Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible infection causing freezes after waking from sleep and booting.


  • This topic is locked This topic is locked
43 replies to this topic

#1 ddswanson31

ddswanson31

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 21 August 2015 - 11:27 PM

I have been trying to determine what keeps causing my laptop to freeze whenever I wake it up from sleeping or when I boot initially. I found a couple of errors in Event Viewer and one is "DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}"

 

The other is "The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start."

 

When I search for the first error I find a bunch of posts on malware removal forums and that's what leads me to believe it's malware related.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:21-08-2015 03
Ran by HP Laptop (administrator) on HPLAPTOP (21-08-2015 22:53:32)
Running from C:\Users\HP Laptop\Desktop\Anti-Malware Tools
Loaded Profiles: HP Laptop (Available Profiles: HP Laptop)
Platform: Windows 10 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
() C:\Program Files\Core Temp\Core Temp.exe
(Flux Software LLC) C:\Users\HP Laptop\AppData\Local\FluxSoftware\Flux\flux.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go10\CLMLSvc_P2G10.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-08-09] (Synaptics Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [164080 2015-06-27] (IvoSoft)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782008 2015-07-15] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [127712 2015-07-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [285832 2015-08-09] (Intel Corporation)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-07-02] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G10] => C:\Program Files (x86)\CyberLink\Power2Go10\CLMLSvc_P2G10.exe [110008 2015-07-17] (CyberLink)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-12] (Valve Corporation)
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53655680 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\Run: [f.lux] => C:\Users\HP Laptop\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\Run: [Power2GoExpress10] => C:\Program Files (x86)\CyberLink\Power2Go10\Power2GoExpress10.exe [3005368 2015-07-17] (CyberLink Corp.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-06-27] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-06-27] (IvoSoft)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-06-27] (IvoSoft)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-08-09] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-09] (Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-06-27] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-06-27] (IvoSoft)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-09] (Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-09] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-06-27] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-06-27] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-06-27] (IvoSoft)
Hosts: 127.0.0.1    localhost
Tcpip\Parameters: [DhcpNameServer] 97.64.168.12 192.119.194.131
Tcpip\..\Interfaces\{ba4825a1-2258-4449-94e6-6be944990d86}: [DhcpNameServer] 97.64.168.12 192.119.194.131

FireFox:
========
FF ProfilePath: C:\Users\HP Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\44cwnnw2.default
FF DefaultSearchEngine.US: Google
FF Homepage: google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-09] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-09] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40620.0\npctrl.dll [2015-06-20] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-09] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-09] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40620.0\npctrl.dll [2015-06-20] ( Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Extension: Adblock Edge - C:\Users\HP Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\44cwnnw2.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2015-08-09]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [887128 2015-07-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-07-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-07-15] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1213072 2015-07-15] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [218816 2015-07-02] (Avira Operations GmbH & Co. KG)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-22] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-21] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
S4 fpCsEvtSvc; C:\Windows\system32\fpCSEvtSvc.exe [22528 2015-08-09] ()
S4 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-11] (Microsoft Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-08-09] (Intel Corporation)
S3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
S3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\Windows\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\Windows\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\Windows\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\Windows\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-11] (Microsoft Corporation)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-11] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-08-09] (Synaptics Incorporated)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-23] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-23] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\Windows\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\Windows\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-29] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\Windows\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\Windows\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [53248 2015-08-09] (Synaptics Incorporated)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALSysIO; C:\Users\HP Laptop\AppData\Local\Temp\ALSysIO64.sys [26488 2015-08-21] (Arthur Liberman)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137288 2015-07-15] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-07-15] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-07-15] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-07-15] (Avira Operations GmbH & Co. KG)
R3 CLVirtualBus01; C:\Windows\System32\drivers\CLVirtualBus01.sys [103176 2014-11-05] (CyberLink)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R3 netr28x; C:\Windows\System32\drivers\netr28x.sys [2512016 2015-07-10] (MediaTek Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [710416 2015-08-09] (Sunplus)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-08-21] ()
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-13] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30384 2015-08-09] (HP Inc.)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-21 22:53 - 2015-08-21 22:53 - 00000000 ____D C:\FRST
2015-08-21 22:37 - 2015-08-21 22:38 - 00000000 ____D C:\getservice
2015-08-21 22:31 - 2015-08-21 22:31 - 00388608 _____ (Trend Micro Inc.) C:\Users\HP Laptop\Downloads\HijackThis.exe
2015-08-21 22:02 - 2015-08-21 22:02 - 00016148 _____ C:\Windows\system32\HPLAPTOP_HP Laptop_HistoryPrediction.bin
2015-08-21 02:21 - 2015-08-21 02:21 - 00000000 ____D C:\Windows\LastGood.Tmp
2015-08-21 02:19 - 2015-08-21 02:20 - 129957096 _____ (Intel Corporation) C:\Users\HP Laptop\Downloads\win64_153338.exe
2015-08-18 19:55 - 2015-08-12 23:33 - 24593408 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-18 19:55 - 2015-08-12 23:23 - 02178560 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-08-18 19:55 - 2015-08-12 23:22 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-08-18 19:55 - 2015-08-12 23:20 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-08-18 19:55 - 2015-08-12 23:17 - 01795072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-08-18 19:55 - 2015-08-12 23:07 - 19323392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-08-18 19:55 - 2015-08-12 22:53 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-08-18 19:55 - 2015-08-11 05:04 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-08-18 19:55 - 2015-08-11 05:04 - 02462648 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-08-18 19:55 - 2015-08-11 05:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-08-18 19:55 - 2015-08-11 05:03 - 08021840 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-18 19:55 - 2015-08-11 05:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-08-18 19:55 - 2015-08-11 05:02 - 00554744 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2015-08-18 19:55 - 2015-08-11 05:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2015-08-18 19:55 - 2015-08-11 05:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2015-08-18 19:55 - 2015-08-11 04:57 - 03622256 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-18 19:55 - 2015-08-11 04:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-08-18 19:55 - 2015-08-11 04:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-08-18 19:55 - 2015-08-11 04:40 - 04048808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-08-18 19:55 - 2015-08-11 04:40 - 02151208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-08-18 19:55 - 2015-08-11 04:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-08-18 19:55 - 2015-08-11 04:38 - 00454000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2015-08-18 19:55 - 2015-08-11 04:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2015-08-18 19:55 - 2015-08-11 04:31 - 02880032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-18 19:55 - 2015-08-11 04:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-08-18 19:55 - 2015-08-11 04:23 - 16706560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-08-18 19:55 - 2015-08-11 04:22 - 21875200 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2015-08-18 19:55 - 2015-08-11 04:21 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2015-08-18 19:55 - 2015-08-11 04:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2015-08-18 19:55 - 2015-08-11 04:20 - 02224640 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2015-08-18 19:55 - 2015-08-11 04:20 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2015-08-18 19:55 - 2015-08-11 04:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2015-08-18 19:55 - 2015-08-11 04:18 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2015-08-18 19:55 - 2015-08-11 04:16 - 02416640 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-08-18 19:55 - 2015-08-11 04:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll
2015-08-18 19:55 - 2015-08-11 04:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll
2015-08-18 19:55 - 2015-08-11 04:11 - 02446336 _____ C:\Windows\system32\InputService.dll
2015-08-18 19:55 - 2015-08-11 04:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2015-08-18 19:55 - 2015-08-11 04:10 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-08-18 19:55 - 2015-08-11 04:10 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-18 19:55 - 2015-08-11 04:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll
2015-08-18 19:55 - 2015-08-11 04:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2015-08-18 19:55 - 2015-08-11 04:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2015-08-18 19:55 - 2015-08-11 04:08 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2015-08-18 19:55 - 2015-08-11 04:07 - 01178112 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-08-18 19:55 - 2015-08-11 04:07 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-08-18 19:55 - 2015-08-11 04:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2015-08-18 19:55 - 2015-08-11 04:06 - 07523328 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2015-08-18 19:55 - 2015-08-11 04:06 - 02662400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2015-08-18 19:55 - 2015-08-11 04:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-08-18 19:55 - 2015-08-11 04:05 - 00996352 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2015-08-18 19:55 - 2015-08-11 04:05 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2015-08-18 19:55 - 2015-08-11 04:05 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2015-08-18 19:55 - 2015-08-11 04:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll
2015-08-18 19:55 - 2015-08-11 04:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2015-08-18 19:55 - 2015-08-11 04:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-08-18 19:55 - 2015-08-11 04:02 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2015-08-18 19:55 - 2015-08-11 04:02 - 01890304 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-08-18 19:55 - 2015-08-11 04:02 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2015-08-18 19:55 - 2015-08-11 04:02 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2015-08-18 19:55 - 2015-08-11 04:01 - 01334784 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-08-18 19:55 - 2015-08-11 04:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-08-18 19:55 - 2015-08-11 04:00 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2015-08-18 19:55 - 2015-08-11 03:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-18 19:55 - 2015-08-11 03:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2015-08-18 19:55 - 2015-08-11 03:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-08-18 19:55 - 2015-08-11 03:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll
2015-08-18 19:55 - 2015-08-11 03:58 - 00372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-18 19:55 - 2015-08-11 03:57 - 13024768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-08-18 19:55 - 2015-08-11 03:57 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2015-08-18 19:55 - 2015-08-11 03:51 - 01916928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-08-18 19:55 - 2015-08-11 03:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll
2015-08-18 19:55 - 2015-08-11 03:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2015-08-18 19:55 - 2015-08-11 03:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll
2015-08-18 19:55 - 2015-08-11 03:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-18 19:55 - 2015-08-11 03:49 - 00586752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-18 19:55 - 2015-08-11 03:49 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-18 19:55 - 2015-08-11 03:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2015-08-18 19:55 - 2015-08-11 03:47 - 00448512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2015-08-18 19:55 - 2015-08-11 03:45 - 18805760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2015-08-18 19:55 - 2015-08-11 03:45 - 01820672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2015-08-18 19:55 - 2015-08-11 03:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-08-18 19:55 - 2015-08-11 03:42 - 05454848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2015-08-18 19:55 - 2015-08-11 03:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-08-18 19:55 - 2015-08-11 03:40 - 01593856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-08-18 19:55 - 2015-08-11 03:40 - 01112064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-08-18 19:55 - 2015-08-11 03:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-08-18 19:55 - 2015-08-11 03:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2015-08-17 21:26 - 2015-08-21 22:53 - 00000000 ____D C:\Users\HP Laptop\Desktop\Anti-Malware Tools
2015-08-17 21:26 - 2015-08-17 21:26 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\CrashDumps
2015-08-16 18:30 - 2015-08-17 14:44 - 00000000 ____D C:\Users\HP Laptop\Desktop\mbar
2015-08-16 18:29 - 2015-08-16 18:30 - 16502728 _____ (Malwarebytes Corp.) C:\Users\HP Laptop\Downloads\mbar-1.09.1.1004.exe
2015-08-16 11:45 - 2015-08-16 11:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-16 11:44 - 2015-08-16 11:45 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-16 11:44 - 2015-08-16 11:44 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\HP Laptop\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-16 11:44 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-16 11:44 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-16 11:38 - 2015-08-16 11:42 - 00000000 ____D C:\ProgramData\RogueKiller
2015-08-16 11:35 - 2015-08-16 11:35 - 00000000 ____D C:\AdwCleaner
2015-08-15 22:06 - 2015-08-15 22:06 - 00000000 ____D C:\Users\HP Laptop\Tracing
2015-08-15 21:34 - 2015-08-21 02:27 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-08-15 21:23 - 2015-08-21 02:10 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-15 21:23 - 2015-08-17 14:44 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-08-15 21:23 - 2015-08-16 11:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-15 21:22 - 2015-08-17 14:39 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-15 21:08 - 2015-08-15 21:08 - 00016148 _____ C:\Windows\system32\DESKTOP-PF03B6M_HP Laptop_HistoryPrediction.bin
2015-08-15 12:38 - 2015-08-21 02:21 - 00000929 _____ C:\Windows\setupact.log
2015-08-15 12:38 - 2015-08-15 12:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-08-15 12:38 - 2015-08-15 12:38 - 00000000 _____ C:\Windows\setuperr.log
2015-08-15 01:23 - 2015-08-15 01:23 - 00000022 _____ C:\Windows\GPU-Z.INI
2015-08-15 01:22 - 2015-08-15 01:25 - 00000000 ____D C:\Users\HP Laptop\Documents\3DMark
2015-08-15 01:22 - 2015-08-15 01:22 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Futuremark
2015-08-15 01:22 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-08-15 01:22 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-08-15 01:22 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-08-15 01:22 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-08-15 01:22 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-08-15 01:22 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-08-15 01:22 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-08-15 01:22 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-08-15 01:22 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-08-15 01:22 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-08-15 01:22 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-08-15 01:22 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-08-15 01:22 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-08-15 01:22 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-08-15 01:22 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-08-15 01:22 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-08-15 01:22 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-08-15 01:22 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-08-15 01:22 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-08-15 01:22 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-08-15 01:22 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-08-15 01:22 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-08-15 01:22 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-08-15 01:22 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-08-15 01:22 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-08-15 01:22 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-08-15 01:22 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-08-15 01:22 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-08-15 01:22 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-08-15 01:22 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-08-15 01:22 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-08-15 01:22 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-08-15 01:22 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-08-15 01:22 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-08-15 01:22 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-08-15 01:22 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-08-15 01:22 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-08-15 01:22 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-08-15 01:22 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-08-15 01:22 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-08-15 01:22 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-08-15 01:22 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-08-15 01:22 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-08-15 01:22 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-08-15 01:22 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-08-15 01:22 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-08-15 01:22 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-08-15 01:22 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-08-15 01:22 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-08-15 01:22 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-08-15 01:22 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-08-15 01:22 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-08-15 01:21 - 2015-08-15 01:21 - 00010123 _____ C:\Windows\DirectX.log
2015-08-15 01:21 - 2015-08-15 01:21 - 00000000 ____D C:\Program Files (x86)\Futuremark
2015-08-15 01:21 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-08-15 01:21 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-08-15 01:21 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-08-15 01:21 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-08-15 01:21 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-08-15 01:21 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-08-15 01:21 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-08-15 01:21 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-08-15 01:21 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-08-15 01:21 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-08-15 01:21 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-08-15 01:21 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-08-15 01:21 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-08-15 01:21 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-08-15 01:21 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-08-15 01:21 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-08-15 01:21 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-08-15 01:21 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-08-15 01:21 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-08-15 01:21 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-08-15 01:21 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-08-15 01:21 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-08-15 01:21 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-08-15 01:21 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-08-15 01:21 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-08-15 01:21 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-08-15 01:21 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-08-15 01:21 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-08-15 01:21 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-08-15 01:21 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-08-15 01:21 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-08-15 01:21 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-08-15 01:21 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-08-15 01:21 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-08-15 01:21 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-08-15 01:21 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-08-15 01:21 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-08-15 01:21 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-08-15 01:21 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-08-15 01:21 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-08-15 01:21 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-08-15 01:21 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-08-15 01:21 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-08-15 01:21 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-08-15 01:21 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-08-15 01:21 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-08-15 01:21 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-08-15 01:21 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-08-15 01:21 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-08-15 01:21 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-08-15 01:21 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-08-15 01:21 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-08-15 01:21 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-08-15 01:21 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-08-15 01:21 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-08-15 01:21 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-08-15 01:21 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-08-15 01:21 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-08-15 01:21 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-08-15 01:21 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-08-15 01:21 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-08-15 01:21 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-08-15 01:21 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-08-15 01:21 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-08-15 01:21 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-08-15 01:21 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-08-15 01:21 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-08-15 01:21 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-08-15 01:21 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-08-15 01:21 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-08-15 01:21 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-08-15 01:21 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-08-15 01:21 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-08-15 01:21 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-08-15 01:21 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-08-15 01:21 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-08-15 01:21 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-08-15 01:21 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-08-15 01:21 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-08-15 01:21 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-08-15 01:21 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-08-15 01:21 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-08-15 01:21 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-08-15 01:21 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-08-15 01:21 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-08-15 01:21 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-08-15 01:21 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-08-15 01:21 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-08-15 01:21 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-08-15 01:21 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-08-15 01:21 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-08-15 01:21 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-08-15 01:21 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-08-15 01:21 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-08-15 01:21 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-08-15 01:21 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-08-15 01:21 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-08-15 01:21 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-08-15 01:21 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-08-15 01:21 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-08-15 01:21 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-08-15 01:21 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-08-15 01:21 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-08-15 01:21 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-08-15 01:21 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-08-15 01:21 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-08-15 01:21 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-08-15 01:21 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-08-15 01:21 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-08-15 01:21 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-08-15 01:21 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-08-15 01:21 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-08-14 21:16 - 2015-08-14 21:16 - 00000222 _____ C:\Users\HP Laptop\Desktop\3DMark.url
2015-08-13 23:57 - 2015-08-14 00:12 - 00000000 ____D C:\Users\HP Laptop\Desktop\CPU Benchmark Results
2015-08-13 23:26 - 2015-08-14 14:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-12 15:23 - 2015-08-12 15:25 - 00000000 ____D C:\Windows\system32\MRT
2015-08-12 15:23 - 2015-07-28 10:59 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-12 14:40 - 2015-08-16 11:45 - 00001120 _____ C:\Windows\PFRO.log
2015-08-11 19:29 - 2015-08-21 20:21 - 00000275 _____ C:\Windows\WindowsUpdate.log
2015-08-11 18:38 - 2015-08-08 02:29 - 01822280 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-11 18:38 - 2015-08-08 02:19 - 00608936 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2015-08-11 18:38 - 2015-08-08 02:01 - 01533496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-11 18:38 - 2015-08-08 01:48 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2015-08-11 18:38 - 2015-08-08 01:40 - 00365056 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-11 18:38 - 2015-08-08 01:24 - 02415104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-11 18:38 - 2015-08-08 01:24 - 01679360 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-11 18:38 - 2015-08-08 01:15 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-11 18:38 - 2015-08-08 01:00 - 01985024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-11 18:38 - 2015-08-05 22:17 - 00237392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2015-08-11 18:38 - 2015-08-05 22:17 - 00200528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2015-08-11 18:38 - 2015-08-05 21:22 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2015-08-11 18:38 - 2015-08-04 23:49 - 00783112 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-08-11 18:38 - 2015-08-04 23:29 - 00644128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-08-11 18:38 - 2015-08-04 23:00 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-08-11 18:38 - 2015-08-04 22:54 - 01274880 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2015-08-11 18:38 - 2015-08-04 22:47 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2015-08-11 18:38 - 2015-08-04 22:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2015-08-11 18:38 - 2015-08-03 23:07 - 00102752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-11 18:38 - 2015-08-03 23:06 - 00583128 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-08-11 18:38 - 2015-08-03 22:23 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2015-08-11 18:38 - 2015-08-03 21:59 - 01212416 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2015-08-11 18:38 - 2015-08-03 21:47 - 00898560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2015-08-11 18:38 - 2015-08-02 21:32 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\NotificationObjFactory.dll
2015-08-11 18:38 - 2015-08-02 21:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NotificationObjFactory.dll
2015-08-11 18:38 - 2015-08-02 21:19 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2015-08-11 18:38 - 2015-08-02 21:18 - 08613200 _____ (Microsoft Corp.) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2015-08-11 18:38 - 2015-08-02 21:18 - 01983840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-08-11 18:38 - 2015-08-02 21:17 - 00516960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-08-11 18:38 - 2015-08-02 21:17 - 00052264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2015-08-11 18:38 - 2015-08-02 21:13 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-11 18:38 - 2015-08-02 21:12 - 00801632 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2015-08-11 18:38 - 2015-08-02 20:56 - 06878256 _____ (Microsoft Corp.) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-11 18:38 - 2015-08-02 20:50 - 20857848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-11 18:38 - 2015-08-02 20:49 - 00700256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2015-08-11 18:38 - 2015-08-02 20:22 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2015-08-11 18:38 - 2015-08-02 20:22 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-08-11 18:38 - 2015-08-02 20:22 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2015-08-11 18:38 - 2015-08-02 20:21 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\coredpus.dll
2015-08-11 18:38 - 2015-08-02 20:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-11 18:38 - 2015-08-02 20:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-11 18:38 - 2015-08-02 20:18 - 12503552 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-11 18:38 - 2015-08-02 20:18 - 03780096 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2015-08-11 18:38 - 2015-08-02 20:18 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2015-08-11 18:38 - 2015-08-02 20:18 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\NetworkStatus.dll
2015-08-11 18:38 - 2015-08-02 20:15 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2015-08-11 18:38 - 2015-08-02 20:15 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2015-08-11 18:38 - 2015-08-02 20:15 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2015-08-11 18:38 - 2015-08-02 20:14 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-11 18:38 - 2015-08-02 20:14 - 00247808 _____ C:\Windows\system32\facecredentialprovider.dll
2015-08-11 18:38 - 2015-08-02 20:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2015-08-11 18:38 - 2015-08-02 20:10 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2015-08-11 18:38 - 2015-08-02 20:06 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-11 18:38 - 2015-08-02 20:03 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2015-08-11 18:38 - 2015-08-02 20:02 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-11 18:38 - 2015-08-02 20:01 - 11262464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-11 18:38 - 2015-08-02 19:59 - 00752640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2015-08-11 18:37 - 2015-08-03 23:06 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-08-11 18:37 - 2015-08-02 21:19 - 00393568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-08-11 18:37 - 2015-08-02 21:18 - 00594472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2015-08-11 18:37 - 2015-08-02 21:18 - 00046432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2015-08-11 18:37 - 2015-08-02 20:31 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2015-08-11 18:37 - 2015-08-02 20:30 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_UserAccount.dll
2015-08-11 18:37 - 2015-08-02 20:24 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2015-08-11 18:37 - 2015-08-02 20:24 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2015-08-11 18:37 - 2015-08-02 20:24 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModelShim.dll
2015-08-11 18:37 - 2015-08-02 20:23 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2015-08-11 18:37 - 2015-08-02 20:15 - 01290752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2015-08-11 18:37 - 2015-08-02 20:15 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2015-08-11 18:37 - 2015-08-02 20:12 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2015-08-11 18:37 - 2015-08-02 20:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2015-08-11 18:37 - 2015-08-02 20:02 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2015-08-11 14:38 - 2015-08-17 14:45 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Skype
2015-08-11 14:38 - 2015-08-11 14:38 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Skype
2015-08-10 02:10 - 2015-08-10 02:10 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Power2Go10
2015-08-10 02:09 - 2015-08-10 09:32 - 00000000 ____D C:\ProgramData\Temp
2015-08-10 02:09 - 2015-08-10 09:32 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2015-08-10 02:09 - 2015-08-10 02:09 - 00002276 _____ C:\Users\Public\Desktop\CyberLink Power2Go 10.lnk
2015-08-10 02:09 - 2015-08-10 02:09 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 10
2015-08-10 02:09 - 2015-08-10 02:09 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2015-08-10 02:09 - 2015-08-10 02:09 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\CyberLink
2015-08-10 02:09 - 2015-08-10 02:09 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\CyberLink
2015-08-10 02:09 - 2014-11-05 04:21 - 00103176 _____ (CyberLink) C:\Windows\system32\Drivers\CLVirtualBus01.sys
2015-08-10 02:09 - 2012-11-01 03:00 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2015-08-10 02:08 - 2015-08-10 09:32 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2015-08-10 02:08 - 2015-08-10 09:32 - 00000000 ____D C:\Program Files (x86)\CyberLink
2015-08-10 02:08 - 2015-08-10 02:09 - 00000000 ____D C:\ProgramData\install_clap
2015-08-10 02:06 - 2015-08-10 02:07 - 257984624 _____ C:\Users\HP Laptop\Documents\Power2Go_10.0.1909.0_Essential_a_Essential_P2G150522-03.exe
2015-08-10 02:05 - 2015-08-10 02:09 - 00000000 ____D C:\ProgramData\CyberLink
2015-08-10 02:05 - 2015-08-10 02:05 - 01031608 _____ (CyberLink) C:\Users\HP Laptop\Downloads\CyberLink_Power2Go_Downloader.exe
2015-08-10 00:50 - 2015-08-10 00:50 - 00000000 ____D C:\Windows\system32\SleepStudy
2015-08-10 00:49 - 2015-08-10 00:49 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\PeerDistRepub
2015-08-09 23:54 - 2015-08-09 23:54 - 00000045 _____ C:\Users\HP Laptop\Desktop\New WiFi password.txt
2015-08-09 20:22 - 2015-08-09 20:22 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2015-08-09 20:22 - 2015-08-09 20:22 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\FluxSoftware
2015-08-09 20:21 - 2015-08-09 20:21 - 00597304 _____ C:\Users\HP Laptop\Downloads\flux-setup.exe
2015-08-09 20:15 - 2015-08-09 20:15 - 06929552 _____ (Hewlett-Packard Company ) C:\Users\HP Laptop\Downloads\sp57014.exe
2015-08-09 20:15 - 2015-08-09 20:15 - 00000000 ____D C:\Windows\SysWOW64\SDA
2015-08-09 20:15 - 2015-08-09 20:15 - 00000000 ____D C:\Program Files (x86)\JMicron
2015-08-09 03:39 - 2015-08-09 02:18 - 00000000 ____D C:\Windows\Panther
2015-08-09 03:38 - 2015-08-17 14:58 - 00000000 ____D C:\Windows\pss
2015-08-09 03:28 - 2015-08-21 02:26 - 00000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2015-08-09 03:16 - 2015-08-09 03:16 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\LibreOffice
2015-08-09 03:14 - 2015-08-09 03:14 - 43221600 _____ (Oracle Corporation) C:\Users\HP Laptop\Downloads\jre-8u51-windows-x64.exe
2015-08-09 03:14 - 2015-08-09 03:14 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-08-09 03:14 - 2015-08-09 03:14 - 00000000 ____D C:\Program Files\Java
2015-08-09 03:13 - 2015-08-09 03:13 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-08-09 03:13 - 2015-08-09 03:13 - 00000000 ____D C:\ProgramData\Sun
2015-08-09 03:13 - 2015-08-09 03:13 - 00000000 ____D C:\ProgramData\Oracle
2015-08-09 03:13 - 2015-08-09 03:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-09 03:13 - 2015-08-09 03:13 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-09 03:12 - 2015-08-09 03:12 - 00563296 _____ (Oracle Corporation) C:\Users\HP Laptop\Downloads\JavaSetup8u51.exe
2015-08-09 03:12 - 2015-08-09 03:12 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\MAXON
2015-08-09 03:03 - 2015-08-09 03:03 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Macromedia
2015-08-09 03:02 - 2015-08-21 21:59 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-09 03:02 - 2015-08-11 21:59 - 00003816 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-09 02:42 - 2015-08-09 02:42 - 00000000 __SHD C:\Recovery
2015-08-09 02:40 - 2015-08-09 02:40 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-08-09 02:33 - 2015-08-09 02:33 - 00002938 _____ C:\Windows\System32\Tasks\Core Temp Autostart HP Laptop
2015-08-09 02:31 - 2015-08-09 02:33 - 00000000 ____D C:\Program Files\Core Temp
2015-08-09 02:31 - 2015-08-09 02:31 - 00000989 _____ C:\Users\HP Laptop\Desktop\Core Temp.lnk
2015-08-09 02:31 - 2015-08-09 02:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2015-08-09 02:30 - 2015-08-09 02:30 - 01285176 _____ (Alcpu ) C:\Users\HP Laptop\Downloads\Core-Temp-setup.exe
2015-08-09 02:25 - 2015-08-09 02:26 - 00000400 __RSH C:\ProgramData\ntuser.pol
2015-08-09 02:19 - 2015-08-09 02:20 - 00031190 _____ C:\Users\HP Laptop\Desktop\RegBackup08092015.reg
2015-08-09 02:18 - 2015-08-09 02:18 - 00002878 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-08-09 02:18 - 2015-08-09 02:18 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-09 02:18 - 2015-08-09 02:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-09 02:18 - 2015-08-09 02:18 - 00000000 ____D C:\Program Files\CCleaner
2015-08-09 02:17 - 2015-08-09 02:17 - 06609608 _____ (Piriform Ltd) C:\Users\HP Laptop\Downloads\ccsetup508.exe
2015-08-09 02:15 - 2015-08-09 02:15 - 01586848 _____ ( ) C:\Users\HP Laptop\Downloads\cpu-z_1.72.1-en.exe
2015-08-09 02:15 - 2015-08-09 02:15 - 00000914 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-08-09 02:15 - 2015-08-09 02:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-08-09 02:15 - 2015-08-09 02:15 - 00000000 ____D C:\Program Files\CPUID
2015-08-09 02:12 - 2015-08-05 14:38 - 00000106 _____ C:\Users\HP Laptop\Desktop\App Ideas.txt
2015-08-09 02:12 - 2015-07-24 00:34 - 00000908 _____ C:\Users\HP Laptop\Desktop\G3258 GTA settings.txt
2015-08-09 02:11 - 2015-08-18 14:48 - 00083456 _____ C:\Users\HP Laptop\Desktop\MD5_and_SHA_Checksum_Utility.exe
2015-08-09 02:11 - 2015-08-07 22:54 - 00050272 _____ C:\Users\HP Laptop\Desktop\Unlocked CPU Spreadsheet.ods
2015-08-09 02:11 - 2015-08-04 16:01 - 19648448 _____ (Microsoft Corporation) C:\Users\HP Laptop\Desktop\MediaCreationToolx64.exe
2015-08-09 02:11 - 2015-07-22 00:45 - 00032511 _____ C:\Users\HP Laptop\Desktop\Budget.ods
2015-08-09 02:11 - 2015-06-02 20:54 - 00827816 _____ (Akeo Consulting (http://akeo.ie)) C:\Users\HP Laptop\Desktop\rufus-2.2.exe
2015-08-09 02:11 - 2015-05-01 23:21 - 00001371 _____ C:\Users\HP Laptop\Desktop\Phone App and Contacts info.txt
2015-08-09 02:11 - 2015-04-14 15:54 - 04831232 _____ (Geza Kovacs) C:\Users\HP Laptop\Desktop\unetbootin-windows-608.exe
2015-08-09 02:09 - 2015-08-09 02:09 - 00000000 ____D C:\Users\HP Laptop\Desktop\XT907 Stuff
2015-08-09 02:09 - 2015-08-09 02:09 - 00000000 ____D C:\Users\HP Laptop\Desktop\Vista Unlocking Tool
2015-08-09 02:09 - 2015-08-09 02:09 - 00000000 ____D C:\Users\HP Laptop\Desktop\Prime95
2015-08-09 02:09 - 2015-08-09 02:09 - 00000000 ____D C:\Users\HP Laptop\Desktop\Overclocking Spreadsheets
2015-08-09 02:07 - 2015-08-09 02:08 - 00000000 ____D C:\Users\HP Laptop\Desktop\Benchmarks
2015-08-09 02:07 - 2015-08-09 02:07 - 00000000 ____D C:\Users\HP Laptop\Desktop\Emulation
2015-08-09 01:52 - 2015-08-09 02:06 - 00000000 ____D C:\Users\HP Laptop\Desktop\ISO Files
2015-08-09 01:51 - 2015-08-21 22:50 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\ClassicShell
2015-08-09 01:51 - 2015-08-09 01:51 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\ClassicShell
2015-08-09 01:51 - 2015-08-09 01:51 - 00000000 ____D C:\ProgramData\ClassicShell
2015-08-09 01:50 - 2015-08-09 01:50 - 06595312 _____ (IvoSoft) C:\Users\HP Laptop\Downloads\ClassicShellSetup_4_2_1.exe
2015-08-09 01:50 - 2015-08-09 01:50 - 00000000 ____D C:\Program Files\Classic Shell
2015-08-09 01:46 - 2015-08-09 01:46 - 00893348 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-08-09 01:45 - 2015-08-09 01:45 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Intel Corporation
2015-08-09 01:44 - 2015-08-09 01:44 - 00001189 _____ C:\Users\Public\Desktop\Avira.lnk
2015-08-09 01:44 - 2015-08-09 01:44 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-09 01:44 - 2015-08-09 01:44 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Steam
2015-08-09 01:44 - 2015-08-09 01:44 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\CEF
2015-08-09 01:41 - 2015-08-09 01:41 - 00003362 _____ C:\Windows\System32\Tasks\SamsungMagician
2015-08-09 01:41 - 2015-08-09 01:41 - 00001302 _____ C:\Users\Public\Desktop\Samsung Magician.lnk
2015-08-09 01:41 - 2015-08-09 01:41 - 00000000 ____D C:\ProgramData\Samsung
2015-08-09 01:41 - 2015-08-09 01:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2015-08-09 01:41 - 2015-08-09 01:41 - 00000000 ____D C:\Program Files (x86)\Samsung
2015-08-09 01:29 - 2015-08-09 01:38 - 00000000 ____D C:\Users\HP Laptop\Desktop\Anime
2015-08-09 01:28 - 2015-08-09 01:28 - 00000000 ____D C:\Users\HP Laptop\Desktop\2015 Credit Reports
2015-08-09 01:26 - 2015-08-09 01:26 - 00000017 _____ C:\Users\HP Laptop\AppData\Local\resmon.resmoncfg
2015-08-09 01:25 - 2015-08-09 01:25 - 00000000 ____D C:\ProgramData\Intel
2015-08-09 01:24 - 2015-08-09 01:24 - 05069632 _____ (Intel) C:\Users\HP Laptop\Downloads\Intel Driver Update Utility Installer.exe
2015-08-09 01:24 - 2015-08-09 01:24 - 00001239 _____ C:\Users\Public\Desktop\Intel® Driver Update Utility 2.2.lnk
2015-08-09 01:24 - 2015-08-09 01:24 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Intel
2015-08-09 01:24 - 2015-08-09 01:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2015-08-09 01:24 - 2015-08-09 01:24 - 00000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2015-08-09 01:20 - 2015-08-09 01:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-09 01:19 - 2015-08-15 01:21 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-09 01:19 - 2015-08-09 01:19 - 00641672 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2015-08-09 01:19 - 2015-08-09 01:19 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Hewlett-Packard
2015-08-09 01:19 - 2015-08-09 01:19 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-08-09 01:18 - 2015-08-09 01:18 - 01045776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJET35.DLL
2015-08-09 01:18 - 2015-08-09 01:18 - 00368912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBAR332.DLL
2015-08-09 01:18 - 2015-08-09 01:18 - 00252176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSRD2X35.DLL
2015-08-09 01:18 - 2015-08-09 01:18 - 00123664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJINT35.DLL
2015-08-09 01:18 - 2015-08-09 01:18 - 00024848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJTER35.DLL
2015-08-09 01:18 - 2015-08-09 01:18 - 00003584 _____ (Hewlett-Packard Company) C:\Windows\SysWOW64\sigfile.exe
2015-08-09 01:18 - 2015-08-09 01:18 - 00001664 _____ C:\HPCamDrv.log
2015-08-09 01:17 - 2015-08-09 01:20 - 00000000 ____D C:\ProgramData\HP
2015-08-09 01:17 - 2015-08-09 01:17 - 00000000 ____D C:\HPSDM
2015-08-09 01:16 - 2015-08-09 01:19 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\hpqLog
2015-08-09 01:16 - 2015-08-09 01:19 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-08-09 01:16 - 2015-08-09 01:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-08-09 01:16 - 2015-08-09 01:16 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-09 01:16 - 2015-08-09 01:16 - 00000000 ____D C:\Program Files\MSBuild
2015-08-09 01:16 - 2015-08-09 01:16 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-09 01:16 - 2015-08-09 01:16 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-09 01:16 - 2015-08-09 01:16 - 00000000 ____D C:\Program Files (x86)\HP
2015-08-09 01:15 - 2015-06-17 20:10 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2015-08-09 01:15 - 2015-06-17 20:10 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 01:15 - 2015-06-17 20:10 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-08-09 01:15 - 2015-05-29 23:07 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2015-08-09 01:15 - 2015-05-29 23:07 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 01:15 - 2015-05-29 23:07 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-08-09 01:14 - 2015-08-09 20:15 - 00000000 ____D C:\SWSETUP
2015-08-09 01:14 - 2015-08-09 01:14 - 02959376 _____ (Microsoft Corporation) C:\Users\HP Laptop\Downloads\dotnetfx35setup.exe
2015-08-09 01:13 - 2015-08-09 01:13 - 22916224 _____ (Hewlett-Packard ) C:\Users\HP Laptop\Downloads\sp71484.exe
2015-08-09 01:08 - 2015-08-09 01:10 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Mozilla
2015-08-09 01:08 - 2015-08-09 01:08 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Mozilla
2015-08-09 01:07 - 2015-08-09 01:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-08-09 01:07 - 2015-08-09 01:07 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Avira
2015-08-09 01:06 - 2015-08-09 01:44 - 00000000 ____D C:\ProgramData\Avira
2015-08-09 01:06 - 2015-08-09 01:44 - 00000000 ____D C:\Program Files (x86)\Avira
2015-08-09 01:06 - 2015-08-09 01:06 - 00001193 _____ C:\Users\Public\Desktop\LibreOffice 5.0.lnk
2015-08-09 01:06 - 2015-08-09 01:06 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
2015-08-09 01:06 - 2015-07-15 10:37 - 00148632 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-08-09 01:06 - 2015-07-15 10:37 - 00137288 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-08-09 01:06 - 2015-07-15 10:37 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-08-09 01:06 - 2015-07-15 10:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-08-09 01:05 - 2015-08-09 01:56 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-08-09 01:05 - 2015-08-09 01:06 - 00000000 ____D C:\Program Files\LibreOffice 5
2015-08-09 01:05 - 2015-08-09 01:05 - 00002640 _____ C:\Users\Public\Desktop\Skype.lnk
2015-08-09 01:05 - 2015-08-09 01:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-09 01:04 - 2015-08-17 14:58 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-09 01:04 - 2015-08-09 03:03 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Adobe
2015-08-09 01:04 - 2015-08-09 01:56 - 00000000 ____D C:\ProgramData\Adobe
2015-08-09 01:04 - 2015-08-09 01:05 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-09 01:04 - 2015-08-09 01:05 - 00000000 ____D C:\ProgramData\Skype
2015-08-09 01:04 - 2015-08-09 01:05 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-08-09 01:04 - 2015-08-09 01:04 - 00001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-08-09 01:04 - 2015-08-09 01:04 - 00001104 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-08-09 01:04 - 2015-08-09 01:04 - 00001036 _____ C:\Users\Public\Desktop\Steam.lnk
2015-08-09 01:04 - 2015-08-09 01:04 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2015-08-09 01:04 - 2015-08-09 01:04 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-09 01:04 - 2015-08-09 01:04 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-09 01:04 - 2015-08-09 01:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-09 01:04 - 2015-08-09 01:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-09 01:04 - 2015-08-09 01:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-08-09 01:04 - 2015-08-09 01:04 - 00000000 ____D C:\Program Files\7-Zip
2015-08-09 01:04 - 2015-08-09 01:04 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-08-09 01:03 - 2015-08-14 14:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-09 01:03 - 2015-08-09 01:03 - 00001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-09 01:03 - 2015-08-09 01:03 - 00001220 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-08-09 01:03 - 2015-08-09 01:03 - 00000000 ____D C:\ProgramData\Mozilla
2015-08-09 01:03 - 2015-08-09 01:03 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-09 01:03 - 2015-08-09 01:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-09 01:02 - 2015-08-09 01:02 - 00305664 _____ (Secure By Design Inc.) C:\Users\HP Laptop\Downloads\Ninite 7Zip Air Avira Firefox LibreOffice NET 46 Installer.exe
2015-08-09 01:01 - 2015-08-09 01:01 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Macromedia
2015-08-09 00:55 - 2015-08-21 02:28 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-08-09 00:53 - 2015-08-09 01:02 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Comms
2015-08-09 00:52 - 2015-07-05 05:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-08-09 00:51 - 2015-08-09 00:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wbf_vfs_003d_adv_01_09_00.Wdf
2015-08-09 00:51 - 2015-08-09 00:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-08-09 00:51 - 2015-08-09 00:51 - 00000000 ____D C:\Program Files\Synaptics
2015-08-09 00:50 - 2015-08-21 02:28 - 00000000 ____D C:\ProgramData\Validity
2015-08-09 00:50 - 2015-08-09 00:50 - 03106640 _____ (Synaptics Incorporated) C:\Windows\system32\vcsAPIFORWBF.dll
2015-08-09 00:50 - 2015-08-09 00:50 - 00971952 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120.dll
2015-08-09 00:50 - 2015-08-09 00:50 - 00764616 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2015-08-09 00:50 - 2015-08-09 00:50 - 00670032 _____ (Synaptics Incorporated) C:\Windows\system32\ValEFIResDll.dll
2015-08-09 00:50 - 2015-08-09 00:50 - 00614088 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2015-08-09 00:50 - 2015-08-09 00:50 - 00419528 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2015-08-09 00:50 - 2015-08-09 00:50 - 00269000 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2015-08-09 00:50 - 2015-08-09 00:50 - 00255688 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo31.dll
2015-08-09 00:50 - 2015-08-09 00:50 - 00231456 _____ C:\Windows\system32\pca-manta.bin
2015-08-09 00:50 - 2015-08-09 00:50 - 00053248 _____ (Synaptics Incorporated) C:\Windows\system32\valWBFPolicyService.exe
2015-08-09 00:50 - 2015-08-09 00:50 - 00042696 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-08-09 00:50 - 2015-08-09 00:50 - 00042184 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-08-09 00:50 - 2015-08-09 00:50 - 00030384 _____ (HP Inc.) C:\Windows\system32\Drivers\WirelessButtonDriver64.sys
2015-08-09 00:50 - 2015-08-09 00:50 - 00022528 _____ C:\Windows\system32\fpCSEvtSvc.exe
2015-08-09 00:50 - 2015-08-09 00:50 - 00000092 _____ C:\Windows\system32\calibration.bin
2015-08-09 00:50 - 2015-07-26 00:13 - 06488312 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2015-08-09 00:50 - 2015-07-21 22:54 - 14241792 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-08-09 00:50 - 2015-07-10 20:17 - 06305792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2015-08-09 00:49 - 2015-08-21 02:19 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-09 00:49 - 2015-08-09 00:49 - 22914032 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 17846768 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 11053040 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 10574976 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 04636608 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 04024368 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAAC64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 03797960 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2015-08-09 00:49 - 2015-08-09 00:49 - 03668768 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa
2015-08-09 00:49 - 2015-08-09 00:49 - 02508272 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiVAD64.exe
2015-08-09 00:49 - 2015-08-09 00:49 - 02035696 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 01994224 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 01793008 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 01766896 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 01468976 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 01155984 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 01151832 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00865328 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00678896 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00659504 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAudioFilter64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00632816 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00616496 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMux64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00540064 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2015-08-09 00:49 - 2015-08-09 00:49 - 00467688 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00443296 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUMS64.exe
2015-08-09 00:49 - 2015-08-09 00:49 - 00393632 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2015-08-09 00:49 - 2015-08-09 00:49 - 00392688 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00378816 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00357936 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00328608 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2015-08-09 00:49 - 2015-08-09 00:49 - 00290208 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2015-08-09 00:49 - 2015-08-09 00:49 - 00285168 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00264176 _____ C:\Windows\system32\igfxCPL.cpl
2015-08-09 00:49 - 2015-08-09 00:49 - 00261104 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00256928 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2015-08-09 00:49 - 2015-08-09 00:49 - 00250352 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00232944 _____ C:\Windows\system32\igdde64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00229648 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00228848 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00223792 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUtils64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00204192 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2015-08-09 00:49 - 2015-08-09 00:49 - 00202224 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00199080 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00194352 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00193520 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00191984 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4252.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00191024 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiDDEAgent64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00187844 _____ C:\Windows\system32\resTHA.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00180644 _____ C:\Windows\system32\resELL.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00176500 _____ C:\Windows\system32\resRUS.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00169352 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00163824 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00162356 _____ C:\Windows\system32\resARA.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00161812 _____ C:\Windows\system32\resHEB.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00161764 _____ C:\Windows\system32\resJPN.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00157172 _____ C:\Windows\system32\resFRA.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00157156 _____ C:\Windows\system32\resHUN.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00155460 _____ C:\Windows\system32\resKOR.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00155364 _____ C:\Windows\system32\resITA.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00155364 _____ C:\Windows\system32\resDEU.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00155204 _____ C:\Windows\system32\resROM.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00155092 _____ C:\Windows\system32\resESN.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00154660 _____ C:\Windows\system32\resPLK.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00154532 _____ C:\Windows\system32\resSKY.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00154324 _____ C:\Windows\system32\resNLD.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00153764 _____ C:\Windows\system32\resPTB.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00153636 _____ C:\Windows\system32\resTRK.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00153604 _____ C:\Windows\system32\resCSY.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00153476 _____ C:\Windows\system32\resPTG.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00153060 _____ C:\Windows\system32\resFIN.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00152628 _____ C:\Windows\system32\resHRV.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00152164 _____ C:\Windows\system32\resSVE.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00152004 _____ C:\Windows\system32\resSLV.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00151060 _____ C:\Windows\system32\resNOR.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00150548 _____ C:\Windows\system32\resDAN.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00149236 _____ C:\Windows\system32\resENU.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00147460 _____ C:\Windows\system32\resCHT.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00146628 _____ C:\Windows\system32\resCHS.cui
2015-08-09 00:49 - 2015-08-09 00:49 - 00141872 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMCUMD64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00107568 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiLogServer64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00095216 _____ C:\Windows\system32\igfxCUIServicePS.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00078320 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00072688 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2015-08-09 00:49 - 2015-08-09 00:49 - 00072688 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00069104 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2015-08-09 00:49 - 2015-08-09 00:49 - 00069104 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00068080 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00044025 _____ C:\Windows\system32\iglhxo64.vp
2015-08-09 00:49 - 2015-08-09 00:49 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp
2015-08-09 00:49 - 2015-08-09 00:49 - 00043494 _____ C:\Windows\system32\iglhxc64.vp
2015-08-09 00:49 - 2015-08-09 00:49 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp
2015-08-09 00:49 - 2015-08-09 00:49 - 00043256 _____ C:\Windows\system32\iglhxg64.vp
2015-08-09 00:49 - 2015-08-09 00:49 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp
2015-08-09 00:49 - 2015-08-09 00:49 - 00040704 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00039408 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00019440 _____ ( ) C:\Windows\system32\igfxDILib.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00018928 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00018928 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00018928 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00013808 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00013808 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2015-08-09 00:49 - 2015-08-09 00:49 - 00002564 _____ C:\Windows\system32\iglhxs64.vp
2015-08-09 00:49 - 2015-08-09 00:49 - 00001125 _____ C:\Windows\system32\iglhxa64.vp
2015-08-09 00:49 - 2015-08-09 00:49 - 00000000 ____D C:\Program Files\Intel
2015-08-09 00:49 - 2015-08-09 00:49 - 00000000 ____D C:\Intel
2015-08-09 00:49 - 2015-07-30 01:24 - 01561872 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-08-09 00:49 - 2015-07-30 01:23 - 00527952 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-08-09 00:49 - 2015-07-30 01:21 - 00816576 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-08-09 00:49 - 2015-07-30 01:17 - 01200400 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-08-09 00:49 - 2015-07-30 01:17 - 01025840 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2015-08-09 00:49 - 2015-07-30 01:16 - 02147080 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-08-09 00:49 - 2015-07-30 01:15 - 00632168 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-08-09 00:49 - 2015-07-30 01:14 - 00333168 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-08-09 00:49 - 2015-07-30 01:09 - 01562968 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-08-09 00:49 - 2015-07-30 01:06 - 01043872 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-08-09 00:49 - 2015-07-30 01:05 - 02498808 _____ C:\Windows\system32\CoreUIComponents.dll
2015-08-09 00:49 - 2015-07-30 01:05 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-08-09 00:49 - 2015-07-30 01:04 - 01396064 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2015-08-09 00:49 - 2015-07-30 01:03 - 02116448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-08-09 00:49 - 2015-07-30 00:24 - 00252768 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2015-08-09 00:49 - 2015-07-29 23:29 - 00705520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-08-09 00:49 - 2015-07-29 23:26 - 01867160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-08-09 00:49 - 2015-07-29 23:26 - 00877016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-08-09 00:49 - 2015-07-29 23:25 - 01356368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-08-09 00:49 - 2015-07-29 23:25 - 00713312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-08-09 00:49 - 2015-07-29 23:24 - 01769056 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2015-08-09 00:49 - 2015-07-29 23:24 - 00445240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-08-09 00:49 - 2015-07-29 23:24 - 00407616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-08-09 00:49 - 2015-07-29 23:24 - 00285632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2015-08-09 00:49 - 2015-07-29 23:22 - 00896144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2015-08-09 00:49 - 2015-07-29 23:22 - 00507696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-08-09 00:49 - 2015-07-29 23:21 - 00962400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2015-08-09 00:49 - 2015-07-29 23:12 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2015-08-09 00:49 - 2015-07-29 23:12 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2015-08-09 00:49 - 2015-07-29 23:09 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe
2015-08-09 00:49 - 2015-07-29 23:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2015-08-09 00:49 - 2015-07-29 23:08 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2015-08-09 00:49 - 2015-07-29 23:08 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2015-08-09 00:49 - 2015-07-29 22:59 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2015-08-09 00:49 - 2015-07-29 22:52 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2015-08-09 00:49 - 2015-07-29 22:52 - 00521216 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2015-08-09 00:49 - 2015-07-29 22:52 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2015-08-09 00:49 - 2015-07-29 22:49 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-08-09 00:49 - 2015-07-29 22:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-08-09 00:49 - 2015-07-29 22:46 - 00487424 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2015-08-09 00:49 - 2015-07-29 22:46 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-08-09 00:49 - 2015-07-29 22:45 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
2015-08-09 00:49 - 2015-07-29 22:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-08-09 00:49 - 2015-07-29 22:44 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-08-09 00:49 - 2015-07-29 22:44 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2015-08-09 00:49 - 2015-07-29 22:44 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.V2.dll
2015-08-09 00:49 - 2015-07-29 22:44 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-08-09 00:49 - 2015-07-29 22:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\VoiceActivationManager.dll
2015-08-09 00:49 - 2015-07-29 22:42 - 00518144 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2015-08-09 00:49 - 2015-07-29 22:41 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2015-08-09 00:49 - 2015-07-29 22:41 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
2015-08-09 00:49 - 2015-07-29 22:40 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-08-09 00:49 - 2015-07-29 22:38 - 01420288 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2015-08-09 00:49 - 2015-07-29 22:38 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2015-08-09 00:49 - 2015-07-29 22:34 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-08-09 00:49 - 2015-07-29 22:29 - 00654848 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2015-08-09 00:49 - 2015-07-29 22:15 - 09889792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-08-09 00:49 - 2015-07-29 22:07 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2015-08-09 00:49 - 2015-07-29 22:06 - 00373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2015-08-09 00:49 - 2015-07-29 22:06 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.V2.dll
2015-08-09 00:49 - 2015-07-29 22:06 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VoiceActivationManager.dll
2015-08-09 00:49 - 2015-07-29 22:04 - 01714176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-08-09 00:49 - 2015-07-29 22:04 - 00335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2015-08-09 00:49 - 2015-07-29 21:59 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-08-09 00:49 - 2015-07-29 21:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2015-08-09 00:49 - 2015-07-26 00:16 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-08-09 00:49 - 2015-07-26 00:16 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-08-09 00:49 - 2015-07-26 00:14 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-08-09 00:49 - 2015-07-26 00:14 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-08-09 00:49 - 2015-07-26 00:06 - 00607008 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-08-09 00:49 - 2015-07-25 23:28 - 05118024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2015-08-09 00:49 - 2015-07-25 22:49 - 04760576 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-08-09 00:49 - 2015-07-25 22:49 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-08-09 00:49 - 2015-07-25 22:47 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-08-09 00:49 - 2015-07-25 22:40 - 00850432 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-08-09 00:49 - 2015-07-25 22:40 - 00542720 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-08-09 00:49 - 2015-07-25 22:39 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-08-09 00:49 - 2015-07-25 22:39 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2015-08-09 00:49 - 2015-07-25 22:38 - 04350464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-08-09 00:49 - 2015-07-25 22:35 - 00322048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2015-08-09 00:49 - 2015-07-25 22:34 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2015-08-09 00:49 - 2015-07-25 22:30 - 00750592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2015-08-09 00:49 - 2015-07-25 22:30 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2015-08-09 00:49 - 2015-07-25 22:29 - 00104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sendmail.dll
2015-08-09 00:49 - 2015-07-23 22:30 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-08-09 00:49 - 2015-07-23 22:18 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2015-08-09 00:49 - 2015-07-23 22:17 - 00695136 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2015-08-09 00:49 - 2015-07-23 22:17 - 00521568 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2015-08-09 00:49 - 2015-07-23 22:12 - 00584544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2015-08-09 00:49 - 2015-07-23 21:55 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-09 00:49 - 2015-07-23 21:52 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-08-09 00:49 - 2015-07-23 21:46 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2015-08-09 00:49 - 2015-07-23 21:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Privacy.dll
2015-08-09 00:49 - 2015-07-23 21:40 - 03248640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-08-09 00:49 - 2015-07-23 21:39 - 02646528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-08-09 00:49 - 2015-07-23 21:34 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2015-08-09 00:49 - 2015-07-23 21:30 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-08-09 00:49 - 2015-07-23 21:29 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2015-08-09 00:49 - 2015-07-23 21:25 - 01203200 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2015-08-09 00:49 - 2015-07-23 21:24 - 01418240 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-08-09 00:49 - 2015-07-23 21:24 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-08-09 00:49 - 2015-07-23 21:24 - 00925696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2015-08-09 00:49 - 2015-07-23 21:24 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2015-08-09 00:49 - 2015-07-22 00:18 - 00808856 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2015-08-09 00:49 - 2015-07-22 00:15 - 00565088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2015-08-09 00:49 - 2015-07-22 00:02 - 00966424 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-08-09 00:49 - 2015-07-21 23:13 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-08-09 00:49 - 2015-07-21 23:02 - 00589824 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-08-09 00:49 - 2015-07-21 23:00 - 02235904 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-09 00:49 - 2015-07-21 23:00 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-09 00:49 - 2015-07-21 23:00 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-08-09 00:49 - 2015-07-21 22:59 - 01773056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-08-09 00:49 - 2015-07-21 22:55 - 01203200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-08-09 00:49 - 2015-07-21 22:55 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2015-08-09 00:49 - 2015-07-21 22:53 - 00762896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-08-09 00:49 - 2015-07-21 22:46 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2015-08-09 00:49 - 2015-07-21 22:21 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe
2015-08-09 00:49 - 2015-07-21 22:13 - 01611264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-08-09 00:49 - 2015-07-21 22:13 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-09 00:49 - 2015-07-21 22:11 - 12589056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-08-09 00:49 - 2015-07-21 22:10 - 00828416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-09 00:49 - 2015-07-21 22:09 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-09 00:49 - 2015-07-21 22:07 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-08-09 00:49 - 2015-07-21 22:03 - 00623616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2015-08-09 00:49 - 2015-07-21 21:50 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2015-08-09 00:49 - 2015-07-18 23:04 - 00658568 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2015-08-09 00:49 - 2015-07-18 22:54 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-08-09 00:49 - 2015-07-18 22:23 - 00505344 _____ C:\Windows\system32\EditionUpgradeManagerObj.dll
2015-08-09 00:49 - 2015-07-18 22:18 - 00430592 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2015-08-09 00:49 - 2015-07-18 22:02 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2015-08-09 00:49 - 2015-07-18 21:39 - 00465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2015-08-09 00:49 - 2015-07-18 03:47 - 00082616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcd.dll
2015-08-09 00:49 - 2015-07-18 02:43 - 00575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2015-08-09 00:49 - 2015-07-18 02:37 - 01043968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2015-08-09 00:49 - 2015-07-18 02:29 - 03443200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2015-08-09 00:49 - 2015-07-18 02:28 - 00584704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2015-08-09 00:49 - 2015-07-18 02:28 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-09 00:49 - 2015-07-18 02:26 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll
2015-08-09 00:49 - 2015-07-18 00:17 - 00097128 _____ (Microsoft Corporation) C:\Windows\system32\bcd.dll
2015-08-09 00:49 - 2015-07-18 00:02 - 00290312 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe
2015-08-09 00:49 - 2015-07-17 23:06 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2015-08-09 00:49 - 2015-07-17 22:59 - 01411072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2015-08-09 00:49 - 2015-07-17 22:59 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2015-08-09 00:49 - 2015-07-17 22:52 - 04169728 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2015-08-09 00:49 - 2015-07-17 22:50 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2015-08-09 00:49 - 2015-07-17 22:50 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-09 00:49 - 2015-07-17 22:49 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2015-08-09 00:49 - 2015-07-17 22:49 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2015-08-09 00:49 - 2015-07-17 22:49 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2015-08-09 00:49 - 2015-07-17 22:48 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-08-09 00:49 - 2015-07-17 22:48 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2015-08-09 00:49 - 2015-07-17 22:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-08-09 00:49 - 2015-07-16 23:23 - 00934752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2015-08-09 00:49 - 2015-07-16 23:13 - 00601344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-08-09 00:49 - 2015-07-16 23:12 - 00630160 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-08-09 00:49 - 2015-07-16 23:07 - 00425824 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-08-09 00:49 - 2015-07-16 21:39 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2015-08-09 00:49 - 2015-07-16 21:39 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-08-09 00:49 - 2015-07-16 21:36 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2015-08-09 00:49 - 2015-07-16 21:33 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2015-08-09 00:49 - 2015-07-16 21:33 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\omadmprc.exe
2015-08-09 00:49 - 2015-07-16 21:32 - 00329728 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2015-08-09 00:49 - 2015-07-16 21:31 - 01417216 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-08-09 00:49 - 2015-07-16 21:26 - 07051264 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2015-08-09 00:49 - 2015-07-16 21:26 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2015-08-09 00:49 - 2015-07-16 21:24 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2015-08-09 00:49 - 2015-07-16 21:19 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2015-08-09 00:49 - 2015-07-16 21:19 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2015-08-09 00:49 - 2015-07-16 21:18 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-08-09 00:49 - 2015-07-16 21:05 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2015-08-09 00:49 - 2015-07-16 21:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-08-09 00:49 - 2015-07-16 20:56 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2015-08-09 00:49 - 2015-07-16 20:53 - 00437248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2015-08-09 00:49 - 2015-07-16 20:51 - 05076480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2015-08-09 00:49 - 2015-07-16 20:50 - 00589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efscore.dll
2015-08-09 00:49 - 2015-07-16 20:44 - 00712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-08-09 00:49 - 2015-07-16 00:39 - 00061280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2015-08-09 00:49 - 2015-07-15 23:09 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2015-08-09 00:49 - 2015-07-15 23:04 - 01201664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2015-08-09 00:49 - 2015-07-15 23:03 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2015-08-09 00:49 - 2015-07-15 23:01 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-09 00:49 - 2015-07-15 22:54 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2015-08-09 00:49 - 2015-07-15 22:47 - 00754688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2015-08-09 00:49 - 2015-07-15 22:45 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-08-09 00:49 - 2015-07-15 22:44 - 02741760 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-09 00:49 - 2015-07-15 22:43 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-09 00:49 - 2015-07-15 22:41 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2015-08-09 00:49 - 2015-07-15 22:40 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2015-08-09 00:49 - 2015-07-15 22:36 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV2.dll
2015-08-09 00:49 - 2015-07-15 22:35 - 01521664 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2015-08-09 00:49 - 2015-07-15 22:33 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\srumsvc.dll
2015-08-09 00:49 - 2015-07-15 22:32 - 00667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2015-08-09 00:49 - 2015-07-15 22:29 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-09 00:49 - 2015-07-15 22:27 - 02207744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-09 00:49 - 2015-07-15 22:19 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumsvc.dll
2015-08-09 00:49 - 2015-07-14 22:21 - 01365072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-08-09 00:49 - 2015-07-14 21:49 - 01591856 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-08-09 00:49 - 2015-07-14 21:49 - 00325984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2015-08-09 00:49 - 2015-07-14 21:41 - 01135312 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2015-08-09 00:49 - 2015-07-14 21:22 - 02112512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-08-09 00:49 - 2015-07-14 21:16 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-08-09 00:49 - 2015-07-14 21:04 - 00032768 _____ C:\Windows\system32\LicenseManagerApi.dll
2015-08-09 00:49 - 2015-07-14 20:57 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\OmaDmAgent.dll
2015-08-09 00:49 - 2015-07-14 20:47 - 04611584 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-08-09 00:49 - 2015-07-14 20:41 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-08-09 00:49 - 2015-07-14 20:37 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.ProxyStub.dll
2015-08-09 00:49 - 2015-07-14 20:35 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\unenrollhook.dll
2015-08-09 00:49 - 2015-07-14 20:27 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-09 00:49 - 2015-07-13 22:00 - 00208736 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2015-08-09 00:49 - 2015-07-13 21:37 - 00181088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2015-08-09 00:49 - 2015-07-13 21:04 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmUcsi.sys
2015-08-09 00:49 - 2015-07-13 20:51 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2015-08-09 00:49 - 2015-07-13 20:49 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2015-08-09 00:49 - 2015-07-13 20:38 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2015-08-09 00:49 - 2015-07-13 20:20 - 00279552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll
2015-08-09 00:49 - 2015-07-12 19:01 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2015-08-09 00:49 - 2015-07-12 18:30 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2015-08-09 00:49 - 2015-07-11 19:38 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2015-08-09 00:49 - 2015-07-11 19:25 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe
2015-08-09 00:49 - 2015-07-11 19:18 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2015-08-09 00:49 - 2015-07-11 18:46 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2015-08-09 00:49 - 2015-07-10 20:28 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2015-08-09 00:49 - 2015-07-10 20:07 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2015-08-09 00:49 - 2015-07-10 20:05 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2015-08-09 00:49 - 2015-07-10 20:04 - 03362816 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-08-09 00:49 - 2015-07-10 20:03 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-08-09 00:49 - 2015-07-10 20:03 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-08-09 00:49 - 2015-07-10 20:02 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-09 00:49 - 2015-07-10 20:01 - 04791296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-09 00:49 - 2015-07-10 19:57 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2015-08-09 00:49 - 2015-07-10 19:51 - 04398080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-08-09 00:49 - 2015-07-10 19:43 - 00322048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-09 00:49 - 2015-07-10 19:42 - 00191488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2015-08-09 00:49 - 2015-07-10 19:41 - 03687936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-08-09 00:49 - 2015-07-10 19:40 - 03579904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-09 00:49 - 2015-07-10 19:40 - 02606080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-08-09 00:49 - 2015-07-10 19:40 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-08-09 00:49 - 2015-07-10 19:34 - 00294912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2015-08-09 00:49 - 2015-07-10 10:51 - 00823336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-08-09 00:49 - 2015-07-10 10:47 - 00265480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-08-09 00:49 - 2015-07-10 10:00 - 01101792 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-08-09 00:49 - 2015-07-10 09:52 - 00335248 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-08-09 00:49 - 2015-07-10 05:59 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SignInOptions.dll
2015-08-09 00:49 - 2015-07-10 05:42 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hmkd.dll
2015-08-09 00:49 - 2015-07-10 05:10 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\hmkd.dll
2015-08-09 00:49 - 2015-07-10 05:05 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2015-08-09 00:49 - 2015-07-10 04:53 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2015-08-09 00:49 - 2015-07-10 04:35 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-08-09 00:49 - 2015-07-10 04:31 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-08-09 00:49 - 2015-07-10 04:29 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2015-08-09 00:48 - 2015-08-21 02:32 - 00876942 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-09 00:48 - 2015-08-09 01:00 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\MicrosoftEdge
2015-08-09 00:48 - 2015-08-09 00:49 - 00194544 _____ C:\Windows\SysWOW64\igdde32.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 12334064 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 11905424 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 08528880 _____ (Intel Corporation) C:\Windows\system32\ig7icd64.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 06512112 _____ (Intel Corporation) C:\Windows\SysWOW64\ig7icd32.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 04371872 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2015-08-09 00:48 - 2015-08-09 00:48 - 04368288 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2015-08-09 00:48 - 2015-08-09 00:48 - 00969120 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2015-08-09 00:48 - 2015-08-09 00:48 - 00555424 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2015-08-09 00:48 - 2015-08-09 00:48 - 00554912 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2015-08-09 00:48 - 2015-08-09 00:48 - 00409504 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2015-08-09 00:48 - 2015-08-09 00:48 - 00408992 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2015-08-09 00:48 - 2015-08-09 00:48 - 00374256 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 00329200 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 00170992 _____ C:\Windows\system32\igdail64.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 00164256 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2015-08-09 00:48 - 2015-08-09 00:48 - 00152560 _____ C:\Windows\SysWOW64\igdail32.dll
2015-08-09 00:48 - 2015-08-09 00:48 - 00102896 _____ C:\Windows\system32\IccLibDll_x64.dll
2015-08-09 00:46 - 2015-08-09 19:55 - 00000000 ____D C:\Program Files (x86)\HP Universal Camera Driver
2015-08-09 00:46 - 2015-08-09 00:47 - 00002350 _____ C:\Users\HP Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-09 00:46 - 2015-08-09 00:47 - 00000000 ___RD C:\Users\HP Laptop\OneDrive
2015-08-09 00:46 - 2015-08-09 00:46 - 00710416 _____ (Sunplus) C:\Windows\system32\Drivers\SPUVCBv_x64.sys
2015-08-09 00:46 - 2015-08-09 00:46 - 00407352 _____ (SunplusIT) C:\Windows\system32\VCamPPage_x64.dll
2015-08-09 00:46 - 2015-08-09 00:46 - 00340104 _____ (SunplusIT) C:\Windows\SysWOW64\VCamPPage.dll
2015-08-09 00:46 - 2015-08-09 00:46 - 00095240 _____ (Dext5xx) C:\Windows\system32\DextUVCB_x64.ax
2015-08-09 00:46 - 2015-08-09 00:46 - 00090120 _____ (Dext5xx) C:\Windows\SysWOW64\DextUVCB.ax
2015-08-09 00:46 - 2015-08-09 00:46 - 00014681 _____ C:\Windows\TWAINSP_HP.ini
2015-08-09 00:46 - 2015-08-09 00:46 - 00007408 _____ C:\Windows\TWAINSP_HP.src
2015-08-09 00:46 - 2015-08-09 00:46 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-09 00:45 - 2015-08-21 22:31 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\VirtualStore
2015-08-09 00:45 - 2015-08-15 22:06 - 00000000 ____D C:\Users\HP Laptop
2015-08-09 00:45 - 2015-08-09 01:16 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Packages
2015-08-09 00:45 - 2015-08-09 01:04 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Adobe
2015-08-09 00:45 - 2015-08-09 00:45 - 00062784 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2015-08-09 00:45 - 2015-08-09 00:45 - 00016148 _____ C:\Windows\system32\DESKTOP-PF03B6M_defaultuser0_HistoryPrediction.bin
2015-08-09 00:45 - 2015-08-09 00:45 - 00000020 ___SH C:\Users\HP Laptop\ntuser.ini
2015-08-09 00:45 - 2015-08-09 00:45 - 00000000 ___RD C:\Users\HP Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-09 00:45 - 2015-08-09 00:45 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\TileDataLayer
2015-08-09 00:45 - 2015-08-09 00:45 - 00000000 ____D C:\Users\HP Laptop\AppData\Local\Publishers
2015-08-09 00:45 - 2015-07-10 06:04 - 00000000 __RSD C:\Users\HP Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-09 00:45 - 2015-07-10 06:04 - 00000000 ___RD C:\Users\HP Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-09 00:45 - 2015-07-10 06:04 - 00000000 ___RD C:\Users\HP Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-09 00:45 - 2015-07-10 06:04 - 00000000 ____D C:\Users\HP Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-09 00:42 - 2015-08-09 00:42 - 00000000 ____D C:\Windows\CSC
2015-08-09 00:42 - 2015-07-10 05:59 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2015-07-31 08:06 - 2015-07-31 08:06 - 00660128 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120.dll
2015-07-31 08:06 - 2015-07-31 08:06 - 00356528 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib120.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-21 22:48 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\sru
2015-08-21 13:53 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\AppReadiness
2015-08-21 02:28 - 2015-07-10 07:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-21 02:28 - 2015-07-10 04:05 - 00131072 ___SH C:\Windows\system32\config\BBI
2015-08-21 01:25 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\Registration
2015-08-19 17:52 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\NDF
2015-08-19 12:25 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\rescache
2015-08-19 11:19 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-08-19 11:19 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-18 20:18 - 2015-07-10 05:55 - 00000000 ____D C:\Windows\CbsTemp
2015-08-13 01:26 - 2015-07-10 07:20 - 00257144 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-13 01:25 - 2015-07-10 06:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 01:25 - 2015-07-10 06:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 01:25 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\oobe
2015-08-09 19:08 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\appcompat
2015-08-09 03:39 - 2015-07-10 06:04 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2015-08-09 02:40 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\Recovery
2015-08-09 02:40 - 2015-07-10 04:05 - 00000000 __RHD C:\Users\Default
2015-08-09 02:40 - 2015-07-10 04:05 - 00000000 ____D C:\Windows\system32\Sysprep
2015-08-09 02:25 - 2015-07-10 06:04 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-08-09 02:25 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2015-08-09 00:55 - 2015-07-10 06:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2015-08-09 00:55 - 2015-07-10 06:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-08-09 00:55 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-08-09 00:55 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-08-09 00:55 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\Provisioning
2015-08-09 00:55 - 2015-07-10 04:05 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-08-09 00:55 - 2015-07-10 04:05 - 00000000 ____D C:\Windows\system32\Dism
2015-08-09 00:51 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2015-08-09 00:45 - 2015-07-10 06:04 - 00000000 ___RD C:\Windows\PrintDialog
2015-08-09 00:45 - 2015-07-10 06:04 - 00000000 ___RD C:\Windows\MiracastView
2015-08-09 00:43 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\restore
2015-08-09 00:42 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\spool
2015-08-09 00:42 - 2015-07-10 06:04 - 00000000 ____D C:\Windows\system32\FxsTmp
2015-08-08 10:38 - 2015-07-10 06:06 - 00794088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-08 10:38 - 2015-07-10 06:06 - 00179688 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2015-08-09 01:26 - 2015-08-09 01:26 - 0000017 _____ () C:\Users\HP Laptop\AppData\Local\resmon.resmoncfg

Some files in TEMP:
====================
C:\Users\HP Laptop\AppData\Local\Temp\avgnt.exe
C:\Users\HP Laptop\AppData\Local\Temp\dllnt_dump.dll
C:\Users\HP Laptop\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-19 00:49

==================== End of log ============================



BC AdBot (Login to Remove)

 


#2 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,721 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:51 PM

Posted 25 August 2015 - 09:20 AM

Greetings ddswanson31 and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far.

If you have an Addition.txt document on your desktop please copy and paste it in your reply. If you don't have it rerun FRST making sure Addition.txt is checked.

Please do this.

===================================================

GSmartControl for Windows

-------------------
  • Download GSmartControl for Windows and save it to your desktop
  • Unzip the folder to your desktop
  • Double click gsmartcontrol.exe
  • Allow the program to search for and list your hard drive(s)
  • Double click your drive
  • Go to the PERFORM TESTS tab
  • Make sure that the TEST TYPE is set to SHORT SELF-TEST
  • Click the EXECUTE button
  • After the test completes, click the VIEW OUTPUT button and copy and paste the contents in your reply
===================================================

System Summary Information

--------------------
  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time
  • Type msinfo32 and press Enter
  • Left click on System Summary
  • Click File, Save, and name the file Summary
  • Zip and upload the file here
  • I will be automatically notified when the file has been successfully uploaded
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Addition.txt
  • GSmart report
  • Attached System Summary report

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#3 ddswanson31

ddswanson31
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 25 August 2015 - 08:02 PM

Thanks Gary!
 

My apologies for not including the Addition.txt document, I could have sworn that I attched it but it is listed below:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:21-08-2015 03
Ran by HP Laptop (2015-08-21 22:54:06)
Running from C:\Users\HP Laptop\Desktop\Anti-Malware Tools
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2567945026-2459215876-1750334361-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2567945026-2459215876-1750334361-503 - Limited - Disabled)
Guest (S-1-5-21-2567945026-2459215876-1750334361-501 - Limited - Disabled)
HP Laptop (S-1-5-21-2567945026-2459215876-1750334361-1001 - Administrator - Enabled) => C:\Users\HP Laptop

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark (HKLM-x32\...\Steam App 223850) (Version:  - Futuremark)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Avira (HKLM-x32\...\{a5e00a72-db4a-4f77-8874-d1265b8fcd7e}) (Version: 1.1.42.10415 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.42.10415 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.12.408 - Avira Operations GmbH & Co. KG)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Classic Shell (HKLM\...\{7C129CF8-199F-4269-AAEE-60B5D8D716E2}) (Version: 4.2.1 - IvoSoft)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CyberLink Power2Go 10 (HKLM-x32\...\{7E2D87F3-F3BC-4fa5-9F72-BF021ED66CB3}) (Version: 10.0.1909.0 - CyberLink Corp.)
f.lux (HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\Flux) (Version:  - )
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
HP 3D DriveGuard (HKLM-x32\...\{7838086D-29FC-4C69-9AC4-DF450BFB0BFD}) (Version: 5.2.2.1 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{BB51845C-10A6-457F-A215-9B2D3E130889}) (Version: 3.6.2.0 - HP Company)
HP Universal Camera Driver (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.5.8.5 - SunplusIT)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard)
Intel Driver Update Utility (HKLM-x32\...\{ca4bc3a8-b99c-4416-90d8-351a8ceab458}) (Version: 2.2.0.2 - Intel)
Intel® Driver Update Utility 2.2 (x32 Version: 2.2.0.1 - Intel) Hidden
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.5.1006 - Intel Corporation)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.68.0 - JMicron Technology Corp.)
LibreOffice 5.0.0.5 (HKLM\...\{A4D51ECF-D046-46F5-935F-2B3A6ADF89D9}) (Version: 5.0.0.5 - The Document Foundation)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40620.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 40.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 en-US)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.6 - Samsung Electronics)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.0 - Synaptics Incorporated)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45471 - TeamViewer)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2567945026-2459215876-1750334361-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\HP Laptop\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

15-08-2015 01:21:24 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
15-08-2015 01:21:33 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
18-08-2015 20:17:49 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 06:04 - 2015-08-16 18:29 - 00000768 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1    localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {113A4E60-616D-4A05-AD64-EA81EA10A4D1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {375A4B97-13FA-46D5-A5D2-4B9981D11DD5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7EA98400-B454-47DF-B223-FD927F4E3A9A} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2015-04-10] (Samsung Electronics.)
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-07-14] (Microsoft Corporation)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {A67D965B-E038-4137-B7A5-69FF088A5458} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {D65CD4BF-0F38-4A8E-B463-A8EE975CD994} - System32\Tasks\Core Temp Autostart HP Laptop => C:\Program Files\Core Temp\Core Temp.exe [2013-10-08] ()
Task: {E49007AA-E11A-4949-8BFA-13630371848E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-28] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => 0x000A0100982A5DAEB2AD8A49BF918544A4CF38FC4600D400000000003C000A00200000000014730F000000000513040020200401000000000000000000000000000000000000180043003A005C00570069006E0064006F00770073005C006500780070006C006F007200650072002E0065007800650000000C002F004E004F0055004100430043004800450043004B000000000018004500780070006C006F007200650072005300680065006C006C0055006E0065006C00650076006100740065006400000000000000080003130400000000000000

==================== Loaded Modules (Whitelisted) ==============

2015-08-09 00:49 - 2015-07-14 21:04 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-08-18 19:55 - 2015-08-11 04:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2015-08-09 00:49 - 2015-07-30 01:05 - 02498808 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-08-09 00:49 - 2015-07-30 01:05 - 02498808 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-07-10 05:59 - 2015-07-10 05:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-11 18:37 - 2015-08-02 20:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 06:00 - 2015-07-10 08:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-18 19:55 - 2015-08-11 03:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-11 18:37 - 2015-08-02 20:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-08-09 02:31 - 2013-10-08 15:23 - 00890016 _____ () C:\Program Files\Core Temp\Core Temp.exe
2015-08-10 02:09 - 2015-07-17 04:33 - 00626104 _____ () C:\Program Files (x86)\CyberLink\Power2Go10\CLMediaLibrary.dll
2015-08-09 01:41 - 2015-04-10 16:33 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
2015-08-13 19:32 - 2015-08-13 19:32 - 00016384 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\b77eec2eedfdd3ca54fae3f2c76be70d\PSIClient.ni.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\HP Laptop\AppData\Roaming\Mozilla\Firefox\Desktop Background.bmp
DNS Servers: 97.64.168.12 - 192.119.194.131
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: fpCsEvtSvc => 2
MSCONFIG\Services: Futuremark SystemInfo Service => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TeamViewer => 2
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2567945026-2459215876-1750334361-1001\...\StartupApproved\Run: => "Power2GoExpress10"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{D3F0044B-DC5F-4C66-8C79-7B345021F28E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{74C72727-7E64-4F32-A0FC-00B63CCB9565}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A0BDDDB2-82CB-499A-88D1-41F701731CFA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{81DBD1D8-9D63-4D41-8747-CAF4C00D9E11}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{876DA763-5C8D-4262-897B-16B135E09BB8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{80DF9622-F333-4668-B25C-DC3D5570AAC4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{16DCE5C3-18B5-4B80-9C0C-155210595B9A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{E89133D3-8A02-4EC5-BA1A-29ACA29142E1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C126F67E-EC72-41C9-B1EA-1A6D556D0D6F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9E920843-B24E-44D4-925B-FB23BDD29268}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{CB3DAB58-AC92-400E-9C33-630168EF6F94}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EF6594F2-C4B2-46D9-BA01-DA74F31992B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{28069B68-5125-4D94-95D4-62A880711715}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{E1CD61B4-FDD6-451A-B6B8-249FE607688E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{D19C9515-6846-4354-8E53-15D682598C07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{8DD9317B-7C7B-41FF-BB1A-C4D423F75DD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{4FA87AEA-F2AE-4A8A-9288-6DF007AFB90A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/18/2015 08:17:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (08/17/2015 09:26:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbam.exe, version: 2.3.55.0, time stamp: 0x557a2a02
Faulting module name: mbam.exe, version: 2.3.55.0, time stamp: 0x557a2a02
Exception code: 0xc0000005
Fault offset: 0x001de590
Faulting process id: 0x126c
Faulting application start time: 0xmbam.exe0
Faulting application path: mbam.exe1
Faulting module path: mbam.exe2
Report Id: mbam.exe3
Faulting package full name: mbam.exe4
Faulting package-relative application ID: mbam.exe5

Error: (08/15/2015 08:54:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HPLAPTOP)
Description: Activation of app Microsoft.Getstarted_2.2.7.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (08/15/2015 01:21:34 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (08/15/2015 01:21:25 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (08/10/2015 02:08:32 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (08/09/2015 10:42:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SystemSettingsBroker.exe, version: 10.0.10240.16384, time stamp: 0x559f39c2
Faulting module name: NetworkMobileSettings.dll, version: 10.0.10240.16401, time stamp: 0x55b1a6ea
Exception code: 0xc0000005
Fault offset: 0x00000000000b7ac0
Faulting process id: 0x978
Faulting application start time: 0xSystemSettingsBroker.exe0
Faulting application path: SystemSettingsBroker.exe1
Faulting module path: SystemSettingsBroker.exe2
Report Id: SystemSettingsBroker.exe3
Faulting package full name: SystemSettingsBroker.exe4
Faulting package-relative application ID: SystemSettingsBroker.exe5

Error: (08/09/2015 10:13:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: hpqWmiEx.exe, version: 4.6.15.1, time stamp: 0x50a165a9
Faulting module name: hpqWmiEx.exe, version: 4.6.15.1, time stamp: 0x50a165a9
Exception code: 0xc0000005
Fault offset: 0x0002b5d6
Faulting process id: 0x1744
Faulting application start time: 0xhpqWmiEx.exe0
Faulting application path: hpqWmiEx.exe1
Faulting module path: hpqWmiEx.exe2
Report Id: hpqWmiEx.exe3
Faulting package full name: hpqWmiEx.exe4
Faulting package-relative application ID: hpqWmiEx.exe5

Error: (08/09/2015 01:46:11 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (08/09/2015 01:14:16 AM) (Source: MsiInstaller) (EventID: 10005) (User: HPLAPTOP)
Description: Product: HP SoftPaq Download Manager -- Microsoft .NET Framework 3.5 SP1 or greater needs to be installed for this installation to continue.


System errors:
=============
Error: (08/21/2015 02:30:54 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {BFE18E9C-6D87-4450-B37C-E02F0B373803}

Error: (08/21/2015 02:28:04 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1084dpsUnavailable{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}

Error: (08/21/2015 02:28:04 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1084dpsUnavailable{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}

Error: (08/21/2015 02:28:01 AM) (Source: DCOM) (EventID: 10005) (User: HPLAPTOP)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (08/21/2015 02:26:57 AM) (Source: DCOM) (EventID: 10005) (User: HPLAPTOP)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (08/21/2015 02:26:42 AM) (Source: DCOM) (EventID: 10005) (User: HPLAPTOP)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (08/21/2015 02:26:39 AM) (Source: DCOM) (EventID: 10005) (User: HPLAPTOP)
Description: 1084dpsUnavailable{7022A3B3-D004-4F52-AF11-E9E987FEE25F}

Error: (08/21/2015 02:26:38 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:
%%1068

Error: (08/21/2015 02:26:38 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/21/2015 02:26:38 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office:
=========================
Error: (08/18/2015 08:17:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (08/17/2015 09:26:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe2.3.55.0557a2a02mbam.exe2.3.55.0557a2a02c0000005001de590126c01d0d95d2e3ee596C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe243358ff-aa9a-4a15-b377-53870757542d

Error: (08/15/2015 08:54:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HPLAPTOP)
Description: Microsoft.Getstarted_2.2.7.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca-2144927149

Error: (08/15/2015 01:21:34 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (08/15/2015 01:21:25 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (08/10/2015 02:08:32 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (08/09/2015 10:42:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SystemSettingsBroker.exe10.0.10240.16384559f39c2NetworkMobileSettings.dll10.0.10240.1640155b1a6eac000000500000000000b7ac097801d0d31e9027bd44C:\Windows\System32\SystemSettingsBroker.exeC:\Windows\System32\NetworkMobileSettings.dll65e4aa54-23f1-4682-9f15-926d7036b36e

Error: (08/09/2015 10:13:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: hpqWmiEx.exe4.6.15.150a165a9hpqWmiEx.exe4.6.15.150a165a9c00000050002b5d6174401d0d30881e882c6C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exeC:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exef0bd2845-abb3-44a5-924f-0d8802f71501

Error: (08/09/2015 01:46:11 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (08/09/2015 01:14:16 AM) (Source: MsiInstaller) (EventID: 10005) (User: HPLAPTOP)
Description: Product: HP SoftPaq Download Manager -- Microsoft .NET Framework 3.5 SP1 or greater needs to be installed for this installation to continue.(NULL)(NULL)(NULL)(NULL)(NULL)


==================== Memory info ===========================

Processor: Intel® Core™ i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 26%
Total physical RAM: 8071.55 MB
Available physical RAM: 5951.04 MB
Total Virtual: 8520.8 MB
Available Virtual: 5947.13 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:418.69 GB) (Free:232.53 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.99 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 62366BA3)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=418.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End of log ============================

 

Here are the GSmartControl test results:

 

smartctl 5.43 2012-06-30 r3573 [i686-w64-mingw32-win8(64)] (sf-5.43-1)
Copyright © 2002-12 by Bruce Allen, http://smartmontools.sourceforge.net

=== START OF INFORMATION SECTION ===
Device Model:     Samsung SSD 850 EVO 500GB
Serial Number:    S21HNSAG141982Z
LU WWN Device Id: 5 002538 da015af10
Firmware Version: EMT01B6Q
User Capacity:    500,107,862,016 bytes [500 GB]
Sector Size:      512 bytes logical/physical
Device is:        Not in smartctl database [for details use: -P showall]
ATA Version is:   8
ATA Standard is:  ATA-8-ACS revision 4c
Local Time is:    Tue Aug 25 19:45:39 2015 CDT
SMART support is: Available - device has SMART capability.
SMART support is: Enabled

=== START OF READ SMART DATA SECTION ===
SMART overall-health self-assessment test result: PASSED

General SMART Values:
Offline data collection status:  (0x00)    Offline data collection activity
                    was never started.
                    Auto Offline Data Collection: Disabled.
Self-test execution status:      (   0)    The previous self-test routine completed
                    without error or no self-test has ever
                    been run.
Total time to complete Offline
data collection:         (    0) seconds.
Offline data collection
capabilities:              (0x53) SMART execute Offline immediate.
                    Auto Offline data collection on/off support.
                    Suspend Offline collection upon new
                    command.
                    No Offline surface scan supported.
                    Self-test supported.
                    No Conveyance Self-test supported.
                    Selective Self-test supported.
SMART capabilities:            (0x0003)    Saves SMART data before entering
                    power-saving mode.
                    Supports SMART auto save timer.
Error logging capability:        (0x01)    Error logging supported.
                    General Purpose Logging supported.
Short self-test routine
recommended polling time:      (   2) minutes.
Extended self-test routine
recommended polling time:      ( 265) minutes.
SCT capabilities:            (0x003d)    SCT Status supported.
                    SCT Error Recovery Control supported.
                    SCT Feature Control supported.
                    SCT Data Table supported.

SMART Attributes Data Structure revision number: 1
Vendor Specific SMART Attributes with Thresholds:
ID# ATTRIBUTE_NAME          FLAG     VALUE WORST THRESH TYPE      UPDATED  WHEN_FAILED RAW_VALUE
  5 Reallocated_Sector_Ct   0x0033   100   100   010    Pre-fail  Always       -       0
  9 Power_On_Hours          0x0032   099   099   000    Old_age   Always       -       1296
 12 Power_Cycle_Count       0x0032   099   099   000    Old_age   Always       -       275
177 Wear_Leveling_Count     0x0013   099   099   000    Pre-fail  Always       -       4
179 Used_Rsvd_Blk_Cnt_Tot   0x0013   100   100   010    Pre-fail  Always       -       0
181 Program_Fail_Cnt_Total  0x0032   100   100   010    Old_age   Always       -       0
182 Erase_Fail_Count_Total  0x0032   100   100   010    Old_age   Always       -       0
183 Runtime_Bad_Block       0x0013   100   099   010    Pre-fail  Always       -       0
187 Reported_Uncorrect      0x0032   100   100   000    Old_age   Always       -       0
190 Airflow_Temperature_Cel 0x0032   062   052   000    Old_age   Always       -       38
195 Hardware_ECC_Recovered  0x001a   200   200   000    Old_age   Always       -       0
199 UDMA_CRC_Error_Count    0x003e   099   099   000    Old_age   Always       -       20
235 Unknown_Attribute       0x0012   099   099   000    Old_age   Always       -       42
241 Total_LBAs_Written      0x0032   099   099   000    Old_age   Always       -       5292002086

SMART Error Log Version: 1
No Errors Logged

Warning! SMART Self-Test Log Structure error: invalid SMART checksum.
SMART Self-test log structure revision number 1
Num  Test_Description    Status                  Remaining  LifeTime(hours)  LBA_of_first_error
# 1  Short offline       Completed without error       00%      1296         -

Warning! SMART Selective Self-Test Log Structure error: invalid SMART checksum.
SMART Selective self-test log data structure revision number 1
 SPAN  MIN_LBA  MAX_LBA  CURRENT_TEST_STATUS
    1        0        0  Not_testing
    2        0        0  Not_testing
    3        0        0  Not_testing
    4        0        0  Not_testing
    5        0        0  Not_testing
  255        0    65535  Read_scanning was never started
Selective self-test flags (0x0):
  After scanning selected spans, do NOT read-scan remainder of disk.
If Selective self-test is pending on power-up, resume after 0 minute delay.

 

I also have submitted my msinfo32 summary through the upload link as requested.

I really appreciate your assistance!



#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,721 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:51 PM

Posted 25 August 2015 - 09:33 PM

Thanks for the information and your patience. I don't believe this is a malware issue but let's do this.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it to your desktop (<<<Important) as fixlist.txt
C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
  • Copy/paste the following in the Search Field
*sling*
  • Click Search File(s) button
  • When completed click OK and a Search.txt document will open on your desktop
  • Copy and paste the contents of that document your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Fixlog
  • Search report

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#5 ddswanson31

ddswanson31
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 25 August 2015 - 10:56 PM

Results of FRST Fix below:

 

Fix result of Farbar Recovery Scan Tool (x64) Version:25-08-2015 02
Ran by HP Laptop (2015-08-25 22:52:11) Run:1
Running from C:\Users\HP Laptop\Desktop
Loaded Profiles: HP Laptop (Available Profiles: HP Laptop)
Boot Mode: Normal
==============================================

fixlist content:
*****************
C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
*****************

C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully

==== End of Fixlog 22:52:11 ====

 

 

Results of FRST Search Files below:

 

Farbar Recovery Scan Tool (x64) Version:25-08-2015 02
Ran by HP Laptop (2015-08-25 22:54:14)
Running from C:\Users\HP Laptop\Desktop
Boot Mode: Normal

================== Search Files: "*sling*" =============

C:\Users\HP Laptop\Downloads\slingtv.msi
[2015-08-23 19:10][2015-08-23 19:10] 19701760 ____A () AE75BF8EFA6F0D132FFD85CBD360CE74 [File is digitally signed]

C:\Users\HP Laptop\Desktop\Sling.lnk
[2015-08-23 19:10][2015-08-23 19:10] 0000757 ____A () 5314355D5207D4A8866CA7616F01CBEC [File not signed]

C:\Users\HP Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sling\Sling.lnk
[2015-08-23 19:10][2015-08-23 19:10] 0000793 ____A () 9BCD38483A0765CF7335F1446F527928 [File not signed]

C:\Users\HP Laptop\AppData\Roaming\Microsoft\Installer\{24AFF627-04A0-4C50-8112-35188EA937C4}\Sling.ico
[2015-08-23 19:10][2015-08-23 19:10] 0009662 ___RA () 6E23183CB155286FFE2F7A955F228618 [File not signed]

C:\Users\HP Laptop\AppData\Local\Microsoft\Windows\INetCache\IE\Z7KY76XK\Sling-sparkle[1].xml
[2015-08-23 19:11][2015-08-23 19:11] 0000417 ____A () 89EFABA18E05545A37F07A28D6EDF4C8 [File not signed]

C:\Users\HP Laptop\AppData\Local\Microsoft\Windows\INetCache\IE\WGSX3UWN\desktopapp-sling[1].json
[2015-08-23 19:11][2015-08-23 19:11] 0001639 ____A () BFE144B06CA307249A811A90C98E7F60 [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe(1).4816.dmp
[2015-08-23 21:15][2015-08-23 21:15] 8719468 ____A () 6C14FC84A5049A91EE5B8CAAB60F4536 [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe(1).5428.dmp
[2015-08-23 21:09][2015-08-23 21:09] 8718570 ____A () 718829DF4306E583DDC4FDD24100B0E6 [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe(1).5760.dmp
[2015-08-23 20:42][2015-08-23 20:42] 8720128 ____A () 17058303EAE6F29348C22ED01E9F2FCC [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe(1).6088.dmp
[2015-08-23 21:09][2015-08-23 21:09] 8719114 ____A () 4D631C2E77A0B6F0A2A45A01BE6C364E [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe.4816.dmp
[2015-08-23 21:15][2015-08-23 21:15] 8723064 ____A () B6D875303A549BDE5083A1CCFB2DB3AD [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe.5428.dmp
[2015-08-23 21:09][2015-08-23 21:09] 8722166 ____A () 30316C0B6D26B91A15A9CCA922FDC0A0 [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe.5760.dmp
[2015-08-23 20:42][2015-08-23 20:42] 8723724 ____A () 5E33397B84DB17DFC0528B31E58C2B5E [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe.6088.dmp
[2015-08-23 21:09][2015-08-23 21:09] 8722710 ____A () D36600752A9BCCAB3A0DE584F47B7D92 [File not signed]

C:\ProgramData\Sling\Sling.exe
[2015-05-29 14:55][2015-05-29 14:55] 0389632 ____A () D7D52DB4164CA0DC23B96C002CB18B71 [File not signed]

====== End of Search ======



#6 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,721 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:51 PM

Posted 26 August 2015 - 09:03 AM

Did you intentionally install Sling on your computer? The program is causing problems.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#7 ddswanson31

ddswanson31
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 26 August 2015 - 02:30 PM

Yeah I did intentionally install it, however my issue started before installing it so I know that it isn't the cause.

 

Could you please explain what problems it is causing?



#8 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,721 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:51 PM

Posted 26 August 2015 - 03:08 PM

Greetings,

Can you tell me when the problem started?

The Sling issue may be a different issue but we look at everything your logs tell us. Here is what I am looking at:
 

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe(1).4816.dmp
[2015-08-23 21:15][2015-08-23 21:15] 8719468 ____A () 6C14FC84A5049A91EE5B8CAAB60F4536 [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe(1).5428.dmp
[2015-08-23 21:09][2015-08-23 21:09] 8718570 ____A () 718829DF4306E583DDC4FDD24100B0E6 [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe(1).5760.dmp
[2015-08-23 20:42][2015-08-23 20:42] 8720128 ____A () 17058303EAE6F29348C22ED01E9F2FCC [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe(1).6088.dmp
[2015-08-23 21:09][2015-08-23 21:09] 8719114 ____A () 4D631C2E77A0B6F0A2A45A01BE6C364E [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe.4816.dmp
[2015-08-23 21:15][2015-08-23 21:15] 8723064 ____A () B6D875303A549BDE5083A1CCFB2DB3AD [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe.5428.dmp
[2015-08-23 21:09][2015-08-23 21:09] 8722166 ____A () 30316C0B6D26B91A15A9CCA922FDC0A0 [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe.5760.dmp
[2015-08-23 20:42][2015-08-23 20:42] 8723724 ____A () 5E33397B84DB17DFC0528B31E58C2B5E [File not signed]

C:\Users\HP Laptop\AppData\Local\CrashDumps\Sling.exe.6088.dmp
[2015-08-23 21:09][2015-08-23 21:09] 8722710 ____A () D36600752A9BCCAB3A0DE584F47B7D92 [File not signed]

C:\ProgramData\Sling\Sling.exe
[2015-05-29 14:55][2015-05-29 14:55] 0389632 ____A () D7D52DB4164CA0DC23B96C002CB18B71 [File not signed]


What the .dmp files are telling us is there is a problem with that file and/or program. It is crashing. There are a lot more of these errors in a different report starting on the 24th.

In addition I am looking at the last entry. The information in red is the MD5, a sort of fingerprint of the actual file. Usually we should be able to find solid confirmation that is a valid fingerprint. In your case although it may be a valid MD5 the jury is out. That file name and MD5 only have 2 hits doing a Google search. One shows clean and the other shows probably clean. The one hit, however is from a trusted site, that being McAfee. Relatively speaking there is very little information available regarding the evaluation of that file name.

So, my first question is whether or not that is a program you installed rather than an installation piggy backed onto another program you installed. Quite often unwanted programs are installed without your specific permission. Secondly, there is no question there is a problem with the sling.exe file and/or program because of the number of crashes indicated in your log. So the question now is whether a compromised sling.exe file is the cause of the crash or if it is a general corruption/conflict of some sort.

Bottom line is we are going to scan that file and see what we get. I am anticipating it to be a clean file but we need to check it before doing anything else, and there are other things we need to do. Please do this.

===================================================

Virustotal Online Virus Scanner

--------------------
  • Please go to Virustotal
  • Select Choose File
  • Navigate to the following file (if multiple files then one at a time), double click on it so the file name is populated, then click Scan it!
  • IMPORTANT! If the file is listed as already analyzed, click on Reanalyse file now button.

C:\ProgramData\Sling\Sling.exe

  • Once completed, highlight the information in the address bar and copy then paste the link in your reply
virustotal.jpg

===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • When did your problems start?
  • Does the explanation make sense to you?
  • Virustotal link

Edited by Oh My!, 26 August 2015 - 03:23 PM.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#9 ddswanson31

ddswanson31
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 26 August 2015 - 03:35 PM

Thanks again for all of your help Gary!

 

The problem I originally described started shortly after I "upgraded" from Windows 7 to Windows 10. I then did a clean install on my laptop with Windows 10 as I figured that would clear up any issues the "upgrade" may have caused. I wasn't sure if maybe something had carried over originally with my upgrade but figured that would have been taken care of with the clean install of Windows 10.

 

The explanation does make sense to me as to why it is on shaky ground as far as Sling.exe goes.

 

Below is my Virustotal link:

 

https://www.virustotal.com/en/file/c6c15fe7c1472326cb5ec5e384a9431d71a626730c566fa4e08237222529ccae/analysis/1440620966/



#10 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,721 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:51 PM

Posted 26 August 2015 - 04:14 PM

Thank you for you understanding and patience. We need to make sure malware isn't the cause of your issue. Once we are confident the computer is clean then we move on to other potential causes.

I would like you to do this next.

===================================================

Using VGA Driver in Normal Mode

--------------------
  • Click the Windows key + R at the same time
  • Type msconfig and hit Enter
  • Click the Boot tab (for XP click BOOT.INI)
  • Place a check mark in Base video, then click OK
  • Restart your computer and check the startup process for freezing
  • Your screen resolution will look different as if it was in Safe Mode, that is normal
  • Check your computer coming out of Sleep Mode
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Results?

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#11 ddswanson31

ddswanson31
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 26 August 2015 - 04:46 PM

Done,

 

It still froze upon restarting it however :(



#12 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,721 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:51 PM

Posted 26 August 2015 - 06:48 PM

Go back into msconfig, uncheck Base Video and select Safe Mode with Networking instead. See how your computer behaves in that environment.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#13 ddswanson31

ddswanson31
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:51 AM

Posted 26 August 2015 - 07:00 PM

It works fine and boots successfully in Safe Mode with Networking.



#14 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,721 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:51 PM

Posted 26 August 2015 - 07:56 PM

Very good. Now do this please.

===================================================

Clean Boot

--------------------
  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time
  • Type msconfig and press Enter
  • If you are prompted for an administrator password or for a confirmation, type the password, or provide confirmation
  • Click the General tab then click Selective Startup
  • Check Load system services
  • Uncheck Load Startup Items

2440069.png

  • Click the Services tab
  • Click to select the Hide All Microsoft Services check box
  • Click Disable All, and then click OK
  • When you are prompted, click Restart and boot into Normal Mode
  • Check your computer performance
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • How does your computer run?

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#15 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,721 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:10:51 PM

Posted 26 August 2015 - 07:57 PM

BTW, uncheck the Safe Mode in msconfig.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users