Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

I'll be damned.... [Closed]


  • This topic is locked This topic is locked

#1
Alan1998

Alan1998

    Member

  • Member
  • PipPipPip
  • 294 posts

Hey, so I guess I'll get straight to the point.....

 

A few days ago, I torrented a movie, I own, ut couldn't play. Big mistake. NOw, every once in a while, I'll have a black background, which usually (for me) indicates someone is watching me. Windows is genuine, that was the first thing I checked, make sure no worm was messing with that.

 

OTL is as follows. (Note: gpedit.msc is legit, just modified)

OTL logfile created on: 2014-10-14 8:35:20 AM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Michael\Downloads
64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17278)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: yyyy-MM-dd
 
7.88 Gb Total Physical Memory | 6.25 Gb Available Physical Memory | 79.28% Memory free
9.13 Gb Paging File | 7.51 Gb Available in Paging File | 82.28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 448.43 Gb Total Space | 392.15 Gb Free Space | 87.45% Space Free | Partition Type: NTFS
 
Computer Name: MIKE-SCHOOL | User Name: Michael | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014-10-14 08:34:42 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Michael\Downloads\OTL.exe
PRC - [2014-10-14 08:33:17 | 000,399,464 | ---- | M] (RaMMicHaeL) -- C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
PRC - [2014-10-14 08:33:17 | 000,111,208 | ---- | M] (RaMMicHaeL) -- C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
PRC - [2014-09-23 01:07:06 | 000,852,808 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014-09-22 16:03:38 | 000,062,208 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
PRC - [2014-09-22 16:03:14 | 003,097,856 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
PRC - [2014-09-22 05:03:46 | 009,896,192 | ---- | M] (Acer Cloud Technology) -- C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
PRC - [2014-09-12 15:14:55 | 004,799,760 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2014-08-21 22:13:02 | 002,580,224 | ---- | M] (Acer) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
PRC - [2014-08-14 09:37:48 | 004,085,896 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2014-07-20 14:57:47 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014-04-11 15:17:18 | 000,650,816 | ---- | M] (MyCity) -- C:\Program Files (x86)\MCShield\MCShieldRTM.exe
PRC - [2013-09-03 20:53:48 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2013-09-03 20:53:42 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
PRC - [2012-07-13 20:27:00 | 000,769,432 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014-10-02 12:01:24 | 000,015,616 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll
MOD - [2014-09-23 01:07:05 | 000,331,592 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ppgooglenaclpluginchrome.dll
MOD - [2014-09-23 01:07:02 | 008,577,864 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\pdf.dll
MOD - [2014-09-23 01:06:58 | 001,098,056 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libglesv2.dll
MOD - [2014-09-23 01:06:56 | 000,174,408 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libegl.dll
MOD - [2014-09-23 01:06:55 | 001,660,232 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ffmpegsumo.dll
MOD - [2014-09-22 16:03:40 | 000,013,568 | ---- | M] () -- C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll
MOD - [2014-09-18 13:04:20 | 011,926,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\c3f52de50de9e5a83295ac536b8d8760\System.Web.ni.dll
MOD - [2014-09-16 10:16:30 | 000,630,528 | ---- | M] () -- C:\Program Files (x86)\Acer\abPhoto\tag.dll
MOD - [2014-09-16 10:16:28 | 000,654,552 | ---- | M] () -- C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll
MOD - [2014-09-16 10:16:18 | 000,119,552 | ---- | M] () -- C:\Program Files (x86)\Acer\abPhoto\openldap.dll
MOD - [2014-09-16 10:15:42 | 000,203,008 | ---- | M] () -- C:\Program Files (x86)\Acer\abPhoto\curllib.dll
MOD - [2014-09-03 12:57:46 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\27dc8e491e32361eaff0b88f0befc197\System.Configuration.ni.dll
MOD - [2014-09-03 12:57:26 | 005,467,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\8006a5df62f0c127d15db16d3a8c68f8\System.Xml.ni.dll
MOD - [2014-09-03 12:57:16 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6ec0cbaebf2932db68d8cc77b5e9b4e9\System.Windows.Forms.ni.dll
MOD - [2014-09-03 12:56:55 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f6ff4eab6e6bb587d62c3975fcbbca30\System.Drawing.ni.dll
MOD - [2014-09-03 08:30:18 | 007,993,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\a500ec9c4638c6ba200d7b55324709f2\System.ni.dll
MOD - [2014-09-03 08:30:02 | 011,500,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5bd3374f05d46ba0563f44d032209f08\mscorlib.ni.dll
MOD - [2014-08-21 22:13:24 | 000,119,552 | ---- | M] () -- C:\Program Files (x86)\Acer\Acer Portal\openldap.dll
MOD - [2014-08-21 22:13:18 | 000,203,008 | ---- | M] () -- C:\Program Files (x86)\Acer\Acer Portal\curllib.dll
MOD - [2014-08-20 17:45:34 | 000,279,296 | ---- | M] () -- C:\Program Files (x86)\Acer\abDocs\libcurl.dll
MOD - [2014-07-20 14:57:49 | 019,329,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014-07-20 14:57:48 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
MOD - [2013-07-30 22:11:44 | 000,088,648 | ---- | M] () -- C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2014-07-24 10:41:39 | 002,898,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2014-07-24 04:28:58 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014-07-20 14:57:47 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2014-04-06 08:20:36 | 000,201,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014-03-23 23:31:14 | 000,347,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014-03-23 23:31:14 | 000,023,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014-03-14 03:26:25 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014-03-08 02:41:25 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014-03-06 04:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014-02-22 12:53:10 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014-02-22 06:57:16 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014-02-22 06:26:58 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014-02-22 06:25:39 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2014-02-22 06:25:14 | 000,269,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2014-02-22 06:23:58 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014-02-06 07:48:45 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013-12-10 04:35:18 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2013-11-23 01:50:00 | 000,282,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013-09-06 02:00:00 | 000,101,192 | ---- | M] (ELAN Microelectronics Corp.) [Auto | Running] -- C:\Program Files\Elantech\ETDService.exe -- (ETDService)
SRV:64bit: - [2013-08-22 08:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013-08-22 08:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013-08-22 08:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013-08-22 08:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013-08-22 08:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013-08-22 07:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013-08-22 07:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013-08-22 07:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013-08-22 07:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013-08-22 07:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013-08-22 07:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013-08-22 07:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013-08-22 07:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013-08-22 07:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013-08-22 06:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013-08-22 06:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013-08-22 06:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013-08-22 06:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013-08-22 06:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013-08-22 06:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013-08-22 06:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013-08-22 06:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2013-08-02 22:47:44 | 000,457,768 | ---- | M] (Acer Incorporate) [Auto | Running] -- C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe -- (LMSvc)
SRV:64bit: - [2013-07-05 20:19:04 | 000,663,592 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe -- (ePowerSvc)
SRV:64bit: - [2013-05-11 21:45:54 | 000,822,232 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel®
SRV:64bit: - [2013-05-11 21:45:38 | 000,733,696 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV - [2014-10-14 08:33:17 | 000,111,208 | ---- | M] (RaMMicHaeL) [Auto | Running] -- C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe -- (Unchecky)
SRV - [2014-09-22 16:03:14 | 003,097,856 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe -- (CCDMonitorService)
SRV - [2014-09-12 15:14:55 | 004,799,760 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2014-07-24 10:41:39 | 002,898,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014-07-22 21:17:28 | 000,089,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe -- (VsEtwService120)
SRV - [2014-04-03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014-03-14 03:10:16 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013-11-19 17:18:10 | 000,279,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013-09-07 05:52:20 | 000,312,448 | ---- | M] (Windows ® Win 7 DDK provider) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2013-09-03 20:53:48 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013-09-03 20:53:42 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013-08-22 00:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013-08-21 23:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013-07-12 04:40:28 | 000,834,664 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Windows\Temp\0243061405931751mcinst.exe -- (0243061405931751mcinstcleanup)
SRV - [2012-07-13 20:27:00 | 000,769,432 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2014-09-09 17:27:58 | 000,142,528 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:64bit: - [2014-08-14 21:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014-07-24 12:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014-07-24 12:28:38 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014-07-24 08:42:22 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2014-07-20 14:58:01 | 000,427,360 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsp.sys -- (aswSP)
DRV:64bit: - [2014-07-20 14:57:50 | 001,041,168 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014-07-20 14:57:50 | 000,224,896 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014-07-20 14:57:50 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014-07-20 14:57:50 | 000,092,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2014-07-20 14:57:50 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014-07-20 14:57:50 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014-07-20 14:57:50 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2014-05-01 10:31:39 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014-03-23 23:30:57 | 000,257,880 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014-03-23 23:30:57 | 000,123,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014-03-23 23:27:03 | 000,035,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014-03-20 00:41:20 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014-03-13 09:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014-03-08 17:40:16 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014-02-22 13:00:25 | 000,236,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014-02-22 12:49:51 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014-02-22 12:49:49 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014-02-22 12:49:49 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014-02-22 12:44:13 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014-02-22 09:14:02 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2013-12-04 15:41:54 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2013-11-13 12:39:30 | 000,449,496 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2013-11-13 12:34:47 | 004,208,640 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013-11-10 23:48:41 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2013-11-01 08:39:53 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013-10-28 22:08:35 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2013-10-28 22:08:35 | 000,027,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2013-10-25 22:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2013-10-05 12:25:54 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2013-09-14 11:06:57 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2013-09-07 05:29:14 | 000,594,120 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2013-09-07 05:29:14 | 000,338,120 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2013-09-07 05:29:14 | 000,179,432 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2013-09-07 05:29:14 | 000,137,928 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2013-09-07 05:29:14 | 000,116,424 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_avdt.sys -- (btath_avdt)
DRV:64bit: - [2013-09-07 05:29:14 | 000,089,800 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2013-09-07 05:29:14 | 000,077,464 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:64bit: - [2013-09-07 05:29:14 | 000,034,384 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2013-09-06 02:00:02 | 000,370,504 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2013-09-03 20:53:44 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2013-08-22 16:11:06 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013-08-22 16:11:03 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013-08-22 10:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013-08-22 10:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013-08-22 09:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013-08-22 09:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013-08-22 09:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013-08-22 09:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013-08-22 09:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013-08-22 09:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013-08-22 09:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013-08-22 09:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013-08-22 09:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013-08-22 09:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013-08-22 09:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013-08-22 09:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013-08-22 09:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013-08-22 09:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013-08-22 09:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013-08-22 09:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013-08-22 09:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013-08-22 09:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013-08-22 09:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013-08-22 09:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013-08-22 09:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013-08-22 09:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013-08-22 09:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013-08-22 09:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013-08-22 09:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013-08-22 09:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013-08-22 09:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013-08-22 08:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2013-08-22 08:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013-08-22 08:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013-08-22 08:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013-08-22 08:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013-08-22 08:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013-08-22 08:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013-08-22 08:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013-08-22 08:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013-08-22 08:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013-08-22 08:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013-08-22 08:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013-08-22 08:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013-08-22 08:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013-08-22 08:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013-08-22 08:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013-08-22 08:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013-08-22 08:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013-08-22 08:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013-08-22 08:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013-08-22 08:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013-08-22 08:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013-08-22 05:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013-08-16 00:13:30 | 003,859,968 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athwbx.sys -- (athr)
DRV:64bit: - [2013-08-12 20:25:46 | 000,017,624 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013-08-09 21:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013-07-30 15:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013-07-26 05:01:48 | 000,458,960 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:64bit: - [2013-07-25 16:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013-07-19 18:26:32 | 000,082,128 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bScsiSDa.sys -- (bScsiSDa)
DRV:64bit: - [2013-07-17 06:59:00 | 000,021,360 | ---- | M] (Acer Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMDriver.sys -- (LMDriver)
DRV:64bit: - [2013-07-17 06:59:00 | 000,014,680 | ---- | M] (Acer Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RadioShim.sys -- (RadioShim)
DRV:64bit: - [2013-07-01 13:50:06 | 008,536,752 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BCMWL63a.SYS -- (BCM43XX)
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {E855225E-C318-473F-AF01-6027BDDB4B9C}
IE:64bit: - HKLM\..\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}: "URL" = http://ca.yhs4.searc...p={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{E855225E-C318-473F-AF01-6027BDDB4B9C}: "URL" = http://www.bing.com/...=IE10TR&pc=ACJB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {E855225E-C318-473F-AF01-6027BDDB4B9C}
IE - HKLM\..\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}: "URL" = http://ca.yhs4.searc...p={searchTerms}
IE - HKLM\..\SearchScopes\{E855225E-C318-473F-AF01-6027BDDB4B9C}: "URL" = http://www.bing.com/...=IE10TR&pc=ACJB
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-793078676-4060340128-668272483-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
IE - HKU\S-1-5-21-793078676-4060340128-668272483-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKU\S-1-5-21-793078676-4060340128-668272483-1001\..\SearchScopes,DefaultScope = {E855225E-C318-473F-AF01-6027BDDB4B9C}
IE - HKU\S-1-5-21-793078676-4060340128-668272483-1001\..\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}: "URL" = http://ca.yhs4.searc...p={searchTerms}
IE - HKU\S-1-5-21-793078676-4060340128-668272483-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.65.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.65.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pokki.com/PokkiDownloadHelper: C:\Users\Michael\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-20 14:57:51 | 000,000,000 | ---D | M]
 
 
========== Chrome  ==========
 
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.10.3_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2022.121_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2014-10-14 08:33:18 | 000,003,164 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (ClassicIEBHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
O2 - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (ClassicIEBHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
O3:64bit: - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [Classic Start Menu] C:\Program Files\Classic Shell\ClassicStartMenu.exe (IvoSoft)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe (Acer Incorporated)
O4 - HKU\S-1-5-21-793078676-4060340128-668272483-1001..\Run: [AcerPortal] C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe (Acer)
O4 - HKU\S-1-5-21-793078676-4060340128-668272483-1001..\Run: [MCShield Monitor] C:\Program Files (x86)\MCShield\MCShieldRTM.exe (MyCity)
O4 - HKU\S-1-5-21-793078676-4060340128-668272483-1001..\Run: [uTorrent] C:\Users\Michael\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BtvStack = "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" (Qualcomm®Atheros®)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O9:64bit: - Extra 'Tools' menuitem : Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe (IvoSoft)
O9 - Extra 'Tools' menuitem : Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe (IvoSoft)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.130 10.0.0.131
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B3E67A00-DED4-4A4E-87BC-DD87B7AD67C8}: DhcpNameServer = 10.0.0.130 10.0.0.131
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DB636266-92C1-47F6-840F-E3CE1AB051D3}: DhcpNameServer = 192.168.2.1 142.166.166.166
O18:64bit: - Protocol\Handler\dssrequest - No CLSID value found
O18:64bit: - Protocol\Handler\sacore - No CLSID value found
O18 - Protocol\Handler\dssrequest - No CLSID value found
O18 - Protocol\Handler\sacore - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-mfe-ipt - No CLSID value found
O18 - Protocol\Filter\application/x-mfe-ipt - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014-10-14 08:22:59 | 000,000,000 | ---D | C] -- C:\Users\Michael\abBox
[2014-10-07 08:52:50 | 000,000,000 | ---D | C] -- C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
[2014-10-02 11:58:35 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appmgr.dll
[2014-10-02 11:58:34 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\GPBAK
[2014-09-29 12:48:23 | 000,000,000 | ---D | C] -- C:\Users\Michael\AppData\Roaming\Audacity
[2014-09-29 12:47:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audacity
[2014-09-20 22:41:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014-09-20 22:41:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014-09-20 22:40:58 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2014-09-18 08:32:08 | 002,860,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2014-09-18 08:32:08 | 000,796,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2014-09-18 08:32:08 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll
[2014-09-18 08:32:08 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll
[2014-09-18 08:32:07 | 013,423,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2014-09-18 08:32:07 | 011,818,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2014-09-18 08:32:07 | 002,374,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2014-09-18 08:32:07 | 002,084,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2014-09-18 08:31:21 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDMon.dll
[2014-09-18 08:31:21 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcpmon.dll
[2014-09-18 08:29:21 | 000,183,808 | ---- | C] (Microsoft Corp.) -- C:\Windows\SysNative\Defrag.exe
[2014-09-18 08:29:19 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2014-09-18 08:29:11 | 000,335,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bcryptprimitives.dll
[2014-09-18 08:29:03 | 000,475,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2014-09-18 08:29:03 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wcmcsp.dll
[2014-09-18 08:29:02 | 000,436,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2014-09-18 08:29:02 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2014-09-18 08:29:01 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DafPrintProvider.dll
[2014-09-18 08:29:00 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\compstui.dll
[2014-09-18 08:28:57 | 000,216,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rsaenh.dll
[2014-09-18 08:28:57 | 000,211,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVol.exe
[2014-09-18 08:28:57 | 000,180,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVol.exe
[2014-09-18 08:28:51 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2014-09-18 08:28:50 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDRUM.DLL
[2014-09-18 08:28:50 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDRUM.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDYAK.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDYAK.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTT102.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTT102.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAT.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTAT.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDRU1.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDRU1.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBASH.DLL
[2014-09-18 08:28:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
[2014-09-18 08:28:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDRU.DLL
[2014-09-18 08:28:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDRU.DLL
[2014-09-18 08:28:49 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dab.dll
[2014-09-18 08:28:48 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2014-09-18 08:28:44 | 001,656,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GdiPlus.dll
[2014-09-18 08:28:44 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2014-09-18 08:28:43 | 001,351,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GdiPlus.dll
[2014-09-18 08:28:39 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansvcpal.dll
[2014-09-18 08:28:38 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WorkFoldersGPExt.dll
[2014-09-18 08:28:36 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenter.dll
[2014-09-18 08:28:36 | 000,832,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenter.dll
[2014-09-18 08:28:34 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WiFiDisplay.dll
[2014-09-18 08:28:27 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxm.dll
[2014-09-18 08:28:27 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhsvc.dll
[2014-09-18 08:28:25 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxPackaging.dll
[2014-09-18 08:28:25 | 000,474,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxPackaging.dll
[2014-09-18 08:28:25 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2014-09-18 08:28:25 | 000,125,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmapi.dll
[2014-09-18 08:28:25 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxSip.dll
[2014-09-18 08:28:25 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxSip.dll
[2014-09-18 08:28:25 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxSysprep.dll
[2014-09-18 08:28:22 | 000,263,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DafPrintProvider.dll
[2014-09-18 08:28:20 | 000,205,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mftranscode.dll
[2014-09-18 08:28:20 | 000,180,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mftranscode.dll
[2014-09-18 08:28:16 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PrintDialogs.dll
[2014-09-18 08:28:16 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2014-09-18 08:28:16 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2014-09-18 08:28:15 | 000,557,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PrintDialogs.dll
[2014-09-18 08:28:15 | 000,160,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmmbase.dll
[2014-09-18 08:28:15 | 000,127,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmmbase.dll
[2014-09-18 08:28:15 | 000,123,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmm.dll
[2014-09-18 08:28:14 | 000,923,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSShared.dll
[2014-09-18 08:28:14 | 000,756,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSShared.dll
[2014-09-18 08:28:14 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl
[2014-09-18 08:28:14 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl
[2014-09-18 08:28:13 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanapi.dll
[2014-09-18 08:28:13 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanapi.dll
[2014-09-18 08:28:12 | 000,889,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2014-09-18 08:28:12 | 000,674,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2014-09-18 08:28:12 | 000,360,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2014-09-18 08:28:12 | 000,355,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2014-09-18 08:28:11 | 000,770,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WorkfoldersControl.dll
[2014-09-18 08:28:11 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WorkFoldersShell.dll
[2014-09-18 08:28:09 | 000,233,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2014-09-18 08:28:08 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
[2014-09-18 08:28:08 | 000,448,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2014-09-18 08:28:03 | 000,287,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usbmon.dll
[2014-09-18 08:28:02 | 000,468,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2014-09-18 08:28:02 | 000,412,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spaceport.sys
[2014-09-18 08:28:02 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys
[2014-09-18 08:28:01 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wisp.dll
[2014-09-18 08:28:01 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wisp.dll
[2014-09-18 08:27:52 | 002,389,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2014-09-18 08:27:52 | 001,417,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2014-09-18 08:27:52 | 001,126,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2014-09-18 08:27:52 | 000,576,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSync.dll
[2014-09-18 08:27:52 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSync.dll
[2014-09-18 08:27:52 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2014-09-18 08:27:51 | 001,600,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\workfolderssvc.dll
[2014-09-18 08:27:50 | 001,057,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdvidcrl.dll
[2014-09-18 08:27:50 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdvidcrl.dll
[2014-09-18 08:27:49 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2014-09-18 08:27:49 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2014-09-18 08:27:47 | 000,828,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2014-09-18 08:27:47 | 000,667,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2014-09-18 08:27:47 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2014-09-18 08:27:46 | 000,645,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SHCore.dll
[2014-09-18 08:27:46 | 000,477,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SHCore.dll
[2014-09-18 08:27:46 | 000,388,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUSettingsProvider.dll
[2014-09-18 08:27:46 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2014-09-18 08:27:46 | 000,054,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2014-09-18 08:27:45 | 001,992,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2014-09-18 08:27:45 | 000,486,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll
[2014-09-18 08:27:45 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanconn.dll
[2014-09-18 08:27:45 | 000,391,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll
[2014-09-18 08:27:45 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
[2014-09-18 08:27:45 | 000,263,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsAdminFlows.exe
[2014-09-18 08:27:44 | 000,806,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2014-09-18 08:27:44 | 000,438,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
[2014-09-18 08:27:44 | 000,328,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2014-09-18 08:27:44 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prnntfy.dll
[2014-09-18 08:27:44 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prnntfy.dll
[2014-09-18 08:27:44 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiapi.dll
[2014-09-18 08:27:44 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiapi.dll
[2014-09-18 08:27:43 | 001,404,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\storagewmi.dll
[2014-09-18 08:27:43 | 001,231,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2014-09-18 08:27:43 | 001,182,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\printui.dll
[2014-09-18 08:27:43 | 001,057,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\printui.dll
[2014-09-18 08:27:43 | 001,029,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2014-09-18 08:27:43 | 000,882,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2014-09-18 08:27:43 | 000,818,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2014-09-18 08:27:43 | 000,707,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2014-09-18 08:27:43 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2014-09-18 08:27:43 | 000,487,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2014-09-18 08:27:42 | 001,287,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mispace.dll
[2014-09-18 08:27:42 | 001,029,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mispace.dll
[2014-09-18 08:27:42 | 000,659,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Bluetooth.dll
[2014-09-18 08:27:42 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll
[2014-09-18 08:27:42 | 000,443,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansec.dll
[2014-09-18 08:27:42 | 000,439,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Bluetooth.dll
[2014-09-18 08:27:42 | 000,432,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll
[2014-09-18 08:27:42 | 000,371,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2014-09-18 08:27:42 | 000,302,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2014-09-18 08:27:41 | 001,463,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsecedit.dll
[2014-09-18 08:27:41 | 001,319,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsecedit.dll
[2014-09-18 08:27:41 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BluetoothApis.dll
[2014-09-18 08:27:41 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BluetoothApis.dll
[2014-09-18 08:27:33 | 002,050,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SRH.dll
[2014-09-18 08:27:33 | 001,741,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SRH.dll
[2014-09-18 08:27:32 | 001,018,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aclui.dll
[2014-09-18 08:27:32 | 000,889,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aclui.dll
[2014-09-18 08:27:30 | 001,817,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
[2014-09-18 08:27:30 | 000,387,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcryptprimitives.dll
[2014-09-18 08:27:29 | 001,844,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
[2014-09-18 08:27:28 | 002,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2014-09-18 08:27:28 | 002,318,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2014-09-18 08:27:27 | 002,397,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storagewmi.dll
[2014-09-18 08:27:27 | 001,705,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2014-09-18 08:27:27 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.dll
[2014-09-18 08:27:26 | 002,100,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsAdminFlowUI.dll
[2014-09-18 08:27:26 | 001,519,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2014-09-18 08:27:26 | 001,144,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanmm.dll
[2014-09-18 08:27:25 | 007,424,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2014-09-18 08:27:24 | 002,696,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers.dll
[2014-09-18 08:27:24 | 001,356,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2014-09-18 08:27:24 | 000,834,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\osk.exe
[2014-09-18 08:27:24 | 000,779,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\osk.exe
[2014-09-18 08:27:23 | 002,145,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2014-09-18 08:27:23 | 002,141,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2014-09-18 08:27:23 | 001,660,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2014-09-18 08:27:23 | 001,519,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2014-09-18 08:27:23 | 001,488,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2014-09-18 08:27:22 | 012,730,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2014-09-18 08:27:22 | 002,574,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2014-09-18 08:27:22 | 002,410,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2014-09-18 08:27:21 | 016,874,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2014-09-18 08:27:17 | 008,652,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Search.dll
[2014-09-18 08:27:17 | 005,833,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Search.dll
[2014-09-18 08:27:17 | 003,360,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2014-09-18 08:27:16 | 006,649,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2014-09-18 08:27:16 | 005,777,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2014-09-18 08:27:13 | 001,290,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2014-09-18 08:27:13 | 001,089,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpedit.dll
[2014-09-18 08:27:12 | 001,089,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpedit.dll
[2014-09-18 08:27:05 | 000,146,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpioclx.sys
[2014-09-17 08:19:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield
[2014-09-17 08:19:56 | 000,000,000 | ---D | C] -- C:\ProgramData\MCShield
[2014-09-17 08:19:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MCShield
[2014-09-17 08:01:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Feudalism 2
[2014-09-17 08:01:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Feudalism2_at
[2014-09-16 12:36:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014-09-15 13:09:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Unchecky
[2014-09-15 12:57:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
 
========== Files - Modified Within 30 Days ==========
 
[2021-10-21 10:36:56 | 000,000,852 | ---- | M] () -- C:\Windows\SysNative\drivers\RTKHDRC.dat
[2021-10-04 04:34:42 | 000,000,712 | ---- | M] () -- C:\Windows\SysNative\drivers\RTMICEQ0.dat
[2014-10-14 08:25:19 | 000,002,167 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014-10-14 08:24:20 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014-10-14 08:23:17 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-10-14 08:21:14 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014-10-14 08:21:14 | 2476,543,999 | -HS- | M] () -- C:\hiberfil.sys
[2014-10-11 17:41:00 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014-10-11 16:51:05 | 000,863,592 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014-10-11 16:51:05 | 000,735,932 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014-10-11 16:51:05 | 000,139,816 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014-10-11 09:22:13 | 000,000,865 | ---- | M] () -- C:\Users\Michael\Desktop\µTorrent.lnk
[2014-10-11 09:22:13 | 000,000,845 | ---- | M] () -- C:\Users\Michael\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2014-10-10 14:09:51 | 000,000,721 | ---- | M] () -- C:\Users\Michael\Desktop\AutoEvony2.swf - Shortcut.lnk
[2014-10-07 08:52:51 | 000,002,544 | ---- | M] () -- C:\Users\Michael\Desktop\Windows 7 USB DVD Download Tool.lnk
[2014-10-02 12:02:22 | 000,001,961 | ---- | M] () -- C:\Users\Public\Desktop\abMedia.lnk
[2014-10-02 12:00:26 | 000,002,590 | ---- | M] () -- C:\Windows\unins000.dat
[2014-10-02 12:00:19 | 000,707,354 | ---- | M] () -- C:\Windows\unins000.exe
[2014-10-02 11:03:16 | 000,000,559 | ---- | M] () -- C:\Users\Michael\Documents\SS notes 2nd, oct.rtf
[2014-09-29 12:48:18 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\Audacity.lnk
[2014-09-29 11:01:11 | 000,002,751 | ---- | M] () -- C:\Users\Michael\Documents\French Revolution.rtf
[2014-09-29 10:44:42 | 000,002,554 | ---- | M] () -- C:\Users\Michael\Documents\SS Notes 24th.rtf
[2014-09-26 10:34:22 | 000,000,859 | ---- | M] () -- C:\Users\Michael\Documents\Time Line Work.rtf
[2014-09-26 10:27:54 | 000,000,603 | ---- | M] () -- C:\Users\Michael\Documents\Current Events.rtf
[2014-09-25 08:25:42 | 000,337,840 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014-09-22 10:57:48 | 000,001,961 | ---- | M] () -- C:\Users\Michael\Documents\Enlightment.rtf
[2014-09-20 22:41:00 | 000,002,531 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014-09-18 11:25:40 | 000,000,469 | ---- | M] () -- C:\Users\Michael\Documents\Of Mice and Men Actor Info.rtf
[2014-09-18 11:10:15 | 000,000,288 | ---- | M] () -- C:\Users\Michael\Documents\SS notes 18th.rtf
[2014-09-18 10:57:29 | 000,002,263 | ---- | M] () -- C:\Users\Michael\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014-09-17 08:20:02 | 000,001,052 | ---- | M] () -- C:\Users\Public\Desktop\MCShield Real-Time Monitor.lnk
[2014-09-16 11:03:40 | 000,001,145 | ---- | M] () -- C:\Users\Michael\Documents\Social Studies Notes.rtf
[2014-09-15 12:57:54 | 000,001,142 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 9.lnk
 
========== Files Created - No Company Name ==========
 
[2014-10-11 09:22:13 | 000,000,865 | ---- | C] () -- C:\Users\Michael\Desktop\µTorrent.lnk
[2014-10-11 09:22:13 | 000,000,845 | ---- | C] () -- C:\Users\Michael\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2014-10-10 14:09:51 | 000,000,721 | ---- | C] () -- C:\Users\Michael\Desktop\AutoEvony2.swf - Shortcut.lnk
[2014-10-07 08:52:51 | 000,002,544 | ---- | C] () -- C:\Users\Michael\Desktop\Windows 7 USB DVD Download Tool.lnk
[2014-10-02 12:01:40 | 000,001,961 | ---- | C] () -- C:\Users\Public\Desktop\abMedia.lnk
[2014-10-02 11:58:35 | 000,034,871 | ---- | C] () -- C:\Windows\SysWow64\gpedit.msc
[2014-10-02 11:58:28 | 000,707,354 | ---- | C] () -- C:\Windows\unins000.exe
[2014-10-02 11:58:28 | 000,002,590 | ---- | C] () -- C:\Windows\unins000.dat
[2014-10-02 11:03:16 | 000,000,559 | ---- | C] () -- C:\Users\Michael\Documents\SS notes 2nd, oct.rtf
[2014-09-29 12:48:18 | 000,000,995 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2014-09-29 12:48:18 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\Audacity.lnk
[2014-09-29 10:44:53 | 000,002,751 | ---- | C] () -- C:\Users\Michael\Documents\French Revolution.rtf
[2014-09-26 10:34:15 | 000,000,859 | ---- | C] () -- C:\Users\Michael\Documents\Time Line Work.rtf
[2014-09-26 10:27:54 | 000,000,603 | ---- | C] () -- C:\Users\Michael\Documents\Current Events.rtf
[2014-09-25 11:05:23 | 000,002,554 | ---- | C] () -- C:\Users\Michael\Documents\SS Notes 24th.rtf
[2014-09-22 10:57:48 | 000,001,961 | ---- | C] () -- C:\Users\Michael\Documents\Enlightment.rtf
[2014-09-18 11:25:40 | 000,000,469 | ---- | C] () -- C:\Users\Michael\Documents\Of Mice and Men Actor Info.rtf
[2014-09-18 10:59:44 | 000,000,288 | ---- | C] () -- C:\Users\Michael\Documents\SS notes 18th.rtf
[2014-09-18 08:28:36 | 000,387,391 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2014-09-17 08:20:02 | 000,001,052 | ---- | C] () -- C:\Users\Public\Desktop\MCShield Real-Time Monitor.lnk
[2014-09-16 12:36:38 | 000,002,263 | ---- | C] () -- C:\Users\Michael\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014-09-16 12:36:38 | 000,002,167 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014-09-16 12:36:15 | 000,000,924 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014-09-16 12:36:14 | 000,000,920 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014-09-16 11:09:34 | 000,000,250 | ---- | C] () -- C:\Users\Michael\Desktop\RemoveTakeOwnership.reg
[2014-09-16 11:03:40 | 000,001,145 | ---- | C] () -- C:\Users\Michael\Documents\Social Studies Notes.rtf
[2014-09-15 12:57:54 | 000,001,154 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
[2014-09-15 12:57:54 | 000,001,142 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 9.lnk
[2014-07-26 13:23:31 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2014-07-24 10:07:17 | 000,103,936 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013-11-13 12:35:38 | 000,280,064 | ---- | C] () -- C:\Windows\SysWow64\igdmd32.dll
[2013-11-13 12:35:32 | 000,182,272 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013-11-13 12:35:30 | 000,142,848 | ---- | C] () -- C:\Windows\SysWow64\igdail32.dll
[2013-08-22 12:36:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2013-08-22 12:36:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2013-08-22 11:46:23 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013-08-22 04:01:23 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013-08-22 00:32:36 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2013-08-21 20:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013-08-21 20:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2013-05-11 21:17:52 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
 
========== ZeroAccess Check ==========
 
[2014-04-10 03:50:50 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014-07-24 12:20:40 | 021,266,336 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014-07-24 10:46:53 | 018,760,328 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013-08-22 06:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013-08-21 23:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013-08-22 06:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2014-07-24 12:50:29 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\.minecraft
[2014-07-25 21:40:41 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\acer
[2014-10-07 08:55:36 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\Audacity
[2014-07-20 15:10:06 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\AVAST Software
[2014-10-12 08:22:36 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\ClassicShell
[2014-09-10 07:43:03 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\NuGet
[2014-09-05 08:51:24 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\Spotify
[2014-09-01 08:20:27 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\TeamViewer
[2014-07-24 12:47:42 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\TS3Client
[2014-10-11 10:42:00 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\uTorrent
[2014-07-21 05:46:02 | 000,000,000 | ---D | M] -- C:\Users\Michael\AppData\Roaming\WildTangent
 
========== Purity Check ==========
 
 
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 220 bytes -> C:\Users\Michael\SkyDrive:ms-properties
 
< End of report >
 
 
If anyone can help. that'd e sweet, thanks. (Yes, I'll remove uTorrent and the torrented file)
 

  • 0

Advertisements


#2
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

Hi Alan1998 and welcome at GeekstoGo!

I'm crooleeck and I'll try to help you. But first please notice that I'm not limitless, I'm not familiar with all software, I don't know everything. However, it has taken me years to learn what I know. I would be glad to help you.

Fight against malware is NOT instantaneous, most infections require several courses of action to completely eradicate. It's also time-consuming, so be patient! We all like to know final result, so if you have since resolved the issues you were originally experiencing, or have received help elsewhere, please post.

I'm currently in trainnig, so please be patient with me.

Note:

  • Please watch this topic.
  • Do exactly - step by step - what I wish for. Don't be afraid! If there's anything you don't understand, stop andask!
  • Please don't run unsupervised tools or fix on your own without my direction - it can be dangerous.

Step 1:
Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system - 64 Bit in your case.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

Step 2:

  • Download aswMBR to your desktop.
  • Double click the aswMBR.exe to run it.
  • Agreed to update.
  • Click the Scan button to start scan.

    aswMBR1.png

 

  • On completion of the scan click Save log, save it to your desktop and post in your next reply

  • 0

#3
Alan1998

Alan1998

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 294 posts

Pretty sure aswMBR shouldn't take 20 minutes to scan. And no issue on the delay. I understand, I am a former GeekU student :)

 

ASWMBR

 

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-10-14 16:37:05
-----------------------------
16:37:05.202    OS Version: Windows x64 6.2.9200 
16:37:05.203    Number of processors: 4 586 0x4501
16:37:05.204    ComputerName: MIKE-SCHOOL  UserName: Michael
16:37:08.673    Initialize success
16:37:08.673    VM: initialized successfully
16:37:08.696    VM: Intel CPU supported virtualizedSuspended 
16:37:10.778    VM: supported disk I/O storport.sys
16:37:14.902    AVAST engine defs: 14101400
16:41:16.369    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000031
16:41:16.375    Disk 0 Vendor: ST500LT012-9WS142 0001SDM1 Size: 476940MB BusType: 11
16:41:16.557    Disk 0 MBR read successfully
16:41:16.562    Disk 0 MBR scan
16:41:16.579    Disk 0 unknown MBR code
16:41:16.586    Disk 0 Partition 1 00     EE          GPT           2097151 MB offset 1
16:41:16.631    Disk 0 scanning C:\Windows\system32\drivers
16:41:32.035    Service scanning
16:42:02.418    Modules scanning
16:42:02.434    Disk 0 trace - called modules:
16:42:02.469    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll storahci.sys 
16:42:02.480    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffe00165ad4060]
16:42:02.489    3 CLASSPNP.SYS[fffff800522fa27b] -> nt!IofCallDriver -> [0xffffe001650c1300]
16:42:02.499    5 ACPI.sys[fffff800514247aa] -> nt!IofCallDriver -> \Device\00000031[0xffffe001650bf720]
16:42:03.761    AVAST engine scan C:\Windows
16:42:08.032    AVAST engine scan C:\Windows\system32
16:47:25.328    AVAST engine scan C:\Windows\system32\drivers
16:47:59.987    AVAST engine scan C:\Users\Michael
16:55:55.098    AVAST engine scan C:\ProgramData
16:56:56.576    Scan finished successfully
16:58:13.437    Disk 0 MBR has been saved successfully to "C:\Users\Michael\Desktop\MBR.dat"
16:58:13.451    The log file has been saved successfully to "C:\Users\Michael\Desktop\aswMBR.txt"
 
 
 
FRST
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-10-2014 02
Ran by Michael (administrator) on MIKE-SCHOOL on 14-10-2014 16:37:37
Running from C:\Users\Michael\Desktop
Loaded Profile: Michael (Available profiles: Michael)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
(MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(OldTimer Tools) C:\Users\Michael\Downloads\OTL.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Users\Michael\Desktop\aswMBR.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890056 2013-09-06] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-14] (AVAST Software)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [62208 2014-09-22] (Acer Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Qualcomm®Atheros®))
HKU\S-1-5-21-793078676-4060340128-668272483-1001\...\Run: [AcerPortal] => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2580224 2014-08-21] (Acer)
HKU\S-1-5-21-793078676-4060340128-668272483-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\MCShieldRTM.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-793078676-4060340128-668272483-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [ACloudSyncedRF] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudSyncedSF] -> {5D5F18B7-D59B-4B18-A3E9-0A4BDCCCB699} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll (Acer Incorporated)
ShellIconOverlayIdentifiers: [ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll (Acer Incorporated)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM - DefaultScope {E855225E-C318-473F-AF01-6027BDDB4B9C} URL = http://www.bing.com/...=IE10TR&pc=ACJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://ca.yhs4.searc...p={searchTerms}
SearchScopes: HKLM - {E855225E-C318-473F-AF01-6027BDDB4B9C} URL = http://www.bing.com/...=IE10TR&pc=ACJB
SearchScopes: HKLM-x32 - DefaultScope {E855225E-C318-473F-AF01-6027BDDB4B9C} URL = http://www.bing.com/...=IE10TR&pc=ACJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://ca.yhs4.searc...p={searchTerms}
SearchScopes: HKLM-x32 - {E855225E-C318-473F-AF01-6027BDDB4B9C} URL = http://www.bing.com/...=IE10TR&pc=ACJB
SearchScopes: HKCU - DefaultScope {E855225E-C318-473F-AF01-6027BDDB4B9C} URL = 
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://ca.yhs4.searc...p={searchTerms}
SearchScopes: HKCU - {E855225E-C318-473F-AF01-6027BDDB4B9C} URL = 
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} -  No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} -  No File
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} -  No File
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} -  No File
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} -  No File
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} -  No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 142.166.166.166
 
FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/SAFFPlugin -> C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pokki.com/PokkiDownloadHelper -> C:\Users\Michael\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki)
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-20]
 
Chrome: 
=======
CHR Profile: C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-16]
CHR Extension: (Google Docs) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-16]
CHR Extension: (Google Drive) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-16]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-16]
CHR Extension: (YouTube) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-16]
CHR Extension: (Google Search) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-16]
CHR Extension: (Google Sheets) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-16]
CHR Extension: (AdBlock) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-17]
CHR Extension: (avast! Online Security) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-16]
CHR Extension: (Google Wallet) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-16]
CHR Extension: (Gmail) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-16]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx []
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-20]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 0243061405931751mcinstcleanup; C:\Windows\TEMP\024306~1.EXE [834664 2013-07-12] (McAfee, Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows ® Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-20] (AVAST Software)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3097856 2014-09-22] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101192 2013-09-06] (ELAN Microelectronics Corp.)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-21] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-02] (Acer Incorporate)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-21] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation)
R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [111208 2014-10-14] (RaMMicHaeL)
S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)
S3 McAWFwk; c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-20] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-20] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-16] (Qualcomm Atheros Communications, Inc.)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-10-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
S3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
U3 aswMBR; \??\C:\Users\Michael\AppData\Local\Temp\aswMBR.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-14 16:37 - 2014-10-14 16:38 - 00019420 _____ () C:\Users\Michael\Desktop\FRST.txt
2014-10-14 16:37 - 2014-10-14 16:37 - 00000000 ____D () C:\FRST
2014-10-14 16:36 - 2014-10-14 16:36 - 05185536 _____ (AVAST Software) C:\Users\Michael\Downloads\aswMBR.exe
2014-10-14 16:36 - 2014-10-14 16:36 - 05185536 _____ (AVAST Software) C:\Users\Michael\Desktop\aswMBR.exe
2014-10-14 16:36 - 2014-10-14 16:36 - 02110464 _____ (Farbar) C:\Users\Michael\Downloads\FRST64.exe
2014-10-14 16:36 - 2014-10-14 16:36 - 02110464 _____ (Farbar) C:\Users\Michael\Desktop\FRST64.exe
2014-10-14 13:01 - 2014-10-14 13:02 - 26901056 _____ (SMART Technologies) C:\Users\Michael\Downloads\smartesi2014septweb.exe
2014-10-14 08:34 - 2014-10-14 08:34 - 00602112 _____ (OldTimer Tools) C:\Users\Michael\Downloads\OTL.exe
2014-10-14 08:22 - 2014-10-14 08:22 - 00000000 ____D () C:\Users\Michael\abBox
2014-10-12 08:19 - 2014-10-12 08:19 - 00040863 _____ () C:\Users\Michael\Downloads\chat_with_savita.txt
2014-10-11 17:14 - 2014-10-11 17:14 - 00146302 _____ () C:\Users\Michael\Downloads\FRST (2).txt
2014-10-11 17:14 - 2014-10-11 17:14 - 00002300 _____ () C:\Users\Michael\Downloads\aswMBR (1).txt
2014-10-11 14:32 - 2014-10-11 14:32 - 00063866 _____ () C:\Users\Michael\Downloads\FRST (1).txt
2014-10-11 09:21 - 2014-10-11 09:21 - 01690704 _____ (BitTorrent Inc.) C:\Users\Michael\Downloads\uTorrent.exe
2014-10-11 09:20 - 2014-10-11 09:20 - 00021055 _____ () C:\Users\Michael\Downloads\The.Avengers..1080p.BluRay.AAC.x264-ETRG.torrent
2014-10-10 14:09 - 2014-10-10 14:09 - 00000721 _____ () C:\Users\Michael\Desktop\AutoEvony2.swf - Shortcut.lnk
2014-10-07 08:52 - 2014-10-07 08:53 - 00000000 ____D () C:\Users\Michael\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2014-10-07 08:52 - 2014-10-07 08:52 - 00002544 _____ () C:\Users\Michael\Desktop\Windows 7 USB DVD Download Tool.lnk
2014-10-07 08:52 - 2014-10-07 08:52 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2014-10-07 08:51 - 2014-10-07 08:51 - 02721168 _____ (Microsoft Corporation) C:\Users\Michael\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US.exe
2014-10-06 11:01 - 2014-10-06 11:01 - 00244769 _____ () C:\Users\Michael\Desktop\MICHAEL-PC.txt
2014-10-06 10:49 - 2014-10-06 10:49 - 00042120 _____ () C:\Users\Michael\Desktop\DxDiag.txt
2014-10-06 08:30 - 2014-10-06 08:36 - 4100497408 _____ () C:\Users\Michael\Downloads\WindowsTechnicalPreview-x64-EN-US.iso
2014-10-02 12:01 - 2014-10-02 12:02 - 00001961 _____ () C:\Users\Public\Desktop\abMedia.lnk
2014-10-02 11:58 - 2014-10-02 12:00 - 00707354 _____ () C:\Windows\unins000.exe
2014-10-02 11:58 - 2014-10-02 12:00 - 00002590 _____ () C:\Windows\unins000.dat
2014-10-02 11:58 - 2014-10-02 12:00 - 00000000 ____D () C:\Windows\SysWOW64\GPBAK
2014-10-02 11:58 - 2011-04-09 11:44 - 00901344 _____ (Richard ) C:\Users\Michael\Downloads\setup.exe
2014-10-02 11:58 - 2008-04-14 02:11 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll
2014-10-02 11:58 - 2001-08-23 13:00 - 00034871 _____ () C:\Windows\SysWOW64\gpedit.msc
2014-10-02 11:57 - 2014-10-02 11:57 - 00875012 _____ () C:\Users\Michael\Downloads\add_gpedit_msc_by_jwils876-d3kh6vm.zip
2014-09-29 12:48 - 2014-10-07 08:55 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Audacity
2014-09-29 12:48 - 2014-09-29 12:48 - 00000995 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-09-29 12:48 - 2014-09-29 12:48 - 00000983 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-09-29 12:47 - 2014-09-29 12:48 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-09-29 12:45 - 2014-09-29 12:46 - 22180353 _____ (Audacity Team ) C:\Users\Michael\Downloads\audacity-win-2.0.5.exe
2014-09-25 10:00 - 2014-09-25 10:00 - 00010206 _____ () C:\Users\Michael\Downloads\MCShield-AllScans.txt
2014-09-25 10:00 - 2014-09-25 10:00 - 00001043 _____ () C:\Users\Michael\Downloads\mbam.txt
2014-09-24 13:03 - 2014-09-24 13:03 - 01057574 _____ () C:\Users\Michael\Downloads\AutoEvony2.swf
2014-09-24 12:42 - 2014-09-24 12:42 - 01151176 _____ () C:\Users\Michael\Downloads\ageII-release.zip
2014-09-20 22:41 - 2014-09-20 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-20 22:40 - 2014-09-20 22:41 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-09-18 08:32 - 2014-08-23 04:48 - 02374784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-09-18 08:32 - 2014-08-23 04:13 - 02084520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-09-18 08:32 - 2014-08-23 03:10 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-09-18 08:32 - 2014-08-23 02:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-09-18 08:32 - 2014-08-23 01:44 - 02860032 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-09-18 08:32 - 2014-08-23 01:34 - 13423104 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-09-18 08:32 - 2014-08-23 01:33 - 00796672 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-09-18 08:32 - 2014-08-23 01:31 - 01038336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-09-18 08:32 - 2014-08-23 01:20 - 11818496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-09-18 08:31 - 2014-07-29 22:56 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-09-18 08:31 - 2014-07-29 02:22 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2014-09-18 08:29 - 2014-07-24 12:28 - 00280384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-09-18 08:29 - 2014-07-24 11:57 - 00475968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-09-18 08:29 - 2014-07-24 08:44 - 00674816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-09-18 08:29 - 2014-07-24 08:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-09-18 08:29 - 2014-07-24 08:22 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2014-09-18 08:29 - 2014-07-24 08:05 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-09-18 08:29 - 2014-07-24 07:10 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-09-18 08:29 - 2014-07-24 06:11 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-09-18 08:29 - 2014-07-24 06:04 - 00183808 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2014-09-18 08:29 - 2014-07-24 05:53 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2014-09-18 08:29 - 2014-07-24 05:47 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2014-09-18 08:29 - 2014-07-24 04:43 - 00200192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2014-09-18 08:29 - 2014-07-12 02:23 - 00436224 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-09-18 08:29 - 2014-07-12 01:33 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-09-18 08:29 - 2014-06-27 03:22 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-09-18 08:29 - 2014-06-18 23:13 - 00310080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-09-18 08:29 - 2014-05-10 05:46 - 00335680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2014-09-18 08:28 - 2014-07-24 12:28 - 00468288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-09-18 08:28 - 2014-07-24 12:28 - 00419648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-09-18 08:28 - 2014-07-24 12:28 - 00412992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-09-18 08:28 - 2014-07-24 12:28 - 00143680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-09-18 08:28 - 2014-07-24 12:23 - 00125472 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-09-18 08:28 - 2014-07-24 12:16 - 00211216 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2014-09-18 08:28 - 2014-07-24 12:03 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-09-18 08:28 - 2014-07-24 12:03 - 00233888 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-09-18 08:28 - 2014-07-24 12:03 - 00205512 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2014-09-18 08:28 - 2014-07-24 10:50 - 00098048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2014-09-18 08:28 - 2014-07-24 10:48 - 00180208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe
2014-09-18 08:28 - 2014-07-24 10:36 - 00674512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-09-18 08:28 - 2014-07-24 10:36 - 00355800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-09-18 08:28 - 2014-07-24 10:36 - 00180720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2014-09-18 08:28 - 2014-07-24 08:51 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDRUM.DLL
2014-09-18 08:28 - 2014-07-24 08:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-09-18 08:28 - 2014-07-24 08:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTT102.DLL
2014-09-18 08:28 - 2014-07-24 08:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-09-18 08:28 - 2014-07-24 08:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-09-18 08:28 - 2014-07-24 08:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-09-18 08:28 - 2014-07-24 08:51 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-09-18 08:28 - 2014-07-24 08:47 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-09-18 08:28 - 2014-07-24 08:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-09-18 08:28 - 2014-07-24 08:45 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-09-18 08:28 - 2014-07-24 08:42 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-09-18 08:28 - 2014-07-24 08:42 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NdisImPlatform.sys
2014-09-18 08:28 - 2014-07-24 08:41 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2014-09-18 08:28 - 2014-07-24 08:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2014-09-18 08:28 - 2014-07-24 08:33 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-09-18 08:28 - 2014-07-24 08:33 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-09-18 08:28 - 2014-07-24 08:06 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2014-09-18 08:28 - 2014-07-24 08:05 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2014-09-18 08:28 - 2014-07-24 07:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-09-18 08:28 - 2014-07-24 07:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTT102.DLL
2014-09-18 08:28 - 2014-07-24 07:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-09-18 08:28 - 2014-07-24 07:51 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRUM.DLL
2014-09-18 08:28 - 2014-07-24 07:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-09-18 08:28 - 2014-07-24 07:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-09-18 08:28 - 2014-07-24 07:51 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-09-18 08:28 - 2014-07-24 07:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2014-09-18 08:28 - 2014-07-24 07:33 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-09-18 08:28 - 2014-07-24 07:32 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2014-09-18 08:28 - 2014-07-24 07:12 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2014-09-18 08:28 - 2014-07-24 07:10 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasnap.dll
2014-09-18 08:28 - 2014-07-24 07:05 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2014-09-18 08:28 - 2014-07-24 06:42 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2014-09-18 08:28 - 2014-07-24 06:40 - 00557056 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2014-09-18 08:28 - 2014-07-24 06:39 - 00770048 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2014-09-18 08:28 - 2014-07-24 06:25 - 00832512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2014-09-18 08:28 - 2014-07-24 06:21 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-09-18 08:28 - 2014-07-24 06:18 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2014-09-18 08:28 - 2014-07-24 06:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2014-09-18 08:28 - 2014-07-24 06:09 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2014-09-18 08:28 - 2014-07-24 06:04 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2014-09-18 08:28 - 2014-07-24 06:03 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-09-18 08:28 - 2014-07-24 06:02 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-09-18 08:28 - 2014-07-24 05:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-09-18 08:28 - 2014-07-24 05:49 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2014-09-18 08:28 - 2014-07-24 05:30 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-09-18 08:28 - 2014-07-24 05:24 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-18 08:28 - 2014-07-24 05:16 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2014-09-18 08:28 - 2014-07-24 05:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-09-18 08:28 - 2014-07-24 05:13 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2014-09-18 08:28 - 2014-07-24 05:10 - 00889344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-09-18 08:28 - 2014-07-24 05:05 - 00448000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2014-09-18 08:28 - 2014-07-24 04:50 - 00923136 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-09-18 08:28 - 2014-07-24 04:49 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2014-09-18 08:28 - 2014-07-24 04:43 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-09-18 08:28 - 2014-07-24 01:11 - 00513544 _____ () C:\Windows\SysWOW64\locale.nls
2014-09-18 08:28 - 2014-07-24 01:11 - 00513544 _____ () C:\Windows\system32\locale.nls
2014-09-18 08:28 - 2014-07-12 02:55 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2014-09-18 08:28 - 2014-07-12 01:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2014-09-18 08:28 - 2014-07-09 20:19 - 00387391 _____ () C:\Windows\system32\ApnDatabase.xml
2014-09-18 08:28 - 2014-07-04 09:59 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-09-18 08:28 - 2014-07-04 07:29 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2014-09-18 08:28 - 2014-07-04 07:20 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-09-18 08:28 - 2014-07-04 07:06 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2014-09-18 08:28 - 2014-07-04 07:00 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-09-18 08:28 - 2014-07-04 06:30 - 00544768 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2014-09-18 08:28 - 2014-07-04 06:27 - 00474112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2014-09-18 08:28 - 2014-06-25 21:29 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2014-09-18 08:28 - 2014-06-19 20:37 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-09-18 08:28 - 2014-06-07 09:46 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2014-09-18 08:28 - 2014-06-07 07:20 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2014-09-18 08:28 - 2014-05-29 02:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-09-18 08:28 - 2014-05-29 01:36 - 00344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-09-18 08:28 - 2014-05-26 04:26 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2014-09-18 08:28 - 2014-03-24 23:27 - 00160600 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2014-09-18 08:28 - 2014-03-24 23:27 - 00123920 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-09-18 08:28 - 2014-03-24 22:20 - 00128568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2014-09-18 08:28 - 2014-03-24 22:20 - 00127544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2014-09-18 08:27 - 2014-08-14 21:36 - 00146752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2014-09-18 08:27 - 2014-07-24 12:25 - 00054752 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-09-18 08:27 - 2014-07-24 12:23 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-09-18 08:27 - 2014-07-24 12:20 - 21266336 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-18 08:27 - 2014-07-24 12:20 - 00645592 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-09-18 08:27 - 2014-07-24 12:20 - 00263400 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-09-18 08:27 - 2014-07-24 12:16 - 02574208 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-09-18 08:27 - 2014-07-24 12:07 - 07424320 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-09-18 08:27 - 2014-07-24 12:07 - 02009920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-09-18 08:27 - 2014-07-24 12:05 - 01660048 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-09-18 08:27 - 2014-07-24 12:05 - 01519560 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-09-18 08:27 - 2014-07-24 12:05 - 01488008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-09-18 08:27 - 2014-07-24 12:05 - 01356840 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-09-18 08:27 - 2014-07-24 12:03 - 02141920 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-09-18 08:27 - 2014-07-24 12:03 - 00882136 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-09-18 08:27 - 2014-07-24 12:03 - 00818624 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-09-18 08:27 - 2014-07-24 11:57 - 02515264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-09-18 08:27 - 2014-07-24 10:48 - 02410976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-09-18 08:27 - 2014-07-24 10:46 - 18760328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-09-18 08:27 - 2014-07-24 10:46 - 00477200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-09-18 08:27 - 2014-07-24 10:36 - 02145472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2014-09-18 08:27 - 2014-07-24 10:36 - 00707536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-09-18 08:27 - 2014-07-24 08:42 - 01200640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-09-18 08:27 - 2014-07-24 07:20 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2014-09-18 08:27 - 2014-07-24 07:18 - 01089024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-09-18 08:27 - 2014-07-24 07:18 - 01089024 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-09-18 08:27 - 2014-07-24 07:10 - 01844224 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-09-18 08:27 - 2014-07-24 07:10 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-09-18 08:27 - 2014-07-24 07:09 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-09-18 08:27 - 2014-07-24 07:06 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2014-09-18 08:27 - 2014-07-24 06:53 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2014-09-18 08:27 - 2014-07-24 06:52 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-09-18 08:27 - 2014-07-24 06:44 - 16874496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-09-18 08:27 - 2014-07-24 06:33 - 01741824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2014-09-18 08:27 - 2014-07-24 06:27 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-09-18 08:27 - 2014-07-24 06:27 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-09-18 08:27 - 2014-07-24 06:24 - 01817088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-09-18 08:27 - 2014-07-24 06:23 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2014-09-18 08:27 - 2014-07-24 06:16 - 12730880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-09-18 08:27 - 2014-07-24 06:14 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-09-18 08:27 - 2014-07-24 06:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2014-09-18 08:27 - 2014-07-24 06:11 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2014-09-18 08:27 - 2014-07-24 06:10 - 00540672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2014-09-18 08:27 - 2014-07-24 05:58 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2014-09-18 08:27 - 2014-07-24 05:53 - 01261056 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-09-18 08:27 - 2014-07-24 05:49 - 01361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-09-18 08:27 - 2014-07-24 05:49 - 01287680 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2014-09-18 08:27 - 2014-07-24 05:48 - 00659968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2014-09-18 08:27 - 2014-07-24 05:43 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2014-09-18 08:27 - 2014-07-24 05:39 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2014-09-18 08:27 - 2014-07-24 05:38 - 00371200 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-09-18 08:27 - 2014-07-24 05:36 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2014-09-18 08:27 - 2014-07-24 05:32 - 01532416 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-09-18 08:27 - 2014-07-24 05:29 - 00439296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2014-09-18 08:27 - 2014-07-24 05:28 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2014-09-18 08:27 - 2014-07-24 05:27 - 00907776 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-09-18 08:27 - 2014-07-24 05:23 - 01404416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2014-09-18 08:27 - 2014-07-24 05:22 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-09-18 08:27 - 2014-07-24 05:21 - 01231872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-09-18 08:27 - 2014-07-24 05:21 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-09-18 08:27 - 2014-07-24 05:20 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2014-09-18 08:27 - 2014-07-24 05:19 - 00388608 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-09-18 08:27 - 2014-07-24 05:18 - 01144320 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2014-09-18 08:27 - 2014-07-24 05:18 - 00795136 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-09-18 08:27 - 2014-07-24 05:18 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-09-18 08:27 - 2014-07-24 05:15 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-09-18 08:27 - 2014-07-24 05:15 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2014-09-18 08:27 - 2014-07-24 05:15 - 00432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2014-09-18 08:27 - 2014-07-24 05:12 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-18 08:27 - 2014-07-24 05:10 - 01029632 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-09-18 08:27 - 2014-07-24 05:10 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-09-18 08:27 - 2014-07-24 05:10 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2014-09-18 08:27 - 2014-07-24 05:08 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-09-18 08:27 - 2014-07-24 05:08 - 00162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2014-09-18 08:27 - 2014-07-24 05:07 - 01705472 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-09-18 08:27 - 2014-07-24 05:06 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-09-18 08:27 - 2014-07-24 05:04 - 00667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-09-18 08:27 - 2014-07-24 05:02 - 03465216 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-09-18 08:27 - 2014-07-24 05:01 - 05833216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-09-18 08:27 - 2014-07-24 05:01 - 01992192 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-09-18 08:27 - 2014-07-24 05:01 - 01126912 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-09-18 08:27 - 2014-07-24 05:00 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-09-18 08:27 - 2014-07-24 04:58 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2014-09-18 08:27 - 2014-07-24 04:58 - 00288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2014-09-18 08:27 - 2014-07-24 04:54 - 01290752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-09-18 08:27 - 2014-07-24 04:50 - 01182208 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-09-18 08:27 - 2014-07-24 04:47 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2014-09-18 08:27 - 2014-07-24 04:46 - 08652800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-09-18 08:27 - 2014-07-24 04:44 - 01057792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2014-09-18 08:27 - 2014-07-24 04:43 - 02696704 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-09-18 08:27 - 2014-07-24 04:41 - 00459264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2014-09-18 08:27 - 2014-07-24 04:39 - 02642944 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-18 08:27 - 2014-07-24 04:38 - 06649344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-09-18 08:27 - 2014-07-24 04:38 - 05777408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-09-18 08:27 - 2014-07-24 04:33 - 03360768 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-09-18 08:27 - 2014-07-24 04:30 - 02318336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-09-18 08:27 - 2014-07-24 04:28 - 01600000 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2014-09-18 08:27 - 2014-07-12 01:13 - 01417216 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-18 08:27 - 2014-06-25 21:32 - 01029632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2014-09-18 08:27 - 2014-06-14 03:03 - 02389504 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-18 08:27 - 2014-06-14 02:46 - 02071552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-18 08:27 - 2014-06-05 11:00 - 01118040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-09-18 08:27 - 2014-06-05 07:18 - 01018368 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-09-18 08:27 - 2014-06-05 06:42 - 00889856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2014-09-18 08:27 - 2014-05-31 02:00 - 01463808 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2014-09-18 08:27 - 2014-05-31 01:18 - 01319936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2014-09-18 08:27 - 2014-05-29 03:23 - 00427008 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-09-18 08:27 - 2014-05-29 02:25 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-09-18 08:27 - 2014-05-10 07:12 - 00387896 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2014-09-18 08:27 - 2014-05-06 01:41 - 00486744 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-09-18 08:27 - 2014-05-05 21:55 - 00391000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-09-17 08:20 - 2014-09-17 08:20 - 00001052 _____ () C:\Users\Public\Desktop\MCShield Real-Time Monitor.lnk
2014-09-17 08:19 - 2014-10-14 08:23 - 00000000 ____D () C:\ProgramData\MCShield
2014-09-17 08:19 - 2014-09-17 08:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield
2014-09-17 08:19 - 2014-09-17 08:19 - 00000000 ____D () C:\Program Files (x86)\MCShield
2014-09-17 08:01 - 2014-09-17 08:01 - 00001934 _____ () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\More Great Games.lnk
2014-09-17 08:01 - 2014-09-17 08:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Feudalism 2
2014-09-17 08:01 - 2014-09-17 08:01 - 00000000 ____D () C:\Program Files (x86)\Feudalism2_at
2014-09-17 07:59 - 2014-09-17 08:01 - 02086472 _____ (ArcadeTown ) C:\Users\Michael\Downloads\feudalism2_at.exe
2014-09-16 12:36 - 2014-10-14 12:41 - 00002167 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-16 12:36 - 2014-10-14 12:41 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-16 12:36 - 2014-10-14 12:41 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-16 12:36 - 2014-09-16 12:36 - 00003896 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-09-16 12:36 - 2014-09-16 12:36 - 00003660 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-09-16 12:36 - 2014-09-16 12:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-16 11:09 - 2007-05-07 00:05 - 00000250 _____ () C:\Users\Michael\Desktop\RemoveTakeOwnership.reg
2014-09-15 13:09 - 2014-10-11 09:22 - 00000000 ____D () C:\ProgramData\Unchecky
2014-09-15 12:57 - 2014-09-15 12:57 - 00001154 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-09-15 12:57 - 2014-09-15 12:57 - 00001142 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-09-15 12:57 - 2014-09-15 12:57 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2021-10-21 10:36 - 2014-04-10 03:29 - 00000852 _____ () C:\Windows\system32\Drivers\RTKHDRC.dat
2021-10-04 04:34 - 2014-04-10 03:29 - 00000712 _____ () C:\Windows\system32\Drivers\RTMICEQ0.dat
2014-10-14 16:37 - 2014-07-21 05:39 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{D8A16E03-9657-4946-AF85-8D7412555D5F}
2014-10-14 16:37 - 2014-07-20 14:47 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Skype
2014-10-14 16:35 - 2014-09-11 12:05 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\ClassicShell
2014-10-14 16:35 - 2014-07-31 20:17 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\uTorrent
2014-10-14 15:02 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\system32\sru
2014-10-14 12:57 - 2014-04-10 03:02 - 01228133 _____ () C:\Windows\WindowsUpdate.log
2014-10-14 12:46 - 2014-07-21 05:41 - 00003594 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-793078676-4060340128-668272483-1001
2014-10-14 08:45 - 2014-07-20 15:21 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-14 08:41 - 2014-07-26 12:51 - 00000000 ____D () C:\Users\Michael\AppData\Local\CrashDumps
2014-10-14 08:25 - 2014-07-21 05:38 - 00000000 ___DO () C:\Users\Michael\SkyDrive
2014-10-14 08:23 - 2014-07-20 14:57 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-10-14 08:22 - 2014-07-21 05:33 - 00000000 ____D () C:\Users\Michael
2014-10-14 08:21 - 2013-08-22 11:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-14 08:18 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-10-11 16:51 - 2013-10-31 08:23 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-11 12:48 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-11 12:16 - 2014-07-21 05:37 - 00000000 ____D () C:\Users\Michael\AppData\Local\clear.fi
2014-10-11 10:53 - 2013-10-31 08:16 - 00061108 _____ () C:\Windows\PFRO.log
2014-10-10 14:10 - 2013-08-22 11:46 - 00022104 _____ () C:\Windows\setupact.log
2014-10-07 09:02 - 2014-09-04 16:02 - 00000000 ____D () C:\Users\Michael\Documents\Bluetooth Folder
2014-10-04 18:06 - 2014-09-10 07:41 - 00000000 ____D () C:\Users\Michael\Documents\Visual Studio 2013
2014-10-02 12:02 - 2013-10-31 08:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2014-10-02 12:02 - 2013-10-31 08:35 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-10-02 11:58 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-10-02 11:53 - 2013-08-22 10:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-10-02 11:03 - 2014-09-04 10:17 - 00000000 ___HD () C:\Users\Michael\Desktop\Notes Social Studies
2014-09-29 08:13 - 2013-08-22 12:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-09-25 08:25 - 2013-08-22 11:44 - 00337840 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-20 22:41 - 2014-07-20 14:47 - 00002531 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-09-20 22:41 - 2014-07-20 14:47 - 00000000 ____D () C:\ProgramData\Skype
2014-09-19 08:30 - 2014-07-21 05:35 - 00000000 ____D () C:\Users\Michael\AppData\Local\Packages
2014-09-18 11:23 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\rescache
2014-09-18 10:53 - 2013-08-22 16:11 - 00000000 ____D () C:\Program Files\Windows Journal
2014-09-18 10:53 - 2013-08-22 12:36 - 00000000 ___RD () C:\Windows\ToastData
2014-09-18 10:53 - 2013-08-22 12:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-09-18 10:53 - 2013-08-22 12:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-09-18 10:53 - 2013-08-22 12:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-09-18 10:53 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\WinStore
2014-09-18 10:53 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\SysWOW64\setup
2014-09-18 10:53 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\SysWOW64\InputMethod
2014-09-18 10:53 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\system32\setup
2014-09-18 10:53 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\system32\oobe
2014-09-16 12:36 - 2014-07-20 14:53 - 00000000 ____D () C:\Users\Michael\AppData\Local\Google
2014-09-16 12:36 - 2014-07-20 14:53 - 00000000 ____D () C:\Program Files (x86)\Google
2014-09-15 07:55 - 2014-07-21 05:33 - 00000000 ____D () C:\Users\Michael\AppData\Local\Pokki
 
Some content of TEMP:
====================
C:\Users\Michael\AppData\Local\Temp\oct8958.tmp.exe
C:\Users\Michael\AppData\Local\Temp\oct9D0F.tmp.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-10-01 12:37
 
==================== End Of Log ============================
 
 
 
ADDITION
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2014 02
Ran by Michael at 2014-10-14 16:39:38
Running from C:\Users\Michael\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.04.3005 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.01.2002 - Acer Incorporated)
abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.05.2008.6 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.00.2013.0 - Acer Incorporated)
Acer Games (HKCU\...\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf) (Version: 1.1.9.43466 - Pokki)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8101 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.01.2014 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8100 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8100 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.00.3007 - Acer Incorporated)
Amazon 1Button App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.4 - Amazon)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.02.2002.1 - Acer Incorporated)
Apple Application Support (HKLM-x32\...\{A83279FD-CA4B-4206-9535-90974DE76654}) (Version: 2.1.5 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden
Broadcom Card Reader Driver Installer (HKLM\...\{67AA948F-8D83-4566-B84A-7CAABCF64E3F}) (Version: 16.0.2.8 - Broadcom Corporation)
Broadcom NetLink Controller (HKLM\...\{D1D7ED66-5C08-40A0-AEC0-B6DF977697BB}) (Version: 16.2.1.2 - Broadcom Corporation)
Build Tools - amd64 (Version: 12.0.30723 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.30723 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
Entity Framework 6.1.1 Tools  for Visual Studio 2013 (HKLM-x32\...\{85253F13-EE42-4850-A3A5-79B90E92D7AC}) (Version: 12.0.30610.0 - Microsoft Corporation)
ETDWare PS/2-X64 11.6.27.201_WHQL (HKLM\...\Elantech) (Version: 11.6.27.201 - ELAN Microelectronic Corp.)
Feudalism 2 (HKLM-x32\...\Feudalism 2_is1) (Version:  - Vitaly Zaborov)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version:  - Richard)
Host App Service (HKCU\...\Pokki) (Version: 0.269.3.181 - Pokki)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3355 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217065FF}) (Version: 7.0.650 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MCShield ::Anti-Malware Tool:: (HKLM-x32\...\MCShield) (Version: 3.0.5.28 - MyCity)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Azure Shared Components for Visual Studio 2013 - v1.2 (x32 Version: 1.2.20710.1601 - Microsoft Corporation) Hidden
Microsoft C++ Azure Mobile SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft C++ REST SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (x32 Version: 2.1.21005 - Microsoft Corporation) Hidden
Microsoft NuGet - Visual Studio Express 2013 for Windows Desktop (x32 Version: 2.8.50313.46 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Portable Library Multi-Targeting Pack (x32 Version: 12.0.30501.00 - Microsoft Corporation) Hidden
Microsoft Report Viewer Add-On for Visual Studio 2013 (x32 Version: 11.1.3442.2 - Microsoft Corporation) Hidden
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.30919.1) (HKLM-x32\...\{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft Team Foundation Server 2013 Update 3 Object Model (x64) (Version: 12.0.30723 - Microsoft Corporation) Hidden
Microsoft Team Foundation Server 2013 Update 3 Object Model Language Pack (x64) - ENU (Version: 12.0.30723 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x86 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 32bit Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Core Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86-x64 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Diagnostic Tools - amd64 (Version: 12.0.30723 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Diagnostic Tools - x86 (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Express Prerequisites x64 - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Preparation (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 XAML UI Designer - ENU (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 XAML UI Designer (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden
Microsoft Visual Studio Express 2013 for Windows Desktop - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Express 2013 for Windows Desktop - ENU with Update 3 (HKLM-x32\...\{1ef771b4-b774-439e-a015-23dec292d9a4}) (Version: 12.0.30723.0 - Microsoft Corporation)
Microsoft Visual Studio Express 2013 for Windows Desktop (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Nero BackItUp (x32 Version: 12.5.11000 - Nero AG) Hidden
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
Nero BackItUp Help (CHM) (x32 Version: 12.0.13000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15900 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20900 - Nero AG) Hidden
Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
Oracle VM VirtualBox 4.3.16 (HKLM\...\{D7FAEA32-7CE3-4D9F-9139-F7B87BCC50AF}) (Version: 4.3.16 - Oracle Corporation)
Pokki Download Helper (HKCU\...\PokkiDownloadHelper) (Version: 1.3.1.282 - Pokki)
Pokki Start Menu (HKCU\...\Pokki_Start_Menu) (Version: 0.269.3.181 - )
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Python Tools Redirection Template (x32 Version: 1.0 - Microsoft Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros)
QuickTime (HKLM-x32\...\{7BE15435-2D3E-4B58-867F-9C75BED0208C}) (Version: 7.71.80.42 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.)
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
TypeScript Power Tool (x32 Version: 1.0.3.1 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.3.1 - Microsoft Corporation) Hidden
Unchecky v0.3.2 (HKLM-x32\...\Unchecky) (Version: 0.3.2 - RaMMicHaeL)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio 2013 Update 3 (KB2829760) (HKLM-x32\...\{86438e3d-7f83-4dd2-94aa-047e7c3974cb}) (Version: 12.0.30723 - Microsoft Corporation)
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 2.1.30723.00 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VS Update core components (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Software Development Kit (x32 Version: 8.100.26831 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.100.26831 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.100.26831 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.100.26831 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
WinRAR 5.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
11-09-2014 15:03:25 Installed Classic Shell
17-09-2014 11:12:58 Windows Update
29-09-2014 11:11:43 Windows Update
07-10-2014 11:51:49 Installed Windows 7 USB/DVD Download Tool
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 10:25 - 2014-10-14 08:33 - 00003164 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com
 
There are 4 more lines.
 
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {06AE924B-ABA8-42BD-9DEB-771E26A8D5EC} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-793078676-4060340128-668272483-1001
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0E1484B6-E132-4A19-8ABA-311DA360875B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-16] (Google Inc.)
Task: {11CA166C-27E2-4FF9-B32C-2FADF6CBF7BA} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {1562DA83-1FDC-4F03-B10F-96A276BAAD91} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] ()
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {21C05B46-863E-4C13-A7FD-00E904C76DBB} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2F59BBE6-D326-4C9D-8B5D-D8A0B92A09AD} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3A93336C-435A-4797-9EFC-F5148CDE2F4C} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-08-02] (Acer Incorporate)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {44A09333-4C98-4796-BB2C-BAA0B0026EDD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-09-12] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4B8AEE47-785B-4EE0-811B-EC782CF951AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-16] (Google Inc.)
Task: {64D9A3F5-15E7-4A95-8999-1FF6EF64F9DD} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2014-08-21] (Acer)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {749AAA83-65D8-409A-9895-6D8A2110C5CF} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-05] (Acer Incorporated)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {85CCECA8-B7D8-4112-A281-3ABA9C5F87A7} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8A2D3200-BE61-4953-9F58-168252E84FAA} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A8FD451C-E305-40EE-8D1D-53B43DC6AADD} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-07-10] (Acer Incorporated)
Task: {B1464951-BA5C-44E2-98DF-30416287F8CF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-20] (AVAST Software)
Task: {B67CCEBE-892C-4DF2-9454-5450C6D184A7} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {C3C2E9DD-69FA-4DB4-BA3C-7E7201552D44} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C6B98FC2-2760-47DC-ACA6-0CFDA4699703} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-04-10 03:48 - 2013-07-30 22:11 - 00110152 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2013-09-07 05:48 - 2013-09-07 05:48 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-09-07 05:45 - 2013-09-07 05:45 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2013-09-07 05:52 - 2013-09-07 05:52 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2014-07-20 14:57 - 2014-07-20 14:57 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-10-10 07:21 - 2014-10-10 07:21 - 02859008 _____ () C:\Program Files\AVAST Software\Avast\defs\14100901\algo.dll
2014-10-14 08:23 - 2014-10-14 08:23 - 02873856 _____ () C:\Program Files\AVAST Software\Avast\defs\14101400\algo.dll
2014-08-21 22:13 - 2014-08-21 22:13 - 00203008 _____ () C:\Program Files (x86)\Acer\Acer Portal\curllib.dll
2014-08-21 22:13 - 2014-08-21 22:13 - 00119552 _____ () C:\Program Files (x86)\Acer\Acer Portal\OpenLDAP.dll
2014-07-20 14:57 - 2014-07-20 14:57 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-10-02 12:01 - 2014-10-02 12:01 - 00015616 _____ () C:\Windows\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll
2014-09-22 16:03 - 2014-09-22 16:03 - 00013568 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll
2014-08-20 17:45 - 2014-08-20 17:45 - 00279296 _____ () C:\Program Files (x86)\Acer\abDocs\libcurl.dll
2014-09-16 10:15 - 2014-09-16 10:15 - 00203008 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll
2014-09-16 10:16 - 2014-09-16 10:16 - 00630528 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll
2014-09-16 10:16 - 2014-09-16 10:16 - 00654552 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll
2014-09-16 10:16 - 2014-09-16 10:16 - 00119552 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll
2014-04-10 03:23 - 2013-09-03 20:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2014-04-10 03:48 - 2013-07-30 22:11 - 00088648 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
2014-09-26 07:47 - 2014-09-23 01:06 - 01098056 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libglesv2.dll
2014-09-26 07:47 - 2014-09-23 01:06 - 00174408 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libegl.dll
2014-09-26 07:47 - 2014-09-23 01:07 - 08577864 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\pdf.dll
2014-09-26 07:47 - 2014-09-23 01:07 - 00331592 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll
2014-09-26 07:47 - 2014-09-23 01:06 - 01660232 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Users\Michael\SkyDrive:ms-properties
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKCU\...\StartupApproved\Run: => "uTorrent"
HKCU\...\StartupApproved\Run: => "AcerCloud"
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-793078676-4060340128-668272483-500 - Administrator - Disabled)
Guest (S-1-5-21-793078676-4060340128-668272483-501 - Limited - Disabled)
Michael (S-1-5-21-793078676-4060340128-668272483-1001 - Administrator - Enabled) => C:\Users\Michael
 
==================== Faulty Device Manager Devices =============
 
Name: Microsoft Visual Studio Location Simulator Sensor
Description: Microsoft Visual Studio Location Simulator Sensor
Class Guid: {5175d334-c371-4806-b3ba-71fd53c9258d}
Manufacturer: Microsoft Corporation
Service: SensorsSimulatorDriver
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/14/2014 08:41:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: BackgroundAgent.exe, version: 1.0.1.6, time stamp: 0x541fd7d6
Faulting module name: MSVCR90.dll, version: 9.0.30729.8387, time stamp: 0x51ea24a5
Exception code: 0xc0000005
Fault offset: 0x00056b1d
Faulting process id: 0x14dc
Faulting application start time: 0xBackgroundAgent.exe0
Faulting application path: BackgroundAgent.exe1
Faulting module path: BackgroundAgent.exe2
Report Id: BackgroundAgent.exe3
Faulting package full name: BackgroundAgent.exe4
Faulting package-relative application ID: BackgroundAgent.exe5
 
Error: (10/14/2014 08:22:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 024306~1.EXE, version: 7.8.113.0, time stamp: 0x51e05b9a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x5c4
Faulting application start time: 0x024306~1.EXE0
Faulting application path: 024306~1.EXE1
Faulting module path: 024306~1.EXE2
Report Id: 024306~1.EXE3
Faulting package full name: 024306~1.EXE4
Faulting package-relative application ID: 024306~1.EXE5
 
Error: (10/11/2014 02:30:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: delegate_execute.exe, version: 37.0.2062.124, time stamp: 0x5420d4c7
Faulting module name: delegate_execute.exe, version: 37.0.2062.124, time stamp: 0x5420d4c7
Exception code: 0xc0000005
Fault offset: 0x00046237
Faulting process id: 0x16c4
Faulting application start time: 0xdelegate_execute.exe0
Faulting application path: delegate_execute.exe1
Faulting module path: delegate_execute.exe2
Report Id: delegate_execute.exe3
Faulting package full name: delegate_execute.exe4
Faulting package-relative application ID: delegate_execute.exe5
 
Error: (10/11/2014 00:17:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: BackgroundAgent.exe, version: 1.0.1.6, time stamp: 0x541fd7d6
Faulting module name: MSVCR90.dll, version: 9.0.30729.8387, time stamp: 0x51ea24a5
Exception code: 0xc0000005
Fault offset: 0x00056b1d
Faulting process id: 0x108c
Faulting application start time: 0xBackgroundAgent.exe0
Faulting application path: BackgroundAgent.exe1
Faulting module path: BackgroundAgent.exe2
Report Id: BackgroundAgent.exe3
Faulting package full name: BackgroundAgent.exe4
Faulting package-relative application ID: BackgroundAgent.exe5
 
Error: (10/11/2014 00:15:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 024306~1.EXE, version: 7.8.113.0, time stamp: 0x51e05b9a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x5c4
Faulting application start time: 0x024306~1.EXE0
Faulting application path: 024306~1.EXE1
Faulting module path: 024306~1.EXE2
Report Id: 024306~1.EXE3
Faulting package full name: 024306~1.EXE4
Faulting package-relative application ID: 024306~1.EXE5
 
Error: (10/11/2014 10:56:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 024306~1.EXE, version: 7.8.113.0, time stamp: 0x51e05b9a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x5d0
Faulting application start time: 0x024306~1.EXE0
Faulting application path: 024306~1.EXE1
Faulting module path: 024306~1.EXE2
Report Id: 024306~1.EXE3
Faulting package full name: 024306~1.EXE4
Faulting package-relative application ID: 024306~1.EXE5
 
Error: (10/10/2014 07:17:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: BackgroundAgent.exe, version: 1.0.1.6, time stamp: 0x541fd7d6
Faulting module name: MSVCR90.dll, version: 9.0.30729.8387, time stamp: 0x51ea24a5
Exception code: 0xc0000005
Fault offset: 0x00056b1d
Faulting process id: 0x1bc4
Faulting application start time: 0xBackgroundAgent.exe0
Faulting application path: BackgroundAgent.exe1
Faulting module path: BackgroundAgent.exe2
Report Id: BackgroundAgent.exe3
Faulting package full name: BackgroundAgent.exe4
Faulting package-relative application ID: BackgroundAgent.exe5
 
Error: (10/06/2014 08:14:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: BackgroundAgent.exe, version: 1.0.1.6, time stamp: 0x541fd7d6
Faulting module name: MSVCR90.dll, version: 9.0.30729.8387, time stamp: 0x51ea24a5
Exception code: 0xc0000005
Fault offset: 0x00056b1d
Faulting process id: 0x127c
Faulting application start time: 0xBackgroundAgent.exe0
Faulting application path: BackgroundAgent.exe1
Faulting module path: BackgroundAgent.exe2
Report Id: BackgroundAgent.exe3
Faulting package full name: BackgroundAgent.exe4
Faulting package-relative application ID: BackgroundAgent.exe5
 
Error: (10/06/2014 08:00:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: 024306~1.EXE, version: 7.8.113.0, time stamp: 0x51e05b9a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x610
Faulting application start time: 0x024306~1.EXE0
Faulting application path: 024306~1.EXE1
Faulting module path: 024306~1.EXE2
Report Id: 024306~1.EXE3
Faulting package full name: 024306~1.EXE4
Faulting package-relative application ID: 024306~1.EXE5
 
Error: (10/04/2014 06:41:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program shutdown.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1480
 
Start Time: 01cfe01bc2f18a50
 
Termination Time: 6
 
Application Path: C:\Windows\system32\shutdown.exe
 
Report Id: 22007ba1-4c0f-11e4-8272-142d275a550a
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
 
System errors:
=============
Error: (10/14/2014 08:25:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The McAfee Application Installer Cleanup (0243061405931751) service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (10/14/2014 08:21:21 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:20:56 AM on ‎2014-‎10-‎12 was unexpected.
 
Error: (10/11/2014 01:41:27 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 70. The Windows SChannel error state is 105.
 
Error: (10/11/2014 00:15:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The McAfee Application Installer Cleanup (0243061405931751) service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (10/11/2014 00:14:30 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:56:03 AM on ‎2014-‎10-‎11 was unexpected.
 
Error: (10/11/2014 10:56:55 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The McAfee Application Installer Cleanup (0243061405931751) service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (10/11/2014 10:56:03 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:54:13 AM on ‎2014-‎10-‎11 was unexpected.
 
Error: (10/11/2014 10:54:13 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:16:16 AM on ‎2014-‎10-‎11 was unexpected.
 
Error: (10/09/2014 09:02:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (10/07/2014 08:50:16 PM) (Source: HTTP) (EventID: 15006) (User: )
Description: \Device\Http\ReqQueue\SystemRoot\System32\LogFiles\HTTPERR\httperr1.log
 
 
Microsoft Office Sessions:
=========================
Error: (10/14/2014 08:41:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: BackgroundAgent.exe1.0.1.6541fd7d6MSVCR90.dll9.0.30729.838751ea24a5c000000500056b1d14dc01cfe7a13ea372a7C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exeC:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\MSVCR90.dll12a5d4be-5397-11e4-8277-f8a9630a6807
 
Error: (10/14/2014 08:22:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: 024306~1.EXE7.8.113.051e05b9aunknown0.0.0.000000000c0000005000000005c401cfe7a108fb17dbC:\Windows\TEMP\024306~1.EXEunknown50cc2aae-5394-11e4-8277-142d275a5509
 
Error: (10/11/2014 02:30:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: delegate_execute.exe37.0.2062.1245420d4c7delegate_execute.exe37.0.2062.1245420d4c7c00000050004623716c401cfe5791ca2e1e9C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\delegate_execute.exeC:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\delegate_execute.exe5aac6911-516c-11e4-8276-f8a9630a6807
 
Error: (10/11/2014 00:17:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: BackgroundAgent.exe1.0.1.6541fd7d6MSVCR90.dll9.0.30729.838751ea24a5c000000500056b1d108c01cfe5664d8b19e2C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exeC:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\MSVCR90.dllc3fcbe39-5159-11e4-8276-f8a9630a6807
 
Error: (10/11/2014 00:15:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 024306~1.EXE7.8.113.051e05b9aunknown0.0.0.000000000c0000005000000005c401cfe5661add96f9C:\Windows\TEMP\024306~1.EXEunknown602fad46-5159-11e4-8276-142d275a5509
 
Error: (10/11/2014 10:56:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: 024306~1.EXE7.8.113.051e05b9aunknown0.0.0.000000000c0000005000000005d001cfe55b24a1d6ecC:\Windows\TEMP\024306~1.EXEunknown6c4a2542-514e-11e4-8275-142d275a5509
 
Error: (10/10/2014 07:17:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: BackgroundAgent.exe1.0.1.6541fd7d6MSVCR90.dll9.0.30729.838751ea24a5c000000500056b1d1bc401cfe47368c3ff93C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exeC:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\MSVCR90.dllb52cc0b4-5066-11e4-8273-142d275a550a
 
Error: (10/06/2014 08:14:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: BackgroundAgent.exe1.0.1.6541fd7d6MSVCR90.dll9.0.30729.838751ea24a5c000000500056b1d127c01cfe154e0c5e9f7C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exeC:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\MSVCR90.dlldfb3d66f-4d49-11e4-8273-142d275a550a
 
Error: (10/06/2014 08:00:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: 024306~1.EXE7.8.113.051e05b9aunknown0.0.0.000000000c00000050000000061001cfe154b3c9a480C:\Windows\TEMP\024306~1.EXEunknownfcef4d37-4d47-11e4-8273-142d275a550a
 
Error: (10/04/2014 06:41:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: shutdown.exe6.3.9600.16384148001cfe01bc2f18a506C:\Windows\system32\shutdown.exe22007ba1-4c0f-11e4-8272-142d275a550a
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4200U CPU @ 1.60GHz
Percentage of memory in use: 24%
Total physical RAM: 8072.27 MB
Available physical RAM: 6121.68 MB
Total Pagefile: 9352.27 MB
Available Pagefile: 7429.76 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
 
==================== Drives ================================
 
Drive c: (Acer) (Fixed) (Total:448.43 GB) (Free:391.77 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 9433D37D)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================

  • 0

#4
Alan1998

Alan1998

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 294 posts

^Bump?


  • 0

#5
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

Sorry for the delay.

 

Step 1:
Download attached fixlist.txt file and save it to the Desktop.

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST/FRST64 and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

Step 2:
Now, please run System File Checker:
Go Start All programs > Accessories
Right click Command prompt and select run as administrator
In the black box that opens type the following command and press enter:

sfc /scannow

Attached Files


  • 0

#6
Alan1998

Alan1998

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 294 posts

Fixlog.txt

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 16-10-2014
Ran by Michael at 2014-10-17 07:53:37 Run:1
Running from C:\Users\Michael\Desktop
Loaded Profile: Michael (Available profiles: Michael)
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://ca.yhs4.searc...p={searchTerms}
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://ca.yhs4.searc...p={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://ca.yhs4.searc...p={searchTerms}
2014-10-14 08:21 - 2013-08-22 11:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
S2 0243061405931751mcinstcleanup; C:\Windows\TEMP\024306~1.EXE [834664 2013-07-12] (McAfee, Inc.)
C:\Windows\TEMP\024306~1.EXE
*****************
 
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}" => Key deleted successfully.
"HKCR\CLSID\{AA9A4890-4262-4441-8977-E2FFCBFB706C}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AA9A4890-4262-4441-8977-E2FFCBFB706C}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}" => Key deleted successfully.
"HKCR\CLSID\{AA9A4890-4262-4441-8977-E2FFCBFB706C}" => Key not found.
C:\Windows\Tasks\SA.DAT => Moved successfully.
0243061405931751mcinstcleanup => Service deleted successfully.
C:\Windows\TEMP\024306~1.EXE => Moved successfully.
 
==== End of Fixlog ====

  • 0

#7
Alan1998

Alan1998

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 294 posts

CBS Log attached + Screenshot

 

http://www.mediafire...0tfznju/CBS.log

jkBpSCz.png

 

Edit: Thank you for the help :)


Edited by Alan1998, 17 October 2014 - 05:28 AM.

  • 0

#8
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

OK, we need to look into SFC log, but it's big, so let me try to cut less important data:

 

Go to your Start menu and type cmd into the Start Search field.
Right click on cmd and choose Run as Administrator.
Type in the following command (copy and paste might work as well)

findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfcdetails.txt"

On a side note: It would be beneficial to run System File Checker a couple of times to fix any corruption.

 

Please attach sfcdetails.txt from your desktop.


  • 0

#9
Alan1998

Alan1998

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 294 posts
2014-10-17 07:55:54, Info                  CSI    0000000a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:55:54, Info                  CSI    0000000b [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:02, Info                  CSI    0000000c [SR] Verify complete
2014-10-17 07:56:02, Info                  CSI    0000000d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:02, Info                  CSI    0000000e [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:08, Info                  CSI    0000000f [SR] Verify complete
2014-10-17 07:56:08, Info                  CSI    00000010 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:08, Info                  CSI    00000011 [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:14, Info                  CSI    00000012 [SR] Verify complete
2014-10-17 07:56:14, Info                  CSI    00000013 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:14, Info                  CSI    00000014 [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:21, Info                  CSI    00000015 [SR] Verify complete
2014-10-17 07:56:21, Info                  CSI    00000016 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:21, Info                  CSI    00000017 [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:27, Info                  CSI    00000018 [SR] Verify complete
2014-10-17 07:56:27, Info                  CSI    00000019 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:27, Info                  CSI    0000001a [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:33, Info                  CSI    0000001b [SR] Verify complete
2014-10-17 07:56:34, Info                  CSI    0000001c [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:34, Info                  CSI    0000001d [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:40, Info                  CSI    0000001e [SR] Verify complete
2014-10-17 07:56:40, Info                  CSI    0000001f [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:40, Info                  CSI    00000020 [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:45, Info                  CSI    00000021 [SR] Verify complete
2014-10-17 07:56:46, Info                  CSI    00000022 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:46, Info                  CSI    00000023 [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:51, Info                  CSI    00000024 [SR] Verify complete
2014-10-17 07:56:51, Info                  CSI    00000025 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:51, Info                  CSI    00000026 [SR] Beginning Verify and Repair transaction
2014-10-17 07:56:58, Info                  CSI    00000027 [SR] Verify complete
2014-10-17 07:56:59, Info                  CSI    00000028 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:56:59, Info                  CSI    00000029 [SR] Beginning Verify and Repair transaction
2014-10-17 07:57:04, Info                  CSI    0000002a [SR] Verify complete
2014-10-17 07:57:04, Info                  CSI    0000002b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:57:04, Info                  CSI    0000002c [SR] Beginning Verify and Repair transaction
2014-10-17 07:57:10, Info                  CSI    0000002d [SR] Verify complete
2014-10-17 07:57:10, Info                  CSI    0000002e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:57:10, Info                  CSI    0000002f [SR] Beginning Verify and Repair transaction
2014-10-17 07:57:15, Info                  CSI    00000030 [SR] Verify complete
2014-10-17 07:57:15, Info                  CSI    00000031 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:57:15, Info                  CSI    00000032 [SR] Beginning Verify and Repair transaction
2014-10-17 07:57:21, Info                  CSI    00000033 [SR] Verify complete
2014-10-17 07:57:22, Info                  CSI    00000034 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:57:22, Info                  CSI    00000035 [SR] Beginning Verify and Repair transaction
2014-10-17 07:57:36, Info                  CSI    00000036 [SR] Verify complete
2014-10-17 07:57:36, Info                  CSI    00000037 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:57:36, Info                  CSI    00000038 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:07, Info                  CSI    00000039 [SR] Verify complete
2014-10-17 07:59:07, Info                  CSI    0000003a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:07, Info                  CSI    0000003b [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:11, Info                  CSI    0000003c [SR] Verify complete
2014-10-17 07:59:11, Info                  CSI    0000003d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:11, Info                  CSI    0000003e [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:14, Info                  CSI    0000003f [SR] Verify complete
2014-10-17 07:59:14, Info                  CSI    00000040 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:14, Info                  CSI    00000041 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:18, Info                  CSI    00000042 [SR] Verify complete
2014-10-17 07:59:18, Info                  CSI    00000043 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:18, Info                  CSI    00000044 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:22, Info                  CSI    00000045 [SR] Verify complete
2014-10-17 07:59:22, Info                  CSI    00000046 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:22, Info                  CSI    00000047 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:25, Info                  CSI    00000048 [SR] Verify complete
2014-10-17 07:59:25, Info                  CSI    00000049 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:25, Info                  CSI    0000004a [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:28, Info                  CSI    0000004b [SR] Verify complete
2014-10-17 07:59:28, Info                  CSI    0000004c [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:28, Info                  CSI    0000004d [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:32, Info                  CSI    0000004e [SR] Verify complete
2014-10-17 07:59:32, Info                  CSI    0000004f [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:32, Info                  CSI    00000050 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:35, Info                  CSI    00000051 [SR] Verify complete
2014-10-17 07:59:35, Info                  CSI    00000052 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:35, Info                  CSI    00000053 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:40, Info                  CSI    00000054 [SR] Verify complete
2014-10-17 07:59:40, Info                  CSI    00000055 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:40, Info                  CSI    00000056 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:43, Info                  CSI    00000057 [SR] Verify complete
2014-10-17 07:59:43, Info                  CSI    00000058 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:43, Info                  CSI    00000059 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:47, Info                  CSI    0000005a [SR] Verify complete
2014-10-17 07:59:47, Info                  CSI    0000005b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:47, Info                  CSI    0000005c [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:51, Info                  CSI    0000005d [SR] Verify complete
2014-10-17 07:59:51, Info                  CSI    0000005e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:51, Info                  CSI    0000005f [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:55, Info                  CSI    00000060 [SR] Verify complete
2014-10-17 07:59:55, Info                  CSI    00000061 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:55, Info                  CSI    00000062 [SR] Beginning Verify and Repair transaction
2014-10-17 07:59:58, Info                  CSI    00000063 [SR] Verify complete
2014-10-17 07:59:58, Info                  CSI    00000064 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 07:59:58, Info                  CSI    00000065 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:02, Info                  CSI    00000066 [SR] Verify complete
2014-10-17 08:00:02, Info                  CSI    00000067 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:02, Info                  CSI    00000068 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:04, Info                  CSI    00000069 [SR] Verify complete
2014-10-17 08:00:04, Info                  CSI    0000006a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:04, Info                  CSI    0000006b [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:07, Info                  CSI    0000006c [SR] Verify complete
2014-10-17 08:00:07, Info                  CSI    0000006d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:07, Info                  CSI    0000006e [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:10, Info                  CSI    0000006f [SR] Verify complete
2014-10-17 08:00:10, Info                  CSI    00000070 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:10, Info                  CSI    00000071 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:13, Info                  CSI    00000072 [SR] Verify complete
2014-10-17 08:00:13, Info                  CSI    00000073 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:13, Info                  CSI    00000074 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:16, Info                  CSI    00000075 [SR] Verify complete
2014-10-17 08:00:16, Info                  CSI    00000076 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:16, Info                  CSI    00000077 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:19, Info                  CSI    00000078 [SR] Verify complete
2014-10-17 08:00:20, Info                  CSI    00000079 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:20, Info                  CSI    0000007a [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:23, Info                  CSI    0000007b [SR] Verify complete
2014-10-17 08:00:23, Info                  CSI    0000007c [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:23, Info                  CSI    0000007d [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:26, Info                  CSI    0000007e [SR] Verify complete
2014-10-17 08:00:27, Info                  CSI    0000007f [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:27, Info                  CSI    00000080 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:30, Info                  CSI    00000081 [SR] Verify complete
2014-10-17 08:00:30, Info                  CSI    00000082 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:30, Info                  CSI    00000083 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:34, Info                  CSI    00000084 [SR] Verify complete
2014-10-17 08:00:34, Info                  CSI    00000085 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:34, Info                  CSI    00000086 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:38, Info                  CSI    00000087 [SR] Verify complete
2014-10-17 08:00:38, Info                  CSI    00000088 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:38, Info                  CSI    00000089 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:41, Info                  CSI    0000008a [SR] Verify complete
2014-10-17 08:00:41, Info                  CSI    0000008b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:41, Info                  CSI    0000008c [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:46, Info                  CSI    00000092 [SR] Verify complete
2014-10-17 08:00:46, Info                  CSI    00000093 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:46, Info                  CSI    00000094 [SR] Beginning Verify and Repair transaction
2014-10-17 08:00:52, Info                  CSI    000000ad [SR] Verify complete
2014-10-17 08:00:52, Info                  CSI    000000ae [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:00:52, Info                  CSI    000000af [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:00, Info                  CSI    000000b4 [SR] Verify complete
2014-10-17 08:01:00, Info                  CSI    000000b5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:00, Info                  CSI    000000b6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:04, Info                  CSI    000000b8 [SR] Verify complete
2014-10-17 08:01:04, Info                  CSI    000000b9 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:04, Info                  CSI    000000ba [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:09, Info                  CSI    000000c6 [SR] Verify complete
2014-10-17 08:01:09, Info                  CSI    000000c7 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:09, Info                  CSI    000000c8 [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:14, Info                  CSI    000000ca [SR] Verify complete
2014-10-17 08:01:14, Info                  CSI    000000cb [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:14, Info                  CSI    000000cc [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:17, Info                  CSI    000000ce [SR] Verify complete
2014-10-17 08:01:17, Info                  CSI    000000cf [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:17, Info                  CSI    000000d0 [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:26, Info                  CSI    000000eb [SR] Verify complete
2014-10-17 08:01:26, Info                  CSI    000000ec [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:26, Info                  CSI    000000ed [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:33, Info                  CSI    00000105 [SR] Verify complete
2014-10-17 08:01:33, Info                  CSI    00000106 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:33, Info                  CSI    00000107 [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:39, Info                  CSI    00000121 [SR] Verify complete
2014-10-17 08:01:40, Info                  CSI    00000122 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:40, Info                  CSI    00000123 [SR] Beginning Verify and Repair transaction
2014-10-17 08:01:50, Info                  CSI    00000129 [SR] Verify complete
2014-10-17 08:01:50, Info                  CSI    0000012a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:01:50, Info                  CSI    0000012b [SR] Beginning Verify and Repair transaction
2014-10-17 08:02:03, Info                  CSI    0000013b [SR] Verify complete
2014-10-17 08:02:03, Info                  CSI    0000013c [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:02:03, Info                  CSI    0000013d [SR] Beginning Verify and Repair transaction
2014-10-17 08:02:16, Info                  CSI    0000014e [SR] Verify complete
2014-10-17 08:02:17, Info                  CSI    0000014f [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:02:17, Info                  CSI    00000150 [SR] Beginning Verify and Repair transaction
2014-10-17 08:02:21, Info                  CSI    00000153 [SR] Verify complete
2014-10-17 08:02:21, Info                  CSI    00000154 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:02:21, Info                  CSI    00000155 [SR] Beginning Verify and Repair transaction
2014-10-17 08:02:32, Info                  CSI    0000015a [SR] Verify complete
2014-10-17 08:02:32, Info                  CSI    0000015b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:02:32, Info                  CSI    0000015c [SR] Beginning Verify and Repair transaction
2014-10-17 08:02:39, Info                  CSI    00000169 [SR] Verify complete
2014-10-17 08:02:39, Info                  CSI    0000016a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:02:39, Info                  CSI    0000016b [SR] Beginning Verify and Repair transaction
2014-10-17 08:02:50, Info                  CSI    0000019b [SR] Verify complete
2014-10-17 08:02:50, Info                  CSI    0000019c [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:02:50, Info                  CSI    0000019d [SR] Beginning Verify and Repair transaction
2014-10-17 08:03:03, Info                  CSI    000001c4 [SR] Verify complete
2014-10-17 08:03:03, Info                  CSI    000001c5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:03:03, Info                  CSI    000001c6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:03:31, Info                  CSI    000001d4 [SR] Verify complete
2014-10-17 08:03:31, Info                  CSI    000001d5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:03:31, Info                  CSI    000001d6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:03:39, Info                  CSI    000001df [SR] Verify complete
2014-10-17 08:03:40, Info                  CSI    000001e0 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:03:40, Info                  CSI    000001e1 [SR] Beginning Verify and Repair transaction
2014-10-17 08:03:45, Info                  CSI    000001ea [SR] Verify complete
2014-10-17 08:03:45, Info                  CSI    000001eb [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:03:45, Info                  CSI    000001ec [SR] Beginning Verify and Repair transaction
2014-10-17 08:03:52, Info                  CSI    00000207 [SR] Verify complete
2014-10-17 08:03:52, Info                  CSI    00000208 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:03:52, Info                  CSI    00000209 [SR] Beginning Verify and Repair transaction
2014-10-17 08:03:54, Info                  CSI    0000020b [SR] Verify complete
2014-10-17 08:03:54, Info                  CSI    0000020c [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:03:54, Info                  CSI    0000020d [SR] Beginning Verify and Repair transaction
2014-10-17 08:03:56, Info                  CSI    0000020e [SR] Verify complete
2014-10-17 08:03:57, Info                  CSI    0000020f [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:03:57, Info                  CSI    00000210 [SR] Beginning Verify and Repair transaction
2014-10-17 08:04:02, Info                  CSI    0000021c [SR] Verify complete
2014-10-17 08:04:02, Info                  CSI    0000021d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:04:02, Info                  CSI    0000021e [SR] Beginning Verify and Repair transaction
2014-10-17 08:04:08, Info                  CSI    00000279 [SR] Verify complete
2014-10-17 08:04:09, Info                  CSI    0000027a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:04:09, Info                  CSI    0000027b [SR] Beginning Verify and Repair transaction
2014-10-17 08:04:18, Info                  CSI    00000298 [SR] Verify complete
2014-10-17 08:04:18, Info                  CSI    00000299 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:04:18, Info                  CSI    0000029a [SR] Beginning Verify and Repair transaction
2014-10-17 08:04:29, Info                  CSI    000002ae [SR] Verify complete
2014-10-17 08:04:29, Info                  CSI    000002af [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:04:29, Info                  CSI    000002b0 [SR] Beginning Verify and Repair transaction
2014-10-17 08:04:36, Info                  CSI    000002b2 [SR] Verify complete
2014-10-17 08:04:36, Info                  CSI    000002b3 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:04:36, Info                  CSI    000002b4 [SR] Beginning Verify and Repair transaction
2014-10-17 08:04:46, Info                  CSI    000002d1 [SR] Verify complete
2014-10-17 08:04:46, Info                  CSI    000002d2 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:04:46, Info                  CSI    000002d3 [SR] Beginning Verify and Repair transaction
2014-10-17 08:04:56, Info                  CSI    000002de [SR] Verify complete
2014-10-17 08:04:56, Info                  CSI    000002df [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:04:56, Info                  CSI    000002e0 [SR] Beginning Verify and Repair transaction
2014-10-17 08:05:02, Info                  CSI    000002e1 [SR] Verify complete
2014-10-17 08:05:02, Info                  CSI    000002e2 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:05:02, Info                  CSI    000002e3 [SR] Beginning Verify and Repair transaction
2014-10-17 08:05:15, Info                  CSI    000002ec [SR] Verify complete
2014-10-17 08:05:15, Info                  CSI    000002ed [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:05:15, Info                  CSI    000002ee [SR] Beginning Verify and Repair transaction
2014-10-17 08:05:30, Info                  CSI    0000030d [SR] Verify complete
2014-10-17 08:05:30, Info                  CSI    0000030e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:05:30, Info                  CSI    0000030f [SR] Beginning Verify and Repair transaction
2014-10-17 08:05:38, Info                  CSI    00000314 [SR] Verify complete
2014-10-17 08:05:38, Info                  CSI    00000315 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:05:38, Info                  CSI    00000316 [SR] Beginning Verify and Repair transaction
2014-10-17 08:05:44, Info                  CSI    0000031a [SR] Verify complete
2014-10-17 08:05:44, Info                  CSI    0000031b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:05:44, Info                  CSI    0000031c [SR] Beginning Verify and Repair transaction
2014-10-17 08:05:58, Info                  CSI    00000327 [SR] Verify complete
2014-10-17 08:05:58, Info                  CSI    00000328 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:05:58, Info                  CSI    00000329 [SR] Beginning Verify and Repair transaction
2014-10-17 08:06:05, Info                  CSI    00000355 [SR] Verify complete
2014-10-17 08:06:06, Info                  CSI    00000356 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:06:06, Info                  CSI    00000357 [SR] Beginning Verify and Repair transaction
2014-10-17 08:06:13, Info                  CSI    00000362 [SR] Verify complete
2014-10-17 08:06:13, Info                  CSI    00000363 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:06:13, Info                  CSI    00000364 [SR] Beginning Verify and Repair transaction
2014-10-17 08:06:20, Info                  CSI    00000376 [SR] Verify complete
2014-10-17 08:06:20, Info                  CSI    00000377 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:06:20, Info                  CSI    00000378 [SR] Beginning Verify and Repair transaction
2014-10-17 08:06:27, Info                  CSI    0000037e [SR] Verify complete
2014-10-17 08:06:27, Info                  CSI    0000037f [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:06:27, Info                  CSI    00000380 [SR] Beginning Verify and Repair transaction
2014-10-17 08:06:36, Info                  CSI    0000038f [SR] Verify complete
2014-10-17 08:06:36, Info                  CSI    00000390 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:06:36, Info                  CSI    00000391 [SR] Beginning Verify and Repair transaction
2014-10-17 08:06:42, Info                  CSI    00000399 [SR] Verify complete
2014-10-17 08:06:43, Info                  CSI    0000039a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:06:43, Info                  CSI    0000039b [SR] Beginning Verify and Repair transaction
2014-10-17 08:06:49, Info                  CSI    0000039e [SR] Verify complete
2014-10-17 08:06:49, Info                  CSI    0000039f [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:06:49, Info                  CSI    000003a0 [SR] Beginning Verify and Repair transaction
2014-10-17 08:06:55, Info                  CSI    000003a2 [SR] Verify complete
2014-10-17 08:06:56, Info                  CSI    000003a3 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:06:56, Info                  CSI    000003a4 [SR] Beginning Verify and Repair transaction
2014-10-17 08:07:05, Info                  CSI    000003af [SR] Verify complete
2014-10-17 08:07:05, Info                  CSI    000003b0 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:07:05, Info                  CSI    000003b1 [SR] Beginning Verify and Repair transaction
2014-10-17 08:07:11, Info                  CSI    000003ba [SR] Verify complete
2014-10-17 08:07:11, Info                  CSI    000003bb [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:07:11, Info                  CSI    000003bc [SR] Beginning Verify and Repair transaction
2014-10-17 08:07:19, Info                  CSI    000003bd [SR] Verify complete
2014-10-17 08:07:19, Info                  CSI    000003be [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:07:19, Info                  CSI    000003bf [SR] Beginning Verify and Repair transaction
2014-10-17 08:07:30, Info                  CSI    000003cd [SR] Verify complete
2014-10-17 08:07:30, Info                  CSI    000003ce [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:07:30, Info                  CSI    000003cf [SR] Beginning Verify and Repair transaction
2014-10-17 08:07:37, Info                  CSI    000003d4 [SR] Verify complete
2014-10-17 08:07:37, Info                  CSI    000003d5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:07:37, Info                  CSI    000003d6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:07:46, Info                  CSI    000003e2 [SR] Verify complete
2014-10-17 08:07:47, Info                  CSI    000003e3 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:07:47, Info                  CSI    000003e4 [SR] Beginning Verify and Repair transaction
2014-10-17 08:07:58, Info                  CSI    00000411 [SR] Verify complete
2014-10-17 08:07:58, Info                  CSI    00000412 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:07:58, Info                  CSI    00000413 [SR] Beginning Verify and Repair transaction
2014-10-17 08:08:08, Info                  CSI    0000041b [SR] Verify complete
2014-10-17 08:08:08, Info                  CSI    0000041c [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:08:08, Info                  CSI    0000041d [SR] Beginning Verify and Repair transaction
2014-10-17 08:08:15, Info                  CSI    00000423 [SR] Verify complete
2014-10-17 08:08:15, Info                  CSI    00000424 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:08:15, Info                  CSI    00000425 [SR] Beginning Verify and Repair transaction
2014-10-17 08:08:22, Info                  CSI    00000427 [SR] Verify complete
2014-10-17 08:08:22, Info                  CSI    00000428 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:08:22, Info                  CSI    00000429 [SR] Beginning Verify and Repair transaction
2014-10-17 08:08:30, Info                  CSI    0000042a [SR] Verify complete
2014-10-17 08:08:30, Info                  CSI    0000042b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:08:30, Info                  CSI    0000042c [SR] Beginning Verify and Repair transaction
2014-10-17 08:08:39, Info                  CSI    00000432 [SR] Verify complete
2014-10-17 08:08:39, Info                  CSI    00000433 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:08:39, Info                  CSI    00000434 [SR] Beginning Verify and Repair transaction
2014-10-17 08:08:50, Info                  CSI    0000043f [SR] Verify complete
2014-10-17 08:08:50, Info                  CSI    00000440 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:08:50, Info                  CSI    00000441 [SR] Beginning Verify and Repair transaction
2014-10-17 08:08:59, Info                  CSI    0000044d [SR] Verify complete
2014-10-17 08:08:59, Info                  CSI    0000044e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:08:59, Info                  CSI    0000044f [SR] Beginning Verify and Repair transaction
2014-10-17 08:09:07, Info                  CSI    0000045a [SR] Verify complete
2014-10-17 08:09:07, Info                  CSI    0000045b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:09:07, Info                  CSI    0000045c [SR] Beginning Verify and Repair transaction
2014-10-17 08:09:14, Info                  CSI    00000473 [SR] Verify complete
2014-10-17 08:09:14, Info                  CSI    00000474 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:09:14, Info                  CSI    00000475 [SR] Beginning Verify and Repair transaction
2014-10-17 08:09:20, Info                  CSI    00000476 [SR] Verify complete
2014-10-17 08:09:20, Info                  CSI    00000477 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:09:20, Info                  CSI    00000478 [SR] Beginning Verify and Repair transaction
2014-10-17 08:09:28, Info                  CSI    0000047a [SR] Verify complete
2014-10-17 08:09:28, Info                  CSI    0000047b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:09:28, Info                  CSI    0000047c [SR] Beginning Verify and Repair transaction
2014-10-17 08:09:39, Info                  CSI    00000482 [SR] Verify complete
2014-10-17 08:09:39, Info                  CSI    00000483 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:09:39, Info                  CSI    00000484 [SR] Beginning Verify and Repair transaction
2014-10-17 08:09:49, Info                  CSI    000004b4 [SR] Verify complete
2014-10-17 08:09:49, Info                  CSI    000004b5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:09:49, Info                  CSI    000004b6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:09:53, Info                  CSI    000004b9 [SR] Verify complete
2014-10-17 08:09:53, Info                  CSI    000004ba [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:09:53, Info                  CSI    000004bb [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:02, Info                  CSI    000004ca [SR] Verify complete
2014-10-17 08:10:02, Info                  CSI    000004cb [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:02, Info                  CSI    000004cc [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:06, Info                  CSI    000004cd [SR] Verify complete
2014-10-17 08:10:06, Info                  CSI    000004ce [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:06, Info                  CSI    000004cf [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:13, Info                  CSI    000004d1 [SR] Verify complete
2014-10-17 08:10:13, Info                  CSI    000004d2 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:13, Info                  CSI    000004d3 [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:21, Info                  CSI    000004d4 [SR] Verify complete
2014-10-17 08:10:22, Info                  CSI    000004d5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:22, Info                  CSI    000004d6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:26, Info                  CSI    000004d7 [SR] Verify complete
2014-10-17 08:10:26, Info                  CSI    000004d8 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:26, Info                  CSI    000004d9 [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:32, Info                  CSI    000004da [SR] Verify complete
2014-10-17 08:10:32, Info                  CSI    000004db [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:32, Info                  CSI    000004dc [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:37, Info                  CSI    000004dd [SR] Verify complete
2014-10-17 08:10:37, Info                  CSI    000004de [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:37, Info                  CSI    000004df [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:42, Info                  CSI    000004e0 [SR] Verify complete
2014-10-17 08:10:42, Info                  CSI    000004e1 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:42, Info                  CSI    000004e2 [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:46, Info                  CSI    000004e3 [SR] Verify complete
2014-10-17 08:10:47, Info                  CSI    000004e4 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:47, Info                  CSI    000004e5 [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:52, Info                  CSI    000004e6 [SR] Verify complete
2014-10-17 08:10:53, Info                  CSI    000004e7 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:53, Info                  CSI    000004e8 [SR] Beginning Verify and Repair transaction
2014-10-17 08:10:58, Info                  CSI    00000505 [SR] Verify complete
2014-10-17 08:10:58, Info                  CSI    00000506 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:10:58, Info                  CSI    00000507 [SR] Beginning Verify and Repair transaction
2014-10-17 08:11:02, Info                  CSI    00000508 [SR] Verify complete
2014-10-17 08:11:02, Info                  CSI    00000509 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:11:02, Info                  CSI    0000050a [SR] Beginning Verify and Repair transaction
2014-10-17 08:11:08, Info                  CSI    0000050d [SR] Verify complete
2014-10-17 08:11:09, Info                  CSI    0000050e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:11:09, Info                  CSI    0000050f [SR] Beginning Verify and Repair transaction
2014-10-17 08:11:20, Info                  CSI    00000510 [SR] Verify complete
2014-10-17 08:11:20, Info                  CSI    00000511 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:11:20, Info                  CSI    00000512 [SR] Beginning Verify and Repair transaction
2014-10-17 08:11:26, Info                  CSI    00000513 [SR] Verify complete
2014-10-17 08:11:26, Info                  CSI    00000514 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:11:26, Info                  CSI    00000515 [SR] Beginning Verify and Repair transaction
2014-10-17 08:11:33, Info                  CSI    00000516 [SR] Verify complete
2014-10-17 08:11:33, Info                  CSI    00000517 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:11:33, Info                  CSI    00000518 [SR] Beginning Verify and Repair transaction
2014-10-17 08:11:39, Info                  CSI    00000519 [SR] Verify complete
2014-10-17 08:11:39, Info                  CSI    0000051a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:11:39, Info                  CSI    0000051b [SR] Beginning Verify and Repair transaction
2014-10-17 08:11:51, Info                  CSI    0000051c [SR] Verify complete
2014-10-17 08:11:51, Info                  CSI    0000051d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:11:51, Info                  CSI    0000051e [SR] Beginning Verify and Repair transaction
2014-10-17 08:11:57, Info                  CSI    00000529 [SR] Verify complete
2014-10-17 08:11:58, Info                  CSI    0000052a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:11:58, Info                  CSI    0000052b [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:03, Info                  CSI    0000052c [SR] Verify complete
2014-10-17 08:12:03, Info                  CSI    0000052d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:03, Info                  CSI    0000052e [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:09, Info                  CSI    0000059c [SR] Verify complete
2014-10-17 08:12:10, Info                  CSI    0000059d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:10, Info                  CSI    0000059e [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:15, Info                  CSI    000005a1 [SR] Verify complete
2014-10-17 08:12:15, Info                  CSI    000005a2 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:15, Info                  CSI    000005a3 [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:20, Info                  CSI    000005a4 [SR] Verify complete
2014-10-17 08:12:20, Info                  CSI    000005a5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:20, Info                  CSI    000005a6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:25, Info                  CSI    000005a7 [SR] Verify complete
2014-10-17 08:12:25, Info                  CSI    000005a8 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:25, Info                  CSI    000005a9 [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:30, Info                  CSI    000005aa [SR] Verify complete
2014-10-17 08:12:30, Info                  CSI    000005ab [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:30, Info                  CSI    000005ac [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:34, Info                  CSI    000005ad [SR] Verify complete
2014-10-17 08:12:34, Info                  CSI    000005ae [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:34, Info                  CSI    000005af [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:41, Info                  CSI    000005bb [SR] Verify complete
2014-10-17 08:12:41, Info                  CSI    000005bc [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:41, Info                  CSI    000005bd [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:49, Info                  CSI    000005d6 [SR] Verify complete
2014-10-17 08:12:49, Info                  CSI    000005d7 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:49, Info                  CSI    000005d8 [SR] Beginning Verify and Repair transaction
2014-10-17 08:12:58, Info                  CSI    000005e9 [SR] Verify complete
2014-10-17 08:12:58, Info                  CSI    000005ea [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:12:58, Info                  CSI    000005eb [SR] Beginning Verify and Repair transaction
2014-10-17 08:13:04, Info                  CSI    000005ed [SR] Verify complete
2014-10-17 08:13:04, Info                  CSI    000005ee [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:13:04, Info                  CSI    000005ef [SR] Beginning Verify and Repair transaction
2014-10-17 08:13:08, Info                  CSI    000005f0 [SR] Verify complete
2014-10-17 08:13:08, Info                  CSI    000005f1 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:13:08, Info                  CSI    000005f2 [SR] Beginning Verify and Repair transaction
2014-10-17 08:13:16, Info                  CSI    000005fd [SR] Verify complete
2014-10-17 08:13:16, Info                  CSI    000005fe [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:13:16, Info                  CSI    000005ff [SR] Beginning Verify and Repair transaction
2014-10-17 08:13:25, Info                  CSI    00000603 [SR] Verify complete
2014-10-17 08:13:25, Info                  CSI    00000604 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:13:25, Info                  CSI    00000605 [SR] Beginning Verify and Repair transaction
2014-10-17 08:13:32, Info                  CSI    0000061f [SR] Verify complete
2014-10-17 08:13:32, Info                  CSI    00000620 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:13:32, Info                  CSI    00000621 [SR] Beginning Verify and Repair transaction
2014-10-17 08:13:40, Info                  CSI    00000630 [SR] Verify complete
2014-10-17 08:13:40, Info                  CSI    00000631 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:13:40, Info                  CSI    00000632 [SR] Beginning Verify and Repair transaction
2014-10-17 08:13:49, Info                  CSI    00000641 [SR] Verify complete
2014-10-17 08:13:49, Info                  CSI    00000642 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:13:49, Info                  CSI    00000643 [SR] Beginning Verify and Repair transaction
2014-10-17 08:13:59, Info                  CSI    0000065d [SR] Verify complete
2014-10-17 08:14:00, Info                  CSI    0000065e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:00, Info                  CSI    0000065f [SR] Beginning Verify and Repair transaction
2014-10-17 08:14:09, Info                  CSI    000006ac [SR] Verify complete
2014-10-17 08:14:09, Info                  CSI    000006ad [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:09, Info                  CSI    000006ae [SR] Beginning Verify and Repair transaction
2014-10-17 08:14:15, Info                  CSI    000006af [SR] Verify complete
2014-10-17 08:14:16, Info                  CSI    000006b0 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:16, Info                  CSI    000006b1 [SR] Beginning Verify and Repair transaction
2014-10-17 08:14:22, Info                  CSI    000006b2 [SR] Verify complete
2014-10-17 08:14:22, Info                  CSI    000006b3 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:22, Info                  CSI    000006b4 [SR] Beginning Verify and Repair transaction
2014-10-17 08:14:27, Info                  CSI    000006b7 [SR] Verify complete
2014-10-17 08:14:27, Info                  CSI    000006b8 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:27, Info                  CSI    000006b9 [SR] Beginning Verify and Repair transaction
2014-10-17 08:14:35, Info                  CSI    000006d4 [SR] Verify complete
2014-10-17 08:14:35, Info                  CSI    000006d5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:35, Info                  CSI    000006d6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:14:42, Info                  CSI    000006fb [SR] Verify complete
2014-10-17 08:14:42, Info                  CSI    000006fc [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:42, Info                  CSI    000006fd [SR] Beginning Verify and Repair transaction
2014-10-17 08:14:48, Info                  CSI    00000700 [SR] Verify complete
2014-10-17 08:14:48, Info                  CSI    00000701 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:48, Info                  CSI    00000702 [SR] Beginning Verify and Repair transaction
2014-10-17 08:14:54, Info                  CSI    0000070a [SR] Verify complete
2014-10-17 08:14:54, Info                  CSI    0000070b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:14:54, Info                  CSI    0000070c [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:01, Info                  CSI    0000070d [SR] Verify complete
2014-10-17 08:15:01, Info                  CSI    0000070e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:01, Info                  CSI    0000070f [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:10, Info                  CSI    0000071c [SR] Verify complete
2014-10-17 08:15:10, Info                  CSI    0000071d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:10, Info                  CSI    0000071e [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:10, Info                  CSI    00000720 [SR] Cannot repair member file [l:22{11}]"fdeploy.dll" of Microsoft-Windows-fdeploy, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:15:10, Info                  CSI    00000722 [SR] Cannot repair member file [l:14{7}]"fde.dll" of Microsoft-Windows-fde, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:15:11, Info                  CSI    00000724 [SR] Cannot repair member file [l:20{10}]"gpedit.dll" of Microsoft-Windows-GroupPolicy-Admin-Gpedit, Version = 6.3.9600.17238, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:15:11, Info                  CSI    00000726 [SR] Cannot repair member file [l:20{10}]"gptext.dll" of Microsoft-Windows-GroupPolicy-Gptext, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:15:12, Info                  CSI    0000072b [SR] Cannot repair member file [l:14{7}]"fde.dll" of Microsoft-Windows-fde, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:15:12, Info                  CSI    0000072c [SR] This component was referenced by [l:358{179}]"Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-shell~31bf3856ad364e35~amd64~~6.3.9600.16384.Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-shell-Deployment"
2014-10-17 08:15:12, Info                  CSI    0000072f [SR] Could not reproject corrupted file [ml:48{24},l:46{23}]"\??\C:\Windows\SysWOW64"\[l:14{7}]"fde.dll"; source file in store is also corrupted
2014-10-17 08:15:15, Info                  CSI    00000745 [SR] Cannot repair member file [l:22{11}]"fdeploy.dll" of Microsoft-Windows-fdeploy, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:15:15, Info                  CSI    00000746 [SR] This component was referenced by [l:358{179}]"Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-shell~31bf3856ad364e35~amd64~~6.3.9600.16384.Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-shell-Deployment"
2014-10-17 08:15:15, Info                  CSI    00000749 [SR] Could not reproject corrupted file [ml:48{24},l:46{23}]"\??\C:\Windows\SysWOW64"\[l:22{11}]"fdeploy.dll"; source file in store is also corrupted
2014-10-17 08:15:16, Info                  CSI    00000751 [SR] Cannot repair member file [l:20{10}]"gptext.dll" of Microsoft-Windows-GroupPolicy-Gptext, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:15:16, Info                  CSI    00000752 [SR] This component was referenced by [l:346{173}]"Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-ds~31bf3856ad364e35~amd64~~6.3.9600.16384.Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-ds-Deployment"
2014-10-17 08:15:16, Info                  CSI    00000755 [SR] Could not reproject corrupted file [ml:48{24},l:46{23}]"\??\C:\Windows\SysWOW64"\[l:20{10}]"gptext.dll"; source file in store is also corrupted
2014-10-17 08:15:16, Info                  CSI    00000757 [SR] Cannot repair member file [l:20{10}]"gpedit.dll" of Microsoft-Windows-GroupPolicy-Admin-Gpedit, Version = 6.3.9600.17238, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:15:16, Info                  CSI    00000758 [SR] This component was referenced by [l:162{81}]"Package_739_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.2975719-999_neutral_GDR"
2014-10-17 08:15:16, Info                  CSI    0000075b [SR] Could not reproject corrupted file [ml:48{24},l:46{23}]"\??\C:\Windows\SysWOW64"\[l:20{10}]"gpedit.dll"; source file in store is also corrupted
2014-10-17 08:15:16, Info                  CSI    0000075d [SR] Verify complete
2014-10-17 08:15:17, Info                  CSI    0000075e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:17, Info                  CSI    0000075f [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:23, Info                  CSI    00000776 [SR] Verify complete
2014-10-17 08:15:23, Info                  CSI    00000777 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:23, Info                  CSI    00000778 [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:26, Info                  CSI    00000779 [SR] Verify complete
2014-10-17 08:15:26, Info                  CSI    0000077a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:26, Info                  CSI    0000077b [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:29, Info                  CSI    0000077d [SR] Verify complete
2014-10-17 08:15:30, Info                  CSI    0000077e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:30, Info                  CSI    0000077f [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:37, Info                  CSI    00000789 [SR] Verify complete
2014-10-17 08:15:37, Info                  CSI    0000078a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:37, Info                  CSI    0000078b [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:42, Info                  CSI    000007a4 [SR] Verify complete
2014-10-17 08:15:42, Info                  CSI    000007a5 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:42, Info                  CSI    000007a6 [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:47, Info                  CSI    000007a8 [SR] Verify complete
2014-10-17 08:15:47, Info                  CSI    000007a9 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:47, Info                  CSI    000007aa [SR] Beginning Verify and Repair transaction
2014-10-17 08:15:57, Info                  CSI    000007bf [SR] Verify complete
2014-10-17 08:15:58, Info                  CSI    000007c0 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:15:58, Info                  CSI    000007c1 [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:03, Info                  CSI    000007d5 [SR] Verify complete
2014-10-17 08:16:04, Info                  CSI    000007d6 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:04, Info                  CSI    000007d7 [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:15, Info                  CSI    000007e2 [SR] Verify complete
2014-10-17 08:16:15, Info                  CSI    000007e3 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:15, Info                  CSI    000007e4 [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:20, Info                  CSI    00000805 [SR] Verify complete
2014-10-17 08:16:20, Info                  CSI    00000806 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:20, Info                  CSI    00000807 [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:25, Info                  CSI    0000080a [SR] Verify complete
2014-10-17 08:16:25, Info                  CSI    0000080b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:25, Info                  CSI    0000080c [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:30, Info                  CSI    0000081c [SR] Verify complete
2014-10-17 08:16:30, Info                  CSI    0000081d [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:30, Info                  CSI    0000081e [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:34, Info                  CSI    00000823 [SR] Verify complete
2014-10-17 08:16:34, Info                  CSI    00000824 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:34, Info                  CSI    00000825 [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:39, Info                  CSI    00000827 [SR] Verify complete
2014-10-17 08:16:39, Info                  CSI    00000828 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:39, Info                  CSI    00000829 [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:45, Info                  CSI    0000082e [SR] Verify complete
2014-10-17 08:16:45, Info                  CSI    0000082f [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:45, Info                  CSI    00000830 [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:51, Info                  CSI    00000835 [SR] Verify complete
2014-10-17 08:16:51, Info                  CSI    00000836 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:51, Info                  CSI    00000837 [SR] Beginning Verify and Repair transaction
2014-10-17 08:16:56, Info                  CSI    0000083a [SR] Verify complete
2014-10-17 08:16:56, Info                  CSI    0000083b [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:16:56, Info                  CSI    0000083c [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:00, Info                  CSI    00000841 [SR] Verify complete
2014-10-17 08:17:01, Info                  CSI    00000842 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:01, Info                  CSI    00000843 [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:06, Info                  CSI    00000845 [SR] Verify complete
2014-10-17 08:17:06, Info                  CSI    00000846 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:06, Info                  CSI    00000847 [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:11, Info                  CSI    00000849 [SR] Verify complete
2014-10-17 08:17:11, Info                  CSI    0000084a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:11, Info                  CSI    0000084b [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:17, Info                  CSI    00000856 [SR] Verify complete
2014-10-17 08:17:17, Info                  CSI    00000857 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:17, Info                  CSI    00000858 [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:24, Info                  CSI    00000859 [SR] Verify complete
2014-10-17 08:17:24, Info                  CSI    0000085a [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:24, Info                  CSI    0000085b [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:30, Info                  CSI    0000085d [SR] Verify complete
2014-10-17 08:17:30, Info                  CSI    0000085e [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:30, Info                  CSI    0000085f [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:34, Info                  CSI    00000860 [SR] Verify complete
2014-10-17 08:17:35, Info                  CSI    00000861 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:35, Info                  CSI    00000862 [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:41, Info                  CSI    00000863 [SR] Verify complete
2014-10-17 08:17:41, Info                  CSI    00000864 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:41, Info                  CSI    00000865 [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:46, Info                  CSI    00000866 [SR] Verify complete
2014-10-17 08:17:46, Info                  CSI    00000867 [SR] Verifying 100 (0x0000000000000064) components
2014-10-17 08:17:46, Info                  CSI    00000868 [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:54, Info                  CSI    00000869 [SR] Verify complete
2014-10-17 08:17:54, Info                  CSI    0000086a [SR] Verifying 97 (0x0000000000000061) components
2014-10-17 08:17:54, Info                  CSI    0000086b [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:59, Info                  CSI    0000086e [SR] Verify complete
2014-10-17 08:17:59, Info                  CSI    0000086f [SR] Repairing 4 components
2014-10-17 08:17:59, Info                  CSI    00000870 [SR] Beginning Verify and Repair transaction
2014-10-17 08:17:59, Info                  CSI    00000872 [SR] Cannot repair member file [l:14{7}]"fde.dll" of Microsoft-Windows-fde, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:17:59, Info                  CSI    00000874 [SR] Cannot repair member file [l:22{11}]"fdeploy.dll" of Microsoft-Windows-fdeploy, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:17:59, Info                  CSI    00000876 [SR] Cannot repair member file [l:20{10}]"gptext.dll" of Microsoft-Windows-GroupPolicy-Gptext, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:17:59, Info                  CSI    00000878 [SR] Cannot repair member file [l:20{10}]"gpedit.dll" of Microsoft-Windows-GroupPolicy-Admin-Gpedit, Version = 6.3.9600.17238, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:17:59, Info                  CSI    0000087a [SR] Cannot repair member file [l:20{10}]"gptext.dll" of Microsoft-Windows-GroupPolicy-Gptext, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:17:59, Info                  CSI    0000087b [SR] This component was referenced by [l:346{173}]"Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-ds~31bf3856ad364e35~amd64~~6.3.9600.16384.Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-ds-Deployment"
2014-10-17 08:17:59, Info                  CSI    0000087e [SR] Could not reproject corrupted file [ml:48{24},l:46{23}]"\??\C:\Windows\SysWOW64"\[l:20{10}]"gptext.dll"; source file in store is also corrupted
2014-10-17 08:17:59, Info                  CSI    00000880 [SR] Cannot repair member file [l:20{10}]"gpedit.dll" of Microsoft-Windows-GroupPolicy-Admin-Gpedit, Version = 6.3.9600.17238, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:17:59, Info                  CSI    00000881 [SR] This component was referenced by [l:162{81}]"Package_739_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.2975719-999_neutral_GDR"
2014-10-17 08:17:59, Info                  CSI    00000884 [SR] Could not reproject corrupted file [ml:48{24},l:46{23}]"\??\C:\Windows\SysWOW64"\[l:20{10}]"gpedit.dll"; source file in store is also corrupted
2014-10-17 08:17:59, Info                  CSI    00000886 [SR] Cannot repair member file [l:22{11}]"fdeploy.dll" of Microsoft-Windows-fdeploy, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:17:59, Info                  CSI    00000887 [SR] This component was referenced by [l:358{179}]"Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-shell~31bf3856ad364e35~amd64~~6.3.9600.16384.Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-shell-Deployment"
2014-10-17 08:17:59, Info                  CSI    0000088a [SR] Could not reproject corrupted file [ml:48{24},l:46{23}]"\??\C:\Windows\SysWOW64"\[l:22{11}]"fdeploy.dll"; source file in store is also corrupted
2014-10-17 08:17:59, Info                  CSI    0000088c [SR] Cannot repair member file [l:14{7}]"fde.dll" of Microsoft-Windows-fde, Version = 6.3.9600.16384, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-10-17 08:17:59, Info                  CSI    0000088d [SR] This component was referenced by [l:358{179}]"Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-shell~31bf3856ad364e35~amd64~~6.3.9600.16384.Microsoft-Windows-Client-Features-WOW64-Package-AutoMerged-shell-Deployment"
2014-10-17 08:17:59, Info                  CSI    00000890 [SR] Could not reproject corrupted file [ml:48{24},l:46{23}]"\??\C:\Windows\SysWOW64"\[l:14{7}]"fde.dll"; source file in store is also corrupted
2014-10-17 08:17:59, Info                  CSI    00000891 [SR] Repair complete
2014-10-17 08:17:59, Info                  CSI    00000892 [SR] Committing transaction
2014-10-17 08:17:59, Info                  CSI    00000897 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction  have been successfully repaired
 
 
 
Edit: I have a very hectic weekend... My replies may be limited :( Thanks for the help!

Edited by Alan1998, 18 October 2014 - 04:46 AM.

  • 0

#10
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

Hello Alan1998,

I need ask for help so please be patient.


  • 0

Advertisements


#11
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

May I ask why did you download:

C:\Users\Michael\Downloads\add_gpedit_msc_by_jwils876-d3kh6vm.zip

?


  • 0

#12
Alan1998

Alan1998

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 294 posts

I had wanted to demonstrate something to a teacher for a PCMT class. Since Windows 8.1 doesn't come installed with gpedit & I do not hold admin priv's at school, that was the only way.

 

Edit: I should add, nobody currently involved with technology holds admin permissions to the network as our Technician recently left for another job within the government, except maybe the Head of Tech (1 of our 4 Vice Principals)...

 

Looking at sfcdetails.txt, I see M$ is complaining about a hash mismatch.


Edited by Alan1998, 19 October 2014 - 05:38 AM.

  • 0

#13
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

OK, how system works now?


  • 0

#14
Alan1998

Alan1998

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 294 posts

No black screen! Thank you :)

 

Don't know if you guys considered the gpedit thing as a "torrent", if it is, let me know...


Edited by Alan1998, 19 October 2014 - 02:17 PM.

  • 0

#15
Alan1998

Alan1998

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 294 posts

Update, so, I've had it under use for 2 ish hours around the time it usually goes black. (7-8AM @ School). So far nothing, I'll keep it under use when I can, but if I'm told to put it away, I must :(.

 

Thank you for the help. I hope your training goes well.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP