Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Possibly Infected or Just Paranoid?


  • Please log in to reply

#1
wray317

wray317

    New Member

  • Member
  • Pip
  • 1 posts

All right, so Im not sure if my cause for coming here is unfounded or not.  I try my best to stay secure but I have to use public wifi (the xfinity hotspots that are everywhere) which I know is not secure at all. I dont have anything shared with the network, I am not in any homegroups and I have Tinywall installed (although, its the default settings, so Im not sure if that really does anything).  Im not sure I can pin point one thing specifically, but my laptop seems to randomly get super slow, or be using 100% of the disk, or the memory, or the CPU.  There seems to be services in the background using a lot of memory, or even unseen services that make my computer freeze up randomly (while Im in programs that normally never freeze up) And I will not have access to certain files sometimes, even as an administrator, it will just say "access denied" and thats it.  Also, when looking at the lists of 'users' (regarding permissions) there is a whole long list of different user names like 'anonymous logon' or 'user-3413534523452' (random long series of numbers) or just any random name that doesnt seem right at all. 

 

Anyway, in an effort to curb my paranoia(?) I downloaded the farbar recovery scan tool (thinking I could decipher it alone, originally)  Then I realized it was way over my head and figured I would see if you guys could help me.  Below are my logs.

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-05-2015 01
Ran by Halley (administrator) on HALLEY-PC on 28-05-2015 04:20:42
Running from C:\Users\Halley\Desktop
Loaded Profiles: Halley (Available Profiles: Halley)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Károly Pados) C:\Program Files (x86)\TinyWall\TinyWall.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Károly Pados) C:\Program Files (x86)\TinyWall\TinyWall.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TinyWall Controller] => C:\Program Files (x86)\TinyWall\TinyWall.exe [653560 2015-01-06] (Károly Pados)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-05-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-05-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-05-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-05-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-05-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-05-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-05-04] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-05-04] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3223668842-3032167072-838030870-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76

FireFox:
========
FF ProfilePath: C:\Users\Halley\AppData\Roaming\Mozilla\Firefox\Profiles\0ex1v169.default
FF DefaultSearchEngine.US: Google
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-05-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-21] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

