BrowswFox removal please

Status
Not open for further replies.
A

Ann Chidley

New member
System is Windows 8.1 running on Alienware 17

Spybot Version 1.6.2.46
BrowseFox found 2 registry entries, cannot be removed as in memory.

Errunt will not run.

After having to reset laptop, I tried to download Mozilla Firefox but was redirected and have ended up with BrowseFox, RegCleanPro, Rocket and probably more stuff. MacAfee claims to have isolated two trajans one was Artemis!C505BF4000f. Spybot unable to remove registry entries for Browsefox they are in memory even after running in safe mode.

DDS will not run. DDS will not run in compatability mode.

aswMBR version 1.0.1.2041 Copyright(c) 2014 AVAST Software
Run date: 2014-07-01 16:05:43
-----------------------------
16:05:43.074 OS Version: Windows x64 6.2.9200
16:05:43.074 Number of processors: 8 586 0x3C03
16:05:43.074 ComputerName: WORK UserName: Mike
16:05:44.051 Initialize success
16:05:44.052 VM: initialized successfully
16:05:44.056 VM: Intel CPU supported
16:05:48.146 VM: disk I/O iaStorA.sys
16:06:07.847 AVAST engine defs: 14063001
16:06:15.182 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000036
16:06:15.185 Disk 0 Vendor: 100. Size: 953865MB BusType: 8
16:06:15.186 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000038
16:06:15.187 Disk 1 Vendor: MD1H Size: 10783MB BusType: 8
16:06:15.612 Disk 0 MBR read successfully
16:06:15.614 Disk 0 MBR scan
16:06:15.622 Disk 0 unknown MBR code
16:06:15.627 Disk 0 Partition 1 00 EE GPT 2097151 MB offset 1
16:06:16.363 Disk 0 scanning C:\WINDOWS\system32\drivers
16:06:50.170 Service scanning
16:07:02.483 Modules scanning
16:07:02.483 Disk 0 trace - called modules:
16:07:02.483 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys storport.sys hal.dll iaStorA.sys
16:07:02.483 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffe00002508060]
16:07:02.498 3 CLASSPNP.SYS[fffff80000c01abb] -> nt!IofCallDriver -> [0xffffe00002509b00]
16:07:02.498 5 stdcfltn.sys[fffff8000159cd12] -> nt!IofCallDriver -> \Device\00000036[0xffffe000020fe5e0]
16:07:03.373 AVAST engine scan C:\WINDOWS
16:07:07.576 AVAST engine scan C:\WINDOWS\system32
16:11:33.316 AVAST engine scan C:\WINDOWS\system32\drivers
16:12:05.492 AVAST engine scan C:\Users\Mike
16:16:08.918 AVAST engine scan C:\ProgramData
16:17:06.013 Scan finished successfully
16:18:50.157 Disk 0 MBR has been saved successfully to "C:\Users\Mike\Desktop\MBR.dat"
16:18:50.157 The log file has been saved successfully to "C:\Users\Mike\Desktop\aswMBR.txt"

Help would be much appreciated.
 
Hi Ann Chidley,

My name is OCD. I would be more than happy to take a look at your log and help you with solving any malware problems you might have. Logs can take a while to research, so please be patient and know that I am working hard to get you a clean and functional system back in your hands. I'd be grateful if you would note the following:
  • I will be working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for the issues on this machine.
  • Please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Please reply to this thread. Do not start a new topic.
  • Copy and Paste logs directly into the reply window. DO NOT attach the logs unless specifically instructed to do so.
IMPORTANT NOTE : Please do not delete, download or install anything unless instructed to do so.

DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision. Doing so could make your system inoperable and could require a full reinstall of your Operating System and losing all your programs and data.

Please stay with this topic until I let you know that your system appears to be "All Clear"

Important: All tools MUST be run from the Desktop.

=========================

Security Check

Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
    • Windows XP : Double click on the icon to run it.
    • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
=========================

Download Farbar Recovery Scan Tool and save to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click and select "Run as Administrator" to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply
=========================

In your next post please provide the following:
  • checkup.txt
  • FRST.txt
  • Addition.txt
 
Good morning OCD
Thank you for responding,
Checkup.txt
Results of screen317's Security Check version 0.99.85
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
MVPS Hosts File
Spybot - Search & Destroy
McAfee SiteAdvisor
Mozilla Firefox (30.0)
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````

Frst.txt
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014
Ran by Mike (administrator) on WORK on 02-07-2014 07:28:07
Running from C:\Users\Mike\Desktop
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(PC Drivers Headquarters) C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareTactXMacroController.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Components\DBRUpdate\DBRUpd.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
() C:\Program Files (x86)\AlienRespawn\Components\Shell\DBRCrawler.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-10-03] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1353432 2013-09-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1353432 2013-09-26] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Command Center Controllers] => C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [13840 2013-11-05] (Alienware)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] => C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [4593968 2013-11-16] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-979864317-2615240833-1526847324-1002\...\Run: [Driver Support] => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [5467488 2014-06-27] (PC Drivers Headquarters)
HKU\S-1-5-21-979864317-2615240833-1526847324-1002\...\Run: [DellSystemDetect] => C:\Users\Mike\AppData\Local\Apps\2.0\41JO9YTV.0VZ\YWG0P557.GTQ\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe [262720 2014-06-30] (Dell)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2014-01-17] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2014-01-17] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{F9D8E17A-8670-4D39-AFBE-9B599BB85B1A}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\System32\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\System32\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://vaioportal.sony.eu
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.alienwarearena.com/welcome-uk
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - DefaultScope {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKCU - DefaultScope {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKCU - {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\bliesmml.default
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF user.js: detected! => C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\bliesmml.default\user.js
FF Extension: Ghostery - C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\bliesmml.default\Extensions\firefox@ghostery.com.xpi [2014-06-30]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-06-30]

==================== Services (Whitelisted) =================

S2 0111401404282084mcinstcleanup; C:\Users\Mike\AppData\Local\Temp\011140~1.EXE [836168 2014-03-13] (McAfee, Inc.)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2014-04-16] (Broadcom Corporation.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S3 ioloEnergyBooster; C:\Program Files\Alienware\Command Center\ioloEnergyBooster.exe [6145872 2012-11-01] (iolo technologies, LLC)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-18] (Intel Corporation)
R2 McAfee SiteAdvisor Service; c:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [155856 2014-06-03] (McAfee, Inc.)
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-07] (Qualcomm Atheros) [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [288472 2013-09-14] (Realtek Semiconductor)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)
S4 mfefire; "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" [X]
S2 mfevtp; "C:\WINDOWS\system32\mfevtps.exe" [X]

==================== Drivers (Whitelisted) ====================

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2014-04-16] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7474864 2014-04-16] (Broadcom Corporation)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [75056 2013-02-13] (Qualcomm Atheros, Inc.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
R0 EMSC; C:\Windows\System32\drivers\EMSC.SYS [17720 2012-07-10] ()
R0 EMSC; C:\Windows\SysWOW64\drivers\EMSC.SYS [15160 2012-07-10] ()
R3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [163536 2013-03-21] (Qualcomm Atheros, Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [99288 2013-09-18] (Intel Corporation)
R1 nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [300320 2014-01-17] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-13] (Synaptics Incorporated)
R3 ST_ACCEL; C:\Windows\system32\DRIVERS\ST_Accel.sys [83456 2013-08-06] (STMicroelectronics)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
R1 {57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64; C:\Windows\System32\drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64.sys [61112 2014-06-27] (StdLib)
R1 {6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64; C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64.sys [61112 2014-06-30] (StdLib)
S0 cfwids; system32\drivers\cfwids.sys [X]
S0 mfeapfk; system32\drivers\mfeapfk.sys [X]
R0 mfeavfk; system32\drivers\mfeavfk.sys [X]
S0 mfeelamk; system32\drivers\mfeelamk.sys [X]
S0 mfefirek; system32\drivers\mfefirek.sys [X]
R0 mfehidk; system32\drivers\mfehidk.sys [X]
R0 mfewfpk; system32\drivers\mfewfpk.sys [X]
U3 aswMBR; \??\C:\Users\Mike\AppData\Local\Temp\aswMBR.sys [X]
U3 aswVmm; \??\C:\Users\Mike\AppData\Local\Temp\aswVmm.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-02 07:28 - 2014-07-02 07:28 - 00018299 _____ () C:\Users\Mike\Desktop\FRST.txt
2014-07-02 07:28 - 2014-07-02 07:28 - 00000000 ____D () C:\FRST
2014-07-02 07:27 - 2014-07-02 07:27 - 02083840 _____ (Farbar) C:\Users\Mike\Desktop\FRST64.exe
2014-07-02 07:24 - 2014-07-02 07:24 - 00854390 _____ () C:\Users\Mike\Desktop\SecurityCheck.exe
2014-07-02 07:00 - 2014-07-02 07:00 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-07-01 16:18 - 2014-07-01 16:18 - 00002022 _____ () C:\Users\Mike\Desktop\aswMBR.txt
2014-07-01 16:18 - 2014-07-01 16:18 - 00000512 _____ () C:\Users\Mike\Desktop\MBR.dat
2014-07-01 15:01 - 2014-07-01 15:01 - 00000512 _____ () C:\Users\Mike\Downloads\MBR.dat
2014-07-01 14:57 - 2014-07-01 14:57 - 05185536 _____ (AVAST Software) C:\Users\Mike\Downloads\aswMBR.exe
2014-07-01 14:55 - 2014-07-01 14:55 - 00688992 _____ (Swearware) C:\Users\Mike\Downloads\dds.com
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\UpdatusUser\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\Mike\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\Administrator\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000919 _____ () C:\Users\UpdatusUser\Desktop\ERUNT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000919 _____ () C:\Users\Administrator\Desktop\ERUNT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
2014-07-01 14:36 - 2014-07-01 14:36 - 00000000 ____D () C:\Program Files (x86)\ERUNT
2014-07-01 14:35 - 2014-07-01 14:35 - 00791393 _____ (Lars Hederer ) C:\Users\Mike\Downloads\erunt-setup.exe
2014-07-01 14:35 - 2013-08-22 14:25 - 00000824 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.20140701-143520.backup
2014-06-30 22:04 - 2014-06-30 22:04 - 00083496 _____ () C:\Users\Mike\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-30 21:07 - 2014-06-30 21:07 - 00000000 ____D () C:\Program Files (x86)\McAfee.com
2014-06-30 21:06 - 2014-07-01 12:51 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-06-30 21:06 - 2014-06-30 21:07 - 00000000 ____D () C:\Program Files\McAfee
2014-06-30 21:06 - 2014-06-30 21:06 - 00000000 ____D () C:\Program Files\McAfee.com
2014-06-30 21:04 - 2014-06-30 21:04 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-06-30 20:56 - 2014-07-01 08:45 - 00000000 ____D () C:\ProgramData\McAfee
2014-06-30 20:56 - 2014-06-30 21:07 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2014-06-30 20:56 - 2014-04-03 17:15 - 00189912 _____ (McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe.0513.deleteme
2014-06-30 20:42 - 2014-06-30 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-06-30 20:41 - 2014-07-02 07:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-06-30 20:41 - 2014-06-30 20:41 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-06-30 20:41 - 2014-06-30 20:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio
2014-06-30 20:39 - 2014-06-30 20:39 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-30 20:38 - 2014-07-02 07:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-30 20:38 - 2014-06-30 20:38 - 00000000 ____D () C:\Users\Mike\AppData\Local\Microsoft Help
2014-06-30 20:28 - 2014-06-30 20:28 - 02087752 _____ (Dell Inc) C:\Users\Mike\Downloads\aulauncher.exe
2014-06-30 20:28 - 2014-06-30 20:28 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\PCDr
2014-06-30 19:20 - 2014-06-30 20:26 - 00000000 ____D () C:\Users\Mike\AppData\Local\Deployment
2014-06-30 19:20 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-06-30 19:20 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Apps\2.0
2014-06-30 19:19 - 2014-06-30 19:19 - 00417824 _____ () C:\Users\Mike\Downloads\DellSystemDetect.exe
2014-06-30 19:06 - 2014-06-30 10:51 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64.sys
2014-06-30 17:25 - 2014-06-30 17:31 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-06-30 17:17 - 2014-06-30 17:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-30 17:17 - 2014-06-01 17:17 - 95414520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-06-30 17:06 - 2014-06-30 17:06 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-06-30 16:55 - 2014-06-30 16:55 - 00000000 ____D () C:\Users\Mike\AppData\Local\softthinks
2014-06-30 16:55 - 2014-06-30 16:55 - 00000000 ____D () C:\ProgramData\softthinks
2014-06-30 16:50 - 2014-06-30 16:50 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2014-06-30 16:29 - 2014-06-27 18:14 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64.sys
2014-06-30 16:23 - 2013-12-14 07:31 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-06-30 16:23 - 2013-12-14 07:19 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-30 16:22 - 2014-05-08 08:14 - 23134208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-06-30 16:22 - 2014-05-08 06:52 - 17073152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-06-30 16:22 - 2014-05-08 05:57 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-06-30 16:22 - 2014-05-08 05:04 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-06-30 16:22 - 2014-03-06 10:19 - 01287576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-06-30 16:22 - 2014-03-06 10:02 - 01109424 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-06-30 16:22 - 2014-03-06 07:17 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-06-30 16:22 - 2014-03-06 07:10 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-06-30 16:22 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-06-30 16:22 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-06-30 16:22 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-06-30 16:22 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-06-30 16:22 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-30 16:22 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-30 16:22 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-06-30 16:22 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-06-30 16:22 - 2014-01-08 02:46 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-06-30 16:22 - 2014-01-08 02:41 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-06-30 16:22 - 2014-01-08 02:41 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-06-30 16:22 - 2014-01-04 16:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-06-30 16:22 - 2014-01-04 16:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-06-30 16:22 - 2014-01-04 15:08 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-06-30 16:22 - 2014-01-04 14:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-06-30 16:22 - 2014-01-03 00:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-30 16:22 - 2014-01-03 00:48 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-06-30 16:22 - 2014-01-01 02:55 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-06-30 16:22 - 2014-01-01 02:52 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-06-30 16:22 - 2014-01-01 01:56 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-06-30 16:22 - 2014-01-01 01:55 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-06-30 16:22 - 2014-01-01 00:59 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-06-30 16:22 - 2014-01-01 00:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-06-30 16:22 - 2014-01-01 00:56 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-30 16:22 - 2013-12-31 00:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-06-30 16:22 - 2013-12-31 00:33 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-06-30 16:22 - 2013-12-31 00:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-06-30 16:22 - 2013-12-31 00:31 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-06-30 16:22 - 2013-12-31 00:31 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-06-30 16:22 - 2013-12-27 16:09 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-06-30 16:22 - 2013-12-27 09:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-06-30 16:22 - 2013-12-27 09:57 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-06-30 16:22 - 2013-12-27 09:23 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-06-30 16:22 - 2013-12-27 08:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-06-30 16:22 - 2013-12-27 08:03 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-06-30 16:22 - 2013-12-27 07:37 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-06-30 16:22 - 2013-12-21 08:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-06-30 16:22 - 2013-12-20 11:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-06-30 16:22 - 2013-12-20 11:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-06-30 16:22 - 2013-12-17 08:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-06-30 16:22 - 2013-12-13 11:54 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-06-30 16:22 - 2013-12-13 07:36 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-06-30 16:22 - 2013-12-13 06:32 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-06-30 16:22 - 2013-12-09 01:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-06-30 16:22 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-06-30 16:22 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-06-30 16:22 - 2013-12-09 00:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-06-30 16:21 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-06-30 16:21 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-06-30 16:21 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-06-30 16:21 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-06-30 16:21 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-06-30 16:21 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-06-30 16:21 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-06-30 16:21 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-06-30 16:21 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-06-30 16:21 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-06-30 16:21 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-06-30 16:21 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-06-30 16:21 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-06-30 16:21 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-06-30 16:21 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-06-30 16:21 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-06-30 16:21 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-06-30 16:21 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-06-30 16:21 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-06-30 16:21 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-06-30 16:21 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-06-30 16:21 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-06-30 16:21 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-06-30 16:21 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-06-30 16:21 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-06-30 16:21 - 2014-01-07 06:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-06-30 16:21 - 2014-01-07 05:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-06-30 16:21 - 2013-11-21 07:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-06-30 16:21 - 2013-11-21 06:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-06-30 16:20 - 2014-01-31 17:15 - 00311640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-06-30 16:20 - 2014-01-31 17:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-06-30 16:20 - 2014-01-31 17:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-06-30 16:20 - 2014-01-31 14:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-06-30 16:20 - 2014-01-31 10:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-06-30 16:20 - 2014-01-29 09:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-06-30 16:20 - 2014-01-29 09:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-06-30 16:20 - 2014-01-29 09:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-06-30 16:20 - 2014-01-29 09:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-06-30 16:20 - 2014-01-29 08:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-06-30 16:20 - 2014-01-29 08:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-06-30 16:20 - 2014-01-29 08:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-06-30 16:20 - 2014-01-29 07:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-06-30 16:20 - 2014-01-29 01:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-06-30 16:20 - 2014-01-27 20:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-06-30 16:20 - 2014-01-27 20:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-06-30 16:20 - 2014-01-27 20:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-06-30 16:20 - 2014-01-27 19:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-06-30 16:20 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-06-30 16:20 - 2014-01-27 19:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-06-30 16:20 - 2014-01-27 19:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-06-30 16:20 - 2014-01-27 18:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-06-30 16:20 - 2014-01-27 18:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-06-30 16:20 - 2014-01-27 18:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-06-30 16:20 - 2014-01-27 16:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-06-30 16:20 - 2014-01-27 16:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-06-30 16:20 - 2014-01-27 12:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-06-30 16:20 - 2014-01-18 00:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-30 16:20 - 2014-01-17 22:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-06-30 16:20 - 2013-12-21 15:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-06-30 16:20 - 2013-12-21 09:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-06-30 16:20 - 2013-10-31 01:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-06-30 16:20 - 2013-10-31 01:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-06-30 16:20 - 2013-10-31 01:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-06-30 16:19 - 2014-04-19 12:15 - 21186352 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-06-30 16:19 - 2014-04-19 07:49 - 18644072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-06-30 16:19 - 2014-03-10 11:35 - 02008408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-06-30 16:19 - 2014-03-10 11:35 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2014-06-30 16:19 - 2014-02-22 13:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-06-30 16:19 - 2014-02-22 12:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-06-30 16:19 - 2014-02-11 04:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-06-30 16:19 - 2014-02-11 03:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-06-30 16:19 - 2014-02-11 03:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-06-30 16:19 - 2014-01-09 09:25 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-06-30 16:19 - 2014-01-09 08:59 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-06-30 16:19 - 2014-01-09 08:59 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-06-30 16:19 - 2014-01-09 08:49 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-06-30 16:19 - 2014-01-09 08:44 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-30 16:19 - 2014-01-09 08:43 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-06-30 16:19 - 2014-01-09 08:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-06-30 16:19 - 2014-01-09 08:28 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-06-30 16:19 - 2014-01-09 08:28 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-06-30 16:19 - 2014-01-09 08:18 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-06-30 16:19 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-06-30 16:19 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-06-30 16:19 - 2014-01-04 21:50 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-06-30 16:19 - 2014-01-04 20:22 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-06-30 16:19 - 2014-01-04 15:30 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-06-30 16:19 - 2014-01-04 15:23 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-06-30 16:19 - 2014-01-04 14:42 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-06-30 16:19 - 2014-01-04 14:40 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-30 16:19 - 2014-01-04 14:36 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-06-30 16:19 - 2014-01-04 14:28 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-06-30 16:19 - 2013-12-21 03:10 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-06-30 16:19 - 2013-12-21 03:10 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-06-30 16:19 - 2013-12-09 03:57 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-06-30 16:19 - 2013-12-09 02:51 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-06-30 16:19 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-06-30 16:19 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-06-30 16:19 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-06-30 16:18 - 2014-01-19 08:38 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-06-30 16:07 - 2014-06-30 16:44 - 00005005 _____ () C:\WINDOWS\wininit.ini
2014-06-30 15:35 - 2014-07-01 14:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
2014-06-30 15:35 - 2014-06-30 16:08 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-30 15:35 - 2014-06-30 15:35 - 00001272 _____ () C:\Users\Mike\Desktop\Spybot - Search & Destroy.lnk
2014-06-30 15:35 - 2014-06-30 15:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2014-06-30 15:34 - 2014-06-30 15:34 - 16409960 _____ (Safer Networking Limited ) C:\Users\Mike\Downloads\spybotsd162(1).exe
2014-06-30 15:30 - 2014-06-30 15:31 - 00284224 _____ (Mozilla) C:\Users\Mike\Downloads\Firefox Setup Stub 30.0.exe
2014-06-30 15:30 - 2014-06-30 15:30 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Mozilla
2014-06-30 15:30 - 2014-06-30 15:30 - 00000000 ____D () C:\Users\Mike\AppData\Local\Mozilla
2014-06-30 15:28 - 2014-06-30 15:28 - 00003768 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMScan
2014-06-30 15:28 - 2014-06-30 15:28 - 00003766 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMUpdater
2014-06-30 15:28 - 2014-06-30 15:28 - 00003762 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMRules
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\Users\Mike\Downloads\Driver Support
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\Users\Mike\AppData\Local\PC_Drivers_Headquarters
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\ProgramData\UAB
2014-06-30 15:27 - 2014-07-02 07:27 - 00000298 _____ () C:\WINDOWS\Tasks\Rocket Updater.job
2014-06-30 15:27 - 2014-06-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-30 15:27 - 2014-06-30 16:07 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Systweak
2014-06-30 15:27 - 2014-06-30 16:07 - 00000000 ____D () C:\ProgramData\Systweak
2014-06-30 15:27 - 2014-06-30 15:32 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-30 15:27 - 2014-06-30 15:32 - 00001161 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-30 15:27 - 2014-06-30 15:27 - 00003308 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector
2014-06-30 15:27 - 2014-06-30 15:27 - 00003120 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector_startup
2014-06-30 15:27 - 2014-06-30 15:27 - 00003108 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro
2014-06-30 15:27 - 2014-06-30 15:27 - 00002636 _____ () C:\WINDOWS\System32\Tasks\Rocket Updater
2014-06-30 15:27 - 2014-06-30 15:27 - 00002319 _____ () C:\Users\Public\Desktop\Driver Support.lnk
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\RocketUpdater
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\1H1Q
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Support
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Driver Support
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Driver Support
2014-06-30 15:27 - 2014-04-25 14:49 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\WINDOWS\system32\roboot64.exe
2014-06-30 15:27 - 2012-07-25 12:03 - 00016896 _____ () C:\WINDOWS\system32\sasnative64.exe
2014-06-30 15:25 - 2014-07-02 07:27 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-979864317-2615240833-1526847324-1002
2014-06-30 15:25 - 2014-06-30 15:25 - 00003996 _____ () C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-06-30 15:25 - 2014-06-30 15:25 - 00003460 _____ () C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2014-06-30 15:25 - 2014-06-30 15:25 - 00003196 _____ () C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2014-06-30 15:21 - 2014-06-30 15:21 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Macromedia
2014-06-30 15:20 - 2014-06-30 15:20 - 00002079 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2014-06-30 15:20 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Intel Corporation
2014-06-30 15:20 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Power2Go8
2014-06-30 15:19 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\PackageStaging
2014-06-30 15:19 - 2014-06-30 15:19 - 00013154 _____ () C:\Users\Mike\Desktop\Removed Apps.html
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\Software Statistics Service
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\Broadcom
2014-06-30 15:18 - 2014-06-30 15:18 - 00001444 _____ () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-30 15:18 - 2014-06-30 15:18 - 00000020 ___SH () C:\Users\Mike\ntuser.ini
2014-06-30 15:18 - 2014-06-30 15:18 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Adobe
2014-06-30 15:18 - 2014-06-30 15:18 - 00000000 ____D () C:\Users\Mike\AppData\Local\VirtualStore
2014-06-30 15:16 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike
2014-06-30 15:16 - 2014-06-30 15:16 - 00036198 _____ () C:\WINDOWS\diagwrn.xml
2014-06-30 15:16 - 2014-06-30 15:16 - 00036198 _____ () C:\WINDOWS\diagerr.xml
2014-06-30 15:16 - 2014-06-30 15:16 - 00002681 _____ () C:\Users\Administrator\AppData\Local\Application.xml
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-30 15:15 - 2014-06-30 15:59 - 00000000 ____D () C:\Windows.old
2014-06-30 15:14 - 2014-06-30 15:14 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-06-30 15:00 - 2014-06-30 15:00 - 00000000 ____D () C:\$WINDOWS.~BT
2014-06-30 14:59 - 2014-06-30 15:58 - 00000000 ___HD () C:\$SysReset

==================== One Month Modified Files and Folders =======

2014-07-02 07:28 - 2014-07-02 07:28 - 00018299 _____ () C:\Users\Mike\Desktop\FRST.txt
2014-07-02 07:28 - 2014-07-02 07:28 - 00000000 ____D () C:\FRST
2014-07-02 07:27 - 2014-07-02 07:27 - 02083840 _____ (Farbar) C:\Users\Mike\Desktop\FRST64.exe
2014-07-02 07:27 - 2014-06-30 15:27 - 00000298 _____ () C:\WINDOWS\Tasks\Rocket Updater.job
2014-07-02 07:27 - 2014-06-30 15:25 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-979864317-2615240833-1526847324-1002
2014-07-02 07:26 - 2014-04-26 20:49 - 00000000 ____D () C:\Ann
2014-07-02 07:24 - 2014-07-02 07:24 - 00854390 _____ () C:\Users\Mike\Desktop\SecurityCheck.exe
2014-07-02 07:22 - 2013-08-22 16:36 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-07-02 07:19 - 2014-04-16 02:59 - 01251507 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-02 07:08 - 2013-08-22 16:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-07-02 07:02 - 2014-06-30 20:38 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-02 07:01 - 2014-06-30 20:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-07-02 07:00 - 2014-07-02 07:00 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-07-02 07:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-07-02 07:00 - 2013-08-22 14:25 - 00000269 _____ () C:\WINDOWS\win.ini
2014-07-01 17:10 - 2014-04-16 03:06 - 00000000 ____D () C:\Program Files (x86)\AlienRespawn
2014-07-01 16:18 - 2014-07-01 16:18 - 00002022 _____ () C:\Users\Mike\Desktop\aswMBR.txt
2014-07-01 16:18 - 2014-07-01 16:18 - 00000512 _____ () C:\Users\Mike\Desktop\MBR.dat
2014-07-01 15:01 - 2014-07-01 15:01 - 00000512 _____ () C:\Users\Mike\Downloads\MBR.dat
2014-07-01 14:57 - 2014-07-01 14:57 - 05185536 _____ (AVAST Software) C:\Users\Mike\Downloads\aswMBR.exe
2014-07-01 14:55 - 2014-07-01 14:55 - 00688992 _____ (Swearware) C:\Users\Mike\Downloads\dds.com
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\UpdatusUser\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\Mike\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\Administrator\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000919 _____ () C:\Users\UpdatusUser\Desktop\ERUNT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000919 _____ () C:\Users\Administrator\Desktop\ERUNT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
2014-07-01 14:36 - 2014-07-01 14:36 - 00000000 ____D () C:\Program Files (x86)\ERUNT
2014-07-01 14:35 - 2014-07-01 14:35 - 00791393 _____ (Lars Hederer ) C:\Users\Mike\Downloads\erunt-setup.exe
2014-07-01 14:28 - 2014-06-30 15:35 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
2014-07-01 12:58 - 2014-04-16 02:51 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-01 12:52 - 2014-04-25 16:09 - 00000000 __RDO () C:\Users\Mike\SkyDrive
2014-07-01 12:51 - 2014-06-30 21:06 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-07-01 12:51 - 2014-04-16 03:05 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-01 12:51 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-01 12:40 - 2014-04-16 02:41 - 00023974 _____ () C:\WINDOWS\PFRO.log
2014-07-01 12:40 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-07-01 08:45 - 2014-06-30 20:56 - 00000000 ____D () C:\ProgramData\McAfee
2014-06-30 22:35 - 2013-08-22 15:46 - 00033687 _____ () C:\WINDOWS\setupact.log
2014-06-30 22:04 - 2014-06-30 22:04 - 00083496 _____ () C:\Users\Mike\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-30 21:08 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-06-30 21:07 - 2014-06-30 21:07 - 00000000 ____D () C:\Program Files (x86)\McAfee.com
2014-06-30 21:07 - 2014-06-30 21:06 - 00000000 ____D () C:\Program Files\McAfee
2014-06-30 21:07 - 2014-06-30 20:56 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2014-06-30 21:06 - 2014-06-30 21:06 - 00000000 ____D () C:\Program Files\McAfee.com
2014-06-30 21:04 - 2014-06-30 21:04 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-06-30 21:01 - 2013-08-22 15:44 - 00379544 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-30 20:56 - 2014-04-25 16:44 - 05155464 _____ (McAfee, Inc.) C:\Users\Mike\Downloads\McAfeeSetup-Serial.exe
2014-06-30 20:42 - 2014-06-30 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-06-30 20:41 - 2014-06-30 20:41 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-06-30 20:41 - 2014-06-30 20:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio
2014-06-30 20:41 - 2014-04-16 03:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-06-30 20:41 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-06-30 20:39 - 2014-06-30 20:39 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-30 20:38 - 2014-06-30 20:38 - 00000000 ____D () C:\Users\Mike\AppData\Local\Microsoft Help
2014-06-30 20:38 - 2013-08-22 20:12 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-06-30 20:28 - 2014-06-30 20:28 - 02087752 _____ (Dell Inc) C:\Users\Mike\Downloads\aulauncher.exe
2014-06-30 20:28 - 2014-06-30 20:28 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\PCDr
2014-06-30 20:26 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Deployment
2014-06-30 19:20 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-06-30 19:20 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Apps\2.0
2014-06-30 19:19 - 2014-06-30 19:19 - 00417824 _____ () C:\Users\Mike\Downloads\DellSystemDetect.exe
2014-06-30 17:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-06-30 17:31 - 2014-06-30 17:25 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-06-30 17:17 - 2014-06-30 17:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-30 17:06 - 2014-06-30 17:06 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-06-30 16:55 - 2014-06-30 16:55 - 00000000 ____D () C:\Users\Mike\AppData\Local\softthinks
2014-06-30 16:55 - 2014-06-30 16:55 - 00000000 ____D () C:\ProgramData\softthinks
2014-06-30 16:50 - 2014-06-30 16:50 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2014-06-30 16:50 - 2014-04-16 02:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alienware
2014-06-30 16:47 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-30 16:44 - 2014-06-30 16:07 - 00005005 _____ () C:\WINDOWS\wininit.ini
2014-06-30 16:08 - 2014-06-30 15:35 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-30 16:07 - 2014-06-30 15:27 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Systweak
2014-06-30 16:07 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Systweak
2014-06-30 15:59 - 2014-06-30 15:15 - 00000000 ____D () C:\Windows.old
2014-06-30 15:58 - 2014-06-30 14:59 - 00000000 ___HD () C:\$SysReset
2014-06-30 15:35 - 2014-06-30 15:35 - 00001272 _____ () C:\Users\Mike\Desktop\Spybot - Search & Destroy.lnk
2014-06-30 15:35 - 2014-06-30 15:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2014-06-30 15:34 - 2014-06-30 15:34 - 16409960 _____ (Safer Networking Limited ) C:\Users\Mike\Downloads\spybotsd162(1).exe
2014-06-30 15:32 - 2014-06-30 15:27 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-30 15:32 - 2014-06-30 15:27 - 00001161 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-30 15:31 - 2014-06-30 15:30 - 00284224 _____ (Mozilla) C:\Users\Mike\Downloads\Firefox Setup Stub 30.0.exe
2014-06-30 15:30 - 2014-06-30 15:30 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Mozilla
2014-06-30 15:30 - 2014-06-30 15:30 - 00000000 ____D () C:\Users\Mike\AppData\Local\Mozilla
2014-06-30 15:28 - 2014-06-30 15:28 - 00003768 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMScan
2014-06-30 15:28 - 2014-06-30 15:28 - 00003766 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMUpdater
2014-06-30 15:28 - 2014-06-30 15:28 - 00003762 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMRules
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\Users\Mike\Downloads\Driver Support
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\Users\Mike\AppData\Local\PC_Drivers_Headquarters
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\ProgramData\UAB
2014-06-30 15:27 - 2014-06-30 15:27 - 00003308 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector
2014-06-30 15:27 - 2014-06-30 15:27 - 00003120 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector_startup
2014-06-30 15:27 - 2014-06-30 15:27 - 00003108 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro
2014-06-30 15:27 - 2014-06-30 15:27 - 00002636 _____ () C:\WINDOWS\System32\Tasks\Rocket Updater
2014-06-30 15:27 - 2014-06-30 15:27 - 00002319 _____ () C:\Users\Public\Desktop\Driver Support.lnk
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\RocketUpdater
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\1H1Q
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Support
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Driver Support
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Driver Support
2014-06-30 15:25 - 2014-06-30 15:25 - 00003996 _____ () C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-06-30 15:25 - 2014-06-30 15:25 - 00003460 _____ () C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2014-06-30 15:25 - 2014-06-30 15:25 - 00003196 _____ () C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2014-06-30 15:25 - 2014-04-16 03:06 - 00000000 ____D () C:\ProgramData\PCDr
2014-06-30 15:21 - 2014-06-30 15:21 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Macromedia
2014-06-30 15:20 - 2014-06-30 15:20 - 00002079 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2014-06-30 15:20 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Intel Corporation
2014-06-30 15:20 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Power2Go8
2014-06-30 15:20 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\PackageStaging
2014-06-30 15:19 - 2014-06-30 15:19 - 00013154 _____ () C:\Users\Mike\Desktop\Removed Apps.html
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\Software Statistics Service
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\Broadcom
2014-06-30 15:19 - 2014-06-30 15:16 - 00000000 ____D () C:\Users\Mike
2014-06-30 15:19 - 2014-04-16 03:11 - 00000000 ___DC () C:\WINDOWS\Panther
2014-06-30 15:19 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-06-30 15:19 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-06-30 15:18 - 2014-06-30 15:18 - 00001444 _____ () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-30 15:18 - 2014-06-30 15:18 - 00000020 ___SH () C:\Users\Mike\ntuser.ini
2014-06-30 15:18 - 2014-06-30 15:18 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Adobe
2014-06-30 15:18 - 2014-06-30 15:18 - 00000000 ____D () C:\Users\Mike\AppData\Local\VirtualStore
2014-06-30 15:18 - 2014-04-25 16:03 - 00000000 ____D () C:\Users\Mike\AppData\Local\Packages
2014-06-30 15:17 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-06-30 15:16 - 2014-06-30 15:16 - 00036198 _____ () C:\WINDOWS\diagwrn.xml
2014-06-30 15:16 - 2014-06-30 15:16 - 00036198 _____ () C:\WINDOWS\diagerr.xml
2014-06-30 15:16 - 2014-06-30 15:16 - 00002681 _____ () C:\Users\Administrator\AppData\Local\Application.xml
2014-06-30 15:16 - 2014-04-16 03:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2014-06-30 15:16 - 2014-04-16 03:12 - 00000000 ____D () C:\WINDOWS\system32\NV
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-06-30 15:16 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default
2014-06-30 15:15 - 2013-08-22 16:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-06-30 15:14 - 2014-06-30 15:14 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-06-30 15:00 - 2014-06-30 15:00 - 00000000 ____D () C:\$WINDOWS.~BT
2014-06-30 10:51 - 2014-06-30 19:06 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64.sys
2014-06-27 18:14 - 2014-06-30 16:29 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64.sys

Some content of TEMP:
====================
C:\Users\Mike\AppData\Local\Temp\0111401404282084mcinst.exe
C:\Users\Mike\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-04-16 02:41

Addition.txt follows in next post.
 
Addition.txt
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-07-2014
Ran by Mike at 2014-07-02 07:28:26
Running from C:\Users\Mike\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

AlienAutopsy (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
AlienRespawn - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.0 - Alienware)
AlienRespawn (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.0 - Alienware)
Alienware Command Center (HKLM-x32\...\InstallShield_{D4CE21D4-27E5-46DB-9FFE-553A90AD4B9F}) (Version: 3.5.14.0 - Alienware Corp.)
Alienware Command Center (Version: 3.5.14.0 - Alienware Corp.) Hidden
Alienware Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Alienware On-Screen Display (HKLM-x32\...\InstallShield_{0D69462F-99CC-4F8D-942E-666E21CE59F8}) (Version: 0.33.0.11C - )
Alienware On-Screen Display (x32 Version: 0.33.0.11C - ) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.143 - Broadcom Corporation)
CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (x32 Version: 10.0.1.3214 - CyberLink Corp.) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.3123 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.1.3126 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (x32 Version: 12.0.3205.55 - CyberLink Corp.) Hidden
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.8.1.1 - Dell)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Driver Support (HKLM-x32\...\{597FB4A5-DD86-4316-A410-7E8074CC2CCE}) (Version: 9.1 - PC Drivers Headquarters, LP)
DSC/AA Factory Installer (Version: 3.5.6426.22 - PC-Doctor, Inc.) Hidden
EMSC (x32 Version: 0.0.0.25 - Compal Electronics, Inc.) Hidden
ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version: - Lars Hederer)
Firefox Packages (HKCU\...\Firefox Packages) (Version: - ) <==== ATTENTION
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3304 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.0.190 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
NVIDIA 3D Vision Driver 332.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 332.44 - NVIDIA Corporation)
NVIDIA Control Panel 332.44 (Version: 332.44 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 332.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.44 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.15.2 (Version: 1.15.2 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0927 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0927 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0927 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3244 - NVIDIA Corporation) Hidden
NVIDIA Update 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.15.2 - NVIDIA Corporation) Hidden
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1052 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1052 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{56BF70E8-EC59-4F68-BEE7-8B71432048C4}) (Version: 1.0.30.1052 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.0.30.1052 - Qualcomm Atheros) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7055 - Realtek Semiconductor Corp.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.12.0046 - ST Microelectronics)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.2 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_STANDARDR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_STANDARDR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_STANDARDR_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2881065) 32-Bit Edition (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{B7EF38F7-1D58-4085-A9A4-0F6C69A5AA1E}) (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_STANDARDR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_STANDARDR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_STANDARDR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version: - Microsoft)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.7850 - Broadcom Corporation)

==================== Restore Points =========================

30-06-2014 16:16:48 Windows Update

==================== Hosts content: ==========================

2013-08-22 14:25 - 2014-07-01 14:35 - 00450712 ____R C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0D8573D5-80F0-470D-9BEC-4D9D6AAE8BE1} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink)
Task: {13AB155B-5B5D-43FE-8B1F-BC8CDFA11C1D} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\AlienAutopsy\sessionchecker.exe [2014-01-10] (PC-Doctor, Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2B473123-50B6-45EE-AC25-9E327A0B0639} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {41ED7E6E-8937-4D2F-B54F-2CDAC0DFE1A2} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4AE6C4F3-2811-461E-91F2-F0D406212CBC} - System32\Tasks\Advanced System Protector => C:\Program Files (x86)\RegClean Pro\SystweakASP.exe <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {873AEE91-3E84-4B1F-AE3B-F481FDAB6914} - System32\Tasks\Driver Support-RTMScan => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [2014-06-27] (PC Drivers Headquarters)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {8DB36741-CE7D-4490-8974-FD9C7A7BA8D1} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe <==== ATTENTION
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {B329182E-C280-4F09-A14D-25D4F0CF9EC2} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe [2013-09-09] (Dolby Laboratories Inc.)
Task: {B83D84A6-2DEB-4F1E-8919-C6945C6609B8} - System32\Tasks\Driver Support-RTMUpdater => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [2014-06-27] (PC Drivers Headquarters)
Task: {BAF04B4A-BF76-4C95-9BA1-90871765937B} - System32\Tasks\Driver Support-RTMRules => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [2014-06-27] (PC Drivers Headquarters)
Task: {BD8A26F8-CA6C-46DD-97DD-47D80D0BE69F} - System32\Tasks\Advanced System Protector_startup => C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe <==== ATTENTION
Task: {BEF2B73F-F61E-496F-9264-AABF3123B9B2} - System32\Tasks\Rocket Updater => C:\Users\Mike\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E695F458-05A7-4D58-8AFE-58B243FD20BB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-06-01] (Microsoft Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F5D09611-6D3E-4C0C-ABAF-5DE150274190} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-13] (Synaptics Incorporated)
Task: {FB5085B5-0BD6-4F38-80AC-F8EF42C08A16} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\AlienAutopsy\uaclauncher.exe [2014-01-10] (PC-Doctor, Inc.)
Task: C:\WINDOWS\Tasks\Rocket Updater.job => C:\Users\Mike\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-04-16 03:04 - 2014-01-17 15:17 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-04-16 03:05 - 2014-01-17 11:40 - 00117536 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-09-05 04:13 - 2013-09-05 04:13 - 00049368 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2014-04-16 03:07 - 2013-08-19 17:21 - 00020256 _____ () C:\Program Files (x86)\AlienRespawn\Components\Shell\DBROverlayIcon.dll
2014-04-16 03:07 - 2013-08-19 17:21 - 00019232 _____ () C:\Program Files (x86)\AlienRespawn\Components\Shell\DBROverlayNotBackuped.dll
2014-04-16 03:07 - 2013-08-19 17:21 - 00035104 _____ () C:\Program Files (x86)\AlienRespawn\Components\Shell\DBRShellExtension.dll
2013-09-09 21:13 - 2013-09-09 21:13 - 00050904 _____ () C:\Program Files\Dolby Digital Plus\Dolby.DDP.Controls_Desktop.dll
2014-06-27 13:06 - 2014-06-27 13:06 - 00440712 _____ () C:\Program Files (x86)\Driver Support\Driver Support\Agent.Communication.XmlSerializers.dll
2013-11-16 01:17 - 2013-11-16 01:17 - 04593968 _____ () C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
2013-08-07 21:38 - 2013-08-07 21:38 - 00283648 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
2014-04-16 03:07 - 2013-11-22 01:22 - 00484880 _____ () C:\Program Files (x86)\AlienRespawn\Components\Shell\DBRCrawler.exe
2009-12-18 19:07 - 2009-12-18 19:07 - 00577536 _____ () C:\Program Files (x86)\Alienware On-Screen Display\EMSC.dll
2014-04-16 03:02 - 2013-03-05 04:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-05 19:41 - 2013-03-05 19:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-04-10 14:30 - 2014-04-10 14:30 - 00134664 _____ () C:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2014-04-16 02:56 - 2013-09-18 17:33 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-04-16 03:07 - 2013-11-21 23:00 - 01904928 _____ () C:\Program Files (x86)\AlienRespawn\Components\Restore\STRestoreAPI.dll
2014-04-16 03:07 - 2012-11-26 06:20 - 01153384 _____ () C:\Program Files (x86)\AlienRespawn\Components\Restore\libxml2.dll
2014-04-16 03:07 - 2012-11-26 06:20 - 00117608 _____ () C:\Program Files (x86)\AlienRespawn\Components\Restore\zlib1.dll
2014-04-16 03:04 - 2014-01-17 15:17 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-06-30 15:27 - 2014-06-06 05:38 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Mike\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/02/2014 07:28:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ERUNT.exe, version: 0.0.0.0, time stamp: 0x2a425e19
Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c35a76
Exception code: 0xc0000005
Fault offset: 0x00042711
Faulting process id: 0x149c
Faulting application start time: 0xERUNT.exe0
Faulting application path: ERUNT.exe1
Faulting module path: ERUNT.exe2
Report Id: ERUNT.exe3
Faulting package full name: ERUNT.exe4
Faulting package-relative application ID: ERUNT.exe5

Error: (07/02/2014 07:00:11 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (07/01/2014 03:13:13 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: Outlook

Error: (07/01/2014 03:13:13 PM) (Source: Perflib) (EventID: 1021) (User: )
Description: Outlook8

Error: (07/01/2014 00:52:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mcshield.exe, version: 1.1.3.164, time stamp: 0x532860a3
Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8
Exception code: 0xc0000005
Fault offset: 0x000000000004bb96
Faulting process id: 0x938
Faulting application start time: 0xmcshield.exe0
Faulting application path: mcshield.exe1
Faulting module path: mcshield.exe2
Report Id: mcshield.exe3
Faulting package full name: mcshield.exe4
Faulting package-relative application ID: mcshield.exe5

Error: (07/01/2014 00:52:07 PM) (Source: AVLogEvent) (EventID: 5004) (User: NT AUTHORITY)
Description: c0000005

Error: (07/01/2014 00:52:07 PM) (Source: AVLogEvent) (EventID: 5004) (User: NT AUTHORITY)
Description: c0000005

Error: (06/30/2014 08:51:11 PM) (Source: Microsoft Office 12) (EventID: 2000) (User: )
Description: Accepted Safe Mode action : Microsoft Office Outlook.

Error: (06/30/2014 08:51:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program OUTLOOK.EXE version 12.0.4518.1014 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: dd4

Start Time: 01cf949c56194c7f

Termination Time: 0

Application Path: C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE

Report Id: cdc24f3e-008f-11e4-825a-54271e91488a

Faulting package full name:

Faulting package-relative application ID:

Error: (06/30/2014 08:29:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: wmiprvse.exe, version: 6.3.9600.16384, time stamp: 0x5215f9c9
Faulting module name: KERNELBASE.dll, version: 6.3.9600.16656, time stamp: 0x5318237f
Exception code: 0xc0000005
Fault offset: 0x00000000000043c8
Faulting process id: 0xff0
Faulting application start time: 0xwmiprvse.exe0
Faulting application path: wmiprvse.exe1
Faulting module path: wmiprvse.exe2
Report Id: wmiprvse.exe3
Faulting package full name: wmiprvse.exe4
Faulting package-relative application ID: wmiprvse.exe5


System errors:
=============
Error: (07/02/2014 07:22:36 AM) (Source: DCOM) (EventID: 10010) (User: WORK)
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (07/02/2014 07:22:05 AM) (Source: DCOM) (EventID: 10010) (User: WORK)
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (07/01/2014 01:25:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Update NetCrawl service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (07/01/2014 01:25:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Util NetCrawl service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (07/01/2014 00:52:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The McAfee Anti-Malware Core service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (07/01/2014 00:51:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\WINDOWS\System32\bcmihvsrv64.dll
Error Code: 126

Error: (07/01/2014 00:51:04 PM) (Source: DCOM) (EventID: 10005) (User: WORK)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (07/01/2014 00:47:55 PM) (Source: DCOM) (EventID: 10005) (User: WORK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/01/2014 00:47:55 PM) (Source: DCOM) (EventID: 10005) (User: WORK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/01/2014 00:47:55 PM) (Source: DCOM) (EventID: 10005) (User: WORK)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 42%
Total physical RAM: 8073.02 MB
Available physical RAM: 4656.19 MB
Total Pagefile: 9993.02 MB
Available Pagefile: 6552.21 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:921.92 GB) (Free:823.3 GB) NTFS
Drive d: (DATA) (Fixed) (Total:10.5 GB) (Free:10.41 GB) NTFS
Drive x: (WINRETOOLS) (Fixed) (Total:0.48 GB) (Free:0.2 GB) NTFS
Drive y: (PBR Image) (Fixed) (Total:8.46 GB) (Free:0.73 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: DB056B9F)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 11 GB) (Disk ID: 62B3D71B)

Partition: GPT Partition Type.

==================== End Of Log ============================

==================== End Of Log ============================
 
Hi Ann Chidley,

FRST Fix Script

Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad. Save it on the desktop as fixlist.txt

Code: 
SearchScopes: HKLM - DefaultScope {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKLM - {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKCU - DefaultScope {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKCU - {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
R1 {57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64; C:\Windows\System32\drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64.sys [61112 2014-06-27] (StdLib)
R1 {6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64; C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64.sys [61112 2014-06-30] (StdLib)
2014-06-30 15:27 - 2014-07-02 07:27 - 00000298 _____ () C:\WINDOWS\Tasks\Rocket Updater.job
2014-06-30 15:27 - 2014-06-30 15:27 - 00003108 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro
2014-06-30 15:27 - 2014-06-30 15:27 - 00002636 _____ () C:\WINDOWS\System32\Tasks\Rocket Updater
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\RocketUpdater
Firefox Packages (HKCU\...\Firefox Packages) (Version: - ) <==== ATTENTION
Task: {4AE6C4F3-2811-461E-91F2-F0D406212CBC} - System32\Tasks\Advanced System Protector => C:\Program Files (x86)\RegClean Pro\SystweakASP.exe <==== ATTENTION
Task: {8DB36741-CE7D-4490-8974-FD9C7A7BA8D1} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe <==== ATTENTION
Task: {BD8A26F8-CA6C-46DD-97DD-47D80D0BE69F} - System32\Tasks\Advanced System Protector_startup => C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Rocket Updater.job => C:\Users\Mike\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST and press the Fix button just once and wait.
The tool will make a log (Fixlog.txt) please post it to your reply.

=========================


In your next post please provide the following:
  • Fixlog.txt
  • What symptoms, if any are you experiencing?
 
Hello again OCD
laptop rebooted automatically.
Message to say installing updates, when finished message on screen to say windows needs to install updates and to go to pc settings. I have not done this yet.

Contents of fixlog:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-07-2014
Ran by Mike at 2014-07-02 13:33:00 Run:1
Running from C:\Users\Mike\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
SearchScopes: HKLM - DefaultScope {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKLM - {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKCU - DefaultScope {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
SearchScopes: HKCU - {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_dsites01_14_27_ie&cd=2XzuyEtN2Y1L1Qzu0E0C0FyE0B0BtByEtDtAtCyBtAtCyEzytN0D0Tzu0SzytCtBtN1L2XzutBtFtBtCtFzztFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtAzytCyEtD0D0FtGtC0CzytAtG0E0FyC0CtG0AyB0FtAtGtByDtBtAzz0FtB0D0FtC0E0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztDtByC0DzztDtGtAzytCyDtG0E0AzztAtGtA0A0C0DtGyCtDyDyDyDyEtA0E0FyCtByD2Q&cr=62867105&ir=
R1 {57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64; C:\Windows\System32\drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64.sys [61112 2014-06-27] (StdLib)
R1 {6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64; C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64.sys [61112 2014-06-30] (StdLib)
2014-06-30 15:27 - 2014-07-02 07:27 - 00000298 _____ () C:\WINDOWS\Tasks\Rocket Updater.job
2014-06-30 15:27 - 2014-06-30 15:27 - 00003108 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro
2014-06-30 15:27 - 2014-06-30 15:27 - 00002636 _____ () C:\WINDOWS\System32\Tasks\Rocket Updater
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\RocketUpdater
Firefox Packages (HKCU\...\Firefox Packages) (Version: - ) <==== ATTENTION
Task: {4AE6C4F3-2811-461E-91F2-F0D406212CBC} - System32\Tasks\Advanced System Protector => C:\Program Files (x86)\RegClean Pro\SystweakASP.exe <==== ATTENTION
Task: {8DB36741-CE7D-4490-8974-FD9C7A7BA8D1} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe <==== ATTENTION
Task: {BD8A26F8-CA6C-46DD-97DD-47D80D0BE69F} - System32\Tasks\Advanced System Protector_startup => C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Rocket Updater.job => C:\Users\Mike\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
*****************

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
'HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6F3D210B-7BBC-46AB-A74A-AF72C6381CEE}' => Key deleted successfully.
'HKCR\CLSID\{6F3D210B-7BBC-46AB-A74A-AF72C6381CEE}'=> Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6F3D210B-7BBC-46AB-A74A-AF72C6381CEE}' => Key deleted successfully.
'HKCR\CLSID\{6F3D210B-7BBC-46AB-A74A-AF72C6381CEE}'=> Key not found.
{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64 => Unable to stop service
{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64 => Service deleted successfully.
{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64 => Unable to stop service
{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64 => Service deleted successfully.
C:\WINDOWS\Tasks\Rocket Updater.job => Moved successfully.
C:\WINDOWS\System32\Tasks\RegClean Pro => Moved successfully.
C:\WINDOWS\System32\Tasks\Rocket Updater => Moved successfully.
C:\Users\Mike\AppData\Roaming\RocketUpdater => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4AE6C4F3-2811-461E-91F2-F0D406212CBC}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4AE6C4F3-2811-461E-91F2-F0D406212CBC}' => Key deleted successfully.
C:\Windows\System32\Tasks\Advanced System Protector => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Advanced System Protector' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8DB36741-CE7D-4490-8974-FD9C7A7BA8D1}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8DB36741-CE7D-4490-8974-FD9C7A7BA8D1}' => Key deleted successfully.
C:\Windows\System32\Tasks\RegClean Pro not found.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BD8A26F8-CA6C-46DD-97DD-47D80D0BE69F}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD8A26F8-CA6C-46DD-97DD-47D80D0BE69F}' => Key deleted successfully.
C:\Windows\System32\Tasks\Advanced System Protector_startup => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Advanced System Protector_startup' => Key deleted successfully.
C:\WINDOWS\Tasks\Rocket Updater.job not found.


The system needed a reboot.

==== End of Fixlog ====
 
Hi Ann Chidley,

Go ahead and get the latest Windows updates it is trying to install, then reboot.

=========================

AdwCleaner v3: Scan & Clean
    • Windows XP : Double click on the icon to run it.
    • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
  • Click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a log file report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that log file in your next reply.
  • A copy of that log file will also be saved in the C:\AdwCleaner folder.
=========================

Junkware Removal Tool

Download Junkware Removal Tool to your desktop.
    • Windows XP : Double click on the icon to run it.
    • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
  • Shut down your protection software now to avoid potential conflicts.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
=========================

Re-run Farbar Recovery Scan Tool it should be on your desktop.
    • Windows XP : Double click on the icon to run it.
    • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
=========================

In your next post please provide the following:
  • AdwCleaner[S0].txt
  • JRT.txt
  • New FRST.txt
  • How is the computer running at the moment?
 
OK done all that.
laptop is not showing any signs of acting abnormally, but it wasn't before. There was just the spybot message that browsefox could not be cleared from memory, and evidence of cleanregpro and other stuff in the registry.
I am getting repeated messages since reboot to update "Driver Support", there is an icon on the desktop, but this is other half's machine and I don't remember seeing it before. I might be mistaken, but have not updated it.

AdwClean:

# AdwCleaner v3.214 - Report created 02/07/2014 at 14:18:16
# Updated 29/06/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Mike - WORK
# Running from : C:\Users\Mike\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Systweak
Folder Deleted : C:\Users\Mike\AppData\Local\Temp\NetCrawl
Folder Deleted : C:\Users\Mike\AppData\Roaming\1H1Q
Folder Deleted : C:\Users\Mike\AppData\Roaming\Systweak
File Deleted : C:\WINDOWS\System32\roboot64.exe
File Deleted : C:\WINDOWS\System32\sasnative64.exe
File Deleted : C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\bliesmml.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : HKCU\Software\InstallCore

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Mozilla Firefox v30.0 (en-US)

[ File : C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\bliesmml.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [2143 octets] - [02/07/2014 14:17:49]
AdwCleaner[S0].txt - [1928 octets] - [02/07/2014 14:18:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1988 octets] ##########

Junk:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 x64
Ran by Mike on 02/07/2014 at 14:21:29.49
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02/07/2014 at 14:24:24.63
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Will post next text file in next message.
 
Whoops
Forgot to mention, when running the AdwClean..
Got an immediate error message :
Exception EAccessViolation in module ERUNT.exe at 00003A38.
Access violation at address 00403A38 in module "ERINT.exe". Read of
address 0076005D.
Remember ERUNT would not run on my pc.
 
Hi Ann Chidley,

Remember ERUNT would not run on my pc.
Click to expand...
Yes I remember. ERUNT is not compatible with Windows 8
I am getting repeated messages since reboot to update "Driver Support", there is an icon on the desktop, but this is other half's machine and I don't remember seeing it before. I might be mistaken, but have not updated it.
Click to expand...
Have you installed any new hardware recently?

Post the other log when it available.
 
Last edited:
Sorry, thought I had posted, but it was too long:
Part 1
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014
Ran by Mike (administrator) on WORK on 02-07-2014 14:27:13
Running from C:\Users\Mike\Desktop
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(PC Drivers Headquarters) C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe
(Dell) C:\Users\Mike\AppData\Local\Apps\2.0\41JO9YTV.0VZ\YWG0P557.GTQ\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareTactXMacroController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Components\DBRUpdate\DBRUpd.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
() C:\Program Files (x86)\AlienRespawn\Components\Shell\DBRCrawler.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-10-03] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1353432 2013-09-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1353432 2013-09-26] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Command Center Controllers] => C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [13840 2013-11-05] (Alienware)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] => C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [4593968 2013-11-16] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-979864317-2615240833-1526847324-1002\...\Run: [Driver Support] => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [5467488 2014-06-27] (PC Drivers Headquarters)
HKU\S-1-5-21-979864317-2615240833-1526847324-1002\...\Run: [DellSystemDetect] => C:\Users\Mike\AppData\Local\Apps\2.0\41JO9YTV.0VZ\YWG0P557.GTQ\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe [262720 2014-06-30] (Dell)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2014-01-17] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2014-01-17] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{F9D8E17A-8670-4D39-AFBE-9B599BB85B1A}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://vaioportal.sony.eu
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.alienwarearena.com/welcome-uk
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {6F3D210B-7BBC-46AB-A74A-AF72C6381CEE} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\bliesmml.default
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Extension: Ghostery - C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\bliesmml.default\Extensions\firefox@ghostery.com.xpi [2014-06-30]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-06-30]

==================== Services (Whitelisted) =================

S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2014-04-16] (Broadcom Corporation.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S3 ioloEnergyBooster; C:\Program Files\Alienware\Command Center\ioloEnergyBooster.exe [6145872 2012-11-01] (iolo technologies, LLC)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-18] (Intel Corporation)
R2 McAfee SiteAdvisor Service; c:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [155856 2014-06-03] (McAfee, Inc.)
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-07] (Qualcomm Atheros) [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [288472 2013-09-14] (Realtek Semiconductor)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2014-04-16] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7474864 2014-04-16] (Broadcom Corporation)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [75056 2013-02-13] (Qualcomm Atheros, Inc.)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
R0 EMSC; C:\Windows\System32\drivers\EMSC.SYS [17720 2012-07-10] ()
R0 EMSC; C:\Windows\SysWOW64\drivers\EMSC.SYS [15160 2012-07-10] ()
R3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [163536 2013-03-21] (Qualcomm Atheros, Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [99288 2013-09-18] (Intel Corporation)
R1 nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [300320 2014-01-17] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-13] (Synaptics Incorporated)
R3 ST_ACCEL; C:\Windows\system32\DRIVERS\ST_Accel.sys [83456 2013-08-06] (STMicroelectronics)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-02 14:24 - 2014-07-02 14:24 - 00000613 _____ () C:\Users\Mike\Desktop\JRT.txt
2014-07-02 14:21 - 2014-07-02 14:21 - 01016261 _____ (Thisisu) C:\Users\Mike\Desktop\JRT.exe
2014-07-02 14:21 - 2014-07-02 14:21 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-07-02 14:20 - 2014-07-02 14:20 - 00002080 _____ () C:\Users\Mike\Desktop\AdwCleaner[S0].txt
2014-07-02 14:17 - 2014-07-02 14:18 - 00000000 ____D () C:\AdwCleaner
2014-07-02 14:16 - 2014-07-02 14:16 - 01346519 _____ () C:\Users\Mike\Desktop\AdwCleaner.exe
2014-07-02 12:01 - 2014-05-30 11:21 - 23414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-02 12:01 - 2014-05-30 10:45 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-02 12:01 - 2014-05-30 10:28 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-07-02 12:01 - 2014-05-30 10:20 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-07-02 12:01 - 2014-05-30 10:18 - 17271296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-02 12:01 - 2014-05-30 10:08 - 05782528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-02 12:01 - 2014-05-30 10:06 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-02 12:01 - 2014-05-30 09:46 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-02 12:01 - 2014-05-30 09:44 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-02 12:01 - 2014-05-30 09:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-07-02 12:01 - 2014-05-30 09:38 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-02 12:01 - 2014-05-30 09:35 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-02 12:01 - 2014-05-30 09:29 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-02 12:01 - 2014-05-30 09:27 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-07-02 12:01 - 2014-05-30 09:23 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-02 12:01 - 2014-05-30 09:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-02 12:01 - 2014-05-30 09:04 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-02 12:01 - 2014-05-30 09:02 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-02 12:01 - 2014-05-30 08:56 - 04244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-02 12:01 - 2014-05-30 08:56 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-02 12:01 - 2014-05-30 08:54 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-02 12:01 - 2014-05-30 08:49 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-02 12:01 - 2014-05-30 08:43 - 13522944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-02 12:01 - 2014-05-30 08:40 - 11725312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-02 12:01 - 2014-05-30 08:30 - 01398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-02 12:01 - 2014-05-30 08:21 - 01790976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-02 12:01 - 2014-05-30 08:15 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-02 12:01 - 2014-05-30 08:13 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-02 12:01 - 2014-05-30 08:13 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-02 12:01 - 2014-05-10 04:46 - 02151424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-07-02 12:01 - 2014-05-10 04:22 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-07-02 12:01 - 2014-05-09 00:06 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-07-02 12:01 - 2014-05-03 08:14 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-02 12:01 - 2014-05-03 05:21 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-02 12:01 - 2014-05-03 05:07 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-02 12:01 - 2014-05-03 04:41 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-02 12:01 - 2014-05-03 04:38 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-02 12:01 - 2014-04-30 12:16 - 01336648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-07-02 12:01 - 2014-04-30 04:51 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-07-02 12:01 - 2014-04-03 08:59 - 02518872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-07-02 12:01 - 2014-04-03 08:59 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-07-02 12:01 - 2014-03-24 03:30 - 00257880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-07-02 12:01 - 2014-03-24 03:30 - 00123224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-07-02 12:01 - 2014-03-24 03:27 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-07-02 12:01 - 2014-03-13 08:42 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-07-02 12:01 - 2014-03-13 07:51 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-07-02 12:00 - 2014-04-11 11:03 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-02 12:00 - 2014-04-11 11:03 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-02 12:00 - 2014-04-11 09:25 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-07-02 12:00 - 2014-04-11 07:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-07-02 12:00 - 2014-04-11 06:22 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-07-02 12:00 - 2014-04-11 04:54 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-07-02 12:00 - 2014-04-11 04:06 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-07-02 12:00 - 2014-04-11 04:05 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-07-02 12:00 - 2014-04-11 04:02 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-07-02 12:00 - 2014-04-11 04:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-07-02 12:00 - 2014-04-11 04:00 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-02 12:00 - 2014-04-11 03:59 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-02 12:00 - 2014-04-11 03:57 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-07-02 12:00 - 2014-04-11 03:56 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-07-02 12:00 - 2014-04-11 03:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-02 12:00 - 2014-04-11 03:53 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-02 12:00 - 2014-04-11 03:52 - 03464192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-02 12:00 - 2014-04-11 03:46 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-07-02 12:00 - 2014-04-11 03:36 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-07-02 12:00 - 2014-04-11 03:29 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-07-02 11:59 - 2014-05-19 07:31 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe
2014-07-02 11:59 - 2014-05-19 07:21 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2014-07-02 11:59 - 2014-05-19 06:23 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe
2014-07-02 11:59 - 2014-05-05 05:02 - 03360256 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-07-02 11:59 - 2014-05-01 14:31 - 03048904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-07-02 11:59 - 2014-05-01 14:31 - 00055328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2014-07-02 11:59 - 2014-05-01 08:14 - 03118080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-07-02 11:59 - 2014-05-01 08:05 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-07-02 11:59 - 2014-05-01 07:51 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2014-07-02 11:59 - 2014-05-01 06:24 - 02834944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2014-07-02 11:59 - 2014-04-30 05:43 - 01975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2014-07-02 11:59 - 2014-04-30 05:26 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2014-07-02 11:59 - 2014-04-30 04:47 - 01509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2014-07-02 11:59 - 2014-04-18 15:57 - 00032600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-07-02 11:59 - 2014-04-18 15:44 - 01466856 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-07-02 11:59 - 2014-04-18 14:29 - 01200288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-07-02 11:59 - 2014-04-18 10:44 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2014-07-02 11:59 - 2014-04-18 10:32 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-02 11:59 - 2014-04-18 09:58 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-02 11:59 - 2014-04-18 09:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-07-02 11:59 - 2014-04-18 09:21 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-07-02 11:59 - 2014-04-18 09:09 - 08652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-07-02 11:59 - 2014-04-18 08:51 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-07-02 11:59 - 2014-04-18 08:49 - 05833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-07-02 11:59 - 2014-04-14 10:20 - 00324888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2014-07-02 11:59 - 2014-04-14 09:01 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2014-07-02 11:59 - 2014-04-11 07:13 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-07-02 11:59 - 2014-04-11 05:51 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-07-02 11:59 - 2014-04-11 05:23 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-07-02 11:59 - 2014-04-11 04:30 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-07-02 11:59 - 2014-04-09 12:53 - 00337240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-07-02 11:59 - 2014-04-09 07:39 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2014-07-02 11:59 - 2014-04-09 06:44 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2014-07-02 11:59 - 2014-04-09 05:35 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-07-02 11:59 - 2014-04-09 04:33 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-07-02 11:59 - 2014-04-08 23:46 - 00086688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt_map.dll
2014-07-02 11:59 - 2014-04-08 23:46 - 00028320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt100.dll
2014-07-02 11:59 - 2014-04-08 19:54 - 00080032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt_map.dll
2014-07-02 11:59 - 2014-04-08 19:54 - 00026784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt100.dll
2014-07-02 11:59 - 2014-04-08 03:01 - 00589656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-07-02 11:59 - 2014-04-06 17:34 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-07-02 11:59 - 2014-04-06 17:34 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2014-07-02 11:59 - 2014-04-06 17:32 - 00125496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-07-02 11:59 - 2014-04-06 17:31 - 21268952 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-07-02 11:59 - 2014-04-06 17:30 - 00201920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2014-07-02 11:59 - 2014-04-06 17:24 - 00360792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2014-07-02 11:59 - 2014-04-06 17:20 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 01403856 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 01379064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00881616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00765408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00609448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00491744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00467496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00463256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00364640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00244880 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-07-02 11:59 - 2014-04-06 17:20 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-07-02 11:59 - 2014-04-06 17:20 - 00028408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2014-07-02 11:59 - 2014-04-06 16:23 - 00098584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2014-07-02 11:59 - 2014-04-06 16:22 - 18755672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-07-02 11:59 - 2014-04-06 16:22 - 00178184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 01209616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 00707048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 00669856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 00518544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 00406504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 00387896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-07-02 11:59 - 2014-04-06 16:16 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-07-02 11:59 - 2014-04-06 15:10 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-07-02 11:59 - 2014-04-06 13:58 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2014-07-02 11:59 - 2014-04-06 13:51 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2014-07-02 11:59 - 2014-04-06 13:33 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2014-07-02 11:59 - 2014-04-06 13:24 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2014-07-02 11:59 - 2014-04-06 13:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll
2014-07-02 11:59 - 2014-04-06 12:55 - 16872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-07-02 11:59 - 2014-04-06 12:54 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-07-02 11:59 - 2014-04-06 12:26 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2014-07-02 11:59 - 2014-04-06 12:20 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-07-02 11:59 - 2014-04-06 12:01 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-07-02 11:59 - 2014-04-06 11:52 - 00955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-07-02 11:59 - 2014-04-06 11:51 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-07-02 11:59 - 2014-04-06 11:37 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-07-02 11:59 - 2014-04-06 11:36 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-07-02 11:59 - 2014-04-06 11:05 - 01222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-07-02 11:59 - 2014-04-06 10:59 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2014-07-02 11:59 - 2014-04-03 09:12 - 02124840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-07-02 11:59 - 2014-04-03 09:12 - 00307304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-07-02 11:59 - 2014-04-03 09:12 - 00130144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2014-07-02 11:59 - 2014-04-03 05:03 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2014-07-02 11:59 - 2014-04-03 05:03 - 00111528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2014-07-02 11:59 - 2014-04-03 04:53 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-07-02 11:59 - 2014-04-03 03:53 - 04269056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-07-02 11:59 - 2014-04-03 03:53 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-07-02 11:59 - 2014-04-03 03:51 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2014-07-02 11:59 - 2014-04-03 03:23 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-07-02 11:59 - 2014-04-03 03:23 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-07-02 11:59 - 2014-04-03 03:23 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tlscsp.dll
2014-07-02 11:59 - 2014-04-03 03:22 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlscsp.dll
2014-07-02 11:59 - 2014-04-01 07:23 - 00384856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-07-02 11:59 - 2014-03-31 06:42 - 07425368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-07-02 11:59 - 2014-03-31 01:41 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-07-02 11:59 - 2014-03-31 01:01 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2014-07-02 11:59 - 2014-03-31 00:43 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-07-02 11:59 - 2014-03-30 23:54 - 01308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-07-02 11:59 - 2014-03-30 23:49 - 01287168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-07-02 11:59 - 2014-03-30 23:35 - 01029120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-07-02 11:59 - 2014-03-30 23:11 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-02 11:59 - 2014-03-30 22:47 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-07-02 11:59 - 2014-03-28 16:58 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2014-07-02 11:59 - 2014-03-27 07:16 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-07-02 11:59 - 2014-03-27 06:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2014-07-02 11:59 - 2014-03-27 05:59 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-07-02 11:59 - 2014-03-27 05:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2014-07-02 11:59 - 2014-03-27 05:19 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2014-07-02 11:59 - 2014-03-27 04:46 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2014-07-02 11:59 - 2014-03-27 04:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-07-02 11:59 - 2014-03-27 04:10 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-07-02 11:59 - 2014-03-24 23:58 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-07-02 11:59 - 2014-03-20 04:48 - 00263424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-07-02 11:59 - 2014-03-20 01:44 - 06645248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-07-02 11:59 - 2014-03-20 00:33 - 05774848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-07-02 11:59 - 2014-03-19 09:15 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2014-07-02 11:59 - 2014-03-19 09:07 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-07-02 11:59 - 2014-03-19 08:24 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-07-02 11:59 - 2014-03-19 08:17 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2014-07-02 11:59 - 2014-03-19 07:36 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-07-02 11:59 - 2014-03-19 06:56 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-07-02 11:59 - 2014-03-19 06:45 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-07-02 11:59 - 2014-03-19 06:19 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-07-02 11:59 - 2014-03-19 06:07 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-07-02 11:59 - 2014-03-19 06:02 - 01527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-07-02 11:59 - 2014-03-19 06:00 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2014-07-02 11:59 - 2014-03-19 05:51 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-07-02 11:59 - 2014-03-19 05:31 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-07-02 11:59 - 2014-03-19 05:18 - 02688000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-07-02 11:59 - 2014-03-18 09:19 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2014-07-02 11:59 - 2014-03-18 06:00 - 07173120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-07-02 11:59 - 2014-03-18 05:52 - 05104640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2014-07-02 11:59 - 2014-03-17 06:09 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-07-02 11:59 - 2014-03-17 05:11 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-07-02 11:59 - 2014-03-17 04:01 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-07-02 11:59 - 2014-03-17 03:47 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-07-02 11:59 - 2014-03-17 03:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2014-07-02 11:59 - 2014-03-14 07:26 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-07-02 11:59 - 2014-03-14 07:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2014-07-02 11:59 - 2014-03-06 13:42 - 00310616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
 
Part 2:
2014-07-02 07:28 - 2014-07-02 14:27 - 00014407 _____ () C:\Users\Mike\Desktop\FRST.txt
2014-07-02 07:28 - 2014-07-02 14:27 - 00000000 ____D () C:\FRST
2014-07-02 07:28 - 2014-07-02 07:28 - 00027610 _____ () C:\Users\Mike\Desktop\Addition.txt
2014-07-02 07:27 - 2014-07-02 07:27 - 02083840 _____ (Farbar) C:\Users\Mike\Desktop\FRST64.exe
2014-07-02 07:24 - 2014-07-02 13:38 - 00854390 _____ () C:\Users\Mike\Desktop\SecurityCheck.exe
2014-07-02 07:00 - 2014-07-02 07:00 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-07-01 16:18 - 2014-07-01 16:18 - 00002022 _____ () C:\Users\Mike\Desktop\aswMBR.txt
2014-07-01 16:18 - 2014-07-01 16:18 - 00000512 _____ () C:\Users\Mike\Desktop\MBR.dat
2014-07-01 15:01 - 2014-07-01 15:01 - 00000512 _____ () C:\Users\Mike\Downloads\MBR.dat
2014-07-01 14:57 - 2014-07-01 14:57 - 05185536 _____ (AVAST Software) C:\Users\Mike\Downloads\aswMBR.exe
2014-07-01 14:55 - 2014-07-01 14:55 - 00688992 _____ (Swearware) C:\Users\Mike\Downloads\dds.com
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\UpdatusUser\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\Mike\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\Administrator\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000919 _____ () C:\Users\UpdatusUser\Desktop\ERUNT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000919 _____ () C:\Users\Administrator\Desktop\ERUNT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
2014-07-01 14:36 - 2014-07-01 14:36 - 00000000 ____D () C:\Program Files (x86)\ERUNT
2014-07-01 14:35 - 2014-07-01 14:35 - 00791393 _____ (Lars Hederer ) C:\Users\Mike\Downloads\erunt-setup.exe
2014-07-01 14:35 - 2013-08-22 14:25 - 00000824 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.20140701-143520.backup
2014-07-01 13:51 - 2014-03-20 04:41 - 02013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-07-01 13:51 - 2014-03-08 07:46 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-07-01 13:51 - 2014-03-08 06:41 - 01306624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-07-01 13:51 - 2014-03-06 15:34 - 02331000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2014-07-01 13:51 - 2014-03-06 11:46 - 01679128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2014-07-01 13:51 - 2014-03-06 10:19 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-07-01 13:51 - 2014-03-06 09:20 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-07-01 13:51 - 2014-03-06 07:51 - 02900992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-07-01 13:51 - 2014-03-04 13:25 - 02373784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-07-01 13:51 - 2014-03-04 12:16 - 02088160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-07-01 13:50 - 2014-03-20 05:19 - 01291200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-07-01 13:50 - 2014-03-20 04:41 - 00376152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2014-07-01 13:50 - 2014-03-20 04:40 - 01112536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-07-01 13:50 - 2014-03-20 01:53 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-07-01 13:50 - 2014-03-20 01:48 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2014-07-01 13:50 - 2014-03-20 00:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-07-01 13:50 - 2014-03-20 00:39 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-07-01 13:50 - 2014-03-20 00:36 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2014-07-01 13:50 - 2014-03-19 08:13 - 00836096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-07-01 13:50 - 2014-03-19 06:57 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-07-01 13:50 - 2014-03-19 06:50 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2014-07-01 13:50 - 2014-03-19 06:31 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2014-07-01 13:50 - 2014-03-19 06:20 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2014-07-01 13:50 - 2014-03-19 06:08 - 01351168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2014-07-01 13:50 - 2014-03-13 13:35 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2014-07-01 13:50 - 2014-03-12 14:45 - 00387210 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-07-01 13:50 - 2014-03-11 16:45 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-07-01 13:50 - 2014-03-11 16:18 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2014-07-01 13:50 - 2014-03-11 16:02 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2014-07-01 13:50 - 2014-03-11 15:28 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2014-07-01 13:50 - 2014-03-11 15:25 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-07-01 13:50 - 2014-03-11 15:05 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2014-07-01 13:50 - 2014-03-11 15:03 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-07-01 13:50 - 2014-03-11 15:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-07-01 13:50 - 2014-03-11 14:21 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-07-01 13:50 - 2014-03-11 14:02 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-07-01 13:50 - 2014-03-11 13:42 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-07-01 13:50 - 2014-03-11 13:35 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-07-01 13:50 - 2014-03-08 21:47 - 00565536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-07-01 13:50 - 2014-03-08 21:47 - 00180056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-07-01 13:50 - 2014-03-08 21:40 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2014-07-01 13:50 - 2014-03-08 21:38 - 01542768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2014-07-01 13:50 - 2014-03-08 21:35 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-07-01 13:50 - 2014-03-08 16:29 - 00356848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-07-01 13:50 - 2014-03-08 12:34 - 01095488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2014-07-01 13:50 - 2014-03-08 10:34 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-07-01 13:50 - 2014-03-08 10:02 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxproxy.dll
2014-07-01 13:50 - 2014-03-08 09:44 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-01 13:50 - 2014-03-08 09:33 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2014-07-01 13:50 - 2014-03-08 09:25 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SetNetworkLocation.dll
2014-07-01 13:50 - 2014-03-08 09:12 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxproxy.dll
2014-07-01 13:50 - 2014-03-08 08:53 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-07-01 13:50 - 2014-03-08 08:47 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2014-07-01 13:50 - 2014-03-08 08:12 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-07-01 13:50 - 2014-03-08 08:04 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2014-07-01 13:50 - 2014-03-08 08:03 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-07-01 13:50 - 2014-03-08 08:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-07-01 13:50 - 2014-03-08 07:48 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-07-01 13:50 - 2014-03-08 07:41 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2014-07-01 13:50 - 2014-03-08 07:40 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2014-07-01 13:50 - 2014-03-08 07:37 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-07-01 13:50 - 2014-03-08 07:31 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-07-01 13:50 - 2014-03-08 07:30 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-07-01 13:50 - 2014-03-08 07:25 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2014-07-01 13:50 - 2014-03-08 07:04 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2014-07-01 13:50 - 2014-03-08 06:58 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2014-07-01 13:50 - 2014-03-08 06:11 - 00924160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-07-01 13:50 - 2014-03-06 15:34 - 00113648 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2014-07-01 13:50 - 2014-03-06 13:53 - 02141912 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-07-01 13:50 - 2014-03-06 13:53 - 00518552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-07-01 13:50 - 2014-03-06 13:51 - 01557848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-07-01 13:50 - 2014-03-06 13:51 - 00488280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-07-01 13:50 - 2014-03-06 13:51 - 00379224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-07-01 13:50 - 2014-03-06 13:39 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2014-07-01 13:50 - 2014-03-06 12:19 - 00390488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2014-07-01 13:50 - 2014-03-06 12:19 - 00094016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2014-07-01 13:50 - 2014-03-06 12:13 - 01779800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-07-01 13:50 - 2014-03-06 12:13 - 00406912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-07-01 13:50 - 2014-03-06 10:24 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2014-07-01 13:50 - 2014-03-06 10:24 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2014-07-01 13:50 - 2014-03-06 10:24 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2014-07-01 13:50 - 2014-03-06 10:22 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2014-07-01 13:50 - 2014-03-06 10:22 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2014-07-01 13:50 - 2014-03-06 10:19 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2014-07-01 13:50 - 2014-03-06 10:19 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2014-07-01 13:50 - 2014-03-06 10:19 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2014-07-01 13:50 - 2014-03-06 10:08 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2014-07-01 13:50 - 2014-03-06 09:41 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevPropMgr.dll
2014-07-01 13:50 - 2014-03-06 09:38 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2014-07-01 13:50 - 2014-03-06 09:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\l2gpstore.dll
2014-07-01 13:50 - 2014-03-06 09:00 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2014-07-01 13:50 - 2014-03-06 08:46 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2014-07-01 13:50 - 2014-03-06 08:16 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2014-07-01 13:50 - 2014-03-06 08:02 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2014-07-01 13:50 - 2014-03-06 07:39 - 02133504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-07-01 13:50 - 2014-03-06 07:31 - 02479616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-07-01 13:50 - 2014-03-06 07:29 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2014-07-01 13:50 - 2014-03-06 07:27 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2014-07-01 13:50 - 2014-03-06 07:24 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2014-07-01 13:50 - 2014-03-06 07:23 - 02270208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-07-01 13:50 - 2014-03-06 07:23 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2014-07-01 13:50 - 2014-03-06 07:21 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-07-01 13:50 - 2014-03-06 07:13 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-07-01 13:50 - 2014-03-06 07:11 - 02030080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-07-01 13:50 - 2014-03-06 07:09 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-07-01 13:50 - 2014-03-06 07:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2014-07-01 13:50 - 2014-03-06 07:04 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2014-07-01 13:50 - 2014-03-06 07:01 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-07-01 13:50 - 2014-03-06 06:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2014-07-01 13:50 - 2014-03-06 06:47 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2014-07-01 13:50 - 2014-03-06 06:42 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2014-07-01 13:50 - 2014-03-04 13:14 - 00360512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2014-07-01 13:50 - 2014-03-04 12:10 - 00355832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-07-01 13:50 - 2014-03-04 08:16 - 00655360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2014-07-01 13:50 - 2014-03-04 08:13 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2014-07-01 13:50 - 2014-03-04 08:08 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2014-07-01 13:50 - 2014-03-04 08:00 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2014-07-01 13:50 - 2014-03-04 07:56 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2014-07-01 13:50 - 2014-03-04 07:50 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2014-07-01 13:50 - 2014-03-04 07:42 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2014-07-01 13:50 - 2014-03-04 07:39 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2014-07-01 13:50 - 2014-03-04 07:32 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2014-07-01 13:50 - 2014-03-04 07:15 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-07-01 13:50 - 2014-03-04 07:05 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2014-07-01 13:50 - 2014-03-04 07:03 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2014-07-01 13:50 - 2014-03-04 07:03 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-07-01 13:50 - 2014-03-04 06:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-07-01 13:50 - 2014-03-04 06:52 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2014-07-01 13:50 - 2013-12-24 00:28 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2014-07-01 13:50 - 2013-12-24 00:26 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2014-07-01 13:45 - 2014-02-22 16:53 - 03394384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-07-01 13:45 - 2014-02-22 13:08 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OobeFldr.dll
2014-07-01 13:45 - 2014-02-22 12:17 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OobeFldr.dll
2014-07-01 13:45 - 2014-02-22 11:34 - 11742720 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2014-07-01 13:45 - 2014-02-08 02:08 - 00139600 _____ () C:\WINDOWS\system32\systemsf.ebd
2014-07-01 13:44 - 2014-02-22 17:59 - 01519520 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-07-01 13:44 - 2014-02-22 17:59 - 01290688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2014-07-01 13:44 - 2014-02-22 17:59 - 00526304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2014-07-01 13:44 - 2014-02-22 17:15 - 01929608 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2014-07-01 13:44 - 2014-02-22 17:15 - 01206000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2014-07-01 13:44 - 2014-02-22 17:00 - 00249688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2014-07-01 13:44 - 2014-02-22 16:55 - 01435304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2014-07-01 13:44 - 2014-02-22 16:50 - 00645104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-07-01 13:44 - 2014-02-22 16:49 - 00280920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2014-07-01 13:44 - 2014-02-22 16:48 - 02574240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-07-01 13:44 - 2014-02-22 16:46 - 01927600 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-07-01 13:44 - 2014-02-22 16:46 - 01445616 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2014-07-01 13:44 - 2014-02-22 16:46 - 01000424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2014-07-01 13:44 - 2014-02-22 16:46 - 00669896 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2014-07-01 13:44 - 2014-02-22 16:44 - 00539992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2014-07-01 13:44 - 2014-02-22 16:44 - 00424280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-07-01 13:44 - 2014-02-22 16:43 - 01727760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-07-01 13:44 - 2014-02-22 16:43 - 01659056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-07-01 13:44 - 2014-02-22 16:41 - 01215832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2014-07-01 13:44 - 2014-02-22 16:41 - 00800552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2014-07-01 13:44 - 2014-02-22 16:41 - 00391008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2014-07-01 13:44 - 2014-02-22 16:40 - 01118552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-07-01 13:44 - 2014-02-22 15:52 - 01767440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2014-07-01 13:44 - 2014-02-22 15:51 - 01063976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2014-07-01 13:44 - 2014-02-22 15:42 - 01017936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2014-07-01 13:44 - 2014-02-22 15:42 - 00422968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2014-07-01 13:44 - 2014-02-22 15:38 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-07-01 13:44 - 2014-02-22 15:38 - 01077944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2014-07-01 13:44 - 2014-02-22 15:25 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-07-01 13:44 - 2014-02-22 15:18 - 00477744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2014-07-01 13:44 - 2014-02-22 15:08 - 01474104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-07-01 13:44 - 2014-02-22 15:04 - 01011280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2014-07-01 13:44 - 2014-02-22 15:04 - 00650736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2014-07-01 13:44 - 2014-02-22 13:24 - 02825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2014-07-01 13:44 - 2014-02-22 13:22 - 01163264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2014-07-01 13:44 - 2014-02-22 13:07 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2014-07-01 13:44 - 2014-02-22 12:28 - 02428928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2014-07-01 13:44 - 2014-02-22 11:38 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll
2014-07-01 13:44 - 2014-02-22 11:25 - 01428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2014-07-01 13:44 - 2014-02-22 11:18 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2014-07-01 13:44 - 2014-02-22 11:08 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-07-01 13:44 - 2014-02-22 11:02 - 08946688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2014-07-01 13:44 - 2014-02-22 10:57 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2014-07-01 13:44 - 2014-02-22 10:53 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2014-07-01 13:44 - 2014-02-22 10:52 - 01132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2014-07-01 13:44 - 2014-02-22 10:48 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-07-01 13:44 - 2014-02-22 10:47 - 01192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2014-07-01 13:44 - 2014-02-22 10:38 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2014-07-01 13:44 - 2014-02-22 10:35 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2014-07-01 13:44 - 2014-02-22 10:35 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofTasks.dll
2014-07-01 13:44 - 2014-02-22 10:34 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2014-07-01 13:44 - 2014-02-22 10:33 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2014-07-01 13:44 - 2014-02-22 10:28 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2014-07-01 13:44 - 2014-02-22 10:26 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2014-07-01 13:44 - 2014-02-22 10:26 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2014-07-01 13:44 - 2014-02-22 10:23 - 03494912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2014-07-01 13:44 - 2014-02-22 10:23 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-07-01 13:44 - 2014-02-22 10:23 - 01576960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2014-07-01 13:44 - 2014-02-22 10:23 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2014-07-01 13:44 - 2014-02-22 10:16 - 11776000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2014-07-01 13:44 - 2014-02-22 10:14 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2014-07-01 13:44 - 2014-02-22 10:13 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2014-07-01 13:44 - 2014-02-22 10:11 - 02395136 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2014-07-01 13:44 - 2014-02-22 10:11 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-07-01 13:44 - 2014-02-22 10:10 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-07-01 13:44 - 2014-02-22 10:04 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\perftrack.dll
2014-07-01 13:44 - 2014-02-22 10:01 - 13933568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2014-07-01 13:44 - 2014-02-22 10:00 - 01341440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2014-07-01 13:44 - 2014-02-22 10:00 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2014-07-01 13:44 - 2014-02-22 09:59 - 01621504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2014-07-01 13:44 - 2014-02-22 09:59 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-07-01 13:44 - 2014-02-22 09:59 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-07-01 13:44 - 2014-02-22 09:54 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-07-01 13:44 - 2014-02-22 09:51 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2014-07-01 13:44 - 2014-02-22 09:47 - 00517120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-07-01 13:44 - 2014-02-22 09:45 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2014-07-01 13:44 - 2014-02-22 09:44 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2014-07-01 13:44 - 2014-02-22 09:40 - 02368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2014-07-01 13:44 - 2014-02-22 09:37 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2014-07-01 13:44 - 2014-02-22 09:22 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-07-01 13:44 - 2014-02-22 09:06 - 01640960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-07-01 13:44 - 2014-02-22 09:03 - 01496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2014-07-01 13:44 - 2014-02-22 09:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2014-07-01 13:44 - 2014-02-22 09:00 - 00514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2014-07-01 13:44 - 2014-02-22 05:33 - 00262335 _____ () C:\WINDOWS\system32\dfpinc.dat
2014-07-01 13:44 - 2014-01-29 09:53 - 01653352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-07-01 13:44 - 2014-01-29 08:44 - 01369736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-07-01 13:43 - 2014-02-22 17:59 - 00461176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-07-01 13:43 - 2014-02-22 17:59 - 00407536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-07-01 13:43 - 2014-02-22 17:59 - 00289752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2014-07-01 13:43 - 2014-02-22 17:59 - 00209160 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2014-07-01 13:43 - 2014-02-22 17:59 - 00139464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2014-07-01 13:43 - 2014-02-22 17:15 - 00531128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2014-07-01 13:43 - 2014-02-22 17:15 - 00188464 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2014-07-01 13:43 - 2014-02-22 17:02 - 00170952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2014-07-01 13:43 - 2014-02-22 17:02 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2014-07-01 13:43 - 2014-02-22 17:02 - 00080048 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2014-07-01 13:43 - 2014-02-22 17:00 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-07-01 13:43 - 2014-02-22 16:55 - 00388408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2014-07-01 13:43 - 2014-02-22 16:55 - 00244848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2014-07-01 13:43 - 2014-02-22 16:55 - 00152848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2014-07-01 13:43 - 2014-02-22 16:55 - 00105864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-07-01 13:43 - 2014-02-22 16:50 - 00761792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2014-07-01 13:43 - 2014-02-22 16:50 - 00043408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2014-07-01 13:43 - 2014-02-22 16:49 - 00148824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-07-01 13:43 - 2014-02-22 16:49 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-07-01 13:43 - 2014-02-22 16:48 - 01791752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-07-01 13:43 - 2014-02-22 16:48 - 00210736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2014-07-01 13:43 - 2014-02-22 16:43 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-07-01 13:43 - 2014-02-22 16:43 - 01487520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-07-01 13:43 - 2014-02-22 16:43 - 01356360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-07-01 13:43 - 2014-02-22 16:43 - 00142576 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2014-07-01 13:43 - 2014-02-22 16:41 - 00372360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2014-07-01 13:43 - 2014-02-22 15:42 - 00410568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-07-01 13:43 - 2014-02-22 15:42 - 00369288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-07-01 13:43 - 2014-02-22 15:42 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2014-07-01 13:43 - 2014-02-22 15:38 - 00506120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2014-07-01 13:43 - 2014-02-22 15:38 - 00336232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2014-07-01 13:43 - 2014-02-22 15:38 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-07-01 13:43 - 2014-02-22 15:25 - 00180240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2014-07-01 13:43 - 2014-02-22 15:11 - 00490136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2014-07-01 13:43 - 2014-02-22 15:04 - 00317584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2014-07-01 13:43 - 2014-02-22 15:04 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2014-07-01 13:43 - 2014-02-22 13:20 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-07-01 13:43 - 2014-02-22 13:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2014-07-01 13:43 - 2014-02-22 13:11 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-07-01 13:43 - 2014-02-22 13:09 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2014-07-01 13:43 - 2014-02-22 13:07 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofUtil.dll
2014-07-01 13:43 - 2014-02-22 13:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2014-07-01 13:43 - 2014-02-22 12:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2014-07-01 13:43 - 2014-02-22 12:54 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2014-07-01 13:43 - 2014-02-22 12:50 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2014-07-01 13:43 - 2014-02-22 12:47 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2014-07-01 13:43 - 2014-02-22 12:46 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-07-01 13:43 - 2014-02-22 12:41 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PkgMgr.exe
2014-07-01 13:43 - 2014-02-22 12:34 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2014-07-01 13:43 - 2014-02-22 12:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2014-07-01 13:43 - 2014-02-22 12:16 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2014-07-01 13:43 - 2014-02-22 12:06 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2014-07-01 13:43 - 2014-02-22 12:05 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2014-07-01 13:43 - 2014-02-22 12:05 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2014-07-01 13:43 - 2014-02-22 11:58 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-07-01 13:43 - 2014-02-22 11:56 - 02862592 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2014-07-01 13:43 - 2014-02-22 11:56 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
2014-07-01 13:43 - 2014-02-22 11:52 - 02288640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2014-07-01 13:43 - 2014-02-22 11:47 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe
2014-07-01 13:43 - 2014-02-22 11:41 - 00878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2014-07-01 13:43 - 2014-02-22 11:41 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2014-07-01 13:43 - 2014-02-22 11:41 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2014-07-01 13:43 - 2014-02-22 11:39 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-01 13:43 - 2014-02-22 11:37 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2014-07-01 13:43 - 2014-02-22 11:36 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2014-07-01 13:43 - 2014-02-22 11:27 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2014-07-01 13:43 - 2014-02-22 11:22 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2014-07-01 13:43 - 2014-02-22 11:18 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-07-01 13:43 - 2014-02-22 11:17 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2014-07-01 13:43 - 2014-02-22 11:15 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2014-07-01 13:43 - 2014-02-22 11:14 - 02811392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2014-07-01 13:43 - 2014-02-22 11:14 - 02165760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2014-07-01 13:43 - 2014-02-22 11:14 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2014-07-01 13:43 - 2014-02-22 11:12 - 00797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-07-01 13:43 - 2014-02-22 11:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2014-07-01 13:43 - 2014-02-22 11:09 - 01224192 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2014-07-01 13:43 - 2014-02-22 11:05 - 01757184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-07-01 13:43 - 2014-02-22 11:04 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2014-07-01 13:43 - 2014-02-22 11:04 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2014-07-01 13:43 - 2014-02-22 11:03 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-01 13:43 - 2014-02-22 11:02 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2014-07-01 13:43 - 2014-02-22 11:01 - 01227776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2014-07-01 13:43 - 2014-02-22 11:01 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-07-01 13:43 - 2014-02-22 11:01 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2014-07-01 13:43 - 2014-02-22 11:00 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2014-07-01 13:43 - 2014-02-22 10:59 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-07-01 13:43 - 2014-02-22 10:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2014-07-01 13:43 - 2014-02-22 10:48 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-07-01 13:43 - 2014-02-22 10:46 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2014-07-01 13:43 - 2014-02-22 10:45 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2014-07-01 13:43 - 2014-02-22 10:45 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2014-07-01 13:43 - 2014-02-22 10:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2014-07-01 13:43 - 2014-02-22 10:44 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2014-07-01 13:43 - 2014-02-22 10:44 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-07-01 13:43 - 2014-02-22 10:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2014-07-01 13:43 - 2014-02-22 10:36 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2014-07-01 13:43 - 2014-02-22 10:34 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2014-07-01 13:43 - 2014-02-22 10:32 - 01162752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2014-07-01 13:43 - 2014-02-22 10:31 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-07-01 13:43 - 2014-02-22 10:28 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2014-07-01 13:43 - 2014-02-22 10:25 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-07-01 13:43 - 2014-02-22 10:25 - 00399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2014-07-01 13:43 - 2014-02-22 10:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-07-01 13:43 - 2014-02-22 10:25 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2014-07-01 13:43 - 2014-02-22 10:24 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2014-07-01 13:43 - 2014-02-22 10:23 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-07-01 13:43 - 2014-02-22 10:15 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2014-07-01 13:43 - 2014-02-22 10:14 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2014-07-01 13:43 - 2014-02-22 10:12 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2014-07-01 13:43 - 2014-02-22 10:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-07-01 13:43 - 2014-02-22 10:09 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2014-07-01 13:43 - 2014-02-22 10:07 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2014-07-01 13:43 - 2014-02-22 10:06 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-07-01 13:43 - 2014-02-22 10:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2014-07-01 13:43 - 2014-02-22 09:59 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2014-07-01 13:43 - 2014-02-22 09:54 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2014-07-01 13:43 - 2014-02-22 09:54 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2014-07-01 13:43 - 2014-02-22 09:53 - 00876544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2014-07-01 13:43 - 2014-02-22 09:52 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-07-01 13:43 - 2014-02-22 09:51 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2014-07-01 13:43 - 2014-02-22 09:51 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2014-07-01 13:43 - 2014-02-22 09:49 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2014-07-01 13:43 - 2014-02-22 09:48 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-07-01 13:43 - 2014-02-22 09:48 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2014-07-01 13:43 - 2014-02-22 09:47 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2014-07-01 13:43 - 2014-02-22 09:47 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-07-01 13:43 - 2014-02-22 09:47 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AltTab.dll
2014-07-01 13:43 - 2014-02-22 09:45 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-07-01 13:43 - 2014-02-22 09:44 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2014-07-01 13:43 - 2014-02-22 09:44 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2014-07-01 13:43 - 2014-02-22 09:43 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2014-07-01 13:43 - 2014-02-22 09:43 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2014-07-01 13:43 - 2014-02-22 09:43 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-07-01 13:43 - 2014-02-22 09:43 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2014-07-01 13:43 - 2014-02-22 09:42 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2014-07-01 13:43 - 2014-02-22 09:42 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2014-07-01 13:43 - 2014-02-22 09:42 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2014-07-01 13:43 - 2014-02-22 09:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2014-07-01 13:43 - 2014-02-22 09:40 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-07-01 13:43 - 2014-02-22 09:39 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2014-07-01 13:43 - 2014-02-22 09:38 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-07-01 13:43 - 2014-02-22 09:37 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2014-07-01 13:43 - 2014-02-22 09:36 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2014-07-01 13:43 - 2014-02-22 09:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2014-07-01 13:43 - 2014-02-22 09:33 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2014-07-01 13:43 - 2014-02-22 09:31 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-07-01 13:43 - 2014-02-22 09:29 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2014-07-01 13:43 - 2014-02-22 09:24 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2014-07-01 13:43 - 2014-02-22 09:22 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-07-01 13:43 - 2014-02-22 09:21 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-07-01 13:43 - 2014-02-22 09:21 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2014-07-01 13:43 - 2014-02-22 09:18 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-07-01 13:43 - 2014-02-22 09:17 - 00459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-07-01 13:43 - 2014-01-31 10:55 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2014-07-01 13:43 - 2014-01-31 10:35 - 03085824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2014-07-01 13:43 - 2014-01-31 10:10 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-07-01 13:43 - 2014-01-31 09:18 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2014-07-01 13:43 - 2014-01-29 09:52 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2014-07-01 13:43 - 2014-01-17 18:24 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2014-07-01 13:43 - 2014-01-17 18:04 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2014-07-01 13:43 - 2014-01-08 02:30 - 00745328 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-07-01 13:43 - 2014-01-08 01:33 - 00552632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-07-01 13:43 - 2013-12-10 08:35 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2014-07-01 13:43 - 2013-12-04 16:16 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2014-07-01 13:43 - 2013-12-04 14:53 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-07-01 13:43 - 2013-11-11 00:41 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2014-07-01 13:42 - 2014-02-22 17:58 - 00036200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2014-07-01 13:42 - 2014-02-22 17:15 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\system32\powrprof.dll
2014-07-01 13:42 - 2014-02-22 17:15 - 00071888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2014-07-01 13:42 - 2014-02-22 17:00 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-07-01 13:42 - 2014-02-22 17:00 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2014-07-01 13:42 - 2014-02-22 16:59 - 00027480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2014-07-01 13:42 - 2014-02-22 16:55 - 00162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2014-07-01 13:42 - 2014-02-22 16:55 - 00131168 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-07-01 13:42 - 2014-02-22 16:50 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2014-07-01 13:42 - 2014-02-22 16:50 - 00032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2014-07-01 13:42 - 2014-02-22 16:49 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-07-01 13:42 - 2014-02-22 16:49 - 00189784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2014-07-01 13:42 - 2014-02-22 16:49 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2014-07-01 13:42 - 2014-02-22 16:44 - 00924504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2014-07-01 13:42 - 2014-02-22 16:43 - 00094560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2014-07-01 13:42 - 2014-02-22 15:52 - 00251504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2014-07-01 13:42 - 2014-02-22 15:51 - 00140456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2014-07-01 13:42 - 2014-02-22 15:42 - 00137344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2014-07-01 13:42 - 2014-02-22 15:41 - 00033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2014-07-01 13:42 - 2014-02-22 15:18 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2014-07-01 13:42 - 2014-02-22 15:18 - 00041320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2014-07-01 13:42 - 2014-02-22 15:18 - 00029912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2014-07-01 13:42 - 2014-02-22 15:08 - 00079496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2014-07-01 13:42 - 2014-02-22 13:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-07-01 13:42 - 2014-02-22 13:17 - 00902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2014-07-01 13:42 - 2014-02-22 13:17 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2014-07-01 13:42 - 2014-02-22 13:17 - 00874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2014-07-01 13:42 - 2014-02-22 13:14 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys
2014-07-01 13:42 - 2014-02-22 13:14 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2014-07-01 13:42 - 2014-02-22 13:07 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2014-07-01 13:42 - 2014-02-22 13:07 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\clrhost.dll
2014-07-01 13:42 - 2014-02-22 13:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-07-01 13:42 - 2014-02-22 13:04 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
 
Part 3:
2014-07-01 13:42 - 2014-02-22 13:03 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2014-07-01 13:42 - 2014-02-22 13:03 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2014-07-01 13:42 - 2014-02-22 13:01 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2014-07-01 13:42 - 2014-02-22 13:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2014-07-01 13:42 - 2014-02-22 12:59 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-07-01 13:42 - 2014-02-22 12:57 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-07-01 13:42 - 2014-02-22 12:50 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2014-07-01 13:42 - 2014-02-22 12:47 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2014-07-01 13:42 - 2014-02-22 12:46 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-07-01 13:42 - 2014-02-22 12:45 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2014-07-01 13:42 - 2014-02-22 12:45 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhevents.dll
2014-07-01 13:42 - 2014-02-22 12:42 - 00038680 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2014-07-01 13:42 - 2014-02-22 12:37 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2014-07-01 13:42 - 2014-02-22 12:32 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2014-07-01 13:42 - 2014-02-22 12:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2014-07-01 13:42 - 2014-02-22 12:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2014-07-01 13:42 - 2014-02-22 12:25 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-07-01 13:42 - 2014-02-22 12:25 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2014-07-01 13:42 - 2014-02-22 12:24 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2014-07-01 13:42 - 2014-02-22 12:24 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2014-07-01 13:42 - 2014-02-22 12:24 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2014-07-01 13:42 - 2014-02-22 12:22 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-07-01 13:42 - 2014-02-22 12:22 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-07-01 13:42 - 2014-02-22 12:17 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2014-07-01 13:42 - 2014-02-22 12:16 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2014-07-01 13:42 - 2014-02-22 12:16 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-07-01 13:42 - 2014-02-22 12:16 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clrhost.dll
2014-07-01 13:42 - 2014-02-22 12:15 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2014-07-01 13:42 - 2014-02-22 12:14 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cleanmgr.exe
2014-07-01 13:42 - 2014-02-22 12:13 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2014-07-01 13:42 - 2014-02-22 12:11 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2014-07-01 13:42 - 2014-02-22 12:05 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2014-07-01 13:42 - 2014-02-22 12:02 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2014-07-01 13:42 - 2014-02-22 12:02 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2014-07-01 13:42 - 2014-02-22 12:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-01 13:42 - 2014-02-22 12:01 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2014-07-01 13:42 - 2014-02-22 11:59 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2014-07-01 13:42 - 2014-02-22 11:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2014-07-01 13:42 - 2014-02-22 11:58 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2014-07-01 13:42 - 2014-02-22 11:58 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAConn.dll
2014-07-01 13:42 - 2014-02-22 11:57 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2014-07-01 13:42 - 2014-02-22 11:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-07-01 13:42 - 2014-02-22 11:56 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2014-07-01 13:42 - 2014-02-22 11:55 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2014-07-01 13:42 - 2014-02-22 11:53 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PkgMgr.exe
2014-07-01 13:42 - 2014-02-22 11:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2014-07-01 13:42 - 2014-02-22 11:51 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2014-07-01 13:42 - 2014-02-22 11:47 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2014-07-01 13:42 - 2014-02-22 11:47 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2014-07-01 13:42 - 2014-02-22 11:47 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-07-01 13:42 - 2014-02-22 11:46 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2014-07-01 13:42 - 2014-02-22 11:40 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-07-01 13:42 - 2014-02-22 11:36 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-07-01 13:42 - 2014-02-22 11:34 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-07-01 13:42 - 2014-02-22 11:33 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2014-07-01 13:42 - 2014-02-22 11:30 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cleanmgr.exe
2014-07-01 13:42 - 2014-02-22 11:28 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-01 13:42 - 2014-02-22 11:25 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2014-07-01 13:42 - 2014-02-22 11:21 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2014-07-01 13:42 - 2014-02-22 11:20 - 01152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2014-07-01 13:42 - 2014-02-22 11:18 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-07-01 13:42 - 2014-02-22 11:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2014-07-01 13:42 - 2014-02-22 11:16 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2014-07-01 13:42 - 2014-02-22 11:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2014-07-01 13:42 - 2014-02-22 11:13 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2014-07-01 13:42 - 2014-02-22 11:13 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2014-07-01 13:42 - 2014-02-22 11:13 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2014-07-01 13:42 - 2014-02-22 11:12 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2014-07-01 13:42 - 2014-02-22 11:09 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-01 13:42 - 2014-02-22 11:04 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2014-07-01 13:42 - 2014-02-22 10:56 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2014-07-01 13:42 - 2014-02-22 10:54 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-01 13:42 - 2014-02-22 10:54 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2014-07-01 13:42 - 2014-02-22 10:53 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-07-01 13:42 - 2014-02-22 10:52 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2014-07-01 13:42 - 2014-02-22 10:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2014-07-01 13:42 - 2014-02-22 10:49 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-07-01 13:42 - 2014-02-22 10:48 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2014-07-01 13:42 - 2014-02-22 10:45 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2014-07-01 13:42 - 2014-02-22 10:45 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2014-07-01 13:42 - 2014-02-22 10:44 - 00182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\korwbrkr.dll
2014-07-01 13:42 - 2014-02-22 10:43 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-07-01 13:42 - 2014-02-22 10:41 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2014-07-01 13:42 - 2014-02-22 10:40 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2014-07-01 13:42 - 2014-02-22 10:39 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2014-07-01 13:42 - 2014-02-22 10:36 - 01392640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-07-01 13:42 - 2014-02-22 10:36 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2014-07-01 13:42 - 2014-02-22 10:36 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2014-07-01 13:42 - 2014-02-22 10:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2014-07-01 13:42 - 2014-02-22 10:29 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2014-07-01 13:42 - 2014-02-22 10:27 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-07-01 13:42 - 2014-02-22 10:26 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-07-01 13:42 - 2014-02-22 10:25 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-07-01 13:42 - 2014-02-22 10:25 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
2014-07-01 13:42 - 2014-02-22 10:23 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2014-07-01 13:42 - 2014-02-22 10:22 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2014-07-01 13:42 - 2014-02-22 10:22 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2014-07-01 13:42 - 2014-02-22 10:19 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-07-01 13:42 - 2014-02-22 10:19 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-07-01 13:42 - 2014-02-22 10:18 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-07-01 13:42 - 2014-02-22 10:08 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-07-01 13:42 - 2014-02-22 10:07 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2014-07-01 13:42 - 2014-02-22 10:06 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2014-07-01 13:42 - 2014-02-22 10:04 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\slpts.dll
2014-07-01 13:42 - 2014-02-22 10:02 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2014-07-01 13:42 - 2014-02-22 09:58 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-07-01 13:42 - 2014-02-22 09:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2014-07-01 13:42 - 2014-02-22 09:55 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\energytask.dll
2014-07-01 13:42 - 2014-02-22 09:55 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slpts.dll
2014-07-01 13:42 - 2014-02-22 09:54 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2014-07-01 13:42 - 2014-02-22 09:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2014-07-01 13:42 - 2014-02-22 09:51 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-07-01 13:42 - 2014-02-22 09:48 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2014-07-01 13:42 - 2014-02-22 09:47 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2014-07-01 13:42 - 2014-02-22 09:46 - 03312128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2014-07-01 13:42 - 2014-02-22 09:45 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2014-07-01 13:42 - 2014-02-22 09:45 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2014-07-01 13:42 - 2014-02-22 09:44 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provsvc.dll
2014-07-01 13:42 - 2014-02-22 09:44 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2014-07-01 13:42 - 2014-02-22 09:43 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2014-07-01 13:42 - 2014-02-22 09:43 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-07-01 13:42 - 2014-02-22 09:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2014-07-01 13:42 - 2014-02-22 09:39 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provsvc.dll
2014-07-01 13:42 - 2014-02-22 09:38 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2014-07-01 13:42 - 2014-02-22 09:35 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2014-07-01 13:42 - 2014-02-22 09:33 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2014-07-01 13:42 - 2014-02-22 09:31 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2014-07-01 13:42 - 2014-02-22 09:30 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2014-07-01 13:42 - 2014-02-22 09:20 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2014-07-01 13:42 - 2014-02-22 09:19 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2014-07-01 13:42 - 2014-02-22 09:17 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2014-07-01 13:42 - 2014-02-22 08:54 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2014-07-01 13:42 - 2014-02-01 07:00 - 00002255 _____ () C:\WINDOWS\SysWOW64\WimBootCompress.ini
2014-07-01 13:42 - 2014-02-01 07:00 - 00002255 _____ () C:\WINDOWS\system32\WimBootCompress.ini
2014-07-01 13:42 - 2014-01-31 13:09 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2014-07-01 13:42 - 2014-01-31 10:19 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2014-07-01 13:42 - 2014-01-31 10:15 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2014-07-01 13:42 - 2014-01-31 10:08 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2014-07-01 13:42 - 2014-01-31 10:04 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2014-07-01 13:42 - 2014-01-31 09:24 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2014-07-01 13:42 - 2014-01-29 09:40 - 00994136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2014-07-01 13:42 - 2014-01-29 01:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2014-07-01 13:42 - 2014-01-29 01:18 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2014-07-01 13:42 - 2014-01-29 01:17 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-07-01 13:42 - 2014-01-27 20:53 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2014-07-01 13:42 - 2014-01-27 20:48 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-07-01 13:42 - 2014-01-22 07:21 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2014-07-01 13:42 - 2014-01-22 06:50 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2014-07-01 13:42 - 2013-12-04 19:41 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2014-07-01 13:42 - 2013-12-04 16:54 - 00660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-07-01 13:42 - 2013-12-04 15:19 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-07-01 13:42 - 2013-11-27 10:10 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2014-07-01 13:42 - 2013-11-27 09:56 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2014-07-01 13:41 - 2014-02-22 13:17 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\f3ahvoas.dll
2014-07-01 13:41 - 2014-02-22 13:17 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-07-01 13:41 - 2014-02-22 13:17 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-07-01 13:41 - 2014-02-22 13:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-07-01 13:41 - 2014-02-22 13:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-07-01 13:41 - 2014-02-22 13:08 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncui.dll
2014-07-01 13:41 - 2014-02-22 13:08 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2014-07-01 13:41 - 2014-02-22 13:08 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2014-07-01 13:41 - 2014-02-22 13:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2014-07-01 13:41 - 2014-02-22 13:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2014-07-01 13:41 - 2014-02-22 13:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-07-01 13:41 - 2014-02-22 12:48 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ocsetapi.dll
2014-07-01 13:41 - 2014-02-22 12:47 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsdyn.dll
2014-07-01 13:41 - 2014-02-22 12:39 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvcctl.dll
2014-07-01 13:41 - 2014-02-22 12:25 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\f3ahvoas.dll
2014-07-01 13:41 - 2014-02-22 12:25 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-07-01 13:41 - 2014-02-22 12:25 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-07-01 13:41 - 2014-02-22 12:24 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SSShim.dll
2014-07-01 13:41 - 2014-02-22 12:24 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-07-01 13:41 - 2014-02-22 12:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-07-01 13:41 - 2014-02-22 12:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-07-01 13:41 - 2014-02-22 12:17 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-07-01 13:41 - 2014-02-22 12:16 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-07-01 13:41 - 2014-02-22 12:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2014-07-01 13:41 - 2014-02-22 12:09 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2014-07-01 13:41 - 2014-02-22 12:08 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2014-07-01 13:41 - 2014-02-22 12:08 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2014-07-01 13:41 - 2014-02-22 12:07 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\scavengeui.dll
2014-07-01 13:41 - 2014-02-22 12:07 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2014-07-01 13:41 - 2014-02-22 12:07 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-07-01 13:41 - 2014-02-22 12:05 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentHost.dll
2014-07-01 13:41 - 2014-02-22 12:04 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfrgui.exe
2014-07-01 13:41 - 2014-02-22 11:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ocsetapi.dll
2014-07-01 13:41 - 2014-02-22 11:55 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrTasks.exe
2014-07-01 13:41 - 2014-02-22 11:50 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2014-07-01 13:41 - 2014-02-22 11:47 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2014-07-01 13:41 - 2014-02-22 11:41 - 02566656 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2014-07-01 13:41 - 2014-02-22 11:38 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-07-01 13:41 - 2014-02-22 11:35 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2014-07-01 13:41 - 2014-02-22 11:35 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitagent.exe
2014-07-01 13:41 - 2014-02-22 11:32 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2014-07-01 13:41 - 2014-02-22 11:27 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-07-01 13:41 - 2014-02-22 11:21 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe
2014-07-01 13:41 - 2014-02-22 11:17 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2014-07-01 13:41 - 2014-02-22 11:09 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2014-07-01 13:41 - 2014-02-22 11:03 - 02544128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2014-07-01 13:41 - 2014-02-22 10:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2014-07-01 13:41 - 2014-02-22 10:54 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2014-07-01 13:41 - 2014-02-22 10:53 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-07-01 13:41 - 2014-02-22 10:51 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2014-07-01 13:41 - 2014-02-22 10:48 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2014-07-01 13:41 - 2014-02-22 10:46 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2014-07-01 13:41 - 2014-02-22 10:37 - 00183808 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2014-07-01 13:41 - 2014-02-22 10:28 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2014-07-01 13:41 - 2014-02-22 10:27 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2014-07-01 13:41 - 2014-02-22 10:26 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2014-07-01 13:41 - 2014-02-22 10:23 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2014-07-01 13:41 - 2014-02-22 10:19 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\korwbrkr.dll
2014-07-01 13:41 - 2014-02-22 10:16 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxshared.dll
2014-07-01 13:41 - 2014-02-22 10:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2014-07-01 13:41 - 2014-02-22 10:02 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2014-07-01 13:41 - 2014-02-22 09:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-07-01 13:41 - 2014-02-22 09:55 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-07-01 13:41 - 2014-02-22 09:55 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2014-07-01 13:41 - 2014-02-22 09:55 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2014-07-01 13:41 - 2014-02-22 09:54 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AepRoam.dll
2014-07-01 13:41 - 2014-02-22 09:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-07-01 13:41 - 2014-02-22 09:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2014-07-01 13:41 - 2014-02-22 09:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2014-07-01 13:41 - 2014-02-22 09:48 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2014-07-01 13:41 - 2014-02-22 09:40 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2014-07-01 13:41 - 2014-02-22 09:39 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2014-07-01 13:41 - 2014-02-22 09:24 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2014-07-01 13:41 - 2014-02-22 09:22 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-07-01 13:41 - 2014-02-22 09:20 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2014-07-01 13:41 - 2014-02-22 09:17 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2014-07-01 13:41 - 2014-02-22 05:43 - 00002440 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
2014-07-01 13:41 - 2014-02-22 05:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-07-01 13:41 - 2014-02-22 05:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-07-01 13:41 - 2014-02-08 02:08 - 00100197 _____ () C:\WINDOWS\SysWOW64\RacRules.xml
2014-07-01 13:41 - 2014-02-08 02:08 - 00100197 _____ () C:\WINDOWS\system32\RacRules.xml
2014-07-01 13:41 - 2014-02-01 07:00 - 00011109 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-07-01 13:41 - 2014-02-01 07:00 - 00011109 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-07-01 13:41 - 2014-02-01 07:00 - 00007762 _____ () C:\WINDOWS\SysWOW64\connectedsearch-suggestions.searchconnector-ms
2014-07-01 13:41 - 2014-02-01 07:00 - 00007762 _____ () C:\WINDOWS\system32\connectedsearch-suggestions.searchconnector-ms
2014-07-01 13:41 - 2014-02-01 07:00 - 00007130 _____ () C:\WINDOWS\SysWOW64\connectedsearch-zeroinput.searchconnector-ms
2014-07-01 13:41 - 2014-02-01 07:00 - 00007130 _____ () C:\WINDOWS\system32\connectedsearch-zeroinput.searchconnector-ms
2014-07-01 13:41 - 2014-01-27 12:45 - 00050053 _____ () C:\WINDOWS\system32\srms.dat
2014-07-01 13:41 - 2013-11-27 10:47 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\finger.exe
2014-07-01 13:41 - 2013-11-27 10:20 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\finger.exe
2014-06-30 22:04 - 2014-06-30 22:04 - 00083496 _____ () C:\Users\Mike\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-30 21:06 - 2014-07-02 13:35 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-06-30 21:04 - 2014-06-30 21:04 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-06-30 20:56 - 2014-07-02 13:35 - 00000000 ____D () C:\ProgramData\McAfee
2014-06-30 20:42 - 2014-06-30 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-06-30 20:41 - 2014-07-02 07:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-06-30 20:41 - 2014-06-30 20:41 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-06-30 20:41 - 2014-06-30 20:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio
2014-06-30 20:39 - 2014-06-30 20:39 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-30 20:38 - 2014-07-02 14:04 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-30 20:38 - 2014-06-30 20:38 - 00000000 ____D () C:\Users\Mike\AppData\Local\Microsoft Help
2014-06-30 20:28 - 2014-06-30 20:28 - 02087752 _____ (Dell Inc) C:\Users\Mike\Downloads\aulauncher.exe
2014-06-30 20:28 - 2014-06-30 20:28 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\PCDr
2014-06-30 19:20 - 2014-06-30 20:26 - 00000000 ____D () C:\Users\Mike\AppData\Local\Deployment
2014-06-30 19:20 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-06-30 19:20 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Apps\2.0
2014-06-30 19:19 - 2014-06-30 19:19 - 00417824 _____ () C:\Users\Mike\Downloads\DellSystemDetect.exe
2014-06-30 19:06 - 2014-06-30 10:51 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64.sys
2014-06-30 17:25 - 2014-06-30 17:31 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-06-30 17:17 - 2014-06-30 17:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-30 17:17 - 2014-06-01 17:17 - 95414520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-06-30 17:06 - 2014-06-30 17:06 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-06-30 16:55 - 2014-06-30 16:55 - 00000000 ____D () C:\Users\Mike\AppData\Local\softthinks
2014-06-30 16:55 - 2014-06-30 16:55 - 00000000 ____D () C:\ProgramData\softthinks
2014-06-30 16:50 - 2014-06-30 16:50 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2014-06-30 16:29 - 2014-06-27 18:14 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64.sys
2014-06-30 16:22 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-30 16:22 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-30 16:22 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-06-30 16:22 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-06-30 16:22 - 2014-01-04 16:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-06-30 16:22 - 2014-01-04 16:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-06-30 16:22 - 2014-01-01 00:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-06-30 16:22 - 2013-12-31 00:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-06-30 16:22 - 2013-12-31 00:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-06-30 16:22 - 2013-12-27 09:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-06-30 16:22 - 2013-12-27 08:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-06-30 16:22 - 2013-12-21 08:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-06-30 16:22 - 2013-12-17 08:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-06-30 16:22 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-06-30 16:22 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-06-30 16:21 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-06-30 16:21 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-06-30 16:21 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-06-30 16:21 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-06-30 16:21 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-06-30 16:21 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-06-30 16:21 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-06-30 16:21 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-06-30 16:21 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-06-30 16:21 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-06-30 16:21 - 2014-01-07 06:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-06-30 16:21 - 2014-01-07 05:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-06-30 16:21 - 2013-11-21 07:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-06-30 16:21 - 2013-11-21 06:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-06-30 16:20 - 2014-01-27 20:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-06-30 16:20 - 2014-01-27 19:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-06-30 16:20 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-06-30 16:20 - 2014-01-27 18:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-06-30 16:20 - 2014-01-27 18:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-06-30 16:20 - 2013-12-21 15:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-06-30 16:20 - 2013-12-21 09:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-06-30 16:19 - 2014-02-22 13:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-06-30 16:19 - 2014-02-22 12:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-06-30 16:19 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-06-30 16:19 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-06-30 16:18 - 2014-01-19 08:38 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-06-30 16:07 - 2014-06-30 16:44 - 00005005 _____ () C:\WINDOWS\wininit.ini
2014-06-30 15:35 - 2014-07-01 14:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
2014-06-30 15:35 - 2014-06-30 16:08 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-30 15:35 - 2014-06-30 15:35 - 00001272 _____ () C:\Users\Mike\Desktop\Spybot - Search & Destroy.lnk
2014-06-30 15:35 - 2014-06-30 15:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2014-06-30 15:34 - 2014-06-30 15:34 - 16409960 _____ (Safer Networking Limited ) C:\Users\Mike\Downloads\spybotsd162(1).exe
2014-06-30 15:30 - 2014-06-30 15:31 - 00284224 _____ (Mozilla) C:\Users\Mike\Downloads\Firefox Setup Stub 30.0.exe
2014-06-30 15:30 - 2014-06-30 15:30 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Mozilla
2014-06-30 15:30 - 2014-06-30 15:30 - 00000000 ____D () C:\Users\Mike\AppData\Local\Mozilla
2014-06-30 15:28 - 2014-06-30 15:28 - 00003768 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMScan
2014-06-30 15:28 - 2014-06-30 15:28 - 00003766 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMUpdater
2014-06-30 15:28 - 2014-06-30 15:28 - 00003762 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMRules
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\Users\Mike\Downloads\Driver Support
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\Users\Mike\AppData\Local\PC_Drivers_Headquarters
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\ProgramData\UAB
2014-06-30 15:27 - 2014-06-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-30 15:27 - 2014-06-30 15:32 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-30 15:27 - 2014-06-30 15:32 - 00001161 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-30 15:27 - 2014-06-30 15:27 - 00002319 _____ () C:\Users\Public\Desktop\Driver Support.lnk
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Support
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Driver Support
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Driver Support
2014-06-30 15:25 - 2014-07-02 14:06 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-979864317-2615240833-1526847324-1002
2014-06-30 15:25 - 2014-06-30 15:25 - 00003996 _____ () C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-06-30 15:25 - 2014-06-30 15:25 - 00003460 _____ () C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2014-06-30 15:25 - 2014-06-30 15:25 - 00003196 _____ () C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2014-06-30 15:21 - 2014-06-30 15:21 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Macromedia
2014-06-30 15:20 - 2014-06-30 15:20 - 00002079 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2014-06-30 15:20 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Intel Corporation
2014-06-30 15:20 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Power2Go8
2014-06-30 15:19 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\PackageStaging
2014-06-30 15:19 - 2014-06-30 15:19 - 00013154 _____ () C:\Users\Mike\Desktop\Removed Apps.html
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\Software Statistics Service
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\Broadcom
2014-06-30 15:18 - 2014-06-30 15:18 - 00001444 _____ () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-30 15:18 - 2014-06-30 15:18 - 00000020 ___SH () C:\Users\Mike\ntuser.ini
2014-06-30 15:18 - 2014-06-30 15:18 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Adobe
2014-06-30 15:18 - 2014-06-30 15:18 - 00000000 ____D () C:\Users\Mike\AppData\Local\VirtualStore
2014-06-30 15:16 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike
2014-06-30 15:16 - 2014-06-30 15:16 - 00036198 _____ () C:\WINDOWS\diagwrn.xml
2014-06-30 15:16 - 2014-06-30 15:16 - 00036198 _____ () C:\WINDOWS\diagerr.xml
2014-06-30 15:16 - 2014-06-30 15:16 - 00002681 _____ () C:\Users\Administrator\AppData\Local\Application.xml
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-30 15:15 - 2014-06-30 15:59 - 00000000 ____D () C:\Windows.old
2014-06-30 15:14 - 2014-06-30 15:14 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-06-30 15:00 - 2014-06-30 15:00 - 00000000 ____D () C:\$WINDOWS.~BT
2014-06-30 14:59 - 2014-06-30 15:58 - 00000000 ___HD () C:\$SysReset

==================== One Month Modified Files and Folders =======

2014-07-02 14:27 - 2014-07-02 07:28 - 00014407 _____ () C:\Users\Mike\Desktop\FRST.txt
2014-07-02 14:27 - 2014-07-02 07:28 - 00000000 ____D () C:\FRST
2014-07-02 14:26 - 2014-04-16 03:06 - 00000000 ____D () C:\Program Files (x86)\AlienRespawn
2014-07-02 14:26 - 2014-04-16 02:51 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-02 14:24 - 2014-07-02 14:24 - 00000613 _____ () C:\Users\Mike\Desktop\JRT.txt
2014-07-02 14:21 - 2014-07-02 14:21 - 01016261 _____ (Thisisu) C:\Users\Mike\Desktop\JRT.exe
2014-07-02 14:21 - 2014-07-02 14:21 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-07-02 14:20 - 2014-07-02 14:20 - 00002080 _____ () C:\Users\Mike\Desktop\AdwCleaner[S0].txt
2014-07-02 14:19 - 2014-04-25 16:09 - 00000000 __RDO () C:\Users\Mike\SkyDrive
2014-07-02 14:18 - 2014-07-02 14:17 - 00000000 ____D () C:\AdwCleaner
2014-07-02 14:18 - 2014-04-16 03:05 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-02 14:18 - 2014-04-16 02:41 - 00033604 _____ () C:\WINDOWS\PFRO.log
2014-07-02 14:18 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-02 14:16 - 2014-07-02 14:16 - 01346519 _____ () C:\Users\Mike\Desktop\AdwCleaner.exe
2014-07-02 14:13 - 2013-08-22 15:44 - 00383896 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-02 14:12 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-07-02 14:12 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-07-02 14:12 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-02 14:12 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-07-02 14:12 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-07-02 14:12 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-07-02 14:12 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-07-02 14:12 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-07-02 14:09 - 2014-04-16 02:59 - 01072094 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-02 14:06 - 2014-06-30 15:25 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-979864317-2615240833-1526847324-1002
2014-07-02 14:04 - 2014-06-30 20:38 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-02 14:03 - 2014-04-16 03:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-07-02 14:03 - 2013-08-22 16:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-07-02 14:01 - 2013-08-22 14:25 - 00000269 _____ () C:\WINDOWS\win.ini
2014-07-02 14:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-07-02 13:42 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-07-02 13:38 - 2014-07-02 07:24 - 00854390 _____ () C:\Users\Mike\Desktop\SecurityCheck.exe
2014-07-02 13:35 - 2014-06-30 21:06 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-07-02 13:35 - 2014-06-30 20:56 - 00000000 ____D () C:\ProgramData\McAfee
2014-07-02 13:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-02 13:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-02 13:34 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\zh-HK
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\uk-UA
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\tr-TR
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\th-TH
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sl-SI
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sk-SK
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\ro-RO
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\lv-LV
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\lt-LT
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\hr-HR
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\he-IL
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\et-EE
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\bg-BG
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\ar-SA
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2014-07-02 13:33 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2014-07-02 13:33 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2014-07-02 13:33 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-07-02 13:33 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-07-02 13:33 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-07-02 13:33 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\servicing
2014-07-02 07:28 - 2014-07-02 07:28 - 00027610 _____ () C:\Users\Mike\Desktop\Addition.txt
2014-07-02 07:27 - 2014-07-02 07:27 - 02083840 _____ (Farbar) C:\Users\Mike\Desktop\FRST64.exe
2014-07-02 07:26 - 2014-04-26 20:49 - 00000000 ____D () C:\Ann
2014-07-02 07:22 - 2013-08-22 16:36 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-07-02 07:01 - 2014-06-30 20:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-07-02 07:00 - 2014-07-02 07:00 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-07-01 16:18 - 2014-07-01 16:18 - 00002022 _____ () C:\Users\Mike\Desktop\aswMBR.txt
2014-07-01 16:18 - 2014-07-01 16:18 - 00000512 _____ () C:\Users\Mike\Desktop\MBR.dat
2014-07-01 15:01 - 2014-07-01 15:01 - 00000512 _____ () C:\Users\Mike\Downloads\MBR.dat
2014-07-01 14:57 - 2014-07-01 14:57 - 05185536 _____ (AVAST Software) C:\Users\Mike\Downloads\aswMBR.exe
2014-07-01 14:55 - 2014-07-01 14:55 - 00688992 _____ (Swearware) C:\Users\Mike\Downloads\dds.com
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\UpdatusUser\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\Mike\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000938 _____ () C:\Users\Administrator\Desktop\NTREGOPT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000919 _____ () C:\Users\UpdatusUser\Desktop\ERUNT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000919 _____ () C:\Users\Administrator\Desktop\ERUNT.lnk
2014-07-01 14:36 - 2014-07-01 14:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
2014-07-01 14:36 - 2014-07-01 14:36 - 00000000 ____D () C:\Program Files (x86)\ERUNT
2014-07-01 14:35 - 2014-07-01 14:35 - 00791393 _____ (Lars Hederer ) C:\Users\Mike\Downloads\erunt-setup.exe
2014-07-01 14:28 - 2014-06-30 15:35 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
2014-06-30 22:35 - 2013-08-22 15:46 - 00033687 _____ () C:\WINDOWS\setupact.log
2014-06-30 22:04 - 2014-06-30 22:04 - 00083496 _____ () C:\Users\Mike\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-30 21:08 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-06-30 21:04 - 2014-06-30 21:04 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-06-30 20:56 - 2014-04-25 16:44 - 05155464 _____ (McAfee, Inc.) C:\Users\Mike\Downloads\McAfeeSetup-Serial.exe
2014-06-30 20:42 - 2014-06-30 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-06-30 20:41 - 2014-06-30 20:41 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-06-30 20:41 - 2014-06-30 20:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio
2014-06-30 20:41 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-06-30 20:39 - 2014-06-30 20:39 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-30 20:38 - 2014-06-30 20:38 - 00000000 ____D () C:\Users\Mike\AppData\Local\Microsoft Help
2014-06-30 20:38 - 2013-08-22 20:12 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-06-30 20:28 - 2014-06-30 20:28 - 02087752 _____ (Dell Inc) C:\Users\Mike\Downloads\aulauncher.exe
2014-06-30 20:28 - 2014-06-30 20:28 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\PCDr
2014-06-30 20:26 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Deployment
2014-06-30 19:20 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-06-30 19:20 - 2014-06-30 19:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Apps\2.0
2014-06-30 19:19 - 2014-06-30 19:19 - 00417824 _____ () C:\Users\Mike\Downloads\DellSystemDetect.exe
2014-06-30 17:31 - 2014-06-30 17:25 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-06-30 17:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-06-30 17:17 - 2014-06-30 17:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-30 17:06 - 2014-06-30 17:06 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-06-30 16:55 - 2014-06-30 16:55 - 00000000 ____D () C:\Users\Mike\AppData\Local\softthinks
2014-06-30 16:55 - 2014-06-30 16:55 - 00000000 ____D () C:\ProgramData\softthinks
2014-06-30 16:50 - 2014-06-30 16:50 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2014-06-30 16:50 - 2014-04-16 02:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alienware
2014-06-30 16:47 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-30 16:44 - 2014-06-30 16:07 - 00005005 _____ () C:\WINDOWS\wininit.ini
2014-06-30 16:08 - 2014-06-30 15:35 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-30 15:59 - 2014-06-30 15:15 - 00000000 ____D () C:\Windows.old
2014-06-30 15:58 - 2014-06-30 14:59 - 00000000 ___HD () C:\$SysReset
2014-06-30 15:35 - 2014-06-30 15:35 - 00001272 _____ () C:\Users\Mike\Desktop\Spybot - Search & Destroy.lnk
2014-06-30 15:35 - 2014-06-30 15:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2014-06-30 15:34 - 2014-06-30 15:34 - 16409960 _____ (Safer Networking Limited ) C:\Users\Mike\Downloads\spybotsd162(1).exe
2014-06-30 15:32 - 2014-06-30 15:27 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-30 15:32 - 2014-06-30 15:27 - 00001161 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-30 15:31 - 2014-06-30 15:30 - 00284224 _____ (Mozilla) C:\Users\Mike\Downloads\Firefox Setup Stub 30.0.exe
2014-06-30 15:30 - 2014-06-30 15:30 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Mozilla
2014-06-30 15:30 - 2014-06-30 15:30 - 00000000 ____D () C:\Users\Mike\AppData\Local\Mozilla
2014-06-30 15:28 - 2014-06-30 15:28 - 00003768 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMScan
2014-06-30 15:28 - 2014-06-30 15:28 - 00003766 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMUpdater
2014-06-30 15:28 - 2014-06-30 15:28 - 00003762 _____ () C:\WINDOWS\System32\Tasks\Driver Support-RTMRules
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\Users\Mike\Downloads\Driver Support
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\Users\Mike\AppData\Local\PC_Drivers_Headquarters
2014-06-30 15:28 - 2014-06-30 15:28 - 00000000 ____D () C:\ProgramData\UAB
2014-06-30 15:27 - 2014-06-30 15:27 - 00002319 _____ () C:\Users\Public\Desktop\Driver Support.lnk
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Support
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\ProgramData\Driver Support
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-30 15:27 - 2014-06-30 15:27 - 00000000 ____D () C:\Program Files (x86)\Driver Support
2014-06-30 15:25 - 2014-06-30 15:25 - 00003996 _____ () C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2014-06-30 15:25 - 2014-06-30 15:25 - 00003460 _____ () C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2014-06-30 15:25 - 2014-06-30 15:25 - 00003196 _____ () C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2014-06-30 15:25 - 2014-04-16 03:06 - 00000000 ____D () C:\ProgramData\PCDr
2014-06-30 15:21 - 2014-06-30 15:21 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Macromedia
2014-06-30 15:20 - 2014-06-30 15:20 - 00002079 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2014-06-30 15:20 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Intel Corporation
2014-06-30 15:20 - 2014-06-30 15:20 - 00000000 ____D () C:\Users\Mike\AppData\Local\Power2Go8
2014-06-30 15:20 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\PackageStaging
2014-06-30 15:19 - 2014-06-30 15:19 - 00013154 _____ () C:\Users\Mike\Desktop\Removed Apps.html
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\Software Statistics Service
2014-06-30 15:19 - 2014-06-30 15:19 - 00000000 ____D () C:\Users\Mike\AppData\Local\Broadcom
2014-06-30 15:19 - 2014-06-30 15:16 - 00000000 ____D () C:\Users\Mike
2014-06-30 15:19 - 2014-04-16 03:11 - 00000000 ___DC () C:\WINDOWS\Panther
2014-06-30 15:18 - 2014-06-30 15:18 - 00001444 _____ () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-30 15:18 - 2014-06-30 15:18 - 00000020 ___SH () C:\Users\Mike\ntuser.ini
2014-06-30 15:18 - 2014-06-30 15:18 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Adobe
2014-06-30 15:18 - 2014-06-30 15:18 - 00000000 ____D () C:\Users\Mike\AppData\Local\VirtualStore
2014-06-30 15:18 - 2014-04-25 16:03 - 00000000 ____D () C:\Users\Mike\AppData\Local\Packages
2014-06-30 15:17 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-06-30 15:16 - 2014-06-30 15:16 - 00036198 _____ () C:\WINDOWS\diagwrn.xml
2014-06-30 15:16 - 2014-06-30 15:16 - 00036198 _____ () C:\WINDOWS\diagerr.xml
2014-06-30 15:16 - 2014-06-30 15:16 - 00002681 _____ () C:\Users\Administrator\AppData\Local\Application.xml
2014-06-30 15:16 - 2014-04-16 03:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2014-06-30 15:16 - 2014-04-16 03:12 - 00000000 ____D () C:\WINDOWS\system32\NV
2014-06-30 15:16 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-06-30 15:16 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default
2014-06-30 15:15 - 2013-08-22 16:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-06-30 15:14 - 2014-06-30 15:14 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-06-30 15:00 - 2014-06-30 15:00 - 00000000 ____D () C:\$WINDOWS.~BT
2014-06-30 10:51 - 2014-06-30 19:06 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64.sys
2014-06-27 18:14 - 2014-06-30 16:29 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}Gw64.sys

Some content of TEMP:
====================
C:\Users\Mike\AppData\Local\Temp\ose00000.exe
C:\Users\Mike\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-04-16 02:41

==================== End Of Log ============================
 
Hi Ann Chidley,

Did you install the Driver Support updates you were being prompted to install?

=========================

Malwarebytes' Anti-Malware

Download Malwarebytes' Anti-Malware (save it to your desktop).
    • Windows XP : Double click on the icon to run it.
    • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
  • Select Scan tab.
  • Select type of scan to perform:
    • Threat Scan < --- Select this type of scan
    • Custom Scan
    • Hyper Scan
  • Next click the Scan button.
  • When the scan is complete, if no malicious items are found you can close the program.
  • If malicious items are found be sure that everything is checked, and click Quarantine .
  • When completed, a log will open in Notepad. Please save it to a convenient location and post the results.
  • Note: If you receive a notice that some of the items couldn't be removed, that they have been added to the delete on reboot list, please reboot.
=========================

ESET Online Scanner

*Note:
  • It is recommended to disable on-board antivirus program and anti-spyware programs while performing scans so there are no conflicts and it will speed up scan time.
  • Please don't go surfing while your resident protection is disabled!
  • Once the scan is finished remember to re-enable your antivirus along with your anti-spyware programs.
** You need to run your browser with Administrator Rights, to do so right click your browsers short cut and select "Run as Administrator".

= = = = = = = = = = = = = = = = = = = =

Go here to run ESET Online Scanner

(Note: You can use Internet Explorer or FireFox for this scan. If you use FireFox you will be asked to install an additional component. Please allow this.)

  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activex control to install
  • Disable your Antivirus software. You can usually do this with its Notification Tray icon near the clock
  • Click Start
  • Make sure that the option "Remove found threats" is Unchecked, and the option "Scan unwanted applications" is Checked.
  • Click Scan.
  • Wait for the scan to finish.
  • When the scan completes, click List of found threats
  • click Export to Text file and save the file to your desktop using a unique name, such as ESETScan.
  • Include the contents of this report in your next reply

    Note - when ESET doesn't find any threats, no report will be created.
  • Push the back button.
  • Push Finish
  • Re-enable your Antivirus software.
=========================

In your next post please provide the following:

  • MBAM log
  • ESET's log.txt
  • Answer about Driver Support updates
 
OK done the first bit, 3 pups quarantined, it said it had created a log but I don't know where it is or what it is called.
The pc then rebooted.

I did a quick look for the driver support, the file is "Driver Support.lnk" and google is coming up with scare-ware and unwanted programs. I have not updated.

Now continuing with the rest of your instructions.
 
I did a search of pc files for anything mbam* and it only found the exe on the desktop.


eset log
C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\IE\PNOWV8ZX\StormAlertsSetup[1].exe a variant of MSIL/Adware.StrongVault.A application cleaned by deleting - quarantined

I have reinstalled my macafee antivirus.

Because of a modem problem, I had to reset the laptop. It is not yet fully installed, I have to download stuff from DELL when this is over. The laptop uses a separate keyboard and also a 24 inch monitor.
 
Hi Ann Chidley,

MBAM & ESET information you provided is fine I don't need to see the log

Because of a modem problem, I had to reset the laptop. It is not yet fully installed, I have to download stuff from DELL when this is over.
Click to expand...
Can you explain what exactly you mean by "reset" the laptop?
 
My laptop was fine, husbands laptop (this laptop) would not connect to the internet. Nothing worked, we swapped cables and did everything you can think of.
Resetting the machine is a facility that is within the software which supposedly takes it back to factory settings, leaving all your work and files intact. Then you have to put back your software of course.

I installed our ISP stuff and then downloaded what I thought was Mozilla but I was redirected to the dodgy site where all this happened. Husband uses this laptop for work so we are all stressed here!
 
To clarify, the infection was caused after the reset, during me downloading software.
I have not reset the laptop during my time with you here!
Are we done yet?
 
Hi Ann Chidley,

Thank you for the information, but I'm still a bit confused as to which step you took. The process you are referring to is called "Refresh", but you said you "Reset" the computer. Which is also an option. I have listed the repair options available. Can you tell me which step you took?

Here is some additional information that helps explain each step: http://windows.microsoft.com/en-us/windows-8/restore-refresh-reset-pc

  • Refresh - refresh your PC without deleting any of your personal files or changing your settings.
  • Reset - remove everything and reinstall Windows.
  • Restore - you can restore Windows back to an earlier point in time, called a restore point.

=========================

Are we done yet?
Click to expand...
It's important that you follow through with the remainder of the steps I will outline. Absence of symptoms doesn't necessarily translate into malware free. We are making progress so please stay with me until I give you the "all clean" sign. :bigthumb:

Have you reinstalled all the necessary software?

If not please do so now, then reboot and test the computer.

  1. How does it perform?
  2. Any issues?

=========================

If no issues, then run a fresh FRST scan for review.

=========================

Re-run Farbar Recovery Scan Tool it should be on your desktop.
    • Windows XP : Double click on the icon to run it.
    • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
=========================

In your next post please provide the following:
  • FRST.txt
 
Status
Not open for further replies.
Back
Top