 MB
Total Pagefile: 7098.15 MB
Available Pagefile: 3698.68 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
 
==================== Drives ================================
 
Drive c: (Windows) (Fixed) (Total:442.61 GB) (Free:346.08 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:22.13 GB) (Free:2.18 GB) NTFS ==>[System with boot components (obtained from reading drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: E9C2A075)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================


BC AdBot (Login to Remove)

 


#2 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 23 April 2015 - 05:58 AM

Hi & :welcome: to Bleeping Computer Forums!
My name is Jürgen and I will be assisting you with your Malware related problems. :warrior:

Before we move on, please read the following points carefully: :exclame:
  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now!
  • If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.
  • If I don't reply within 24 hours please PM me!
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
Step 1

frst.pngfrstscan.png

Start FRST with administator privileges.
  • Press the Scan button.
  • When finished, FRST will produce a log (FRST.txt) in the same directory the tool was run from.
    Please copy and paste the log in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#3 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 26 April 2015 - 09:20 AM

Hi,

3 Day Inactivity

this is the third day since my last post. Are you still there?

If you need more time, just let me know.

If you do not post within 48 hours, this thread will be closed due to inactivity.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#4 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 29 April 2015 - 12:01 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#5 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 02 May 2015 - 12:15 PM

This topic has been re-opened at the request of the person who originally posted.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#6 Pl3as3HelpM3

Pl3as3HelpM3
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:01:30 AM

Posted 04 May 2015 - 04:46 PM

okay im scanning now



#7 Pl3as3HelpM3

Pl3as3HelpM3
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:01:30 AM

Posted 04 May 2015 - 04:57 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-05-2015
Ran by meghan (administrator) on MEGHANB-XO on 04-05-2015 17:45:45
Running from C:\Users\meghan\Downloads
Loaded Profiles: meghan (Available profiles: meghan)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel® Corporation) C:\Program Files\Intel Corporation\Intel® Technology Access\IntelTechnologyAccessService.exe
() C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Pokki) C:\Users\meghan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Pokki) C:\Users\meghan\AppData\Local\Pokki\Engine\HostAppService.exe
(Pokki) C:\Users\meghan\AppData\Local\Pokki\Engine\HostAppService.exe
(Pokki) C:\Users\meghan\AppData\Local\Pokki\Engine\StartMenuIndexer.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(APN LLC.) C:\Users\meghan\AppData\Local\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr.exe
(APN LLC.) C:\Users\meghan\AppData\Local\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr_x64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7546072 2014-03-10] (Realtek Semiconductor)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811120 2014-03-13] (Synaptics Incorporated)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-02-13] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2004360 2015-04-28] (APN)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Run: [Pokki] => "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [479744 2014-10-28] (Microsoft Corporation)
HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Run: [uTorrent] => C:\Users\meghan\AppData\Roaming\uTorrent\uTorrent.exe [1441104 2015-04-28] (BitTorrent Inc.)
HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\RunOnce: [Application Restart #5] => C:\Users\meghan\AppData\Local\Pokki\Engine\HostAppService.exe [7851848 2015-04-13] (Pokki)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-03-28]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-05-12]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-01-05]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPCON14/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =http://g.msn.com/HPCON14/4
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPCON14/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =http://g.msn.com/HPCON14/4
HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage-web.com/?s=hp&m=start
HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPCON14/4
SearchScopes: HKU\S-1-5-21-1752052330-3805809195-2928626906-1001 -> DefaultScope {71502EA4-E5FB-11E4-8268-142D27CEE0C2} URL = http://search.homepage-web.com/?src=omnibox&partner=hp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1752052330-3805809195-2928626906-1001 -> {395B029E-7EC1-4209-AC6A-01577D9F7E91} URL = http://www.amazon.ca/s/ref=azs_osd_ieaca?ie=UTF-8&tag=hp-ca2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1752052330-3805809195-2928626906-1001 -> {71502EA4-E5FB-11E4-8268-142D27CEE0C2} URL = http://search.homepage-web.com/?src=omnibox&partner=hp&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-03-31] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-03-18] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-03-31] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2015-01-08] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-03-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-03-18] (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-01-08] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-10-15] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
 
FireFox:
========
FF ProfilePath: C:\Users\meghan\AppData\Roaming\Mozilla\Firefox\Profiles\i6e5tl5h.default
FF DefaultSearchEngine: Web Search
FF SelectedSearchEngine: Web Search
FF Homepage: hxxp://homepage-web.com/?s=hp&m=start
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2015-01-08] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-01-08] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-05] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF SearchPlugin: C:\Users\meghan\AppData\Roaming\Mozilla\Firefox\Profiles\i6e5tl5h.default\searchplugins\Web Search.xml [2015-04-18]
FF HKU\S-1-5-21-1752052330-3805809195-2928626906-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://homepage-web.com/?s=hp&m=home
CHR StartupUrls: Default -> "hxxp://homepage-web.com/?s=hp&m=start"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-05]
CHR Extension: (Google Docs) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-05]
CHR Extension: (Google Drive) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-05]
CHR Extension: (YouTube) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-05]
CHR Extension: (Google Search) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-05]
CHR Extension: (Google Sheets) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-05]
CHR Extension: (AdBlock) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-04-21]
CHR Extension: (Bookmark Manager) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-17]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (Google Wallet) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-05]
CHR Extension: (Gmail) - C:\Users\meghan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-05]
CHR HKLM\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx [2015-04-28]
CHR HKLM-x32\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx [2015-04-28]
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] -http://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [178568 2015-04-28] (APN LLC.)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-28] (Microsoft Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-27] (WildTangent)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-08] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-03-18] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)
R2 Intel® TechnologyAccessService; C:\Program Files\Intel Corporation\Intel® Technology Access\IntelTechnologyAccessService.exe [93408 2015-03-17] (Intel® Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()
S3 iumsvc; C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [174368 2014-06-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190704 2014-03-13] (Synaptics Incorporated)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2013-08-26] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7517872 2014-05-12] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-04-11] (Microsoft Corporation)
S3 BtwSerialBus; C:\Windows\System32\drivers\BtwSerialBus.sys [150744 2013-09-09] (Broadcom Corporation.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows ® Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows ® Win 7 DDK provider)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [41688 2014-10-30] (Intel Corporation)
R3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [67800 2014-10-30] (Intel Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [466136 2014-01-14] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-03-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-03-13] (Synaptics Incorporated)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-04 17:45 - 2015-05-04 17:45 - 00000000 ____D () C:\Users\meghan\Downloads\FRST-OlderVersion
2015-04-27 15:19 - 2015-04-27 16:59 - 00000000 ____D () C:\Users\meghan\Downloads\The X-Files Season 1, 2, 3, 4, 5, 6, 7, 8 & 9 + Extras DVDRip HDTV TSV
2015-04-27 15:02 - 2015-04-27 15:12 - 00000000 ____D () C:\Users\meghan\Downloads\X-Files.x264.ac3-Season.1-MCH
2015-04-27 13:41 - 2015-04-27 13:45 - 00000000 ____D () C:\Users\meghan\Downloads\Greys.Anatomy.S11E16.HDTV.x264-LOL[ettv]
2015-04-27 13:33 - 2015-04-27 13:43 - 00000000 ____D () C:\Users\meghan\Downloads\Greys.Anatomy.S11E21.HDTV.x264-LOL[ettv]
2015-04-27 13:33 - 2015-04-27 13:35 - 00000000 ____D () C:\Users\meghan\Downloads\Greys.Anatomy.S11E20.HDTV.x264-LOL[ettv]
2015-04-27 13:32 - 2015-04-27 13:33 - 00000000 ____D () C:\Users\meghan\Downloads\Greys.Anatomy.S11E19.HDTV.x264-LOL[ettv]
2015-04-27 13:30 - 2015-04-27 13:41 - 233343084 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E18.HDTV.x264-LOL.mp4
2015-04-27 13:30 - 2015-04-27 13:33 - 00000000 ____D () C:\Users\meghan\Downloads\Greys.Anatomy.S11E17.HDTV.x264-KILLERS[ettv]
2015-04-27 13:23 - 2015-04-27 13:35 - 255970291 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E13.HDTV.x264-LOL.mp4
2015-04-27 13:23 - 2015-04-27 13:31 - 00000000 ____D () C:\Users\meghan\Downloads\Greys.Anatomy.S11E14.HDTV.x264-LOL[ettv]
2015-04-27 13:23 - 2015-04-27 13:28 - 00000000 ____D () C:\Users\meghan\Downloads\Greys.Anatomy.S11E15.HDTV.x264-LOL[ettv]
2015-04-27 13:21 - 2015-04-27 13:30 - 241107521 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E11.HDTV.x264-LOL.mp4
2015-04-27 13:21 - 2015-04-27 13:23 - 00000000 ____D () C:\Users\meghan\Downloads\Greys Anatomy S11E12 WEB-DL XviD-FUM[ettv]
2015-04-27 08:13 - 2015-04-27 08:20 - 241645238 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E10.HDTV.x264-LOL.mp4
2015-04-27 08:13 - 2015-04-27 08:19 - 222485885 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E07.HDTV.x264-LOL.mp4
2015-04-27 08:13 - 2015-04-27 08:18 - 220431484 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E08.HDTV.x264-LOL.mp4
2015-04-27 08:13 - 2015-04-27 08:14 - 00000000 ____D () C:\Users\meghan\Downloads\Greys.Anatomy.S11E09.HDTV.x264-LOL[ettv]
2015-04-27 08:12 - 2015-04-27 08:17 - 229376047 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E06.HDTV.x264-LOL.mp4
2015-04-27 08:04 - 2015-04-27 08:12 - 223143063 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E04.HDTV.x264-LOL.mp4
2015-04-27 08:04 - 2015-04-27 08:12 - 193473189 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E05.HDTV.x264-LOL.mp4
2015-04-27 08:04 - 2015-04-27 08:11 - 218013537 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E03.HDTV.x264-LOL.mp4
2015-04-27 08:03 - 2015-04-27 08:10 - 230242506 _____ () C:\Users\meghan\Downloads\Greys.Anatomy.S11E02.HDTV.x264-LOL.mp4
2015-04-27 08:03 - 2015-04-27 08:03 - 00000000 ____D () C:\Users\meghan\Downloads\Greys Anatomy S11E01 HDTV x264-LOL[ettv]
2015-04-26 19:35 - 2015-04-26 19:40 - 00000000 ____D () C:\Users\meghan\Downloads\Whiplash 2014 1080p BRRip x264 DTS-JYK
2015-04-22 14:44 - 2015-04-27 08:47 - 00000000 ____D () C:\Users\meghan\Downloads\The Contortionist
2015-04-22 14:25 - 2015-04-25 08:52 - 00000000 ____D () C:\Users\meghan\Downloads\Fast.and.Furious.7.2015.HD-TS.XVID.AC3.HQ.Hive-CM8
2015-04-22 14:16 - 2015-04-22 14:22 - 00000000 ____D () C:\Users\meghan\Downloads\The Walking Dead - Season 5 Complete - ChameE
2015-04-22 08:54 - 2014-10-31 00:50 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2015-04-22 08:54 - 2014-10-30 23:30 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2015-04-22 08:54 - 2014-10-30 23:23 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-04-22 08:54 - 2014-10-30 23:22 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2015-04-22 08:54 - 2014-10-30 23:18 - 04840960 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-04-22 08:54 - 2014-10-30 23:09 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-04-22 08:54 - 2014-10-30 22:12 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2015-04-22 08:50 - 2014-10-29 00:03 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-04-22 08:50 - 2014-10-28 23:59 - 00014144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2015-04-22 08:50 - 2014-10-28 22:45 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-04-22 08:50 - 2014-10-28 22:22 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-04-22 08:50 - 2014-10-28 22:19 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-04-22 08:50 - 2014-10-28 22:08 - 18822656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-04-22 08:50 - 2014-10-28 22:00 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-04-22 08:50 - 2014-10-28 21:45 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-04-22 08:50 - 2014-10-28 21:42 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-04-22 08:50 - 2014-10-28 21:33 - 15157760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-04-22 08:50 - 2014-10-28 21:17 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-04-22 08:50 - 2014-10-28 21:10 - 02344960 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-22 08:50 - 2014-10-28 21:02 - 14354944 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-04-22 08:50 - 2014-10-28 20:52 - 15432704 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-04-22 08:50 - 2014-10-28 20:51 - 01554432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-22 08:50 - 2014-10-28 20:45 - 13318144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-04-22 08:49 - 2014-10-29 00:10 - 01816008 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2015-04-22 08:49 - 2014-10-29 00:00 - 02314952 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-04-22 08:49 - 2014-10-29 00:00 - 02229168 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-04-22 08:49 - 2014-10-29 00:00 - 01540696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-04-22 08:49 - 2014-10-28 23:59 - 03460472 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2015-04-22 08:49 - 2014-10-28 23:59 - 02529856 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-04-22 08:49 - 2014-10-28 23:58 - 00014528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2015-04-22 08:49 - 2014-10-28 23:57 - 03138720 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2015-04-22 08:49 - 2014-10-28 23:57 - 03118096 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2015-04-22 08:49 - 2014-10-28 23:57 - 02745160 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-04-22 08:49 - 2014-10-28 23:57 - 02450216 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2015-04-22 08:49 - 2014-10-28 23:57 - 01286048 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2015-04-22 08:49 - 2014-10-28 23:55 - 02174976 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2015-04-22 08:49 - 2014-10-28 23:55 - 01660528 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-04-22 08:49 - 2014-10-28 23:52 - 02485056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-04-22 08:49 - 2014-10-28 23:52 - 02334080 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-04-22 08:49 - 2014-10-28 23:52 - 01518504 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-04-22 08:49 - 2014-10-28 23:52 - 01509688 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-04-22 08:49 - 2014-10-28 23:52 - 01288096 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2015-04-22 08:49 - 2014-10-28 23:52 - 01165744 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2015-04-22 08:49 - 2014-10-28 23:51 - 01310912 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-04-22 08:49 - 2014-10-28 23:13 - 01901240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-04-22 08:49 - 2014-10-28 23:12 - 01946144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-04-22 08:49 - 2014-10-28 23:12 - 01907384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-04-22 08:49 - 2014-10-28 23:11 - 02689392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2015-04-22 08:49 - 2014-10-28 23:11 - 02528760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-04-22 08:49 - 2014-10-28 23:11 - 01024200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2015-04-22 08:49 - 2014-10-28 23:10 - 01564464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2015-04-22 08:49 - 2014-10-28 23:10 - 01209624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-04-22 08:49 - 2014-10-28 23:07 - 02324208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-04-22 08:49 - 2014-10-28 22:59 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-04-22 08:49 - 2014-10-28 22:29 - 04483072 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2015-04-22 08:49 - 2014-10-28 22:25 - 00785920 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-04-22 08:49 - 2014-10-28 22:24 - 04418560 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-04-22 08:49 - 2014-10-28 22:10 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-04-22 08:49 - 2014-10-28 22:00 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-04-22 08:49 - 2014-10-28 21:57 - 02924032 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2015-04-22 08:49 - 2014-10-28 21:56 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2015-04-22 08:49 - 2014-10-28 21:51 - 00941056 _____ (Microsoft Corporation) C:\Windows\system32\XpsFilt.dll
2015-04-22 08:49 - 2014-10-28 21:47 - 02072064 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2015-04-22 08:49 - 2014-10-28 21:45 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\rdpinput.exe
2015-04-22 08:49 - 2014-10-28 21:44 - 02984448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-04-22 08:49 - 2014-10-28 21:43 - 07075328 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2015-04-22 08:49 - 2014-10-28 21:42 - 01999872 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-04-22 08:49 - 2014-10-28 21:40 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-04-22 08:49 - 2014-10-28 21:39 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-04-22 08:49 - 2014-10-28 21:38 - 04690432 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2015-04-22 08:49 - 2014-10-28 21:35 - 04709888 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-04-22 08:49 - 2014-10-28 21:35 - 03256320 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-04-22 08:49 - 2014-10-28 21:31 - 02941952 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2015-04-22 08:49 - 2014-10-28 21:28 - 03820544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-04-22 08:49 - 2014-10-28 21:26 - 03561984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2015-04-22 08:49 - 2014-10-28 21:24 - 02464768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-04-22 08:49 - 2014-10-28 21:24 - 02364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2015-04-22 08:49 - 2014-10-28 21:22 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-04-22 08:49 - 2014-10-28 21:17 - 01360896 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2015-04-22 08:49 - 2014-10-28 21:16 - 05267968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2015-04-22 08:49 - 2014-10-28 21:12 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-04-22 08:49 - 2014-10-28 21:11 - 01639424 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-04-22 08:49 - 2014-10-28 21:10 - 02469888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-04-22 08:49 - 2014-10-28 21:08 - 02608640 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-04-22 08:49 - 2014-10-28 21:08 - 02542080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-04-22 08:49 - 2014-10-28 21:08 - 02174976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-04-22 08:49 - 2014-10-28 21:08 - 01822720 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2015-04-22 08:49 - 2014-10-28 21:05 - 03273216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2015-04-22 08:49 - 2014-10-28 21:04 - 01376256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-04-22 08:49 - 2014-10-28 21:03 - 04067840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-04-22 08:49 - 2014-10-28 21:03 - 02635264 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2015-04-22 08:49 - 2014-10-28 21:03 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2015-04-22 08:49 - 2014-10-28 20:59 - 01490944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-04-22 08:49 - 2014-10-28 20:54 - 07784960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-04-22 08:49 - 2014-10-28 20:52 - 02554880 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-04-22 08:49 - 2014-10-28 20:52 - 02170368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-04-22 08:49 - 2014-10-28 20:52 - 01461248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2015-04-22 08:49 - 2014-10-28 20:52 - 01275904 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-04-22 08:49 - 2014-10-28 20:50 - 12749824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-04-22 08:49 - 2014-10-28 20:50 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2015-04-22 08:49 - 2014-10-28 20:48 - 03056128 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2015-04-22 08:49 - 2014-10-28 20:46 - 09530368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2015-04-22 08:49 - 2014-10-28 20:46 - 01919488 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-04-22 08:49 - 2014-10-28 20:46 - 01348096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-04-22 08:49 - 2014-10-28 20:45 - 01725952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-04-22 08:49 - 2014-10-28 20:43 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-04-22 08:49 - 2014-10-28 20:42 - 01922560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-04-22 08:49 - 2014-10-28 20:42 - 01221120 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-04-22 08:49 - 2014-10-28 20:39 - 02814464 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-04-22 08:49 - 2014-10-28 20:38 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-04-22 08:49 - 2014-10-28 20:37 - 06386176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-04-22 08:49 - 2014-10-28 20:35 - 01668096 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2015-04-22 08:49 - 2014-10-28 20:34 - 01544192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-04-22 08:49 - 2014-10-28 20:33 - 06213632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-04-22 08:49 - 2014-10-15 04:32 - 02025792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-04-22 08:49 - 2014-10-07 02:45 - 03307112 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-04-22 08:49 - 2014-10-06 23:44 - 02890296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-04-22 08:49 - 2014-09-24 23:42 - 00373568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-04-22 08:48 - 2014-10-29 00:09 - 01950280 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-04-22 08:48 - 2014-10-29 00:04 - 00105872 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-04-22 08:48 - 2014-10-29 00:00 - 01385216 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-22 08:48 - 2014-10-28 23:57 - 01576312 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-04-22 08:48 - 2014-10-28 23:57 - 01210176 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2015-04-22 08:48 - 2014-10-28 23:55 - 01543768 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2015-04-22 08:48 - 2014-10-28 23:55 - 01133200 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 01064720 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 00988544 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 00952384 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 00850656 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 00821696 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 00734448 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 00634768 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-04-22 08:48 - 2014-10-28 23:52 - 00580024 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2015-04-22 08:48 - 2014-10-28 23:18 - 01782912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2015-04-22 08:48 - 2014-10-28 23:18 - 00848568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2015-04-22 08:48 - 2014-10-28 23:18 - 00016504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psapi.dll
2015-04-22 08:48 - 2014-10-28 23:11 - 02447104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2015-04-22 08:48 - 2014-10-28 23:11 - 01037656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2015-04-22 08:48 - 2014-10-28 23:10 - 01287112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2015-04-22 08:48 - 2014-10-28 23:10 - 01178104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 01321192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 01115104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 00959112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 00857384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 00785568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 00705008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 00700328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 00584120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-04-22 08:48 - 2014-10-28 23:07 - 00551064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-04-22 08:48 - 2014-10-28 23:05 - 00890128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-04-22 08:48 - 2014-10-28 22:56 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2015-04-22 08:48 - 2014-10-28 22:50 - 01192960 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-04-22 08:48 - 2014-10-28 22:43 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2015-04-22 08:48 - 2014-10-28 22:31 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\sqlceqp40.dll
2015-04-22 08:48 - 2014-10-28 22:29 - 01246720 _____ (Microsoft Corporation) C:\Windows\system32\ogldrv.dll
2015-04-22 08:48 - 2014-10-28 22:28 - 01502208 _____ (Microsoft Corporation) C:\Windows\system32\xpssvcs.dll
2015-04-22 08:48 - 2014-10-28 22:26 - 00771584 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2015-04-22 08:48 - 2014-10-28 22:17 - 02003456 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2015-04-22 08:48 - 2014-10-28 22:08 - 01540096 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2015-04-22 08:48 - 2014-10-28 22:07 - 06692352 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2015-04-22 08:48 - 2014-10-28 22:03 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-22 08:48 - 2014-10-28 21:56 - 01526784 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2015-04-22 08:48 - 2014-10-28 21:56 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-04-22 08:48 - 2014-10-28 21:55 - 01697280 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-04-22 08:48 - 2014-10-28 21:53 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-04-22 08:48 - 2014-10-28 21:53 - 01065984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8.dll
2015-04-22 08:48 - 2014-10-28 21:53 - 00881152 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2015-04-22 08:48 - 2014-10-28 21:50 - 01289216 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2015-04-22 08:48 - 2014-10-28 21:49 - 00742400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlceqp40.dll
2015-04-22 08:48 - 2014-10-28 21:48 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-04-22 08:48 - 2014-10-28 21:47 - 01096192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ogldrv.dll
2015-04-22 08:48 - 2014-10-28 21:46 - 01497600 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-04-22 08:48 - 2014-10-28 21:45 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-04-22 08:48 - 2014-10-28 21:45 - 00618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-04-22 08:48 - 2014-10-28 21:43 - 01092608 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-04-22 08:48 - 2014-10-28 21:43 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2015-04-22 08:48 - 2014-10-28 21:42 - 03724800 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2015-04-22 08:48 - 2014-10-28 21:39 - 00898048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-04-22 08:48 - 2014-10-28 21:37 - 01563136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2015-04-22 08:48 - 2014-10-28 21:37 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-04-22 08:48 - 2014-10-28 21:34 - 01114624 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-04-22 08:48 - 2014-10-28 21:34 - 01037824 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-04-22 08:48 - 2014-10-28 21:33 - 01056768 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2015-04-22 08:48 - 2014-10-28 21:32 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2015-04-22 08:48 - 2014-10-28 21:32 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-04-22 08:48 - 2014-10-28 21:30 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-04-22 08:48 - 2014-10-28 21:25 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-04-22 08:48 - 2014-10-28 21:25 - 01534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2015-04-22 08:48 - 2014-10-28 21:24 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-04-22 08:48 - 2014-10-28 21:23 - 01500672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-04-22 08:48 - 2014-10-28 21:22 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2015-04-22 08:48 - 2014-10-28 21:22 - 01084416 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-04-22 08:48 - 2014-10-28 21:21 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-04-22 08:48 - 2014-10-28 21:20 - 01492480 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-04-22 08:48 - 2014-10-28 21:19 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2015-04-22 08:48 - 2014-10-28 21:19 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\WinSync.dll
2015-04-22 08:48 - 2014-10-28 21:18 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-04-22 08:48 - 2014-10-28 21:18 - 01050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll
2015-04-22 08:48 - 2014-10-28 21:17 - 01402368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2015-04-22 08:48 - 2014-10-28 21:17 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2015-04-22 08:48 - 2014-10-28 21:16 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-04-22 08:48 - 2014-10-28 21:14 - 03553280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2015-04-22 08:48 - 2014-10-28 21:14 - 00802816 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-04-22 08:48 - 2014-10-28 21:14 - 00737280 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-04-22 08:48 - 2014-10-28 21:14 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2015-04-22 08:48 - 2014-10-28 21:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\msTextPrediction.dll
2015-04-22 08:48 - 2014-10-28 21:10 - 01096704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-22 08:48 - 2014-10-28 21:09 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2015-04-22 08:48 - 2014-10-28 21:09 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-04-22 08:48 - 2014-10-28 21:08 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-04-22 08:48 - 2014-10-28 21:08 - 01478144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2015-04-22 08:48 - 2014-10-28 21:08 - 00881664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2015-04-22 08:48 - 2014-10-28 21:07 - 01396736 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-04-22 08:48 - 2014-10-28 21:07 - 01247232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2015-04-22 08:48 - 2014-10-28 21:07 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-04-22 08:48 - 2014-10-28 21:07 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-04-22 08:48 - 2014-10-28 21:06 - 00747520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2015-04-22 08:48 - 2014-10-28 21:03 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-04-22 08:48 - 2014-10-28 21:03 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-04-22 08:48 - 2014-10-28 21:01 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-04-22 08:48 - 2014-10-28 21:01 - 00843776 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-04-22 08:48 - 2014-10-28 21:00 - 01705984 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-04-22 08:48 - 2014-10-28 20:59 - 01636864 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2015-04-22 08:48 - 2014-10-28 20:59 - 01454080 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-04-22 08:48 - 2014-10-28 20:59 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-04-22 08:48 - 2014-10-28 20:59 - 01021440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-04-22 08:48 - 2014-10-28 20:56 - 01337344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-04-22 08:48 - 2014-10-28 20:56 - 01248256 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2015-04-22 08:48 - 2014-10-28 20:56 - 01028608 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-04-22 08:48 - 2014-10-28 20:56 - 01001984 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2015-04-22 08:48 - 2014-10-28 20:56 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2015-04-22 08:48 - 2014-10-28 20:56 - 00631808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2015-04-22 08:48 - 2014-10-28 20:54 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-04-22 08:48 - 2014-10-28 20:53 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2015-04-22 08:48 - 2014-10-28 20:52 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-04-22 08:48 - 2014-10-28 20:52 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-04-22 08:48 - 2014-10-28 20:52 - 00801792 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2015-04-22 08:48 - 2014-10-28 20:51 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2015-04-22 08:48 - 2014-10-28 20:50 - 01482752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2015-04-22 08:48 - 2014-10-28 20:48 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-04-22 08:48 - 2014-10-28 20:48 - 00949760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-04-22 08:48 - 2014-10-28 20:47 - 02090496 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-04-22 08:48 - 2014-10-28 20:46 - 01265152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2015-04-22 08:48 - 2014-10-28 20:46 - 01015808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-04-22 08:48 - 2014-10-28 20:45 - 00918016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2015-04-22 08:48 - 2014-10-28 20:45 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-04-22 08:48 - 2014-10-28 20:42 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2015-04-22 08:48 - 2014-10-28 20:41 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-04-22 08:48 - 2014-10-28 20:41 - 01317376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2015-04-22 08:48 - 2014-10-28 20:40 - 02104832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2015-04-22 08:48 - 2014-10-28 20:40 - 00651264 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-04-22 08:48 - 2014-10-28 20:39 - 01000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2015-04-22 08:48 - 2014-10-28 20:38 - 01262080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-04-22 08:48 - 2014-10-28 20:37 - 00724480 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2015-04-22 08:48 - 2014-10-28 20:36 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-04-22 08:48 - 2014-10-28 20:35 - 00772096 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2015-04-22 08:48 - 2014-10-28 20:33 - 01102848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2015-04-22 08:48 - 2014-10-28 20:31 - 00626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2015-04-22 08:47 - 2014-10-29 00:09 - 01309744 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-22 08:47 - 2014-10-29 00:09 - 01239576 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2015-04-22 08:47 - 2014-10-29 00:03 - 00435008 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-22 08:47 - 2014-10-29 00:00 - 00740664 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-04-22 08:47 - 2014-10-29 00:00 - 00544408 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-04-22 08:47 - 2014-10-29 00:00 - 00379568 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2015-04-22 08:47 - 2014-10-28 23:57 - 01552704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-04-22 08:47 - 2014-10-28 23:57 - 01150208 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2015-04-22 08:47 - 2014-10-28 23:57 - 00643064 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-04-22 08:47 - 2014-10-28 23:57 - 00557832 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2015-04-22 08:47 - 2014-10-28 23:57 - 00389952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-04-22 08:47 - 2014-10-28 23:55 - 01063432 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2015-04-22 08:47 - 2014-10-28 23:55 - 00730824 _____ (Microsoft Corporation) C:\Windows\system32\clbcatq.dll
2015-04-22 08:47 - 2014-10-28 23:55 - 00426120 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2015-04-22 08:47 - 2014-10-28 23:54 - 00685408 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-04-22 08:47 - 2014-10-28 23:53 - 00411128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-04-22 08:47 - 2014-10-28 23:52 - 00497936 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-04-22 08:47 - 2014-10-28 23:52 - 00444728 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2015-04-22 08:47 - 2014-10-28 23:52 - 00405456 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-04-22 08:47 - 2014-10-28 23:52 - 00356936 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-04-22 08:47 - 2014-10-28 23:18 - 01103768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2015-04-22 08:47 - 2014-10-28 23:12 - 00616704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-04-22 08:47 - 2014-10-28 23:12 - 00430176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-04-22 08:47 - 2014-10-28 23:12 - 00403776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-04-22 08:47 - 2014-10-28 23:11 - 00914648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2015-04-22 08:47 - 2014-10-28 23:11 - 00492704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2015-04-22 08:47 - 2014-10-28 23:11 - 00488064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2015-04-22 08:47 - 2014-10-28 23:10 - 00569128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
2015-04-22 08:47 - 2014-10-28 23:10 - 00492232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-04-22 08:47 - 2014-10-28 23:07 - 00482360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll
2015-04-22 08:47 - 2014-10-28 23:07 - 00409040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-04-22 08:47 - 2014-10-28 23:07 - 00399752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-04-22 08:47 - 2014-10-28 23:07 - 00331048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2015-04-22 08:47 - 2014-10-28 23:06 - 00507152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-04-22 08:47 - 2014-10-28 22:48 - 00925696 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2015-04-22 08:47 - 2014-10-28 22:48 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2015-04-22 08:47 - 2014-10-28 22:44 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-04-22 08:47 - 2014-10-28 22:42 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\opengl32.dll
2015-04-22 08:47 - 2014-10-28 22:40 - 00610816 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2015-04-22 08:47 - 2014-10-28 22:36 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese40.dll
2015-04-22 08:47 - 2014-10-28 22:33 - 07558144 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0011.dll
2015-04-22 08:47 - 2014-10-28 22:33 - 00799744 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2015-04-22 08:47 - 2014-10-28 22:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70804.dll
2015-04-22 08:47 - 2014-10-28 22:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70404.dll
2015-04-22 08:47 - 2014-10-28 22:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7001E.dll
2015-04-22 08:47 - 2014-10-28 22:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70011.dll
2015-04-22 08:47 - 2014-10-28 22:29 - 00620544 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2015-04-22 08:47 - 2014-10-28 22:27 - 00899584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-04-22 08:47 - 2014-10-28 22:27 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-04-22 08:47 - 2014-10-28 22:26 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\SmartCardSimulator.dll
2015-04-22 08:47 - 2014-10-28 22:18 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2015-04-22 08:47 - 2014-10-28 22:11 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2015-04-22 08:47 - 2014-10-28 22:11 - 00435712 _____ (Microsoft Corporation) C:\Windows\system32\mswmdm.dll
2015-04-22 08:47 - 2014-10-28 22:09 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-04-22 08:47 - 2014-10-28 22:08 - 00858624 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2015-04-22 08:47 - 2014-10-28 22:08 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-04-22 08:47 - 2014-10-28 22:08 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2015-04-22 08:47 - 2014-10-28 22:08 - 00390656 _____ (Microsoft Corporation) C:\Windows\system32\difxapi.dll
2015-04-22 08:47 - 2014-10-28 22:07 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-04-22 08:47 - 2014-10-28 22:06 - 01313792 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-04-22 08:47 - 2014-10-28 22:06 - 00980480 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2015-04-22 08:47 - 2014-10-28 22:06 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
2015-04-22 08:47 - 2014-10-28 22:05 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2015-04-22 08:47 - 2014-10-28 22:04 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2015-04-22 08:47 - 2014-10-28 22:03 - 02334720 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2015-04-22 08:47 - 2014-10-28 22:03 - 00832000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2015-04-22 08:47 - 2014-10-28 22:00 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-04-22 08:47 - 2014-10-28 21:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2015-04-22 08:47 - 2014-10-28 21:59 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2015-04-22 08:47 - 2014-10-28 21:59 - 00564224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2015-04-22 08:47 - 2014-10-28 21:57 - 01479168 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2015-04-22 08:47 - 2014-10-28 21:57 - 01038336 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2015-04-22 08:47 - 2014-10-28 21:57 - 00777728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\opengl32.dll
2015-04-22 08:47 - 2014-10-28 21:56 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll
2015-04-22 08:47 - 2014-10-28 21:54 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-04-22 08:47 - 2014-10-28 21:54 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2015-04-22 08:47 - 2014-10-28 21:53 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-04-22 08:47 - 2014-10-28 21:53 - 00433152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcese40.dll
2015-04-22 08:47 - 2014-10-28 21:50 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlsrv32.dll
2015-04-22 08:47 - 2014-10-28 21:49 - 02236416 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2015-04-22 08:47 - 2014-10-28 21:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB70404.dll
2015-04-22 08:47 - 2014-10-28 21:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB70011.dll
2015-04-22 08:47 - 2014-10-28 21:47 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpssvcs.dll
2015-04-22 08:47 - 2014-10-28 21:47 - 00517120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsound.dll
2015-04-22 08:47 - 2014-10-28 21:46 - 01001472 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2015-04-22 08:47 - 2014-10-28 21:45 - 00672768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2015-04-22 08:47 - 2014-10-28 21:45 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-04-22 08:47 - 2014-10-28 21:42 - 00852480 _____ (Microsoft Corporation) C:\Windows\system32\PurchaseWindowsLicense.dll
2015-04-22 08:47 - 2014-10-28 21:40 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-04-22 08:47 - 2014-10-28 21:39 - 01571328 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2015-04-22 08:47 - 2014-10-28 21:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-04-22 08:47 - 2014-10-28 21:36 - 01252864 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2015-04-22 08:47 - 2014-10-28 21:36 - 01008128 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-04-22 08:47 - 2014-10-28 21:36 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2015-04-22 08:47 - 2014-10-28 21:36 - 00609792 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-04-22 08:47 - 2014-10-28 21:36 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2015-04-22 08:47 - 2014-10-28 21:35 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-04-22 08:47 - 2014-10-28 21:32 - 00654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll
2015-04-22 08:47 - 2014-10-28 21:32 - 00512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2015-04-22 08:47 - 2014-10-28 21:32 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll
2015-04-22 08:47 - 2014-10-28 21:31 - 01278464 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-04-22 08:47 - 2014-10-28 21:31 - 00761344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2015-04-22 08:47 - 2014-10-28 21:31 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-04-22 08:47 - 2014-10-28 21:30 - 06465536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2015-04-22 08:47 - 2014-10-28 21:30 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-04-22 08:47 - 2014-10-28 21:29 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-04-22 08:47 - 2014-10-28 21:27 - 00557568 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-04-22 08:47 - 2014-10-28 21:26 - 00838656 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-04-22 08:47 - 2014-10-28 21:25 - 01058816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2015-04-22 08:47 - 2014-10-28 21:24 - 01335296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2015-04-22 08:47 - 2014-10-28 21:24 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2015-04-22 08:47 - 2014-10-28 21:24 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-04-22 08:47 - 2014-10-28 21:23 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2015-04-22 08:47 - 2014-10-28 21:22 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2015-04-22 08:47 - 2014-10-28 21:21 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-04-22 08:47 - 2014-10-28 21:21 - 00482304 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2015-04-22 08:47 - 2014-10-28 21:21 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-04-22 08:47 - 2014-10-28 21:20 - 00510464 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-04-22 08:47 - 2014-10-28 21:19 - 00754176 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2015-04-22 08:47 - 2014-10-28 21:19 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2015-04-22 08:47 - 2014-10-28 21:18 - 01984000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll
2015-04-22 08:47 - 2014-10-28 21:16 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-04-22 08:47 - 2014-10-28 21:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-04-22 08:47 - 2014-10-28 21:16 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-04-22 08:47 - 2014-10-28 21:14 - 00854528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-04-22 08:47 - 2014-10-28 21:12 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-04-22 08:47 - 2014-10-28 21:12 - 00702976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2015-04-22 08:47 - 2014-10-28 21:12 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2015-04-22 08:47 - 2014-10-28 21:12 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2015-04-22 08:47 - 2014-10-28 21:11 - 02597376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2015-04-22 08:47 - 2014-10-28 21:11 - 01323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2015-04-22 08:47 - 2014-10-28 21:10 - 00516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-04-22 08:47 - 2014-10-28 21:10 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2015-04-22 08:47 - 2014-10-28 21:09 - 00873984 _____ (Microsoft Corporation) C:\Windows\system32\provcore.dll
2015-04-22 08:47 - 2014-10-28 21:09 - 00809984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2015-04-22 08:47 - 2014-10-28 21:09 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-04-22 08:47 - 2014-10-28 21:09 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-04-22 08:47 - 2014-10-28 21:07 - 01197056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-04-22 08:47 - 2014-10-28 21:07 - 01060352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-04-22 08:47 - 2014-10-28 21:07 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-04-22 08:47 - 2014-10-28 21:06 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-04-22 08:47 - 2014-10-28 21:06 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-04-22 08:47 - 2014-10-28 21:05 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-04-22 08:47 - 2014-10-28 21:05 - 00534016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2015-04-22 08:47 - 2014-10-28 21:04 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2015-04-22 08:47 - 2014-10-28 21:04 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-04-22 08:47 - 2014-10-28 21:03 - 00781824 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2015-04-22 08:47 - 2014-10-28 21:02 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-04-22 08:47 - 2014-10-28 21:02 - 00695296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2015-04-22 08:47 - 2014-10-28 21:01 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-04-22 08:47 - 2014-10-28 21:01 - 00706048 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2015-04-22 08:47 - 2014-10-28 21:01 - 00573952 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-04-22 08:47 - 2014-10-28 21:00 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-04-22 08:47 - 2014-10-28 21:00 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2015-04-22 08:47 - 2014-10-28 20:59 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2015-04-22 08:47 - 2014-10-28 20:59 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2015-04-22 08:47 - 2014-10-28 20:59 - 00578048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSync.dll
2015-04-22 08:47 - 2014-10-28 20:58 - 00926208 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-04-22 08:47 - 2014-10-28 20:56 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2015-04-22 08:47 - 2014-10-28 20:56 - 00512512 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2015-04-22 08:47 - 2014-10-28 20:55 - 00719360 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2015-04-22 08:47 - 2014-10-28 20:55 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\es.dll
2015-04-22 08:47 - 2014-10-28 20:54 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2015-04-22 08:47 - 2014-10-28 20:52 - 01054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2015-04-22 08:47 - 2014-10-28 20:52 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2015-04-22 08:47 - 2014-10-28 20:52 - 00827392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2015-04-22 08:47 - 2014-10-28 20:52 - 00555008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2015-04-22 08:47 - 2014-10-28 20:52 - 00544256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2015-04-22 08:47 - 2014-10-28 20:51 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2015-04-22 08:47 - 2014-10-28 20:51 - 00457728 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2015-04-22 08:47 - 2014-10-28 20:50 - 00589824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-04-22 08:47 - 2014-10-28 20:48 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2015-04-22 08:47 - 2014-10-28 20:48 - 00562688 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2015-04-22 08:47 - 2014-10-28 20:48 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\hnetcfg.dll
2015-04-22 08:47 - 2014-10-28 20:47 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2015-04-22 08:47 - 2014-10-28 20:47 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2015-04-22 08:47 - 2014-10-28 20:47 - 00470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2015-04-22 08:47 - 2014-10-28 20:45 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2015-04-22 08:47 - 2014-10-28 20:45 - 00573952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceApi.dll
2015-04-22 08:47 - 2014-10-28 20:45 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2015-04-22 08:47 - 2014-10-28 20:44 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-04-22 08:47 - 2014-10-28 20:43 - 00720896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll
2015-04-22 08:47 - 2014-10-28 20:43 - 00624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2015-04-22 08:47 - 2014-10-28 20:42 - 01207808 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2015-04-22 08:47 - 2014-10-28 20:42 - 00654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2015-04-22 08:47 - 2014-10-28 20:42 - 00608256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-04-22 08:47 - 2014-10-28 20:42 - 00539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2015-04-22 08:47 - 2014-10-28 20:41 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-04-22 08:47 - 2014-10-28 20:39 - 00565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2015-04-22 08:47 - 2014-10-28 20:36 - 00955392 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-04-22 08:47 - 2014-10-28 20:35 - 01085952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2015-04-22 08:47 - 2014-10-28 20:35 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2015-04-22 08:47 - 2014-10-28 20:35 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2015-04-22 08:47 - 2014-10-28 20:32 - 00515584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-04-22 08:47 - 2014-10-28 20:30 - 00602624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2015-04-22 08:47 - 2014-10-08 03:33 - 00678400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-04-22 08:47 - 2014-10-07 02:44 - 00533824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2015-04-22 08:47 - 2014-07-04 17:29 - 00478528 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-04-22 08:46 - 2014-10-29 00:10 - 00430728 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2015-04-22 08:46 - 2014-10-29 00:04 - 00397192 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-04-22 08:46 - 2014-10-29 00:04 - 00324864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-04-22 08:46 - 2014-10-28 23:59 - 00520536 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-04-22 08:46 - 2014-10-28 23:59 - 00498496 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-04-22 08:46 - 2014-10-28 23:59 - 00230816 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-04-22 08:46 - 2014-10-28 23:57 - 00725672 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2015-04-22 08:46 - 2014-10-28 23:57 - 00662120 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.exe
2015-04-22 08:46 - 2014-10-28 23:57 - 00295432 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL
2015-04-22 08:46 - 2014-10-28 23:57 - 00256744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2015-04-22 08:46 - 2014-10-28 23:55 - 00359496 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-04-22 08:46 - 2014-10-28 23:53 - 00687496 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-04-22 08:46 - 2014-10-28 23:52 - 00311448 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-04-22 08:46 - 2014-10-28 23:52 - 00225696 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2015-04-22 08:46 - 2014-10-28 23:52 - 00020160 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2015-04-22 08:46 - 2014-10-28 23:51 - 00363080 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2015-04-22 08:46 - 2014-10-28 23:18 - 00320736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll
2015-04-22 08:46 - 2014-10-28 23:15 - 00340848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-04-22 08:46 - 2014-10-28 23:15 - 00340288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-22 08:46 - 2014-10-28 23:15 - 00245296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-04-22 08:46 - 2014-10-28 23:15 - 00089856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-04-22 08:46 - 2014-10-28 23:11 - 00463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2015-04-22 08:46 - 2014-10-28 23:10 - 00547992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2015-04-22 08:46 - 2014-10-28 23:10 - 00367248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2015-04-22 08:46 - 2014-10-28 23:07 - 00320256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-04-22 08:46 - 2014-10-28 23:06 - 00800008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2015-04-22 08:46 - 2014-10-28 22:45 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\glmf32.dll
2015-04-22 08:46 - 2014-10-28 22:45 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-04-22 08:46 - 2014-10-28 22:44 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-04-22 08:46 - 2014-10-28 22:37 - 02329088 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0404.dll
2015-04-22 08:46 - 2014-10-28 22:34 - 03438592 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0804.dll
2015-04-22 08:46 - 2014-10-28 22:31 - 00590848 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-04-22 08:46 - 2014-10-28 22:31 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-04-22 08:46 - 2014-10-28 22:28 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2015-04-22 08:46 - 2014-10-28 22:27 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2015-04-22 08:46 - 2014-10-28 22:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2015-04-22 08:46 - 2014-10-28 22:25 - 00995328 _____ (Microsoft Corporation) C:\Windows\system32\tapi3.dll
2015-04-22 08:46 - 2014-10-28 22:25 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2015-04-22 08:46 - 2014-10-28 22:25 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2015-04-22 08:46 - 2014-10-28 22:24 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\WmpDui.dll
2015-04-22 08:46 - 2014-10-28 22:24 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2015-04-22 08:46 - 2014-10-28 22:23 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\offfilt.dll
2015-04-22 08:46 - 2014-10-28 22:21 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2015-04-22 08:46 - 2014-10-28 22:20 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2015-04-22 08:46 - 2014-10-28 22:19 - 09732096 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000a.dll
2015-04-22 08:46 - 2014-10-28 22:18 - 06259712 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0009.dll
2015-04-22 08:46 - 2014-10-28 22:18 - 04616704 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001d.dll
2015-04-22 08:46 - 2014-10-28 22:18 - 02403328 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000c.dll
2015-04-22 08:46 - 2014-10-28 22:18 - 02140672 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll
2015-04-22 08:46 - 2014-10-28 22:17 - 04621312 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0414.dll
2015-04-22 08:46 - 2014-10-28 22:17 - 04620288 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0816.dll
2015-04-22 08:46 - 2014-10-28 22:17 - 03231232 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004b.dll
2015-04-22 08:46 - 2014-10-28 22:17 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000d.dll
2015-04-22 08:46 - 2014-10-28 22:17 - 01926144 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0022.dll
2015-04-22 08:46 - 2014-10-28 22:16 - 04621312 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0010.dll
2015-04-22 08:46 - 2014-10-28 22:16 - 04616704 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0416.dll
2015-04-22 08:46 - 2014-10-28 22:16 - 03235840 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0039.dll
2015-04-22 08:46 - 2014-10-28 22:16 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004a.dll
2015-04-22 08:46 - 2014-10-28 22:16 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004e.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0049.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0047.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0046.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0020.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0026.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0024.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001b.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0002.dll
2015-04-22 08:46 - 2014-10-28 22:15 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData002a.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004c.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0045.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 02075136 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0027.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0c1a.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData081a.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001a.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0018.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000f.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0003.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData003e.dll
2015-04-22 08:46 - 2014-10-28 22:14 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0021.dll
2015-04-22 08:46 - 2014-10-28 22:12 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2015-04-22 08:46 - 2014-10-28 22:11 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2015-04-22 08:46 - 2014-10-28 22:11 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-04-22 08:46 - 2014-10-28 22:08 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2015-04-22 08:46 - 2014-10-28 22:06 - 02902016 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-04-22 08:46 - 2014-10-28 22:04 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\filemgmt.dll
2015-04-22 08:46 - 2014-10-28 22:02 - 00476672 _____ (Microsoft Corporation) C:\Windows\system32\xwizards.dll
2015-04-22 08:46 - 2014-10-28 22:01 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-04-22 08:46 - 2014-10-28 22:01 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2015-04-22 08:46 - 2014-10-28 22:01 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-04-22 08:46 - 2014-10-28 22:00 - 01861632 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-04-22 08:46 - 2014-10-28 22:00 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-04-22 08:46 - 2014-10-28 21:59 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\SyncInfrastructure.dll
2015-04-22 08:46 - 2014-10-28 21:59 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2015-04-22 08:46 - 2014-10-28 21:58 - 01040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-22 08:46 - 2014-10-28 21:58 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-04-22 08:46 - 2014-10-28 21:57 - 02592256 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2015-04-22 08:46 - 2014-10-28 21:56 - 00589312 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2015-04-22 08:46 - 2014-10-28 21:56 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2015-04-22 08:46 - 2014-10-28 21:55 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2015-04-22 08:46 - 2014-10-28 21:54 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-04-22 08:46 - 2014-10-28 21:54 - 00408576 _____ (Microsoft Corporation) C:\Windows\system32\DfpCommon.dll
2015-04-22 08:46 - 2014-10-28 21:54 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2015-04-22 08:46 - 2014-10-28 21:52 - 02829312 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2015-04-22 08:46 - 2014-10-28 21:52 - 00809984 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2015-04-22 08:46 - 2014-10-28 21:52 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-04-22 08:46 - 2014-10-28 21:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2015-04-22 08:46 - 2014-10-28 21:52 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\rdvvmtransport.dll
2015-04-22 08:46 - 2014-10-28 21:51 - 07331840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data0011.dll
2015-04-22 08:46 - 2014-10-28 21:50 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2015-04-22 08:46 - 2014-10-28 21:49 - 00479744 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2015-04-22 08:46 - 2014-10-28 21:49 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2015-04-22 08:46 - 2014-

...



#8 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 04 May 2015 - 09:24 PM

The log isn't complete.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#9 Pl3as3HelpM3

Pl3as3HelpM3
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:01:30 AM

Posted 05 May 2015 - 01:12 PM

I keep trying to paste the log, I hit "Post" it has a green bar in the top middle of my screen like a loading bar and it says "saving post" and it just sits there, I left it for a couple of hours, nothing is happening I've tried a number of times and have tried it on two different computers



#10 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 05 May 2015 - 01:14 PM

Hi,

try this please:

 

attachlogs.png


regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#11 Pl3as3HelpM3

Pl3as3HelpM3
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:01:30 AM

Posted 07 May 2015 - 11:02 AM

Here is the attached log, thanks

Attached Files

  • Attached File  FRST.txt   470.93KB   2 downloads


#12 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 07 May 2015 - 03:41 PM

Hi there,

warning.gif P2P warning

Going over your logs I noticed that you have µTorrent installed.
  • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
  • They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
  • Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
  • The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.
It is pretty much certain that if you continue to use P2P programs, you will get infected again.
I would recommend that you uninstall µTorrent, however that choice is up to you.

If you wish to keep it, please do not use it until your computer is cleaned.


Step 1
  • Please download and install revouninstaller.pngRevo Uninstaller Free
    note: there is no need to click anything on that page, the download will start automatically
  • Double click Revo Uninstaller to run it
  • From the list of programs double click on the listed program(s) to remove it:
    Search App by Ask
  • When prompted if you want to uninstall click Yes
  • Be sure the Moderate option is selected then click Next
  • The program will run, If prompted again click Yes
  • When the built-in uninstaller is finished click on Next
  • Once the program has searched for leftovers click Next
  • Check the items in bold only on the list then click Delete
    note: you may have to expand some folders by clicking the "+" mark
  • When prompted click on Yes and then on Next
  • Put a check on any folders that are found and select Delete
  • When prompted select Yes then Next
  • Once done click Finish
Step 2

Please download adwcleaner.png AdwCleaner (by Xplode) and save it to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select "Run As Administrator"
  • Click on the Scan button.
  • After the scan has finished, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • After rebooting, a log file (that is saved in C:\AdwCleaner[S#].txt) will open automatically.
    Copy and paste the contents of that logfile in your next reply.
Step 3

v21logo.PNG

Please download and install Malwarebytes Anti-Malware.
  • Please open Malwarebytes Anti-Malware and update the database.
  • Click "Settings" [1] and go to "Detection and Protection" [2]
  • Make sure "Scan for Rootkits" is checked.
  • Click on Dashboard [3], then click on Scan Now [4] to start the scan.
    :exclame: If Malware or Potentially Unwanted Programs [PUPs] are found, you will receive a prompt:
    m21p.png
  • Click on "Remove Selected" [5].
  • Then click "Save Results" [6] and select
    m21p4.png
  • Return to our forum. Paste your log into your next reply and then click Finish [7].
mbamv21.gif
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#13 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 10 May 2015 - 04:35 AM

Hi,

3 Day Inactivity

this is the third day since my last post. Are you still there?

If you need more time, just let me know.

If you do not post within 48 hours, this thread will be closed due to inactivity.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#14 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 12 May 2015 - 10:54 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#15 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:30 AM

Posted 15 May 2015 - 02:32 AM

This topic has been re-opened at the request of the person who originally posted.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users