Chrome:
=======
CHR HomePage: Profile 1 -> hxxp://www.google.com/
CHR StartupUrls: Profile 1 -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Docs) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-15]
CHR Extension: (Google Drive) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-15]
CHR Extension: (Tab Resize - split screen layouts) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bkpenclhmiealbebdopglffmfdiilejc [2015-05-19]
CHR Extension: (YouTube) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-15]
CHR Extension: (Online PDF tools
 ilovepdf.com) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cbdolfjnphjlbbpfdcohojjmbkkfpfom [2015-05-18]
CHR Extension: (uBlock Origin) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-05-15]
CHR Extension: (Google Search) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-15]
CHR Extension: (Clear Cache) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cppjkneekbjaeellbfkmgnhonkkjfpdn [2015-05-15]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-15]
CHR Extension: (Video Downloader [FVD]) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp [2015-05-15]
CHR Extension: (Google Wallet) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-15]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2015-05-21]
CHR Extension: (Gmail) - C:\Users\Halley\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-15]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1429504 2015-03-04] (Microsoft Corporation)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-05-11] (Foxit Software Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-03-20] (Intel Corporation)
S4 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S4 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S4 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [741640 2014-06-15] (DEVGURU Co., LTD.)
R2 TinyWall; C:\Program Files (x86)\TinyWall\TinyWall.exe [653560 2015-01-06] (Károly Pados)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-11-21] (Microsoft Corporation)
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [58368 2011-11-04] (www.winchiphead.com)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-24] (OSR Open Systems Resources, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
S3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
U3 AppMgmt; No ImagePath
U2 clr_optimization_v2.0.50727_32; No ImagePath
U2 clr_optimization_v2.0.50727_64; No ImagePath
U2 CscService; No ImagePath
U3 IPBusEnum; No ImagePath
U3 PeerDistSvc; No ImagePath
U3 ProtectedStorage; No ImagePath
S4 RTSUER; \SystemRoot\system32\Drivers\RtsUer.sys [X]
U3 SDRSVC; No ImagePath
U3 sppuinotify; No ImagePath
U3 TBS; No ImagePath
U2 UxSms; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-28 04:20 - 2015-05-28 04:21 - 00011272 _____ () C:\Users\Halley\Desktop\FRST.txt
2015-05-28 04:20 - 2015-05-28 04:20 - 00000000 ____D () C:\FRST
2015-05-28 04:19 - 2015-05-28 04:19 - 02108928 _____ (Farbar) C:\Users\Halley\Desktop\FRST64.exe
2015-05-28 03:54 - 2015-05-28 03:54 - 00000621 _____ () C:\Users\Halley\Desktop\MetroScan Online 5.lnk
2015-05-28 03:54 - 2015-05-28 03:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetroScan Online 5
2015-05-28 03:50 - 2015-05-28 03:50 - 04950096 _____ (CoreLogic ) C:\Users\Halley\Downloads\metroscanonline_v5.8.exe
2015-05-27 18:10 - 2015-05-28 03:59 - 00125523 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-27 12:24 - 2015-05-27 12:24 - 00016614 _____ () C:\WINDOWS\system32\results.xml
2015-05-27 12:22 - 2015-05-27 12:22 - 00000724 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® HD Graphics Control Panel.lnk
2015-05-27 12:22 - 2015-05-27 12:22 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2015-05-27 12:20 - 2015-03-20 16:18 - 00355328 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-05-27 12:20 - 2015-03-20 16:18 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-05-27 12:19 - 2015-05-27 12:19 - 00000000 ____D () C:\ProgramData\IntelDLM
2015-05-27 12:19 - 2015-03-20 16:18 - 02944640 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 01029736 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 01026152 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00472168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00460048 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2015-05-27 12:19 - 2015-03-20 16:18 - 00448104 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00344168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00338536 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00338024 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00279144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00248424 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00217704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-05-27 12:19 - 2015-03-20 16:18 - 00156264 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-05-27 12:16 - 2015-05-27 12:16 - 00000000 ____D () C:\Users\Halley\AppData\Local\Intel
2015-05-27 12:16 - 2015-05-27 12:16 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-27 12:16 - 2015-05-27 12:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2015-05-27 12:16 - 2015-05-27 12:16 - 00000000 ____D () C:\Program Files (x86)\Intel Driver Update Utility
2015-05-25 23:52 - 2015-05-26 21:29 - 00000067 _____ () C:\Users\Halley\Desktop\#ofappraisals.txt
2015-05-25 20:57 - 2001-08-23 13:00 - 00034871 _____ () C:\WINDOWS\system32\gpedit.msc
2015-05-25 16:52 - 2015-05-25 20:55 - 00000000 ____D () C:\WINDOWS\SysWOW64\GPBAK
2015-05-25 16:52 - 2008-04-14 02:11 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2015-05-25 16:52 - 2001-08-23 13:00 - 00034871 _____ () C:\WINDOWS\SysWOW64\gpedit.msc
2015-05-25 16:51 - 2015-05-25 20:55 - 00707354 _____ () C:\WINDOWS\unins000.exe
2015-05-25 16:51 - 2015-05-25 20:55 - 00002584 _____ () C:\WINDOWS\unins000.dat
2015-05-24 05:38 - 2015-05-27 15:14 - 00000000 ____D () C:\WINDOWS\Minidump
2015-05-24 03:57 - 2015-05-24 03:58 - 01805818 _____ () C:\Users\Halley\Documents\HALLEY-PC.arn
2015-05-24 01:11 - 2015-05-24 01:11 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2015-05-24 01:09 - 2015-05-24 06:37 - 00000000 ___HD () C:\Program Files (x86)\Temp
2015-05-24 01:09 - 2015-03-11 18:04 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-05-23 23:14 - 2015-05-23 23:19 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Agics
2015-05-23 23:14 - 2015-05-23 23:14 - 00001244 _____ () C:\Users\Public\Desktop\Agics Systemscan.lnk
2015-05-23 23:14 - 2015-05-23 23:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agics Systemscan
2015-05-23 23:09 - 2015-05-23 23:09 - 00000000 ____D () C:\Program Files (x86)\Agics
2015-05-23 02:43 - 2015-05-23 02:49 - 00027016 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\SysWOW64\Drivers\PROCEXP141.SYS
2015-05-22 01:22 - 2015-05-22 01:22 - 00000000 ____D () C:\Users\Halley\AppData\Local\Macromedia
2015-05-21 20:01 - 2015-05-21 20:01 - 51880435 _____ () C:\Users\Halley\Documents\Documents123.zip
2015-05-21 19:57 - 2015-05-21 19:57 - 51844653 _____ () C:\Users\Halley\Documents\Documents.7z
2015-05-21 19:56 - 2015-05-21 19:42 - 01687960 _____ (Ross-Tech, LLC) C:\Users\Halley\Documents\VCDS-Lite-1.2-Installer.exe
2015-05-21 19:47 - 2015-05-21 19:47 - 00000000 ____D () C:\Program Files\DIFX
2015-05-21 19:45 - 2015-05-21 19:45 - 00000000 ____D () C:\Ross-Tech
2015-05-21 19:28 - 2015-05-21 19:29 - 25242528 _____ (Ross-Tech, LLC) C:\Users\Halley\Documents\VCDS-Beta-15.5.0-Installer.exe
2015-05-21 19:27 - 2015-05-21 19:28 - 25056512 _____ (Ross-Tech, LLC) C:\Users\Halley\Documents\VCDS-Release-14.10.2-Installer.exe
2015-05-21 15:41 - 2015-05-21 15:41 - 00000000 ____D () C:\Users\Halley\AppData\Local\Foxit Reader
2015-05-21 13:13 - 2015-04-09 17:40 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-05-21 13:13 - 2015-04-09 17:17 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-05-21 12:37 - 2015-03-31 21:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-05-21 12:37 - 2015-03-31 21:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-05-21 12:37 - 2015-03-31 21:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-05-21 12:37 - 2015-03-31 21:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-05-21 12:37 - 2015-03-31 20:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-05-21 12:37 - 2015-03-31 20:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-05-21 12:37 - 2015-03-31 20:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-05-21 12:37 - 2015-03-31 19:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-05-21 12:37 - 2015-03-31 19:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-05-21 12:37 - 2015-03-31 19:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-05-21 12:37 - 2015-03-31 19:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-05-21 12:37 - 2015-03-31 19:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-05-21 12:37 - 2015-03-31 19:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-05-21 12:26 - 2015-05-21 12:26 - 00000000 ____D () C:\WINDOWS\SysWOW64\sda
2015-05-21 12:26 - 2015-05-21 12:26 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-05-21 12:26 - 2013-11-01 14:40 - 00330456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsUVStor.sys
2015-05-21 12:26 - 2013-04-25 17:12 - 09889352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtsUVStoricon.dll
2015-05-21 11:04 - 2015-05-24 05:38 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-21 11:04 - 2015-05-23 22:30 - 00003720 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-05-21 03:32 - 2015-04-15 23:17 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-05-21 03:32 - 2015-04-13 15:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-05-21 03:32 - 2015-04-13 15:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-05-21 03:32 - 2015-04-08 15:41 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-05-21 03:32 - 2015-04-08 15:07 - 00410336 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-05-21 03:32 - 2015-04-01 15:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-05-21 03:32 - 2015-04-01 15:30 - 02483712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-05-21 03:32 - 2015-03-19 20:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-05-21 03:32 - 2015-03-19 20:08 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-05-21 03:32 - 2015-03-19 19:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-05-21 03:32 - 2015-03-19 19:07 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-05-21 03:32 - 2015-03-01 18:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-05-21 03:32 - 2015-03-01 18:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-05-20 02:12 - 2015-05-21 11:04 - 00000000 ____D () C:\Users\Halley\AppData\Local\Adobe
2015-05-19 19:52 - 2015-05-19 19:52 - 00028726 _____ () C:\Users\Halley\Documents\tinywallsettings.tws
2015-05-19 14:52 - 2015-05-19 14:52 - 00001171 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-05-19 14:52 - 2015-05-19 14:52 - 00001159 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-05-19 14:52 - 2015-05-19 14:52 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Mozilla
2015-05-19 14:52 - 2015-05-19 14:52 - 00000000 ____D () C:\Users\Halley\AppData\Local\Mozilla
2015-05-19 14:52 - 2015-05-19 14:52 - 00000000 ____D () C:\ProgramData\Mozilla
2015-05-19 14:52 - 2015-05-19 14:52 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-19 14:52 - 2015-05-19 14:52 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-05-18 16:17 - 2015-05-18 16:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOTAL Sketch
2015-05-18 15:35 - 2015-05-28 02:50 - 00000177 _____ () C:\WINDOWS\HASHTABLE
2015-05-18 09:57 - 2015-04-30 13:35 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-18 09:57 - 2015-04-30 13:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-18 09:38 - 2014-06-09 15:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-05-18 09:38 - 2014-06-09 15:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-05-18 09:29 - 2015-05-18 09:29 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\PDF Writer
2015-05-18 09:29 - 2015-05-18 09:29 - 00000000 ____D () C:\Users\Halley\AppData\Local\PDF Writer
2015-05-17 17:04 - 2015-05-17 17:04 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Macromedia
2015-05-17 16:55 - 2015-05-18 16:17 - 00001167 _____ () C:\Users\Public\Desktop\TOTAL Sketch.lnk
2015-05-17 16:32 - 2015-05-17 16:32 - 00003158 _____ () C:\WINDOWS\System32\Tasks\{425DC72F-70FE-431A-9BD2-4719CE9C23C3}
2015-05-17 16:26 - 2015-05-18 16:18 - 00000000 ____D () C:\Users\Halley\AppData\Local\alamode
2015-05-17 16:25 - 2015-05-25 01:36 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Foxit Software
2015-05-17 16:25 - 2015-05-17 16:25 - 00000000 ____D () C:\Users\Public\Foxit Software
2015-05-17 16:24 - 2015-05-17 16:24 - 00001367 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2015-05-17 16:24 - 2015-05-17 16:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2015-05-17 16:24 - 2015-05-17 16:24 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2015-05-17 16:20 - 2015-05-17 16:22 - 00000000 ____D () C:\ProgramData\PDF Writer
2015-05-17 16:20 - 2015-05-17 16:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip
2015-05-17 16:20 - 2015-05-17 16:20 - 00000000 ____D () C:\Program Files\Common Files\Bullzip
2015-05-17 16:20 - 2015-05-17 16:20 - 00000000 ____D () C:\Program Files\Bullzip
2015-05-17 16:20 - 2014-11-19 06:39 - 00228352 _____ (Bullzip) C:\WINDOWS\SysWOW64\bzFlRdr.dll
2015-05-17 16:20 - 2013-09-01 03:59 - 01103872 _____ () C:\WINDOWS\SysWOW64\CBLCtlsU.ocx
2015-05-17 16:20 - 2013-07-13 03:15 - 00805376 _____ () C:\WINDOWS\SysWOW64\EditCtlsU.ocx
2015-05-17 16:20 - 2013-07-12 13:57 - 00539648 _____ () C:\WINDOWS\SysWOW64\LblCtlsU.ocx
2015-05-17 16:20 - 2013-04-05 04:55 - 00476160 _____ () C:\WINDOWS\SysWOW64\TabStripCtlU.ocx
2015-05-17 16:20 - 2013-03-28 14:13 - 00645632 _____ () C:\WINDOWS\SysWOW64\BtnCtlsU.ocx
2015-05-17 16:20 - 2013-03-03 05:37 - 01061888 _____ () C:\WINDOWS\SysWOW64\ExLvwU.ocx
2015-05-17 16:20 - 2008-07-09 06:39 - 00103424 _____ (Bullzip) C:\WINDOWS\SysWOW64\bzDCT.dll
2015-05-17 16:20 - 1999-05-12 15:00 - 01064456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomctl.ocx
2015-05-17 16:20 - 1999-05-06 15:00 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.OCX
2015-05-17 16:13 - 2015-05-17 16:13 - 00000000 ____D () C:\Program Files\Reference Assemblies
2015-05-17 16:13 - 2015-05-17 16:13 - 00000000 ____D () C:\Program Files\MSBuild
2015-05-17 16:13 - 2015-05-17 16:13 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2015-05-17 16:13 - 2015-05-17 16:13 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2015-05-17 16:11 - 2013-08-02 21:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-05-17 16:11 - 2013-08-02 21:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-05-17 15:49 - 2015-05-17 15:49 - 00000000 ____D () C:\Users\Halley\AppData\Local\Apps\2.0
2015-05-17 15:40 - 2015-05-17 15:40 - 00098556 _____ () C:\ProgramData\1431902391.bdinstall.bin
2015-05-17 15:39 - 2015-05-17 15:39 - 00037721 _____ () C:\ProgramData\1431902388.bdinstall.bin
2015-05-17 15:33 - 2015-05-17 15:33 - 00002801 _____ () C:\Users\Public\Desktop\TOTAL.lnk
2015-05-17 15:33 - 2015-05-17 15:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOTAL
2015-05-17 15:33 - 2014-09-24 16:22 - 01083664 _____ () C:\WINDOWS\SysWOW64\SpectrumSafeStart.dll
2015-05-17 15:33 - 2014-09-24 16:22 - 00800016 _____ () C:\WINDOWS\SysWOW64\InstallUtils.dll
2015-05-17 15:32 - 2015-05-17 16:54 - 00000000 ____D () C:\Program Files (x86)\a la mode
2015-05-17 15:22 - 2015-05-28 02:50 - 00000000 ____D () C:\ProgramData\alamode
2015-05-17 15:21 - 2015-05-17 16:53 - 00000000 ____D () C:\Users\Halley\AppData\Local\Downloaded Installations
2015-05-17 10:59 - 2015-05-27 12:25 - 00000000 ___RD () C:\Users\Halley\Desktop\Sys Internals
2015-05-17 10:56 - 2015-05-17 10:56 - 00000000 ____D () C:\Users\Halley\AppData\Local\Secunia PSI
2015-05-17 10:56 - 2015-05-17 10:56 - 00000000 ____D () C:\Program Files (x86)\Secunia
2015-05-17 10:11 - 2015-05-17 10:11 - 00001140 _____ () C:\Users\Halley\Desktop\Dropbox.lnk
2015-05-17 10:08 - 2015-05-17 10:08 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-05-17 10:04 - 2015-05-27 15:14 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Dropbox
2015-05-17 09:58 - 2014-06-15 23:01 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2015-05-17 09:58 - 2014-06-15 23:01 - 00110336 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys
2015-05-17 09:57 - 2015-05-17 09:57 - 00000000 ____D () C:\Program Files\SAMSUNG
2015-05-17 09:56 - 2015-05-17 09:56 - 00000000 ____D () C:\ProgramData\Samsung
2015-05-17 09:49 - 2015-05-17 09:49 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-05-16 14:44 - 2015-05-26 11:23 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-05-16 14:44 - 2015-05-16 14:44 - 00001114 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-16 14:44 - 2015-05-16 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-16 14:44 - 2015-05-16 14:44 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-16 14:44 - 2015-05-16 14:44 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-16 14:44 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-05-16 14:44 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-05-16 14:44 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-05-16 10:20 - 2015-05-27 11:58 - 00000000 ____D () C:\Users\Halley\Desktop\Kyles
2015-05-15 22:50 - 2015-05-15 22:50 - 00000000 ____H () C:\WINDOWS\msds.dat
2015-05-15 19:53 - 2015-05-22 15:11 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Notepad++
2015-05-15 19:53 - 2015-05-15 19:54 - 00000000 ____D () C:\Program Files (x86)\Notepad++
2015-05-15 19:53 - 2015-05-15 19:53 - 00001067 _____ () C:\Users\Halley\Desktop\Notepad++.lnk
2015-05-15 19:53 - 2015-05-15 19:53 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-05-15 19:53 - 2015-05-15 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-05-15 19:50 - 2015-05-15 19:50 - 00000000 ____D () C:\Users\Halley\Desktop\Entertain
2015-05-15 17:56 - 2015-01-05 20:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-05-15 17:56 - 2015-01-05 19:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-05-15 17:56 - 2015-01-05 18:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2015-05-15 17:56 - 2015-01-05 18:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-05-15 17:55 - 2015-05-15 17:55 - 00000000 ____D () C:\Program Files\Common Files\Atheros
2015-05-15 17:55 - 2014-11-17 13:17 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2015-05-15 17:55 - 2014-11-17 13:17 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-05-15 17:55 - 2014-11-15 12:05 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-05-15 17:55 - 2014-11-14 23:29 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-05-15 17:55 - 2014-11-13 23:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-05-15 17:55 - 2014-11-13 23:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-05-15 17:55 - 2014-11-13 23:46 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-05-15 17:55 - 2014-11-13 22:03 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-05-15 17:55 - 2014-11-10 11:06 - 02485056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-05-15 17:55 - 2014-11-10 11:06 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-05-15 17:55 - 2014-11-10 11:06 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-05-15 17:55 - 2014-11-10 11:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-05-15 17:55 - 2014-11-09 19:57 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2015-05-15 17:55 - 2014-11-09 18:37 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-05-15 17:55 - 2014-11-09 18:34 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-05-15 17:55 - 2014-11-09 18:26 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-05-15 17:55 - 2014-11-09 18:20 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-05-15 17:55 - 2014-11-09 18:09 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-05-15 17:55 - 2014-11-09 18:08 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-05-15 17:55 - 2014-11-09 18:06 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-05-15 17:55 - 2014-11-09 17:57 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-05-15 17:55 - 2014-11-09 17:57 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-05-15 17:55 - 2014-11-07 21:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-05-15 17:55 - 2014-11-07 20:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-05-15 17:55 - 2014-11-07 20:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-05-15 17:55 - 2014-11-07 20:56 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-05-15 17:55 - 2014-11-07 20:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-05-15 17:55 - 2014-11-07 20:24 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-05-15 17:55 - 2014-11-07 20:13 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-05-15 17:55 - 2014-11-07 20:13 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-05-15 17:55 - 2014-11-07 20:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-05-15 17:55 - 2014-11-07 19:48 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-05-15 17:55 - 2014-11-07 19:38 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-05-15 17:55 - 2014-11-07 19:17 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-05-15 17:55 - 2014-11-07 19:03 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-05-15 17:55 - 2014-11-07 18:58 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-05-15 17:55 - 2014-11-07 18:49 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-05-15 17:55 - 2014-11-06 20:58 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-05-15 17:55 - 2014-11-06 20:20 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-05-15 17:55 - 2014-11-04 19:12 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-05-15 17:55 - 2014-11-04 19:12 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-05-15 17:55 - 2014-11-04 19:06 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-05-15 17:55 - 2014-11-04 18:44 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-05-15 17:55 - 2014-11-04 18:43 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-05-15 17:55 - 2014-11-04 18:41 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-05-15 17:55 - 2014-11-04 18:39 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-05-15 17:55 - 2014-11-04 18:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-05-15 17:55 - 2014-11-04 18:33 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-05-15 17:55 - 2014-11-04 18:21 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-05-15 17:55 - 2014-11-04 18:20 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-05-15 17:55 - 2014-11-04 18:18 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-05-15 17:55 - 2014-11-04 18:14 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-05-15 17:55 - 2014-11-04 18:06 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-05-15 17:55 - 2014-11-04 12:33 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-05-15 17:55 - 2014-11-04 12:25 - 00059712 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-05-15 17:55 - 2014-11-04 12:25 - 00051008 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-05-15 17:55 - 2014-11-03 23:55 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-05-15 17:55 - 2014-11-03 23:54 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-05-15 17:55 - 2014-11-03 23:54 - 00032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-05-15 17:55 - 2014-11-03 23:54 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-05-15 17:55 - 2014-11-03 23:27 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-05-15 17:55 - 2014-11-03 22:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-05-15 17:55 - 2014-10-30 17:51 - 18823168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-05-15 17:55 - 2014-10-30 17:10 - 15158784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-05-15 17:55 - 2014-10-28 20:05 - 00551232 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-05-15 17:55 - 2014-10-28 18:55 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-05-15 17:55 - 2014-10-28 18:13 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-05-15 17:55 - 2014-10-20 18:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-05-15 17:55 - 2014-10-20 18:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-05-15 17:55 - 2014-10-20 17:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-05-15 17:55 - 2014-10-20 17:31 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-05-15 17:55 - 2014-10-20 17:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-05-15 17:55 - 2014-10-20 17:30 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-05-15 17:55 - 2014-10-20 17:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-05-15 17:55 - 2014-10-16 21:56 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-05-15 17:55 - 2014-10-16 20:35 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-05-15 17:50 - 2015-05-15 17:50 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-05-15 17:50 - 2015-05-15 17:49 - 00083160 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2015-05-15 17:46 - 2015-05-15 17:46 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VAG-COM
2015-05-15 17:46 - 2015-05-15 17:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAG-COM
2015-05-15 17:45 - 2015-05-18 01:29 - 00000000 ____D () C:\Program Files (x86)\VAG-COM
2015-05-15 13:10 - 2015-05-15 13:34 - 00000000 ___SD () C:\WINDOWS\system32\GWX
2015-05-15 13:10 - 2015-05-15 13:10 - 00000000 ___SD () C:\WINDOWS\SysWOW64\GWX
2015-05-15 13:10 - 2015-05-15 13:10 - 00000000 ____D () C:\WINDOWS\system32\appraiser
2015-05-15 13:05 - 2015-05-15 13:06 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-05-15 13:05 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-15 11:29 - 2015-05-15 11:54 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\TinyWall
2015-05-15 11:28 - 2015-05-15 12:46 - 00000000 ____D () C:\ProgramData\TinyWall
2015-05-15 11:28 - 2015-05-15 11:29 - 00000628 _____ () C:\WINDOWS\system32\InstallUtil.InstallLog
2015-05-15 11:28 - 2015-05-15 11:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TinyWall
2015-05-15 11:28 - 2015-05-15 11:29 - 00000000 ____D () C:\Program Files (x86)\TinyWall
2015-05-15 03:07 - 2015-05-25 20:48 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-05-15 02:58 - 2015-05-21 10:36 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\vlc
2015-05-15 02:58 - 2015-05-15 02:58 - 00001082 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-05-15 02:58 - 2015-05-15 02:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-05-15 02:58 - 2015-05-15 02:58 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2015-05-15 00:29 - 2015-05-15 00:58 - 2564476928 _____ () C:\Users\Halley\Documents\Win7Pro-32bit.iso
2015-05-15 00:09 - 2015-05-15 00:39 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\sqlitestudio
2015-05-14 23:52 - 2015-04-24 14:32 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-05-14 23:52 - 2015-04-09 17:34 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-05-14 23:52 - 2015-04-09 17:11 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-05-14 23:52 - 2015-04-02 17:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-14 23:52 - 2015-04-02 17:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-05-14 23:52 - 2015-04-01 15:22 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-05-14 23:52 - 2015-04-01 15:20 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-05-14 23:52 - 2015-03-31 20:45 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-05-14 23:52 - 2015-03-31 19:31 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-05-14 23:52 - 2015-03-22 15:45 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-05-14 23:52 - 2015-03-22 15:09 - 01111552 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-05-14 23:52 - 2015-03-22 15:09 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-05-14 23:52 - 2015-03-22 15:09 - 00769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-05-14 23:52 - 2015-03-22 15:09 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-05-14 23:52 - 2015-03-22 15:09 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-05-14 23:52 - 2015-03-22 15:09 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-05-14 23:52 - 2015-03-19 18:56 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-05-14 23:52 - 2015-03-17 10:26 - 00467776 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-05-14 23:52 - 2015-03-14 01:20 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-05-14 23:52 - 2015-03-14 01:13 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-05-14 23:52 - 2015-03-12 21:03 - 00239424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-05-14 23:52 - 2015-03-12 21:03 - 00154432 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-05-14 23:52 - 2015-03-12 19:02 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-05-14 23:52 - 2015-03-12 18:11 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-05-14 23:52 - 2015-03-12 17:39 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-05-14 23:52 - 2015-03-10 18:49 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-05-14 23:52 - 2015-03-10 18:09 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-05-14 23:52 - 2015-03-08 19:02 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-05-14 23:52 - 2015-03-05 20:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-05-14 23:52 - 2015-03-05 19:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-05-14 23:52 - 2015-03-05 19:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-05-14 23:52 - 2015-03-04 16:09 - 01429504 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-05-14 23:52 - 2015-03-03 18:32 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-14 23:52 - 2015-03-03 18:12 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-14 23:52 - 2015-02-17 16:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-05-14 23:52 - 2015-02-05 13:24 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-05-14 23:52 - 2015-02-03 16:58 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-05-14 23:52 - 2015-02-03 16:58 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-05-14 23:52 - 2015-02-03 16:58 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-05-14 23:52 - 2015-02-02 16:53 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-05-14 23:52 - 2015-02-02 16:53 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-05-14 23:52 - 2015-01-29 17:53 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-14 23:52 - 2015-01-28 18:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-05-14 23:52 - 2015-01-28 18:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-05-14 23:52 - 2015-01-28 18:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-05-14 23:52 - 2015-01-28 17:59 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-05-14 23:52 - 2015-01-27 19:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-05-14 23:52 - 2015-01-27 18:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-05-14 23:52 - 2015-01-27 16:47 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-05-14 23:52 - 2015-01-27 16:41 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-05-14 23:52 - 2015-01-26 20:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-05-14 23:52 - 2015-01-23 18:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-05-14 23:52 - 2015-01-23 00:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-05-14 23:52 - 2015-01-22 22:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-05-14 23:52 - 2014-12-19 01:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-05-14 23:52 - 2014-12-19 01:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-05-14 23:52 - 2014-12-13 14:28 - 00513488 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-05-14 23:52 - 2014-12-13 14:28 - 00513488 _____ () C:\WINDOWS\system32\locale.nls
2015-05-14 23:52 - 2014-12-02 16:09 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-05-14 23:52 - 2014-11-13 23:58 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-05-14 23:52 - 2014-11-09 19:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2015-05-14 23:52 - 2014-11-09 18:51 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-05-14 23:52 - 2014-10-30 16:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-05-14 23:52 - 2014-10-30 16:38 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-05-14 23:51 - 2015-02-07 16:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-05-14 23:51 - 2015-02-07 16:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-05-14 23:51 - 2015-02-02 17:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-05-14 23:51 - 2015-02-02 17:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-05-14 23:51 - 2015-01-29 20:01 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-05-14 23:51 - 2015-01-29 20:00 - 00167424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-05-14 23:51 - 2015-01-29 19:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-05-14 23:51 - 2015-01-29 19:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-05-14 23:51 - 2015-01-29 19:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-05-14 23:51 - 2015-01-29 18:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-05-14 23:51 - 2015-01-29 18:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-05-14 23:51 - 2015-01-29 18:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-05-14 23:51 - 2015-01-29 18:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-05-14 23:51 - 2015-01-29 18:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-05-14 23:51 - 2015-01-29 18:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-05-14 23:51 - 2015-01-29 18:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-05-14 23:51 - 2015-01-29 18:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-05-14 23:51 - 2015-01-29 18:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-05-14 23:51 - 2015-01-29 18:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-05-14 23:51 - 2015-01-28 18:11 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-05-14 23:51 - 2015-01-28 18:00 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-05-14 23:51 - 2015-01-28 17:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-05-14 23:51 - 2015-01-28 17:50 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-05-14 23:51 - 2015-01-28 17:49 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-05-14 23:51 - 2015-01-19 11:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-05-14 23:51 - 2014-12-10 22:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-05-14 23:49 - 2015-05-15 00:33 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3223668842-3032167072-838030870-1001
2015-05-14 23:44 - 2015-05-14 23:44 - 00000118 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-05-14 23:24 - 2015-05-27 12:24 - 00000401 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-05-14 22:41 - 2014-04-15 16:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-05-14 22:40 - 2014-04-15 16:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-05-14 22:01 - 2015-05-14 22:01 - 00000000 ____D () C:\Program Files (x86)\Google
2015-05-14 21:13 - 2015-05-14 21:13 - 00000000 ____D () C:\ProgramData\Intel
2015-05-14 21:13 - 2013-12-10 22:27 - 00016344 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\IntelMEFWVer.dll
2015-05-14 21:12 - 2015-05-14 21:12 - 00000000 ____D () C:\ProgramData\Dell
2015-05-14 21:11 - 2015-05-14 21:11 - 00211212 _____ () C:\ProgramData\1431662090.bdinstall.bin
2015-05-14 20:56 - 2015-05-14 20:58 - 00002842 _____ () C:\WINDOWS\system32\lic2.xml31876
2015-05-14 20:55 - 2015-05-15 11:25 - 00002796 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-05-14 20:55 - 2015-05-14 20:55 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-05-14 20:55 - 2015-05-14 20:55 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-05-14 20:55 - 2015-05-14 20:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-05-14 20:55 - 2015-05-14 20:55 - 00000000 ____D () C:\Program Files\CCleaner
2015-05-14 20:55 - 2009-07-15 01:21 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2015-05-14 20:54 - 2015-05-14 20:55 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\QuickScan
2015-05-14 20:54 - 2015-05-14 20:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-05-14 20:54 - 2015-05-14 20:54 - 00000000 ____D () C:\Program Files\7-Zip
2015-05-14 20:52 - 2015-03-03 06:17 - 00295552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-05-14 20:52 - 2014-12-08 20:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-05-14 20:52 - 2014-12-08 18:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-05-14 20:52 - 2014-12-08 18:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-05-14 20:52 - 2014-10-30 15:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2015-05-14 20:52 - 2014-10-30 15:34 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2015-05-14 20:51 - 2015-04-30 16:05 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-05-14 20:51 - 2015-04-30 15:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-05-14 20:51 - 2015-04-13 15:48 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-05-14 20:51 - 2015-04-09 18:00 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-05-14 20:51 - 2015-04-09 17:50 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-05-14 20:51 - 2015-04-09 17:26 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-05-14 20:51 - 2015-03-23 14:59 - 07476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-05-14 20:51 - 2015-03-23 14:59 - 01733952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-05-14 20:51 - 2015-03-23 14:59 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-05-14 20:51 - 2015-03-23 14:58 - 01498872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-05-14 20:51 - 2015-03-23 14:45 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-05-14 20:51 - 2015-03-19 21:12 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-05-14 20:51 - 2015-03-19 21:10 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-05-14 20:51 - 2015-03-19 21:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-05-14 20:51 - 2015-03-19 20:17 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2015-05-14 20:51 - 2015-03-19 19:41 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-05-14 20:51 - 2015-03-19 19:40 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-05-14 20:51 - 2015-03-19 19:16 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-05-14 20:51 - 2015-02-19 20:03 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-05-14 20:51 - 2015-02-19 19:58 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-05-14 20:51 - 2015-02-19 19:20 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-05-14 20:51 - 2015-02-19 19:15 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-05-14 20:51 - 2014-12-18 23:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-05-14 20:51 - 2014-12-11 19:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-05-14 20:51 - 2014-10-28 18:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-05-14 20:51 - 2014-10-28 18:15 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-05-14 20:51 - 2014-10-28 18:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-05-14 20:51 - 2014-10-28 18:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-05-14 20:51 - 2014-10-28 18:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-05-14 20:51 - 2014-10-28 18:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-05-14 20:50 - 2015-04-21 10:14 - 24971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-14 20:50 - 2015-04-21 09:50 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-14 20:50 - 2015-04-21 09:50 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-14 20:50 - 2015-04-21 09:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-14 20:50 - 2015-04-21 09:37 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-05-14 20:50 - 2015-04-21 09:35 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-14 20:50 - 2015-04-21 09:31 - 06025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-14 20:50 - 2015-04-21 09:24 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-14 20:50 - 2015-04-21 09:13 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-05-14 20:50 - 2015-04-21 09:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-14 20:50 - 2015-04-21 09:09 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-05-14 20:50 - 2015-04-21 09:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-05-14 20:50 - 2015-04-21 09:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-05-14 20:50 - 2015-04-21 09:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-05-14 20:50 - 2015-04-21 09:04 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-14 20:50 - 2015-04-21 08:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-05-14 20:50 - 2015-04-21 08:58 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-05-14 20:50 - 2015-04-21 08:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-05-14 20:50 - 2015-04-21 08:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-05-14 20:50 - 2015-04-21 08:49 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-14 20:50 - 2015-04-21 08:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-05-14 20:50 - 2015-04-21 08:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-14 20:50 - 2015-04-21 08:40 - 14401536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-14 20:50 - 2015-04-21 08:38 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-05-14 20:50 - 2015-04-21 08:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-05-14 20:50 - 2015-04-21 08:36 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-05-14 20:50 - 2015-04-21 08:32 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-05-14 20:50 - 2015-04-21 08:31 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-14 20:50 - 2015-04-21 08:28 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-05-14 20:50 - 2015-04-21 08:27 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-14 20:50 - 2015-04-21 08:26 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-05-14 20:50 - 2015-04-21 08:26 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-05-14 20:50 - 2015-04-21 08:25 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-05-14 20:50 - 2015-04-21 08:17 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-14 20:50 - 2015-04-21 08:15 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-14 20:50 - 2015-04-21 08:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-05-14 20:50 - 2015-04-21 08:02 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-05-14 20:50 - 2015-04-21 07:58 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-14 20:50 - 2015-04-21 07:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-05-14 20:50 - 2015-04-08 15:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-05-14 20:50 - 2015-03-29 22:47 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-05-14 20:50 - 2015-03-26 20:27 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-05-14 20:50 - 2015-03-26 19:50 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-05-14 20:50 - 2015-03-26 19:48 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-05-14 20:50 - 2015-03-12 19:58 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-05-14 20:50 - 2015-03-12 19:37 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-05-14 20:50 - 2015-03-04 03:25 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-05-14 20:50 - 2015-03-03 20:04 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-05-14 20:50 - 2015-03-03 19:19 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-05-14 20:50 - 2015-02-24 01:32 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-05-14 20:50 - 2015-02-20 16:49 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-05-14 20:50 - 2015-02-19 19:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-05-14 20:50 - 2015-02-19 19:34 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-05-14 20:50 - 2015-02-19 19:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-05-14 20:50 - 2015-02-19 18:29 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-05-14 20:50 - 2015-02-12 10:40 - 22291584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-05-14 20:50 - 2015-02-12 10:34 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-05-14 20:50 - 2015-01-30 16:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-05-14 20:50 - 2015-01-29 11:45 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-05-14 20:50 - 2015-01-29 11:34 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-05-14 20:50 - 2015-01-27 18:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-05-14 20:50 - 2015-01-27 18:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-05-14 20:50 - 2015-01-26 21:22 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-05-14 20:50 - 2015-01-26 19:11 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-05-14 20:50 - 2015-01-15 15:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-05-14 20:50 - 2015-01-11 19:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-05-14 20:50 - 2015-01-11 18:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-05-14 20:50 - 2014-12-08 12:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-05-14 20:50 - 2014-12-08 12:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-05-14 20:50 - 2014-12-08 12:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-05-14 20:50 - 2014-12-08 12:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-05-14 20:50 - 2014-12-08 12:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-05-14 20:50 - 2014-12-08 12:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-05-14 20:50 - 2014-12-08 12:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-05-14 20:50 - 2014-12-08 12:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-05-14 20:50 - 2014-12-05 20:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-05-14 20:50 - 2014-12-05 18:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-05-14 20:50 - 2014-12-05 18:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-05-14 20:50 - 2014-11-09 16:19 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-05-14 20:50 - 2014-11-09 16:19 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-05-14 20:49 - 2014-07-23 20:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2015-05-14 20:49 - 2014-07-23 20:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2015-05-14 20:46 - 2015-05-14 20:46 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-05-14 20:40 - 2015-05-15 11:20 - 00000000 ___DC () C:\WINDOWS\Panther
2015-05-14 20:39 - 2015-05-14 20:39 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2015-05-14 20:34 - 2015-05-28 04:13 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-14 20:34 - 2015-05-28 04:13 - 00000926 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-14 20:34 - 2015-05-28 03:47 - 00000922 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-14 20:34 - 2015-05-19 15:06 - 00003898 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-14 20:34 - 2015-05-19 15:06 - 00003662 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-14 20:34 - 2015-05-14 20:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-14 20:33 - 2015-05-14 20:34 - 00000000 ____D () C:\Users\Halley\AppData\Local\Google
2015-05-14 20:33 - 2015-05-14 20:33 - 00000000 __SHD () C:\Users\Halley\AppData\Local\EmieUserList
2015-05-14 20:33 - 2015-05-14 20:33 - 00000000 __SHD () C:\Users\Halley\AppData\Local\EmieSiteList
2015-05-14 20:33 - 2015-05-14 20:33 - 00000000 __SHD () C:\Users\Halley\AppData\Local\EmieBrowserModeList
2015-05-14 20:31 - 2015-05-14 23:30 - 00000000 ____D () C:\Users\Halley\OneDrive
2015-05-14 20:11 - 2015-05-14 21:12 - 00000000 ____D () C:\Program Files\Intel
2015-05-14 20:11 - 2015-05-14 21:12 - 00000000 ____D () C:\Program Files (x86)\Intel
2015-05-14 20:11 - 2015-03-19 21:02 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-05-14 20:11 - 2015-03-19 21:02 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-05-14 20:05 - 2015-05-28 04:18 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3223668842-3032167072-838030870-1000
2015-05-14 19:59 - 2015-05-15 22:48 - 00000000 ____D () C:\Users\Halley\AppData\Local\VirtualStore
2015-05-14 19:59 - 2015-05-14 19:59 - 00001442 _____ () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-14 19:59 - 2015-05-14 19:59 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Adobe
2015-05-14 19:58 - 2015-05-18 09:58 - 00000000 ____D () C:\Users\Halley\AppData\Local\Packages
2015-05-14 19:58 - 2015-05-14 19:58 - 00000020 ___SH () C:\Users\Halley\ntuser.ini
2015-05-14 19:55 - 2015-03-14 01:54 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-05-14 19:55 - 2015-03-13 18:56 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-05-14 19:55 - 2015-03-13 18:56 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-05-14 19:55 - 2015-03-13 18:51 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-05-14 19:55 - 2015-03-13 18:37 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-05-14 19:55 - 2015-03-13 18:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-05-14 19:55 - 2015-03-13 17:22 - 03678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-05-14 19:55 - 2015-03-13 17:12 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-05-14 19:55 - 2015-03-13 17:12 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-05-14 19:55 - 2015-03-13 17:09 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-05-14 19:55 - 2015-03-13 17:08 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-05-14 19:55 - 2015-03-13 17:08 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-05-14 19:55 - 2015-03-13 17:06 - 02373632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-05-14 19:55 - 2015-03-13 17:06 - 00891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-05-14 19:55 - 2015-03-13 17:02 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-05-14 19:55 - 2015-03-13 17:02 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-05-14 19:55 - 2015-03-13 16:59 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-05-14 19:55 - 2015-03-13 16:59 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-05-14 19:55 - 2014-10-17 23:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-05-14 19:48 - 2015-05-14 19:49 - 00009528 _____ () C:\WINDOWS\diagwrn.xml
2015-05-14 19:48 - 2015-05-14 19:49 - 00009528 _____ () C:\WINDOWS\diagerr.xml
2015-05-14 19:47 - 2015-05-25 16:56 - 00000000 ____D () C:\Users\Halley
2015-05-14 19:47 - 2014-11-21 08:57 - 00000000 ___RD () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-14 19:47 - 2014-11-21 08:57 - 00000000 ___RD () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-14 19:47 - 2014-11-21 08:57 - 00000000 ___RD () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-14 19:47 - 2014-11-21 01:52 - 00000369 _____ () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-05-14 19:47 - 2014-11-21 01:52 - 00000369 _____ () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-05-14 19:47 - 2013-08-22 08:36 - 00000000 ____D () C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-14 19:32 - 2013-06-18 05:18 - 00000001 ___SH () C:\BOOTNXT
2015-05-14 19:14 - 2015-05-13 22:22 - 00806816 _____ (Akeo Consulting (http://akeo.ie)) C:\Users\Halley\Documents\rufus-2.1.exe
2015-05-14 19:03 - 2015-05-14 19:05 - 00000000 ____D () C:\Users\Halley\Documents\Windows_8.1
2015-05-13 22:43 - 2015-05-13 22:44 - 3532521472 _____ () C:\Users\Halley\Documents\Windows_8.1.iso
2015-05-13 21:58 - 2015-05-13 21:58 - 00000000 __RHD () C:\ESD
2015-05-13 18:21 - 2015-05-13 18:21 - 00000000 ____D () C:\Users\Halley\Intel
2015-05-13 07:31 - 2015-05-13 07:32 - 00000929 _____ () C:\Users\Halley\Desktop\Dropbox-Folder.lnk
2015-05-12 22:53 - 2015-05-12 22:53 - 00000000 ____D () C:\Users\Public\Documents\a la mode
2015-05-11 15:23 - 2015-05-11 15:27 - 00000000 ____D () C:\Users\Halley\Documents\Win7Pro-64bit
2015-05-11 12:34 - 2015-05-11 12:34 - 00977624 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt64win7.sys
2015-05-11 12:34 - 2015-05-11 12:34 - 00107552 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RTNUninst64.dll
2015-05-11 12:34 - 2015-05-11 12:34 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-05-11 12:31 - 2015-05-11 12:31 - 04050432 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athrx.sys
2015-05-11 11:54 - 2015-05-28 03:48 - 00000000 ____D () C:\Users\Halley\Desktop\Appraisal Workfiles
2015-05-11 11:48 - 2015-05-28 03:54 - 00000000 ____D () C:\MetroScan
2015-05-11 11:18 - 2015-05-27 15:14 - 00000000 ___RD () C:\Users\Halley\Dropbox
2015-05-11 10:52 - 2015-05-18 16:17 - 00000000 ____D () C:\Users\Halley\Documents\a la mode
2015-05-11 10:50 - 2015-05-17 16:55 - 02122756 _____ () C:\Users\Halley\MSI_TOTALSketch.log
2015-05-11 10:48 - 2015-05-11 10:49 - 01031448 _____ () C:\Users\Halley\MSI_MERCURYDESKTOP.log
2015-05-11 10:44 - 2015-05-17 16:18 - 00276082 _____ () C:\Users\Halley\MSI_TOTAL.log
2015-05-11 10:31 - 2015-05-11 10:32 - 00000849 _____ () C:\Users\Halley\Desktop\Downloads.lnk
2015-05-11 05:40 - 2015-05-11 05:40 - 00000000 ____D () C:\Dell
2015-05-11 05:37 - 2015-05-13 18:33 - 00000000 ____D () C:\Intel
2015-05-11 05:22 - 2015-05-14 19:32 - 00008192 __RSH () C:\BOOTSECT.BAK
2015-05-11 05:22 - 2014-11-21 01:11 - 00404250 __RSH () C:\bootmgr
2015-05-11 04:31 - 2015-05-14 20:40 - 00000000 __SHD () C:\Recovery
2015-04-29 10:44 - 2015-04-29 10:44 - 00600088 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2015-04-29 10:44 - 2015-04-29 10:44 - 00191512 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll
2015-04-29 10:44 - 2015-04-29 10:44 - 00190480 _____ (Qualcomm Atheros Communications Inc.) C:\WINDOWS\system32\btcoinst.dll
2015-04-29 10:20 - 2015-04-29 10:20 - 00246804 _____ () C:\WINDOWS\system32\Drivers\AtherosBT.bin
2015-04-29 10:20 - 2015-04-29 10:20 - 00048092 _____ () C:\WINDOWS\system32\Drivers\AthrBT_0x01020200.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00046748 _____ () C:\WINDOWS\system32\Drivers\AthrBT_0x31010000.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00046268 _____ () C:\WINDOWS\system32\Drivers\AthrBT_0x11020100.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00046212 _____ () C:\WINDOWS\system32\Drivers\AthrBT_0x11020000.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00040684 _____ () C:\WINDOWS\system32\Drivers\AthrBT_0x31010000_ss01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00038140 _____ () C:\WINDOWS\system32\Drivers\AthrBT_0x31010100.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00023532 _____ () C:\WINDOWS\system32\Drivers\AthrBT_0x01020201.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001926 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0xf0.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001926 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x21.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001926 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x11.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001926 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001922 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010100_40.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001802 _____ () C:\WINDOWS\system32\Drivers\ramps_0x11020100_40_SS01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001802 _____ () C:\WINDOWS\system32\Drivers\ramps_0x11020100_40_nf01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001802 _____ () C:\WINDOWS\system32\Drivers\ramps_0x11020100_40.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001796 _____ () C:\WINDOWS\system32\Drivers\ramps_0x11020000_40.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001516 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_SS01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001516 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_LV01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001516 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0xf1.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001516 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x22.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001516 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x12.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001516 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001512 _____ () C:\WINDOWS\system32\Drivers\ramps_0x31010100_40_0x01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001242 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020200_40_0x01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001228 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020200_40_0x04.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001214 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020200_40_0x03.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001204 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020200_40_0x02.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001204 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020200_40.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001198 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020200_26.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00001192 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020200_26_0x01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00000296 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020201_40_0x01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00000278 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020201_40_0x04.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00000264 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020201_40_0x03.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00000264 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020201_40_0x02.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00000264 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020201_40.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00000264 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020201_26_0x01.dfu
2015-04-29 10:20 - 2015-04-29 10:20 - 00000264 _____ () C:\WINDOWS\system32\Drivers\ramps_0x01020201_26.dfu
2015-03-19 21:02 - 2015-03-20 16:18 - 00391784 _____ () C:\WINDOWS\system32\igfxTray.exe
2015-03-19 21:02 - 2015-03-20 16:18 - 00313448 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-03-19 21:02 - 2015-03-19 21:02 - 24806000 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 24007768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 06080608 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 04788464 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 03583488 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 03318272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 02813952 _____ () C:\WINDOWS\system32\iglhxa64.cpa
2015-03-19 21:02 - 2015-03-19 21:02 - 02775672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 02024960 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 01637200 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 01512568 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 01402336 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 01399240 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 01369088 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 01269960 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 01063936 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00980312 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00696832 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00672088 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00623616 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00616280 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00403671 _____ () C:\WINDOWS\system32\ImageStabilization.wmv
2015-03-19 21:02 - 2015-03-19 21:02 - 00385024 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00354136 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00274040 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00255488 _____ () C:\WINDOWS\system32\igfxCPL.cpl
2015-03-19 21:02 - 2015-03-19 21:02 - 00229888 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00220432 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00213504 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00211656 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00196728 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00184352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00183296 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4170.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00178672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00178176 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00134264 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00127320 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00086528 _____ () C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00069632 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00060416 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00044025 _____ () C:\WINDOWS\system32\iglhxo64.vp
2015-03-19 21:02 - 2015-03-19 21:02 - 00043816 _____ () C:\WINDOWS\system32\iglhxc64_dev.vp
2015-03-19 21:02 - 2015-03-19 21:02 - 00043494 _____ () C:\WINDOWS\system32\iglhxc64.vp
2015-03-19 21:02 - 2015-03-19 21:02 - 00043298 _____ () C:\WINDOWS\system32\iglhxg64_dev.vp
2015-03-19 21:02 - 2015-03-19 21:02 - 00043256 _____ () C:\WINDOWS\system32\iglhxg64.vp
2015-03-19 21:02 - 2015-03-19 21:02 - 00042079 _____ () C:\WINDOWS\system32\iglhxo64_dev.vp
2015-03-19 21:02 - 2015-03-19 21:02 - 00036616 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00035328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00010752 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00010752 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00005120 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00005120 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-03-19 21:02 - 2015-03-19 21:02 - 00004016 _____ () C:\WINDOWS\system32\iglhxs64.vp
2015-03-19 21:02 - 2015-03-19 21:02 - 00001125 _____ () C:\WINDOWS\system32\iglhxa64.vp
2015-03-19 21:01 - 2015-03-19 21:01 - 17765456 _____ () C:\WINDOWS\system32\igd11dxva64.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 17289048 _____ () C:\WINDOWS\SysWOW64\igd11dxva32.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 15980032 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 10850816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 09505280 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 09414176 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 08622624 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 07481344 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 06710542 _____ () C:\WINDOWS\system32\igdclbif.bin
2015-03-19 21:01 - 2015-03-19 21:01 - 04888368 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-03-19 21:01 - 2015-03-19 21:01 - 01131008 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00641530 _____ () C:\WINDOWS\system32\FilmModeDetection.wmv
2015-03-19 21:01 - 2015-03-19 21:01 - 00398848 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00375173 _____ () C:\WINDOWS\system32\ColorImageEnhancement.wmv
2015-03-19 21:01 - 2015-03-19 21:01 - 00350720 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00282696 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00263120 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00227328 _____ () C:\WINDOWS\system32\igdde64.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00187904 _____ () C:\WINDOWS\SysWOW64\igdde32.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00169984 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00152064 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2015-03-19 21:01 - 2015-03-19 21:01 - 00094208 _____ () C:\WINDOWS\system32\IccLibDll_x64.dll
2015-03-04 14:18 - 2015-03-04 14:08 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-03-04 14:18 - 2015-03-04 14:08 - 00042288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2015-03-04 14:18 - 2015-03-04 14:08 - 00030512 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-28 03:46 - 2013-08-22 07:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-27 12:28 - 2014-11-21 01:44 - 00863592 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-26 22:00 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-05-25 20:59 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\GroupPolicy
2015-05-25 16:53 - 2013-08-22 08:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2015-05-24 06:34 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\registration
2015-05-22 18:53 - 2013-08-22 06:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-05-22 15:05 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-05-21 13:13 - 2013-08-22 08:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-05-21 12:30 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-05-19 07:21 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-05-18 10:03 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-05-18 09:56 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\AppCompat
2015-05-17 17:06 - 2013-08-22 07:44 - 00346752 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-15 23:01 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-05-15 22:50 - 2013-08-22 06:25 - 00000137 _____ () C:\WINDOWS\win.ini
2015-05-15 18:02 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\setup
2015-05-15 18:02 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2015-05-15 13:10 - 2014-11-21 08:56 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\spool
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-05-15 13:10 - 2013-08-22 08:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-05-14 22:55 - 2014-11-21 01:25 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-14 22:55 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2015-05-14 22:55 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2015-05-14 20:53 - 2013-08-22 06:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2015-05-14 20:39 - 2013-08-22 08:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2015-05-14 19:57 - 2013-08-22 06:36 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers
2015-05-14 19:56 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\restore
2015-05-14 19:48 - 2013-08-22 08:36 - 00000000 __RHD () C:\Users\Public\Libraries
2015-05-14 19:48 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2015-05-05 10:59 - 2014-11-21 09:03 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-05-05 10:59 - 2014-11-21 09:03 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2015-05-14 21:11 - 2015-05-14 21:11 - 0211212 _____ () C:\ProgramData\1431662090.bdinstall.bin
2015-05-17 15:39 - 2015-05-17 15:39 - 0037721 _____ () C:\ProgramData\1431902388.bdinstall.bin
2015-05-17 15:40 - 2015-05-17 15:40 - 0098556 _____ () C:\ProgramData\1431902391.bdinstall.bin
2015-05-24 01:11 - 2015-05-24 01:11 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Halley\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvfaes3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-26 04:23

==================== End of log ============================

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015 01
Ran by Halley at 2015-05-28 04:22:42
Running from C:\Users\Halley\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3223668842-3032167072-838030870-500 - Administrator - Disabled)
Guest (S-1-5-21-3223668842-3032167072-838030870-501 - Limited - Enabled)
Halley (S-1-5-21-3223668842-3032167072-838030870-1000 - Administrator - Enabled) => C:\Users\Halley

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.38 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0938-000001000000}) (Version: 9.38.00.0 - Igor Pavlov)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Agics Systemscan (HKLM-x32\...\{09C86167-844F-E93F-48E6-D6AA5F0EFCD8}) (Version: 2.1.4.0 - Agics)
Bullzip PDF Printer 10.12.0.2363 (HKLM\...\Bullzip PDF Printer_is1) (Version: 10.12.0.2363 - Bullzip)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
Dropbox (HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.4.96.511 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.1.5.425 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version:  - Richard)
Intel® Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4170 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
MetroScan Online v5.8 (HKLM-x32\...\MetroScan Online_is1) (Version:  - CoreLogic)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 38.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 en-US)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.8 - Notepad++ Team)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
TinyWall (HKLM-x32\...\{284938D1-2280-40F4-81AE-C4815BC09080}) (Version: 2.1.6.0 - Károly Pados)
TOTAL (HKLM-x32\...\{AE3F800B-57CC-405C-A070-B666FF299A25}) (Version: 6.100.0120 - a la mode, inc.)
TOTAL Sketch (HKLM-x32\...\{B156E9B8-A6E8-4A08-9E85-82831DAE4BD5}) (Version: 1.00.0053 - a la mode, inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3223668842-3032167072-838030870-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Halley\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

14-05-2015 20:53:57 Installed 7-Zip 9.38 (x64 edition)
17-05-2015 15:31:13 Windows Modules Installer
17-05-2015 15:31:37 Installed TOTAL.
21-05-2015 05:15:05 Windows Update
24-05-2015 01:09:51 Installed Realtek High Definition Audio Driver
27-05-2015 12:15:43 Intel® Driver Update Utility

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 06:25 - 2015-05-15 11:32 - 00519981 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 fr.a2dfp.net
0.0.0.0 m.fr.a2dfp.net
0.0.0.0 mfr.a2dfp.net
0.0.0.0 ad.a8.net
0.0.0.0 asy.a8ww.net
0.0.0.0 static.a-ads.com
0.0.0.0 atlas.aamedia.ro
0.0.0.0 abcstats.com
0.0.0.0 ad4.abradio.cz
0.0.0.0 a.abv.bg
0.0.0.0 adserver.abv.bg
0.0.0.0 adv.abv.bg
0.0.0.0 bimg.abv.bg
0.0.0.0 ca.abv.bg
0.0.0.0 www2.a-counter.kiev.ua
0.0.0.0 track.acclaimnetwork.com
0.0.0.0 accuserveadsystem.com
0.0.0.0 www.accuserveadsystem.com
0.0.0.0 achmedia.com
0.0.0.0 csh.actiondesk.com
0.0.0.0 ads.activepower.net
0.0.0.0 app.activetrail.com
0.0.0.0 stat.active24stats.nl #[Tracking.Cookie]
0.0.0.0 traffic.acwebconnecting.com
0.0.0.0 office.ad1.ru
0.0.0.0 cms.ad2click.nl
0.0.0.0 ad2games.com
0.0.0.0 ads.ad2games.com

There are 1000 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {53BAC243-BCD1-4CB4-8ABC-FB8D4737E089} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd)
Task: {67CAAE86-33EC-4FFF-97A6-08721B5B496E} - System32\Tasks\{425DC72F-70FE-431A-9BD2-4719CE9C23C3} => pcalua.exe -a "C:\Program Files (x86)\a la mode\TOTAL\WinTOTAL.exe" -d C:\Users\Halley\Desktop
Task: {77D3E56A-C124-4E93-B3B5-C00555330845} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-04-30] (Microsoft Corporation)
Task: {7E50EF13-E658-4F6F-8A50-CEF3236F232F} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {971F2F50-2346-44DD-831A-98E1B5209908} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-14] (Google Inc.)
Task: {C2FA2A65-2172-4BEA-BEAA-304B7DE79EA1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-21] (Adobe Systems Incorporated)
Task: {C6781B13-0F47-4F2F-8C8A-9DB65C2ECDE2} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {E6FECB2E-298E-4BA1-BAA6-9594FEEF9FE6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-14] (Google Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-15 11:28 - 2015-05-15 11:28 - 00084216 _____ () C:\WINDOWS\assembly\GAC_MSIL\TinyWall.XmlSerializers\2.1.6.0__d9a8adbcd0c171b3\TinyWall.XmlSerializers.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Halley\OneDrive:ms-properties
AlternateDataStreams: C:\Users\Halley\Documents\rufus-2.1.exe:BDU

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\alamode.com -> alamode.com
IE trusted site: HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\almsr.com -> almsr.com
IE trusted site: HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\appraiserxsites.com -> appraiserxsites.com
IE trusted site: HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\bing.com -> bing.com
IE trusted site: HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\certmail.com -> certmail.com
IE trusted site: HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\interflood.com -> interflood.com
IE trusted site: HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\virtualearth.net -> virtualearth.net
IE trusted site: HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\xsitesnetwork.com -> xsitesnetwork.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3223668842-3032167072-838030870-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Halley\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 75.75.75.75 - 75.75.76.76

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "MLSoftwarePolicyTrayApplet.lnk"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKU\S-1-5-21-3223668842-3032167072-838030870-1000\...\StartupApproved\Run: => "SandboxieControl"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{AFC1EB11-E7A7-4E4F-989E-3CAC67029ED8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Microsoft Wi-Fi Direct Virtual Adapter
Description: Microsoft Wi-Fi Direct Virtual Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Kernel Debug Network Adapter
Description: Microsoft Kernel Debug Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: kdnic
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Dell Wireless 1705 Bluetooth
Description: Dell Wireless 1705 Bluetooth
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant touch screen
Description: HID-compliant touch screen
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Integrated Webcam
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/28/2015 04:21:16 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:21:16 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (05/28/2015 04:21:16 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:21:16 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (05/28/2015 04:19:14 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:19:14 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (05/28/2015 04:11:13 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:11:13 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (05/28/2015 04:05:14 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:05:14 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:


System errors:
=============
Error: (05/27/2015 10:07:27 AM) (Source: DCOM) (EventID: 10010) (User: Halley-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/27/2015 10:06:57 AM) (Source: DCOM) (EventID: 10010) (User: Halley-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/26/2015 06:14:45 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.

A corruption was found in a file system index structure.  The file reference number is 0x9000000000009.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$SII:$INDEX_ALLOCATION".

Error: (05/26/2015 06:14:44 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.

A corruption was found in a file system index structure.  The file reference number is 0x9000000000009.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$SII:$INDEX_ALLOCATION".

Error: (05/26/2015 06:14:42 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.

A corruption was found in a file system index structure.  The file reference number is 0x9000000000009.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$SII:$INDEX_ALLOCATION".

Error: (05/26/2015 06:14:40 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.

A corruption was found in a file system index structure.  The file reference number is 0x9000000000009.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$SII:$INDEX_ALLOCATION".

Error: (05/26/2015 06:14:38 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.

A corruption was found in a file system index structure.  The file reference number is 0x9000000000009.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$SII:$INDEX_ALLOCATION".

Error: (05/26/2015 06:14:37 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.

A corruption was found in a file system index structure.  The file reference number is 0x9000000000009.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$SII:$INDEX_ALLOCATION".

Error: (05/26/2015 06:14:36 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.

A corruption was found in a file system index structure.  The file reference number is 0x9000000000009.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$SII:$INDEX_ALLOCATION".

Error: (05/26/2015 06:14:34 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume ??.

A corruption was found in a file system index structure.  The file reference number is 0x9000000000009.  The name of the file is "<unable to determine file name>".  The corrupted index attribute is ":$SII:$INDEX_ALLOCATION".


Microsoft Office:
=========================
Error: (05/28/2015 04:21:16 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:21:16 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (05/28/2015 04:21:16 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:21:16 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (05/28/2015 04:19:14 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:19:14 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (05/28/2015 04:11:13 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:11:13 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (05/28/2015 04:05:14 AM) (Source: PerfNet) (EventID: 2002) (User: )
Description:

Error: (05/28/2015 04:05:14 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description:


CodeIntegrity Errors:
===================================
  Date: 2015-05-17 15:44:55.797
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-05-17 10:23:52.766
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-05-16 16:24:44.665
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-05-15 18:07:51.859
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-05-15 17:31:08.889
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-05-15 13:17:05.082
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-05-15 03:08:05.496
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel® Core™ i7-4500U CPU @ 1.80GHz
Percentage of memory in use: 11%
Total physical RAM: 12176.36 MB
Available physical RAM: 10746.63 MB
Total Pagefile: 17282.36 MB
Available Pagefile: 15846.04 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:816.01 GB) (Free:745.06 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:58.22 GB) (Free:58.05 GB) NTFS
Drive e: () (Fixed) (Total:57.29 GB) (Free:57.12 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 15FBFAD6)
Partition 1: (Active) - (Size=816 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=58.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=57.3 GB) - (Type=07 NTFS)

==================== End of log ============================

 


  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP