WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93124 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Edge Hijack [Solved]

Started by poporacer , Aug 15 2015 07:15 PM

This topic is locked

6 replies to this topic

#1 poporacer

Authentic Member

Authentic Member
107 posts

Posted 15 August 2015 - 07:15 PM

I have Windows 10 and my Edge Browser got hijacked with a page that said I had a virus and that I needed to call a number to get it fixed. Of course I didn't call the number. The only way I could get the Edge browser to close was through the Task Manager. But when I opened edge back up, it was still locked on the hijacked page. I was able to get Edge working by deleting the cookies, history etc. But I want to make sure there is no other Malware hiding. Here are my logs and thanks for your help.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-08-2015 01

Ran by RTS (administrator) on RTS-PC (15-08-2015 06:17:40)

Running from C:\Users\RTS\Desktop

Loaded Profiles: RTS (Available Profiles: RTS & DefaultAppPool)

Platform: Windows 10 Home (X64) Language: English (United States)

Internet Explorer Version 11 (Default browser: Edge)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe

(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe

(Intel® Corporation) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe

(Microsoft Corporation) C:\Windows\System32\mqsvc.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

(NTI Corporation) C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe

(Red Bend Ltd.) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe

(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe

(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe

(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe

() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe

(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe

(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe

(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe

(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe

(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe

(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe

(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Users\RTS\AppData\Local\Microsoft\OneDrive\OneDrive.exe

(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe

(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe

() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe

(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

(NTI Corporation) C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1507.15010.0_x64__8wekyb3d8bbwe\Calculator.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.3.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe

(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe

(Microsoft Corporation) C:\Windows\System32\browser_broker.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)

HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [708952 2013-07-08] (Alps Electric Co., Ltd.)

HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3668336 2011-03-24] (Dell Inc.)

HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"

HKLM\...\Run: [IntelPAN] => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray

HKLM\...\Run: [DellStage] => C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2055016 2011-04-29] ()

HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.)

HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)

HKLM-x32\...\Run: [Dell Registration] => C:\Program Files (x86)\System Registration\prodreg.exe [4165440 2011-08-04] (Dell, Inc.)

HKLM-x32\...\Run: [] => [X]

HKLM-x32\...\Run: [RoxWatchTray] => c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)

HKLM-x32\...\Run: [Desktop Disc Tool] => c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()

HKLM-x32\...\Run: [NeroLauncher] => C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [67496 2012-08-21] ()

HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.)

HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"

HKLM-x32\...\Run: [AccuWeatherWidget] => C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [885760 2011-04-29] ()

HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [577536 2012-05-09] (Creative Technology Ltd)

HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.)

HKLM-x32\...\Run: [BackupNowEZtray] => C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exe [580672 2012-07-23] (NTI Corporation)

HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)

Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)

HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)

HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)

HKU\S-1-5-21-1286904689-2793304105-449274170-1000\...\Run: [Messenger (Yahoo!)] => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)

HKU\S-1-5-21-1286904689-2793304105-449274170-1000\...\Run: [GoogleChromeAutoLaunch_251C3353C6817E68AEA9BA947A35085C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-08-07] (Google Inc.)

HKU\S-1-5-21-1286904689-2793304105-449274170-1000\...\Run: [OneDrive] => C:\Users\RTS\AppData\Local\Microsoft\OneDrive\OneDrive.exe [402632 2015-08-05] (Microsoft Corporation)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-03-03]

ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

HKU\S-1-5-21-1286904689-2793304105-449274170-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/USCON/1

SearchScopes: HKLM -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox

SearchScopes: HKLM-x32 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox

SearchScopes: HKU\S-1-5-21-1286904689-2793304105-449274170-1000 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL =

BHO: Bing Bar Helper -> {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation.)

BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-08-09] (Oracle Corporation)

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17] (Google Inc.)

BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-09] (Oracle Corporation)

BHO-x32: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll [2013-08-06] (Yahoo! Inc.)

BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)

BHO-x32: Bing Bar Helper -> {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)

BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)

Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation.)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17] (Google Inc.)

Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll [2013-08-06] (Yahoo! Inc.)

Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)

Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)

DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab

DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab

DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab

DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab

DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab

Handler-x32: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll [2011-05-05] (Cozi Group, Inc.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{21af8abc-b7c0-4160-841a-c2077f5e0631}: [DhcpNameServer] 10.59.1.1

Tcpip\..\Interfaces\{6E2F879E-5615-4FD9-8433-0EC8617DB834}: [NameServer] 0.0.0.0

Tcpip\..\Interfaces\{c9d1c955-de50-41bb-9c91-ff6c0635493a}: [DhcpNameServer] 192.168.1.1

FireFox:

========

FF ProfilePath: C:\Users\RTS\AppData\Roaming\Mozilla\Firefox\Profiles\rny2j73j.default

FF DefaultSearchEngine.US: Google

FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()

FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2012-09-01] (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-09] (Oracle Corporation)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()

FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()

FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2013-05-22] (Oracle Corporation)

FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2012-02-22] (Yahoo! Inc.)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll [2013-02-07] ()

FF Plugin-x32: @wolfram.com/Mathematica -> C:\Program Files (x86)\Common Files\Wolfram Research\Browser\9.0.1.4092550\npmathplugin.dll [2013-02-07] (Wolfram Research, Inc.)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)

FF user.js: detected! => C:\Users\RTS\AppData\Roaming\Mozilla\Firefox\Profiles\rny2j73j.default\user.js [2012-03-17]

FF Extension: Yahoo! Toolbar - C:\Users\RTS\AppData\Roaming\Mozilla\Firefox\Profiles\rny2j73j.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2015-02-27]

FF Extension: SQLite Manager - C:\Users\RTS\AppData\Roaming\Mozilla\Firefox\Profiles\rny2j73j.default\Extensions\SQLiteManager@mrinalkant.blogspot.com.xpi [2012-03-08]

FF HKU\S-1-5-21-1286904689-2793304105-449274170-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi

FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:

=======

CHR Profile: C:\Users\RTS\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (YouTube) - C:\Users\RTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-10-13]

CHR Extension: (Google Search) - C:\Users\RTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-10-13]

CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\RTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-12-19]

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\RTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-21]

CHR Extension: (EXIF Viewer) - C:\Users\RTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafpfdcmppffipmhcpkbplhkoiekndck [2014-12-25]

CHR Extension: (Chrome Web Store Payments) - C:\Users\RTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-04]

CHR Extension: (Gmail) - C:\Users\RTS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-10-13]

CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.goog...ice/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)

S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)

S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)

R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-05] (Microsoft Corporation)

R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-05] (Microsoft Corporation)

S2 DellDigitalDelivery; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [162816 2011-10-26] (Dell Products, LP.) [File not signed]

S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)

R2 DMAgent; C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [498688 2011-06-14] (Red Bend Ltd.) [File not signed]

S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)

S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)

S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)

S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)

S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-05] (Microsoft Corporation)

S2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21744 2015-07-09] (Microsoft Corporation)

R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)

R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)

S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)

R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-05] (Microsoft Corporation)

R2 NTI BackupNowEZSvr; C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe [45592 2011-09-23] (NTI Corporation)

S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)

R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

U2 OneSyncSvc_Session2; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

U2 OneSyncSvc_Session2; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)

R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

U3 PimIndexMaintenanceSvc_Session2; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

U3 PimIndexMaintenanceSvc_Session2; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-08-02] (Microsoft Corporation)

S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-05] (Microsoft Corporation)

R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)

R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)

S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [134656 2015-07-09] (Microsoft Corporation) [File not signed]

S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-05] (Microsoft Corporation)

S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-05] (Microsoft Corporation)

R3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

U3 UnistoreSvc_Session2; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

U3 UnistoreSvc_Session2; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-29] (Microsoft Corporation)

R3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

R3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

U3 UserDataSvc_Session2; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)

U3 UserDataSvc_Session2; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)

S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)

S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation)

S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-05] (Microsoft Corporation)

R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-05] (Microsoft Corporation)

S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)

R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)

R2 WiMAXAppSrv; C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [986112 2011-06-14] (Intel® Corporation) [File not signed]

R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)

S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)

S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.)

R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)

S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)

R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)

S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)

R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)

S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)

R2 IntelHaxm; C:\Windows\System32\DRIVERS\IntelHaxm.sys [84992 2015-01-30] (Intel Corporation)

S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)

S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)

S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)

R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-05] (Microsoft Corporation)

S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)

R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )

R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation)

R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)

R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)

R3 tilfilter; C:\Windows\System32\drivers\TIxHCIlfilter.sys [17672 2015-03-02] (Texas Instruments, Inc.)

R3 tiufilter; C:\Windows\System32\drivers\TIxHCIufilter.sys [23304 2015-03-02] (Texas Instruments, Inc.)

S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)

S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-05] (Microsoft Corporation)

S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()

R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)

R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)

R3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [260608 2012-02-27] (Jungo)

S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)

S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)

S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)

S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)

U3 idsvc; no ImagePath

S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: dosvc -> C:\Windows\system32\dosvc.dll (Microsoft Corporation)

NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)

NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)

NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)

NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)

NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)

NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)

NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)

NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)

NETSVC: RetailDemo -> C:\Windows\system32\RDXService.dll (Microsoft Corporation)

NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File

NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-15 06:17 - 2015-08-15 06:18 - 00029330 _____ C:\Users\RTS\Desktop\FRST.txt

2015-08-15 06:16 - 2015-08-15 06:17 - 00000000 ____D C:\FRST

2015-08-15 06:15 - 2015-08-15 06:15 - 00016148 _____ C:\WINDOWS\system32\RTS-PC_RTS_HistoryPrediction.bin

2015-08-14 22:29 - 2015-08-14 22:30 - 00282624 _____ C:\WINDOWS\Minidump\081415-26375-01.dmp

2015-08-14 22:04 - 2015-08-12 01:57 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2015-08-14 22:04 - 2015-08-12 01:22 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll

2015-08-14 21:49 - 2015-08-14 22:29 - 825447227 _____ C:\WINDOWS\MEMORY.DMP

2015-08-14 21:49 - 2015-08-14 22:29 - 00000000 ____D C:\WINDOWS\Minidump

2015-08-14 21:49 - 2015-08-14 21:50 - 00285864 _____ C:\WINDOWS\Minidump\081415-29343-01.dmp

2015-08-14 21:30 - 2015-08-15 06:16 - 02173952 _____ (Farbar) C:\Users\RTS\Desktop\FRST64.exe

2015-08-14 21:29 - 2015-08-14 21:29 - 02173952 _____ (Farbar) C:\Users\RTS\Downloads\FRST64.exe

2015-08-14 21:26 - 2015-08-14 21:31 - 05198336 _____ (AVAST Software) C:\Users\RTS\Desktop\aswMBR.exe

2015-08-14 21:24 - 2015-08-14 21:25 - 05198336 _____ (AVAST Software) C:\Users\RTS\Downloads\aswMBR.exe

2015-08-13 21:59 - 2015-08-13 21:59 - 00000000 ___HD C:\OneDriveTemp

2015-08-13 17:53 - 2015-08-13 17:53 - 00389135 _____ C:\Users\RTS\Documents\Scoring Leaders - Free Fantasy Football 2015 Fantasy Football.oxps

2015-08-13 16:57 - 2015-08-14 21:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-08-12 18:20 - 2015-08-12 18:20 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-08-12 15:43 - 2015-08-12 15:43 - 00000000 ____D C:\WINDOWS\PCHEALTH

2015-08-12 05:54 - 2015-08-05 19:36 - 21874176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-08-12 05:54 - 2015-08-05 19:03 - 18805248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-08-12 05:54 - 2015-08-04 21:03 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-08-12 05:54 - 2015-08-04 20:47 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-08-12 05:54 - 2015-08-04 20:43 - 01916416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-08-12 05:54 - 2015-08-03 21:08 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-08-12 05:54 - 2015-08-03 20:50 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-08-12 05:54 - 2015-08-03 20:21 - 16709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-08-12 05:54 - 2015-08-03 20:10 - 13025792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-08-12 05:54 - 2015-08-03 19:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll

2015-08-12 05:54 - 2015-08-02 19:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2015-08-12 05:54 - 2015-08-02 19:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2015-08-12 05:54 - 2015-08-02 19:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-08-12 05:54 - 2015-08-02 18:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2015-08-12 05:54 - 2015-08-02 18:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-08-12 05:54 - 2015-08-02 18:24 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-08-12 05:54 - 2015-08-02 18:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-08-12 05:54 - 2015-08-02 18:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2015-08-12 05:54 - 2015-08-02 18:12 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-08-12 05:54 - 2015-08-02 18:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll

2015-08-12 05:54 - 2015-08-02 18:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-08-12 05:53 - 2015-08-08 00:30 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-08-12 05:53 - 2015-08-08 00:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2015-08-12 05:53 - 2015-08-08 00:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-08-12 05:53 - 2015-08-08 00:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2015-08-12 05:53 - 2015-08-07 23:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-08-12 05:53 - 2015-08-07 23:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-08-12 05:53 - 2015-08-07 23:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2015-08-12 05:53 - 2015-08-07 23:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2015-08-12 05:53 - 2015-08-07 23:22 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll

2015-08-12 05:53 - 2015-08-07 23:21 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll

2015-08-12 05:53 - 2015-08-07 23:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-08-12 05:53 - 2015-08-07 23:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2015-08-12 05:53 - 2015-08-05 20:18 - 00290768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe

2015-08-12 05:53 - 2015-08-05 20:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys

2015-08-12 05:53 - 2015-08-05 20:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys

2015-08-12 05:53 - 2015-08-05 19:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys

2015-08-12 05:53 - 2015-08-04 21:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll

2015-08-12 05:53 - 2015-08-04 21:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

2015-08-12 05:53 - 2015-08-04 21:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll

2015-08-12 05:53 - 2015-08-04 20:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll

2015-08-12 05:53 - 2015-08-04 20:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-08-12 05:53 - 2015-08-04 20:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll

2015-08-12 05:53 - 2015-08-03 21:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys

2015-08-12 05:53 - 2015-08-03 21:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-08-12 05:53 - 2015-08-03 21:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-08-12 05:53 - 2015-08-03 20:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll

2015-08-12 05:53 - 2015-08-03 19:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll

2015-08-12 05:53 - 2015-08-02 19:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll

2015-08-12 05:53 - 2015-08-02 19:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll

2015-08-12 05:53 - 2015-08-02 19:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys

2015-08-12 05:53 - 2015-08-02 19:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2015-08-12 05:53 - 2015-08-02 19:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll

2015-08-12 05:53 - 2015-08-02 19:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys

2015-08-12 05:53 - 2015-08-02 19:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS

2015-08-12 05:53 - 2015-08-02 19:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys

2015-08-12 05:53 - 2015-08-02 19:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-08-12 05:53 - 2015-08-02 18:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-08-12 05:53 - 2015-08-02 18:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll

2015-08-12 05:53 - 2015-08-02 18:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll

2015-08-12 05:53 - 2015-08-02 18:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll

2015-08-12 05:53 - 2015-08-02 18:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll

2015-08-12 05:53 - 2015-08-02 18:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll

2015-08-12 05:53 - 2015-08-02 18:23 - 02446336 _____ C:\WINDOWS\system32\InputService.dll

2015-08-12 05:53 - 2015-08-02 18:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll

2015-08-12 05:53 - 2015-08-02 18:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll

2015-08-12 05:53 - 2015-08-02 18:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll

2015-08-12 05:53 - 2015-08-02 18:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll

2015-08-12 05:53 - 2015-08-02 18:22 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll

2015-08-12 05:53 - 2015-08-02 18:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll

2015-08-12 05:53 - 2015-08-02 18:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe

2015-08-12 05:53 - 2015-08-02 18:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe

2015-08-12 05:53 - 2015-08-02 18:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll

2015-08-12 05:53 - 2015-08-02 18:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll

2015-08-12 05:53 - 2015-08-02 18:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll

2015-08-12 05:53 - 2015-08-02 18:15 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll

2015-08-12 05:53 - 2015-08-02 18:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2015-08-12 05:53 - 2015-08-02 18:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll

2015-08-12 05:53 - 2015-08-02 18:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll

2015-08-12 05:53 - 2015-08-02 18:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll

2015-08-12 05:53 - 2015-08-02 18:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll

2015-08-12 05:53 - 2015-08-02 18:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll

2015-08-12 05:53 - 2015-08-02 18:12 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2015-08-12 05:53 - 2015-08-02 18:12 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll

2015-08-12 05:53 - 2015-08-02 18:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll

2015-08-12 05:53 - 2015-08-02 18:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll

2015-08-12 05:53 - 2015-08-02 18:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll

2015-08-12 05:53 - 2015-08-02 18:11 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll

2015-08-12 05:53 - 2015-08-02 18:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe

2015-08-12 05:53 - 2015-08-02 18:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2015-08-12 05:53 - 2015-08-02 18:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll

2015-08-12 05:53 - 2015-08-02 18:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll

2015-08-12 05:53 - 2015-08-02 18:00 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2015-08-12 05:53 - 2015-08-02 17:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll

2015-08-09 12:11 - 2015-08-09 12:28 - 00000000 ____D C:\Users\RTS\Documents\Visual Studio 2015

2015-08-09 12:09 - 2015-08-09 12:09 - 00000000 ____D C:\Program Files (x86)\Windows Phone Kits

2015-08-09 12:07 - 2015-08-09 12:07 - 00000000 ____D C:\Program Files (x86)\Common7

2015-08-09 11:21 - 2015-08-09 11:21 - 00000000 ____D C:\Program Files\Application Verifier

2015-08-09 11:21 - 2015-08-09 11:21 - 00000000 ____D C:\Program Files (x86)\Application Verifier

2015-08-09 11:20 - 2015-08-09 11:20 - 00000000 ____D C:\ProgramData\Windows App Certification Kit

2015-08-09 10:34 - 2015-08-09 10:34 - 00000000 ____D C:\ProgramData\NuGet

2015-08-09 10:34 - 2015-08-09 10:34 - 00000000 ____D C:\Program Files (x86)\NuGet

2015-08-09 10:34 - 2015-08-09 10:34 - 00000000 ____D C:\Program Files (x86)\AppInsights

2015-08-09 10:06 - 2015-08-09 10:06 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition

2015-08-09 09:57 - 2015-08-09 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits

2015-08-09 09:38 - 2015-08-09 09:38 - 00000000 ____D C:\ProgramData\PreEmptive Solutions

2015-08-09 09:38 - 2015-08-09 09:38 - 00000000 ____D C:\Program Files (x86)\ShellDir

2015-08-09 09:25 - 2015-08-09 09:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools

2015-08-09 09:20 - 2015-08-09 09:20 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services

2015-08-09 09:19 - 2015-08-09 09:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression

2015-08-09 09:17 - 2015-08-09 09:17 - 00001500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk

2015-08-09 09:15 - 2015-08-09 09:15 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0

2015-08-09 09:15 - 2015-08-09 09:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0

2015-08-09 09:14 - 2015-08-09 09:14 - 00000000 ____D C:\Program Files (x86)\HTML Help Workshop

2015-08-09 08:54 - 2015-08-09 08:54 - 00000000 ____D C:\WINDOWS\SysWOW64\1033

2015-08-09 08:51 - 2015-08-15 06:18 - 00004144 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F5D74FF5-1007-4F62-8750-FFB3DD720421}

2015-08-09 08:51 - 2015-08-09 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015

2015-08-09 08:49 - 2015-08-09 10:05 - 00000000 ____D C:\Program Files (x86)\Windows Kits

2015-08-09 08:49 - 2015-08-09 08:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer

2015-08-09 08:43 - 2015-07-09 21:53 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll

2015-08-09 08:43 - 2015-07-09 21:36 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll

2015-08-09 08:43 - 2015-07-09 20:49 - 01133056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll

2015-08-09 08:43 - 2015-07-09 20:49 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll

2015-08-09 08:43 - 2015-07-09 20:48 - 06365696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll

2015-08-09 08:43 - 2015-07-09 20:40 - 01460736 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll

2015-08-09 08:43 - 2015-07-09 20:40 - 00875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll

2015-08-09 08:43 - 2015-07-09 20:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll

2015-08-09 08:43 - 2015-07-09 20:38 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll

2015-08-09 08:43 - 2015-07-09 20:31 - 03597312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe

2015-08-09 08:43 - 2015-07-09 20:30 - 03680768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe

2015-08-09 08:43 - 2015-07-09 20:28 - 02439168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12warp.dll

2015-08-09 08:43 - 2015-07-09 20:28 - 00916480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll

2015-08-09 08:43 - 2015-07-09 20:28 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll

2015-08-09 08:43 - 2015-07-09 20:28 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe

2015-08-09 08:43 - 2015-07-09 20:28 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll

2015-08-09 08:43 - 2015-07-09 20:27 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll

2015-08-09 08:43 - 2015-07-09 20:27 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll

2015-08-09 08:43 - 2015-07-09 20:27 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll

2015-08-09 08:43 - 2015-07-09 20:27 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll

2015-08-09 08:43 - 2015-07-09 20:27 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll

2015-08-09 08:43 - 2015-07-09 20:27 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARP12Debug.dll

2015-08-09 08:43 - 2015-07-09 20:27 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll

2015-08-09 08:43 - 2015-07-09 20:26 - 00346624 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe

2015-08-09 08:43 - 2015-07-09 20:24 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll

2015-08-09 08:43 - 2015-07-09 20:21 - 04656128 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe

2015-08-09 08:43 - 2015-07-09 20:20 - 04751872 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe

2015-08-09 08:43 - 2015-07-09 20:18 - 03257856 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12warp.dll

2015-08-09 08:43 - 2015-07-09 20:18 - 01069568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll

2015-08-09 08:43 - 2015-07-09 20:18 - 00877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe

2015-08-09 08:43 - 2015-07-09 20:17 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll

2015-08-09 08:43 - 2015-07-09 20:17 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll

2015-08-09 08:43 - 2015-07-09 20:17 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll

2015-08-09 08:43 - 2015-07-09 20:17 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll

2015-08-09 08:43 - 2015-07-09 20:17 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll

2015-08-09 08:43 - 2015-07-09 20:17 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll

2015-08-09 08:43 - 2015-07-09 20:16 - 00366592 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe

2015-08-09 08:43 - 2015-07-09 20:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARP12Debug.dll

2015-08-09 08:43 - 2015-07-09 20:16 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll

2015-08-09 08:43 - 2015-07-09 20:13 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll

2015-08-09 08:41 - 2015-08-09 10:07 - 00000000 ____D C:\Program Files\Microsoft SQL Server

2015-08-09 08:41 - 2015-08-09 08:41 - 00001509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk

2015-08-09 08:35 - 2015-08-09 12:10 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0

2015-08-09 08:35 - 2015-08-09 08:42 - 00000000 ____D C:\WINDOWS\system32\1033

2015-08-09 08:35 - 2015-08-09 08:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf

2015-08-09 08:28 - 2015-08-09 12:27 - 00000000 ____D C:\ProgramData\VsTelemetry

2015-08-09 08:28 - 2015-08-09 08:28 - 00205840 _____ (Microsoft Corporation) C:\Users\RTS\Downloads\VSToolsForWindows1E.exe

2015-08-09 08:27 - 2015-08-09 08:28 - 00205840 _____ (Microsoft Corporation) C:\Users\RTS\Downloads\VSToolsForWindows1P.exe

2015-08-09 08:19 - 2015-08-09 08:15 - 00321632 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe

2015-08-09 08:19 - 2012-09-01 07:27 - 01034216 _____ (Oracle Corporation) C:\WINDOWS\system32\npDeployJava1.dll

2015-08-09 08:19 - 2012-09-01 07:27 - 00916456 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll

2015-08-08 13:10 - 2015-08-08 13:12 - 00000000 ____D C:\Users\RTS\AppData\Local\Comms

2015-08-05 20:48 - 2015-08-05 20:48 - 00000000 ___RD C:\Users\RTS\3D Objects

2015-08-05 20:33 - 2015-08-05 20:33 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini

2015-08-05 20:33 - 2015-08-05 20:33 - 00000000 ____D C:\Users\DefaultAppPool

2015-08-05 20:33 - 2015-08-05 15:32 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\SoftThinks

2015-08-05 20:33 - 2015-08-05 06:42 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-05 20:33 - 2015-08-05 06:42 - 00000000 ____D C:\Users\DefaultAppPool\Documents\Visual Studio 2010

2015-08-05 20:33 - 2015-08-05 06:42 - 00000000 ____D C:\Users\DefaultAppPool\Desktop\Play Games

2015-08-05 20:33 - 2015-08-05 06:42 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia

2015-08-05 20:33 - 2015-08-05 06:42 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help

2015-08-05 20:33 - 2015-07-10 04:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-08-05 20:33 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-08-05 20:33 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-08-05 20:33 - 2015-07-10 04:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-08-05 18:36 - 2015-07-29 23:24 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll

2015-08-05 18:36 - 2015-07-29 23:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-08-05 18:36 - 2015-07-29 23:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2015-08-05 18:36 - 2015-07-29 23:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll

2015-08-05 18:36 - 2015-07-29 23:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll

2015-08-05 18:36 - 2015-07-29 23:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll

2015-08-05 18:36 - 2015-07-29 23:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll

2015-08-05 18:36 - 2015-07-29 23:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll

2015-08-05 18:36 - 2015-07-29 23:09 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll

2015-08-05 18:36 - 2015-07-29 23:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2015-08-05 18:36 - 2015-07-29 23:05 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll

2015-08-05 18:36 - 2015-07-29 23:05 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-08-05 18:36 - 2015-07-29 23:04 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2015-08-05 18:36 - 2015-07-29 23:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2015-08-05 18:36 - 2015-07-29 22:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2015-08-05 18:36 - 2015-07-29 21:42 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2015-08-05 18:36 - 2015-07-29 21:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll

2015-08-05 18:36 - 2015-07-29 21:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll

2015-08-05 18:36 - 2015-07-29 21:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2015-08-05 18:36 - 2015-07-29 21:25 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll

2015-08-05 18:36 - 2015-07-29 21:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2015-08-05 18:36 - 2015-07-29 21:24 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2015-08-05 18:36 - 2015-07-29 21:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-08-05 18:36 - 2015-07-29 21:24 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-08-05 18:36 - 2015-07-29 21:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll

2015-08-05 18:36 - 2015-07-29 21:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll

2015-08-05 18:36 - 2015-07-29 21:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll

2015-08-05 18:36 - 2015-07-29 21:21 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2015-08-05 18:36 - 2015-07-29 21:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-08-05 18:36 - 2015-07-29 21:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-08-05 18:36 - 2015-07-29 21:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe

2015-08-05 18:36 - 2015-07-29 21:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-08-05 18:36 - 2015-07-29 21:08 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-08-05 18:36 - 2015-07-29 21:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe

2015-08-05 18:36 - 2015-07-29 20:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-08-05 18:36 - 2015-07-29 20:52 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-08-05 18:36 - 2015-07-29 20:52 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll

2015-08-05 18:36 - 2015-07-29 20:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll

2015-08-05 18:36 - 2015-07-29 20:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-08-05 18:36 - 2015-07-29 20:49 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2015-08-05 18:36 - 2015-07-29 20:49 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2015-08-05 18:36 - 2015-07-29 20:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-08-05 18:36 - 2015-07-29 20:46 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2015-08-05 18:36 - 2015-07-29 20:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-08-05 18:36 - 2015-07-29 20:46 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2015-08-05 18:36 - 2015-07-29 20:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll

2015-08-05 18:36 - 2015-07-29 20:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys

2015-08-05 18:36 - 2015-07-29 20:44 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll

2015-08-05 18:36 - 2015-07-29 20:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-08-05 18:36 - 2015-07-29 20:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2015-08-05 18:36 - 2015-07-29 20:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll

2015-08-05 18:36 - 2015-07-29 20:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys

2015-08-05 18:36 - 2015-07-29 20:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll

2015-08-05 18:36 - 2015-07-29 20:42 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll

2015-08-05 18:36 - 2015-07-29 20:41 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll

2015-08-05 18:36 - 2015-07-29 20:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll

2015-08-05 18:36 - 2015-07-29 20:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2015-08-05 18:36 - 2015-07-29 20:38 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll

2015-08-05 18:36 - 2015-07-29 20:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll

2015-08-05 18:36 - 2015-07-29 20:34 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll

2015-08-05 18:36 - 2015-07-29 20:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2015-08-05 18:36 - 2015-07-29 20:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-08-05 18:36 - 2015-07-29 20:10 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2015-08-05 18:36 - 2015-07-29 20:10 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2015-08-05 18:36 - 2015-07-29 20:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll

2015-08-05 18:36 - 2015-07-29 20:06 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll

2015-08-05 18:36 - 2015-07-29 20:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-08-05 18:36 - 2015-07-29 20:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll

2015-08-05 18:36 - 2015-07-29 20:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll

2015-08-05 18:36 - 2015-07-29 20:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-08-05 18:36 - 2015-07-29 20:04 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll

2015-08-05 18:36 - 2015-07-29 19:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll

2015-08-05 18:36 - 2015-07-29 19:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2015-08-05 17:37 - 2015-08-08 12:48 - 00000000 ____D C:\Users\RTS\AppData\Local\MicrosoftEdge

2015-08-05 17:18 - 2015-08-05 17:18 - 00000000 ____D C:\Users\RTS\AppData\Local\NetworkTiles

2015-08-05 15:37 - 2015-08-14 22:36 - 00000000 ___RD C:\Users\RTS\OneDrive

2015-08-05 15:37 - 2015-08-05 15:39 - 00002368 _____ C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-08-05 15:35 - 2015-08-05 15:35 - 00000000 ____D C:\ProgramData\Microsoft OneDrive

2015-08-05 15:33 - 2015-08-05 15:33 - 00000000 ____D C:\Users\RTS\AppData\Local\Publishers

2015-08-05 15:32 - 2015-08-08 13:23 - 00000000 ____D C:\Users\RTS\AppData\Local\Packages

2015-08-05 15:32 - 2015-08-05 15:32 - 00000000 ____D C:\Users\RTS\AppData\Local\TileDataLayer

2015-08-05 15:31 - 2015-08-05 15:31 - 00000020 ___SH C:\Users\RTS\ntuser.ini

2015-08-05 07:19 - 2015-08-05 15:31 - 00000000 ___DC C:\WINDOWS\Panther

2015-08-05 07:12 - 2015-08-05 07:12 - 00000000 ____D C:\Windows.old

2015-08-05 07:11 - 2015-08-05 07:11 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2015-08-05 07:11 - 2015-08-05 07:11 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2015-08-05 07:11 - 2015-08-05 07:11 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi

2015-08-05 07:11 - 2015-08-05 07:11 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys

2015-08-05 07:11 - 2015-08-05 07:11 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe

2015-08-05 07:11 - 2015-08-05 07:11 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe

2015-08-05 07:09 - 2015-08-05 07:09 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-08-05 07:06 - 2015-08-09 08:50 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-08-05 07:06 - 2015-08-05 07:06 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices

2015-08-05 07:06 - 2015-08-05 07:06 - 00000000 ____D C:\WINDOWS\system32\msmq

2015-08-05 07:06 - 2015-08-05 07:06 - 00000000 ____D C:\WINDOWS\system32\BestPractices

2015-08-05 07:06 - 2015-08-05 07:06 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-08-05 07:06 - 2015-08-05 07:06 - 00000000 ____D C:\Program Files\MSBuild

2015-08-05 07:06 - 2015-08-05 07:06 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-08-05 07:06 - 2015-08-05 07:06 - 00000000 ____D C:\inetpub

2015-08-05 07:06 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-08-05 07:06 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-08-05 07:06 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-08-05 07:05 - 2015-08-05 07:05 - 00000000 __SHD C:\Recovery

2015-08-05 07:05 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-08-05 07:05 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-08-05 07:05 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-08-05 07:03 - 2015-08-05 07:03 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-08-05 06:55 - 2015-08-12 21:14 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-08-05 06:42 - 2015-08-14 22:35 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks

2015-08-05 06:42 - 2015-08-14 22:35 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks

2015-08-05 06:42 - 2015-08-05 06:42 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-08-05 06:42 - 2015-08-05 06:42 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010

2015-08-05 06:42 - 2015-08-05 06:42 - 00000000 ____D C:\Users\Default\Desktop\Play Games

2015-08-05 06:42 - 2015-08-05 06:42 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia

2015-08-05 06:42 - 2015-08-05 06:42 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help

2015-08-05 06:42 - 2015-08-05 06:42 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010

2015-08-05 06:42 - 2015-08-05 06:42 - 00000000 ____D C:\Users\Default User\Desktop\Play Games

2015-08-05 06:42 - 2015-08-05 06:42 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia

2015-08-05 06:42 - 2015-08-05 06:42 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help

2015-08-05 06:33 - 2015-08-05 06:33 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines

2015-08-05 06:27 - 2015-08-14 21:51 - 00000000 ____D C:\Users\RTS

2015-08-05 06:27 - 2015-08-05 15:32 - 00000000 ___RD C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-05 06:27 - 2015-07-10 04:04 - 00000000 __RSD C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-08-05 06:27 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-08-05 06:27 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-08-05 06:27 - 2015-07-10 04:04 - 00000000 ____D C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-08-05 06:26 - 2015-08-15 06:16 - 01005598 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-08-05 06:26 - 2015-08-05 06:26 - 00961296 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI

2015-08-05 06:26 - 2015-08-05 06:26 - 00021209 _____ C:\WINDOWS\iis.log

2015-08-05 06:24 - 2015-08-05 06:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf

2015-08-05 06:24 - 2015-08-05 06:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_bpusb_01007.Wdf

2015-08-05 06:24 - 2015-08-05 06:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf

2015-08-05 06:24 - 2015-08-05 06:24 - 00000000 ____D C:\Program Files\DellTPad

2015-08-05 06:24 - 2015-07-10 03:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-08-05 06:23 - 2015-08-05 06:45 - 00000000 ____D C:\Program Files\IDT

2015-08-05 06:23 - 2015-08-05 06:23 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_bpenum_01007.Wdf

2015-08-05 06:23 - 2015-08-05 06:23 - 00000000 ____D C:\WINDOWS\system32\SRSLabs

2015-08-05 06:23 - 2011-01-25 02:57 - 04637184 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll

2015-08-05 06:23 - 2011-01-25 02:57 - 00438784 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl

2015-08-05 06:23 - 2011-01-21 09:15 - 00449024 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slapoi64.dll

2015-08-05 06:23 - 2011-01-19 15:28 - 00015610 _____ C:\WINDOWS\system32\W92HDM59.xml

2015-08-05 06:23 - 2010-10-15 02:56 - 00390656 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\imthx64.dll

2015-08-05 06:23 - 2010-10-01 00:18 - 00866304 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\imapo64.dll

2015-08-05 06:23 - 2010-10-01 00:17 - 00732672 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\imapo32.dll

2015-08-05 06:23 - 2010-04-01 15:11 - 00162304 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAC64.dll

2015-08-05 06:23 - 2009-10-10 01:45 - 00442368 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTEC64.dll

2015-08-05 06:23 - 2009-03-03 02:58 - 00068608 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTAR64.dll

2015-08-05 06:23 - 2009-03-03 02:47 - 00090624 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AESTCo64.dll

2015-08-05 06:21 - 2015-08-05 06:22 - 00037201 _____ C:\WINDOWS\system32\NetSetupMig.log

2015-08-05 06:20 - 2015-08-14 21:49 - 00004826 _____ C:\WINDOWS\PFRO.log

2015-08-05 05:48 - 2015-08-05 07:04 - 00006523 _____ C:\WINDOWS\comsetup.log

2015-08-05 05:46 - 2015-08-05 07:04 - 00010449 _____ C:\WINDOWS\diagerr.xml

2015-08-05 05:46 - 2015-08-05 07:04 - 00009528 _____ C:\WINDOWS\diagwrn.xml

2015-07-30 15:35 - 2015-07-30 15:35 - 00011334 _____ C:\Users\RTS\Downloads\Audit History Report.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-15 06:15 - 2015-07-10 05:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log

2015-08-15 06:15 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\sru

2015-08-15 03:43 - 2012-04-14 22:15 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-08-14 22:46 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\rescache

2015-08-14 22:36 - 2012-10-13 19:51 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-08-14 22:35 - 2012-01-22 08:17 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup

2015-08-14 22:33 - 2015-07-10 05:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-08-14 22:33 - 2015-07-10 02:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2015-08-14 22:05 - 2015-07-10 03:55 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-08-14 21:49 - 2012-04-28 11:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-08-14 21:34 - 2013-04-10 16:04 - 00000000 ____D C:\Users\RTS\Documents\Email

2015-08-14 21:12 - 2012-10-13 19:51 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-08-12 22:39 - 2015-07-10 05:20 - 00410904 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-08-12 22:38 - 2012-09-01 07:43 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2015-08-12 22:38 - 2012-09-01 07:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2015-08-12 22:36 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-12 22:36 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-12 22:36 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2015-08-12 22:36 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-08-12 22:36 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-08-12 16:03 - 2012-03-08 16:14 - 00000000 ____D C:\ProgramData\Microsoft Help

2015-08-12 16:02 - 2012-09-01 07:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-08-12 15:58 - 2013-08-16 03:03 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-08-12 15:46 - 2012-03-07 22:52 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2015-08-12 05:43 - 2012-04-14 22:15 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-08-09 12:10 - 2014-11-26 23:41 - 00000000 ____D C:\ProgramData\Package Cache

2015-08-09 12:09 - 2013-05-20 19:32 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs

2015-08-09 10:06 - 2012-01-22 08:11 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition

2015-08-09 08:41 - 2013-05-20 19:34 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server

2015-08-09 08:35 - 2015-07-10 05:20 - 00018158 _____ C:\WINDOWS\setupact.log

2015-08-09 08:35 - 2015-07-10 04:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-08-09 08:19 - 2015-06-16 15:53 - 00000000 ____D C:\ProgramData\Oracle

2015-08-09 08:16 - 2012-09-01 07:27 - 00000000 ____D C:\Program Files\Java

2015-08-09 08:15 - 2012-09-01 07:27 - 00206944 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe

2015-08-09 08:15 - 2012-09-01 07:27 - 00206432 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe

2015-08-09 08:15 - 2012-09-01 07:27 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll

2015-08-09 07:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-08-08 16:01 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-08-08 13:13 - 2012-03-07 22:23 - 00113488 _____ C:\Users\RTS\AppData\Local\GDIPFONTCACHEV1.DAT

2015-08-08 08:38 - 2015-07-10 04:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2015-08-08 08:38 - 2015-07-10 04:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2015-08-06 03:47 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\Provisioning

2015-08-06 03:32 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\appcompat

2015-08-06 02:03 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\restore

2015-08-05 18:47 - 2015-05-10 18:56 - 00000000 ____D C:\Users\RTS\Desktop\Menu

2015-08-05 15:36 - 2012-01-22 07:58 - 00000000 ____D C:\ProgramData\Sonic

2015-08-05 15:32 - 2015-07-10 04:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-08-05 15:32 - 2015-07-10 04:04 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-08-05 15:32 - 2015-07-10 04:04 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-08-05 15:32 - 2015-07-10 04:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-08-05 07:19 - 2015-07-10 04:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-08-05 07:12 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe

2015-08-05 07:12 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-08-05 07:12 - 2015-07-10 02:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-08-05 07:12 - 2015-07-10 02:05 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-08-05 07:06 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv

2015-08-05 07:06 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv

2015-08-05 07:06 - 2015-07-10 04:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb

2015-08-05 07:06 - 2015-07-10 04:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb

2015-08-05 07:06 - 2015-07-10 04:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb

2015-08-05 07:06 - 2015-07-10 04:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb

2015-08-05 07:06 - 2015-07-10 04:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe

2015-08-05 07:06 - 2015-07-10 04:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll

2015-08-05 07:06 - 2015-07-10 04:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof

2015-08-05 07:06 - 2015-07-10 04:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys

2015-08-05 07:06 - 2015-07-10 04:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb

2015-08-05 07:06 - 2015-07-10 04:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb

2015-08-05 07:06 - 2015-07-10 04:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb

2015-08-05 07:06 - 2015-07-10 04:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe

2015-08-05 07:06 - 2015-07-10 04:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb

2015-08-05 07:06 - 2015-07-10 04:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe

2015-08-05 07:06 - 2015-07-10 04:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe

2015-08-05 07:06 - 2015-07-10 04:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll

2015-08-05 07:06 - 2015-07-10 04:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof

2015-08-05 07:04 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\Registration

2015-08-05 07:03 - 2015-07-10 04:04 - 00000000 __RSD C:\WINDOWS\Media

2015-08-05 07:03 - 2015-07-10 04:04 - 00000000 __RHD C:\Users\Public\Libraries

2015-08-05 07:03 - 2014-12-23 22:54 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2015-08-05 07:03 - 2012-10-13 19:51 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

2015-08-05 07:03 - 2012-10-13 19:51 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

2015-08-05 07:03 - 2012-03-09 22:05 - 00003192 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe

2015-08-05 06:52 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\spool

2015-08-05 06:45 - 2015-07-10 06:14 - 00000000 ____D C:\WINDOWS\ShellNew

2015-08-05 06:45 - 2015-07-10 04:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories

2015-08-05 06:45 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-08-05 06:45 - 2015-07-10 02:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-08-05 06:45 - 2015-06-16 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio

2015-08-05 06:45 - 2015-06-16 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit

2015-08-05 06:45 - 2015-06-16 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2015-08-05 06:45 - 2015-05-26 20:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2015-08-05 06:45 - 2015-05-26 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime

2015-08-05 06:45 - 2015-02-03 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfram CDF Player

2015-08-05 06:45 - 2015-02-02 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge

2015-08-05 06:45 - 2014-11-27 22:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simulator for Arduino

2015-08-05 06:45 - 2014-06-11 21:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus

2015-08-05 06:45 - 2013-11-20 22:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Starry Night Orion Special Edition

2015-08-05 06:45 - 2013-11-20 22:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EQMOD

2015-08-05 06:45 - 2013-11-20 22:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASCOM Platform

2015-08-05 06:45 - 2013-06-01 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EAGLE Layout Editor 6.4.0

2015-08-05 06:45 - 2013-05-24 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flip 3.4.7

2015-08-05 06:45 - 2013-05-20 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atmel

2015-08-05 06:45 - 2013-04-18 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignSpark

2015-08-05 06:45 - 2013-02-05 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now EZ

2015-08-05 06:45 - 2013-02-04 18:43 - 00000000 ____D C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell

2015-08-05 06:45 - 2012-11-25 07:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TileGem

2015-08-05 06:45 - 2012-11-24 22:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip

2015-08-05 06:45 - 2012-10-13 19:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-08-05 06:45 - 2012-10-04 18:28 - 00000000 ____D C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Enthought

2015-08-05 06:45 - 2012-04-05 15:31 - 00000000 ____D C:\Program Files\Dell Support Center

2015-08-05 06:45 - 2012-03-17 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KompoZer

2015-08-05 06:45 - 2012-03-14 19:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP

2015-08-05 06:45 - 2012-03-14 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio

2015-08-05 06:45 - 2012-03-14 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client

2015-08-05 06:45 - 2012-03-09 22:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse

2015-08-05 06:45 - 2012-03-08 16:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2015-08-05 06:45 - 2012-01-22 08:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe

2015-08-05 06:45 - 2012-01-22 08:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live

2015-08-05 06:45 - 2012-01-22 08:12 - 00000000 ____D C:\WINDOWS\en

2015-08-05 06:45 - 2012-01-22 08:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe Online

2015-08-05 06:45 - 2012-01-22 08:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero

2015-08-05 06:45 - 2012-01-22 07:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Creator Starter

2015-08-05 06:45 - 2012-01-22 07:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell

2015-08-05 06:45 - 2012-01-22 07:55 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Stage

2015-08-05 06:45 - 2012-01-22 07:39 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2015-08-05 06:45 - 2009-07-13 22:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-08-05 06:42 - 2015-07-10 04:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log

2015-08-05 06:42 - 2015-07-10 02:05 - 00000000 __RHD C:\Users\Default

2015-08-05 06:42 - 2009-07-13 20:20 - 00000000 ____D C:\Users\Default.migrated

2015-08-05 06:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK

2015-08-05 06:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR

2015-08-05 06:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz

2015-08-05 06:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME

2015-08-05 06:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK

2015-08-05 06:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR

2015-08-05 06:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\IME

2015-08-05 06:35 - 2012-01-22 07:44 - 00000000 ____D C:\WINDOWS\SysWOW64\sda

2015-08-05 06:34 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\schemas

2015-08-05 06:34 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions

2015-08-05 06:33 - 2015-07-10 04:04 - 00000000 __SHD C:\Program Files\Windows Sidebar

2015-08-05 06:33 - 2015-07-10 04:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar

2015-08-05 06:33 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\Cursors

2015-08-05 06:33 - 2015-04-24 17:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Passware

2015-08-05 06:33 - 2015-04-16 03:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2015-08-05 06:33 - 2015-01-27 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger

2015-08-05 06:33 - 2014-12-25 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smith Micro

2015-08-05 06:33 - 2013-04-17 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yenka

2015-08-05 06:33 - 2012-04-05 15:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center

2015-08-05 06:33 - 2012-01-22 09:25 - 00000000 ___RD C:\Users\Public\Recorded TV

2015-08-05 06:33 - 2012-01-22 08:04 - 00000000 ____D C:\Program Files (x86)\Intel Corporation

2015-08-05 06:33 - 2012-01-22 07:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-NFB Reading Technology

2015-08-05 06:33 - 2012-01-22 07:48 - 00000000 ____D C:\ProgramData\Intel

2015-08-05 06:33 - 2012-01-22 07:44 - 00000000 ____D C:\Program Files\Intel

2015-08-05 06:33 - 2012-01-22 07:40 - 00000000 ____D C:\Program Files\Common Files\Intel

2015-08-05 06:33 - 2012-01-22 07:39 - 00000000 ____D C:\Program Files (x86)\Intel

2015-08-05 06:33 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files\Microsoft Games

2015-08-05 06:33 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files\DVD Maker

2015-08-05 06:31 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\Recovery

2015-08-05 06:30 - 2013-11-21 07:27 - 00000000 ____D C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\realtech VR

2015-08-05 06:30 - 2012-03-25 19:10 - 00000000 ____D C:\Users\RTS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qt SDK

2015-08-05 06:26 - 2015-07-10 02:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-08-05 05:56 - 2012-01-22 07:33 - 01543814 _____ C:\WINDOWS\WindowsUpdate (1).log

2015-08-05 05:56 - 2009-07-13 21:45 - 00028576 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-08-05 05:56 - 2009-07-13 21:45 - 00028576 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-08-05 05:46 - 2015-07-10 06:39 - 00000000 ___HD C:\$Windows.~BT

2015-08-02 19:42 - 2012-03-07 22:38 - 00000000 ____D C:\Users\RTS\AppData\Local\Microsoft Games

2015-07-21 15:51 - 2013-06-07 16:05 - 00000000 ____D C:\Users\RTS\Desktop\RTS Training Tracker

2015-07-16 03:57 - 2014-03-03 20:42 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

==================== Files in the root of some directories =======

2013-04-18 16:31 - 2015-04-11 21:30 - 0004086 _____ () C:\Users\RTS\AppData\Roaming\LTspiceIV.ini

2012-10-24 20:12 - 2012-10-24 20:12 - 0003584 _____ () C:\Users\RTS\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2012-05-28 10:47 - 2013-02-07 19:06 - 0000600 _____ () C:\Users\RTS\AppData\Local\PUTTY.RND

Some files in TEMP:

====================

C:\Users\RTS\AppData\Local\Temp\jre-8u51-windows-au.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed

C:\WINDOWS\system32\wininit.exe => File is digitally signed

C:\WINDOWS\explorer.exe => File is digitally signed

C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed

C:\WINDOWS\system32\svchost.exe => File is digitally signed

C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed

C:\WINDOWS\system32\services.exe => File is digitally signed

C:\WINDOWS\system32\User32.dll => File is digitally signed

C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed

C:\WINDOWS\system32\userinit.exe => File is digitally signed

C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed

C:\WINDOWS\system32\rpcss.dll => File is digitally signed

C:\WINDOWS\system32\dnsapi.dll => File is digitally signed

C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed

C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-08-05 06:20

==================== End of log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version:14-08-2015 01

Ran by RTS (2015-08-15 06:20:06)

Running from C:\Users\RTS\Desktop

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1286904689-2793304105-449274170-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-1286904689-2793304105-449274170-503 - Limited - Disabled)

Guest (S-1-5-21-1286904689-2793304105-449274170-501 - Limited - Disabled)

RTS (S-1-5-21-1286904689-2793304105-449274170-1000 - Administrator - Enabled) => C:\Users\RTS

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19120 - Adobe Systems Incorporated)

Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)

Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)

Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)

Apple Application Support (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)

Apple Application Support (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Application Insights Tools for Visual Studio 2015 (x32 Version: 3.3.1 - Microsoft Corporation) Hidden

Arduino (HKLM-x32\...\Arduino) (Version: 1.0.6 - Arduino LLC)

ASCOM Celestron Telescope Driver 5.0.23 (HKLM-x32\...\ASCOM Celestron Telescope Driver_is1) (Version: 5.0.23 - Chris Rowland <chris.rowland@dsl.pipex.com>)

ASCOM Gemini Telescope Driver (1.0.8.0) (HKLM\...\ASCOM.GeminiTelescope_is1) (Version: 1.0.8.0 - ASCOM Gemini Developers)

ASCOM Intelliscope Telescope Driver 1.0.0.0 (HKLM-x32\...\ASCOM Intelliscope Telescope Driver_is1) (Version: 1.0.0.0 - Various <eschman@unm.edu>)

ASCOM Meade Telescope Driver 5.0.3 (HKLM-x32\...\ASCOM Meade Telescope Driver_is1) (Version: 5.0.3 - Jonathan Putsman <ukaa@putsman.plus.com>)

ASCOM Platform 5.0b (HKLM-x32\...\{14C10725-0018-4534-AE5E-547C08B737B7}) (Version: 5.0.22 - ASCOM Initiative)

ASCOM Platform 5.5.1 Update (5.5.23.18) (HKLM\...\ASCOM.Platform.NET.Components_is1) (Version: 5.5.23.18 - ASCOM Initiative)

Atmel ARM GNU Toolchain (HKLM-x32\...\{5E0EE694-E5B8-4D94-A52D-2F3271C8CF26}) (Version: 4.7.3.99 - Atmel)

Atmel AVR (32 bit) GNU Toolchain (HKLM-x32\...\{D73DC791-E28C-40FA-B008-D1A1C3A3B41B}) (Version: 3.4.2.435 - Atmel)

Atmel AVR (8 bit) GNU Toolchain (HKLM-x32\...\{132C587D-2A0B-494C-86FB-7383D48EB850}) (Version: 3.4.1056 - Atmel)

Atmel Data Visualizer (HKLM-x32\...\{b90bf4a2-fbb4-4c2b-b91a-640587bad1fe}) (Version: 2.0.145 - Atmel)

Atmel Data Visualizer (x32 Version: 1.0.0.0 - Atmel Corporation) Hidden

Atmel Studio 6.1 (HKLM-x32\...\{71D5A296-D77E-4BC5-BB75-12AD20001A61}) (Version: 6.1.2562 - Atmel)

Atmel Studio InfFiles (x32 Version: 6.2.882 - Atmel Corporation) Hidden

Atmel USB (HKLM-x32\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 11.3 - Atmel)

Atmel WinUSB (x32 Version: 6.2.27 - Atmel) Hidden

AtmelSoftwareFramework (HKLM-x32\...\{C4B28974-0790-463B-9C11-C8516DE309DB}) (Version: 3.8.873 - Atmel)

AVR macro Assembler (HKLM-x32\...\{476D4A09-85AE-4243-8A1C-688F22F0D29F}) (Version: 2.1.39.232 - Atmel)

Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden

AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden

Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.51210.80 - Microsoft Corporation) Hidden

Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)

Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden

Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden

Blio (HKLM-x32\...\{400182B4-CA55-46A9-9D88-F8413DCFB36D}) (Version: 2.3.7140 - K-NFB Reading Technology, Inc.)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden

Build Tools for Windows 10 - ENU (x32 Version: 14.0.23121 - Microsoft Corporation) Hidden

Build Tools for Windows 10 (x32 Version: 14.0.23121 - Microsoft Corporation) Hidden

Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden

CamStudio OSS Desktop Recorder (HKLM-x32\...\{FD9C31B6-F572-414D-81E3-89368C97A125}_is1) (Version: 2.6 Beta r294 - CamStudio Open Source Dev Team)

Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Cobra Print Viewer Trial 2.0 (HKLM-x32\...\{A9AD949D-CD58-479C-BC98-E864E02304A4}_is1) (Version: 2.0 - Cobra Apps)

CodedUITestUAP (x32 Version: 14.0.23121 - Microsoft Corporation) Hidden

Cozi (HKLM-x32\...\{EA1F3D6C-A6F5-4CDC-B0D3-9C56C06B4D29}) (Version: 1.0.6505.38692 - Cozi Group, Inc.)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)

Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)

Dell DataSafe Online (HKLM-x32\...\{7EC66A95-AC2D-4127-940B-0445A526AB2F}) (Version: 2.1.19634 - Dell)

Dell Digital Delivery (HKLM-x32\...\{AFC08A81-D3C5-46F4-8F08-876E4BA606EA}) (Version: 1.7.4502.0 - Dell Products, LP)

Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)

Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)

Dell MusicStage (HKLM-x32\...\{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}) (Version: 1.5.201.0 - Fingertapps)

Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)

Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.1.3 - Dell Inc.)

Dell Stage (HKLM-x32\...\{E2EBA7C0-8072-447F-856D-FFEE8D15B23B}) (Version: 1.5.201.0 - Fingertapps)

Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.1.5907.29 - Dell Inc.)

Dell Support Center (Version: 3.1.5907.29 - PC-Doctor, Inc.) Hidden

Dell System Detect (HKU\S-1-5-21-1286904689-2793304105-449274170-1000\...\9204f5692a8faf3b) (Version: 3.3.2.1 - Dell)

Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1200.101.218 - ALPS ELECTRIC CO., LTD.)

Dell VideoStage (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)

Dell VideoStage (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden

Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.01.17 - Creative Technology Ltd)

DesignSpark PCB 5.0 (x32 Version: 5.0 - RS Components) Hidden

DesignSpark PCB 7.0 (x32 Version: 7.0 - RS Components) Hidden

DesignSpark PCB Version 5.0 (HKLM-x32\...\InstallShield_{D50500AA-D25A-463B-98BF-E09585325711}) (Version: 5.0 - RS Components)

DesignSpark PCB Version 7.0 (HKLM-x32\...\InstallShield_{D50700AA-D25A-463B-98BF-E09585325711}) (Version: 7.0 - RS Components)

Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden

DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden

Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden

Dotfuscator and Analytics Community Edition 5.18.1 (x32 Version: 5.18.1.2898 - PreEmptive Solutions) Hidden

EAGLE 6.4.0 (HKLM-x32\...\EAGLE 6.4.0) (Version: 6.4.0 - CadSoft Computer GmbH)

eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)

EPD_free-7.3-2 (HKLM-x32\...\{615A5951-A1FA-42DD-B786-842926DDC27D}) (Version: 7.3.2 - Enthought)

EQMOD EQASCOM Telescope Driver V1.22j (HKLM-x32\...\EQMOD EQASCOM Telescope Driver_is1) (Version: 122j - EQMOD Project <EQMOD-owner@yahoogroups.com>)

Escape Whisper Valley ™ (x32 Version: 2.2.0.95 - WildTangent) Hidden

ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )

Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden

FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden

FileZilla Client 3.6.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.6.0.2 - FileZilla Project)

Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden

Final Drive Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden

Flip 3.4.7 (HKLM-x32\...\flip.exe) (Version: 3.4.7 - Atmel)

GIMP 2.6.12-2 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.12 - The GIMP Team)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)

Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6710.2136 - Google Inc.)

Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden

HM NIS Edit 2.0.3 (HKLM-x32\...\HM NIS Edit) (Version: 2.0.3 - Hector Maurcio Rodriguez Segura)

IDE Tools for Windows 10 - ENU (x32 Version: 14.0.23121 - Microsoft Corporation) Hidden

IDE Tools for Windows 10 (x32 Version: 14.0.23121 - Microsoft Corporation) Hidden

IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT)

Intel PROSet Wireless (x32 Version: - ) Hidden

Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)

Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)

Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)

Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)

Intel® WiDi (HKLM-x32\...\{781A93CD-1608-427D-B7F0-D05C07795B25}) (Version: 2.1.41.0 - Intel Corporation)

Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )

Intel® Hardware Accelerated Execution Manager (HKLM\...\{ECCB31F5-435D-4F37-A98D-5854D3C62718}) (Version: 1.1.1 - Intel Corporation)

Intel® PROSet/Wireless WiMAX Software (HKLM\...\{5C1DA3D9-F590-4317-A4FB-274F658E504B}) (Version: 6.05.0000 - Intel Corporation)

Intellisense Lang Pack Mobile Extension SDK 10.0.10240.0 (x32 Version: 10.0.10240.0 - Microsoft Corporation) Hidden

iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)

Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)

Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)

Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.15 - Oracle Corporation)

JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)

Jewel Quest (x32 Version: 2.2.0.95 - WildTangent) Hidden

Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

JLink OB CDC Driver Package (HKLM\...\{85153CE3-6356-407F-A672-C1FA085FB031}) (Version: 1.2.2 - SEGGER)

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Kits Configuration Installer (x32 Version: 10.0.26624 - Microsoft) Hidden

KompoZer 0.8b3 (HKLM-x32\...\{20aa4150-b5f4-11de-8a39-0800200c9a66}_is1) (Version: - KompoZer)

LTspice IV (HKLM-x32\...\LTspice IV) (Version: - )

Luxor (x32 Version: 2.2.0.95 - WildTangent) Hidden

Mathematica Extras 9.0 (4092550) (HKLM\...\A-WIN-Extras 9.0.1 4092550_is1) (Version: 9.0.1 - Wolfram Research, Inc.)

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)

MeadeLX200GPS 5.0.0 (HKLM-x32\...\ASCOM Meade LX200GPS/R Telescope Driver_is1) (Version: 5.0.0 - Jon Brewster jon@brewsters.net)

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)

Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)

Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)

Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{3D3CEBE6-40EA-4C48-97FD-73828281AB4A}) (Version: 4.6.00081 - Microsoft Corporation)

Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)

Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)

Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)

Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)

Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)

Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)

Microsoft Office Professional 2007 (HKLM-x32\...\PROR) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Outlook Personal Folders Backup (HKLM-x32\...\{C63E7C60-25EB-11D3-8EDA-00A0C911E8E5}) (Version: 1.10.0.0 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)

Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)

Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)

Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)

Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)

Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)

Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)

Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{68BA34E8-9B9D-4A74-83F0-7D366B532D75}) (Version: 12.0.2402.11 - Microsoft Corporation)

Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)

Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)

Microsoft Visual Studio Professional 2015 (HKLM-x32\...\{1ef6a030-1244-4d01-95f3-299c0e3a3362}) (Version: 14.0.23107.10 - Microsoft Corporation)

Mozilla Firefox 40.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 en-US)) (Version: 40.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla)

MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.23121 - Microsoft Corporation) Hidden

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden

MX Trainer 1.0 (HKLM-x32\...\MX Trainer) (Version: 1.0 - My company, Inc.)

Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden

NTI Backup Now EZ (HKLM-x32\...\InstallShield_{B9ECA41B-55CC-4654-B6B5-6731D009EC69}) (Version: 2.5.2.56 - NTI Corporation)

NTI Backup Now EZ (x32 Version: 2.5.2.56 - NTI Corporation) Hidden

Nullsoft Install System (HKLM-x32\...\NSIS) (Version: 2.46 - )

OpenGL Extensions Viewer 3.0 (HKLM-x32\...\GLVIEW3) (Version: 413 - )

Passware Kit 5.7 (HKLM-x32\...\Passware Kit 5.7) (Version: - )

Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden

PhotoShowExpress (x32 Version: 2.0.063 - Sonic Solutions) Hidden

PL-2303 Vista Driver Installer (HKLM-x32\...\{EEC010D0-1252-4E1D-BAD9-F1B8F414535C}) (Version: 3.2.0.0 - Prolific)

Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden

PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)

Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden

Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden

Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden

PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden

Project and Item Templates for Visual Studio Express 2015 for Windows 10 - ENU (x32 Version: 14.0.23121 - Microsoft Corporation) Hidden

Project and Item Templates for Visual Studio Professionald 2015 - ENU (x32 Version: 14.0.23121 - Microsoft Corporation) Hidden

Qt SDK (HKU\S-1-5-21-1286904689-2793304105-449274170-1000\...\Qt SDK) (Version: 1.2.0 - Nokia)

Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.09.25 - Dell Inc.)

QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)

RBVirtualFolder64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.31.1025.2010 - Realtek)

Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30126 - Realtek Semiconductor Corp.)

Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden

Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)

Roxio File Backup (Version: 1.3.2 - Roxio) Hidden

Samantha Swift (x32 Version: 2.2.0.95 - WildTangent) Hidden

Simulator for Arduino 0.99D (HKLM-x32\...\Simulator for Arduino) (Version: 0.99D - Virtronics)

Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)

SlimDX Runtime .NET 4.0 x86 (January 2012) (HKLM-x32\...\{7EBD0E43-6AC0-4CA8-9990-00E50069AD29}) (Version: 2.0.13.43 - SlimDX Group)

Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden

Starry Night Orion Special Edition (HKLM-x32\...\{85A2C625-556B-42C2-9552-A9040822557E}) (Version: 6.4.3 - Simulation Curriculum Corp.)

StuffIt Expander 2011 (HKLM-x32\...\{59E98F3F-48D6-42A9-8250-079671E02B2D}) (Version: 15.0.7.2518 - Smith Micro Software, Inc.)

SyncUP (HKLM-x32\...\{D92C9CCE-E5F0-4125-977A-0590F3225B74}) (Version: 10.2.15400 - Nero AG)

SyncUP (x32 Version: 1.12.12400.17.102 - Nero AG) Hidden

Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.23102 - Microsoft Corporation) Hidden

TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.44109 - TeamViewer)

Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden

TI USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{B1EB7FFF-6E44-43D8-869D-B78E44CD3E0F}) (Version: 1.12.14.0 - Texas Instruments Inc.)

TI USB3 Host Driver (x32 Version: 1.12.14.0 - Texas Instruments Inc.) Hidden

TileGem (HKLM-x32\...\{098104AB-F9FF-4BF5-B909-071C60164E82}) (Version: 2.4.0 - Compass Web Designs LLC.)

TypeScript Power Tool (x32 Version: 1.5.4.0 - Microsoft Corporation) Hidden

TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.5.4.0 - Microsoft Corporation) Hidden

TypeScript Tools for Microsoft Visual Studio 2015 1.5.4.0 (HKLM-x32\...\{4cde0c8c-47b3-448f-babf-fe5d392432a6}) (Version: 1.5.23128.0 - Microsoft Corporation)

Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden

Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden

Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

Universal CRT Redistributable (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

Universal CRT Tools x64 (Version: 10.0.26624 - Microsoft Corporation) Hidden

Universal CRT Tools x86 (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

Universal General MIDI DLS Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)

Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden

Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden

Visual Micro for Arduino (HKLM-x32\...\{10312858-007D-4A55-B663-F4E084CBB1E8}) (Version: 14.14.0009 - Visual Micro Limited)

WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden

WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden

Wedding Dash - Ready, Aim, Love! (x32 Version: 2.2.0.95 - WildTangent) Hidden

WildTangent Games (HKLM-x32\...\WildTangent dell Master Uninstall) (Version: 1.0.2.5 - WildTangent)

WildTangent Games App (Dell Games) (x32 Version: 4.0.10.5 - WildTangent) Hidden

WinAppDeploy (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

Windows Driver Package - Segger (jlink) USB (04/11/2012 2.6.8.2) (HKLM\...\419546AE8E4244C647A348987F769803F43B9C4F) (Version: 04/11/2012 2.6.8.2 - Segger)

Windows Driver Package - SEGGER (usbser) Ports (01/25/2012 6.0.2600.4) (HKLM\...\BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1) (Version: 01/25/2012 6.0.2600.4 - SEGGER)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)

Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

Windows Software Development Kit - Windows 10.0.26624 (HKLM-x32\...\{e7a0c8b6-b0e9-41e2-8a0a-a6784f88d1d4}) (Version: 10.0.26624 - Microsoft Corporation)

WinMerge 2.14.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.14.0 - Thingamahoochie Software)

WinRT Intellisense Desktop - en-us (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense Desktop - Other Languages (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense IoT - en-us (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense IoT - Other Languages (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense PPI - en-us (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense PPI - Other Languages (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense UAP - en-us (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense UAP - Other Languages (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense Xbox Live Extension SDK - en-us (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

WinRT Intellisense Xbox Live Extension SDK - Other Languages (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden

Wolfram CDF Player (M-WIN-D 9.0.1 4092685) (HKLM-x32\...\M-WIN-D 9.0.1 4092685_is1) (Version: 9.0.1 - Wolfram Research, Inc.)

Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)

Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version: - )

Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version: - Yahoo! Inc.)

Yenka (HKLM-x32\...\Yenka) (Version: 3.4.1.0 - Crocodile Clips Ltd)

Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)

Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden

Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1286904689-2793304105-449274170-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\RTS\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

06-08-2015 02:03:24 Windows Update

06-08-2015 02:04:01 Windows Update

09-08-2015 08:29:53 Microsoft Visual Studio Professional 2015

12-08-2015 15:26:57 Windows Modules Installer

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:34 - 2009-06-10 14:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)

Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)

Task: {1641F54C-1E57-4902-AB65-EE2B65E5629D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)

Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)

Task: {1A1CF7A9-2A8B-4829-97FD-AED5AC18FA51} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe

Task: {1D3D099E-EE1E-4907-8BA2-BA8F12D11AA6} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2015-07-10] (Microsoft Corporation)

Task: {23F62904-3138-48C9-89B2-5566F38D79A6} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe

Task: {2C97A00A-1C5C-4318-B5CC-8A1A126B77F9} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask

Task: {30A4EE67-961D-42F4-BD10-2CF03565805A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION

Task: {3C4905A0-7859-46D8-AB1C-C5FDBDFA3339} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe

Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW

Task: {3F9819A1-9B45-484D-97F4-70819804AA1A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-13] (Google Inc.)

Task: {3FD01D3E-2B6C-482F-AC7E-7BB4EC738B2D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe

Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)

Task: {4444A381-338D-488A-B66F-A9236D5ABA7B} - \PCDEventLauncher -> No File <==== ATTENTION

Task: {4454A8D0-2E4E-4A02-BF67-48DF6A7BFAB4} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask

Task: {4CBA7F07-95A9-45EC-A39D-49D333EB6F5A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION

Task: {4D155BFD-B788-444B-8BAE-4C0A00AC5055} - System32\Tasks\Microsoft\Microsoft Antimalware\MpIdleTask => c:\Program Files\Microsoft Security Client\MpCmdRun.exe

Task: {59EB809F-C8DE-40CC-AB83-4A2F52B338A5} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe

Task: {5DFED70A-0A51-4A10-A38C-CEC6646A5605} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION

Task: {5E5515C1-7D87-4904-B9CE-FD29EB2ADB72} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync

Task: {611C823C-437B-46E7-9683-5312DFFCFD7B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)

Task: {6284364B-F63D-44A3-BA27-E65C9648C2E8} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe

Task: {63F72023-01EA-4C60-80EA-1977B72FDDA1} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)

Task: {66D5E94E-86DA-4C96-B56C-F53834EFB424} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe

Task: {685046BC-11C7-4038-8187-DC65D1BAE2A1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe

Task: {696EBF1C-C8BF-453B-A2EB-FB22EA737D1B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe

Task: {69F4BE77-C216-47AC-BA6E-ED71C97EA45D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION

Task: {711EE2F9-A611-4773-AF8E-D4B278A6718D} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask

Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask

Task: {739ACCB7-24EB-40DB-8EFD-1923194238CD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION

Task: {744C9FEA-08B7-43E1-A729-0F94647D655C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)

Task: {74605915-50D7-4E50-BCAD-10BD3319BE44} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe

Task: {77263FDB-931D-4F2B-AB67-1A2EB16DA98F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance

Task: {7A003965-A297-4DC6-B15B-852D798391E0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\WINDOWS\system32\MusNotification.exe [2015-08-05] (Microsoft Corporation)

Task: {7ABE1803-4FB8-4713-B781-1DDE139886F9} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe

Task: {7DE04CE5-1263-4BF0-B712-40203E4A060D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe

Task: {848DCC36-520C-4946-BF68-C7EFFEFA2F84} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2015-08-05] (Microsoft Corporation)

Task: {8C85753A-2812-464A-8C93-C951108DD72B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION

Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-05] (Microsoft Corporation)

Task: {8F3944AF-AEE2-4DA3-9ABC-CB9BD128E504} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe

Task: {91FB7F56-8DF7-47FC-BA70-8103A02BCD35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-13] (Google Inc.)

Task: {9522A7D5-E3E1-43FB-BF00-352308C05369} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe

Task: {99BD83A5-7D38-40F9-91E0-C0F9D822550E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe

Task: {A364E297-00AD-490D-900E-22AC34598C71} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)

Task: {A52D7581-B035-4BE2-82FB-4A6C0B8F6588} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe

Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager

Task: {A8282B35-8752-48B7-A616-7B3C025D441E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION

Task: {A8BED563-8251-4B10-84D2-725FEABDDA0F} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe

Task: {AC29E64E-3271-47BA-B8F1-914523CF379B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update

Task: {AC4B69B1-C19B-43FE-8C61-7127D7593005} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe

Task: {AFDB050B-EECB-4FEE-980E-39AAB0E6D6D8} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe

Task: {B532B5AD-5B66-4035-94B1-0B977B9DCAE2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe

Task: {B9B36D41-C776-424E-9A13-5387E17A2CEB} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2015-07-10] (Microsoft Corporation)

Task: {BD657C08-341B-466B-A00F-3C06DB216848} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION

Task: {C2162702-FFEB-48C0-AA5F-2DA3A8887D61} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation

Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr

Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)

Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)

Task: {C7C81F9E-82D1-4172-BF7C-45718AA3A368} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe

Task: {CDDCA5D4-B5A9-4FA2-9CA3-243773296540} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe

Task: {CFD305D5-1EE6-4796-8C36-FFF0ACCF85B2} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation)

Task: {D2401052-A382-42DE-9C79-D1CF3563F654} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation

Task: {D7FC1014-6903-4A87-8C03-5AB6A5DB4304} - \SystemToolsDailyTest -> No File <==== ATTENTION

Task: {DAF2BAE3-1C5B-4CB5-9F62-0911C031A15A} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2015-07-10] (Microsoft Corporation)

Task: {DB29CEB2-2B0B-4ABB-B93A-0124137F52CC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {DEB1D346-C078-48CD-8DEA-5321ADBB8195} - \PCDoctorBackgroundMonitorTask -> No File <==== ATTENTION

Task: {E110FF93-B7D7-4A3D-9AC9-84F62555BA2E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe

Task: {E14A1A21-E2E0-4D23-BF82-40B6F9ACB0E5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe

Task: {E8E330B9-0DA6-4E61-BDF0-26E55DA4212B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION

Task: {EA3F661E-B31C-44A9-B40C-E3D5D56149D4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2015-08-05] (Microsoft Corporation)

Task: {EB9783C7-34A1-4985-9AC7-368C6234B68D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)

Task: {FC505DF5-83B3-4173-AF79-94F7299BB5E7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-05 07:11 - 2015-08-05 07:11 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll

2015-03-20 18:12 - 2015-03-20 18:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

2015-03-20 18:12 - 2015-03-20 18:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

2015-08-05 18:36 - 2015-07-29 23:05 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll

2012-01-22 08:17 - 2011-08-18 09:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

2015-08-05 18:36 - 2015-07-29 23:05 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll

2015-07-10 03:59 - 2015-07-10 03:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll

2015-06-01 21:00 - 2015-06-01 21:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll

2010-11-17 09:35 - 2010-11-17 09:35 - 00514544 _____ () C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe

2011-04-29 17:18 - 2011-04-29 17:18 - 00885760 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe

2015-08-12 05:53 - 2015-08-02 18:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll

2015-07-10 04:00 - 2015-07-10 06:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll

2015-08-12 05:53 - 2015-08-02 18:14 - 00882688 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll

2015-08-12 05:53 - 2015-08-02 18:08 - 01806848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll

2015-08-12 05:53 - 2015-08-02 18:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

2015-08-12 05:53 - 2015-08-02 18:09 - 02028544 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll

2015-08-05 07:11 - 2015-08-05 07:11 - 00619008 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll

2015-08-05 16:17 - 2015-08-05 16:18 - 03633664 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1507.15010.0_x64__8wekyb3d8bbwe\Calculator.exe

2015-08-05 17:23 - 2015-08-05 17:28 - 07824896 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.3.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll

2015-08-05 17:23 - 2015-08-05 17:28 - 02062336 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.3.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll

2011-09-23 22:54 - 2011-09-23 22:54 - 00465344 _____ () C:\Program Files (x86)\NTI\NTI Backup Now EZ\sqlite3.dll

2012-11-29 14:59 - 2012-11-29 14:59 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll

2010-11-24 21:44 - 2010-11-24 21:44 - 00375280 _____ () c:\program files (x86)\common files\roxio shared\dllshared\SQLite352.dll

2011-04-29 17:13 - 2011-04-29 17:13 - 07938048 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll

2011-04-29 17:13 - 2011-04-29 17:13 - 02225664 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll

2015-08-12 21:14 - 2015-08-07 17:13 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libglesv2.dll

2015-08-12 21:14 - 2015-08-07 17:13 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libegl.dll

2012-03-17 16:17 - 2012-05-25 05:25 - 00921600 _____ () C:\Program Files (x86)\Yahoo!\Messenger\yui.dll

2015-08-08 14:25 - 2015-08-08 14:25 - 00169984 _____ () C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\IsdiInterop\b9a9c67447d8236d3d0945c4934998dc\IsdiInterop.ni.dll

2012-01-22 07:39 - 2010-11-05 22:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1286904689-2793304105-449274170-1000\...\dell.com -> dell.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1286904689-2793304105-449274170-1000\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Dell\Win7 LtBlue 1920x1200.jpg

DNS Servers: 192.168.1.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139

FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe

FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe

FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe

FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe

FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808

FirewallRules: [{B7E6AE03-7A4C-4E82-AF6D-1D833B7D595D}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

FirewallRules: [{97473F1B-439B-462F-A1F3-5382AAAD4081}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

FirewallRules: [{C048966E-F22A-4E1F-B8A3-65F7ABEB0DA8}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe

FirewallRules: [{112674E3-C53D-4E5D-90F7-A8B2A53B369B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe

FirewallRules: [UDP Query User{A6E0CA0C-2B01-44DC-9F70-F9D0A6412871}C:\program files\java\jdk1.8.0_45\bin\jmc.exe] => (Block) C:\program files\java\jdk1.8.0_45\bin\jmc.exe

FirewallRules: [TCP Query User{F0422709-88B9-4E8C-9640-E1E34ACF0AB6}C:\program files\java\jdk1.8.0_45\bin\jmc.exe] => (Block) C:\program files\java\jdk1.8.0_45\bin\jmc.exe

FirewallRules: [UDP Query User{6EC1FBC4-EEFD-4920-BC63-E9B47492A073}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe

FirewallRules: [TCP Query User{B55D05A7-70C1-4738-A49C-856583AFAF66}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe

FirewallRules: [{511BD7BB-896A-41F7-AB6D-143843C0E260}] => (Allow) C:\Program Files\iTunes\iTunes.exe

FirewallRules: [{42A55AA5-E43C-452E-9C23-D24145A99A9F}] => (Allow) C:\Program Files (x86)\Wolfram Research\Wolfram CDF Player\9.0\math.exe

FirewallRules: [{EE3DC1D9-EAD7-4982-9A21-446EE21B824F}] => (Allow) C:\Program Files (x86)\Wolfram Research\Wolfram CDF Player\9.0\math.exe

FirewallRules: [{B1B8EEC9-1A9D-43A6-BDB7-5A90C481F6BC}] => (Allow) C:\Program Files (x86)\Wolfram Research\Wolfram CDF Player\9.0\WolframCDFPlayer.exe

FirewallRules: [{3B864DE1-0772-4952-8B53-B2F0380E7E92}] => (Allow) C:\Program Files (x86)\Wolfram Research\Wolfram CDF Player\9.0\WolframCDFPlayer.exe

FirewallRules: [{8440EF5D-613C-4B1D-B883-AF739D6BB828}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{A779B1CA-94F1-4002-A6DA-068AD69FE812}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [UDP Query User{0310D4F4-C609-4805-9163-821D756AE8FB}C:\program files (x86)\yahoo!\messenger\yahoomessenger.exe] => (Allow) C:\program files (x86)\yahoo!\messenger\yahoomessenger.exe

FirewallRules: [TCP Query User{E59BAB11-73B5-4827-A210-93A96AC55509}C:\program files (x86)\yahoo!\messenger\yahoomessenger.exe] => (Allow) C:\program files (x86)\yahoo!\messenger\yahoomessenger.exe

FirewallRules: [UDP Query User{57461109-96F8-4F8F-9871-6478A47E45F4}C:\program files (x86)\atmel\atmel studio 6.1\atmelstudio.exe] => (Allow) C:\program files (x86)\atmel\atmel studio 6.1\atmelstudio.exe

FirewallRules: [TCP Query User{EFAA8B2A-514C-4752-A5D0-9D42D1A08E21}C:\program files (x86)\atmel\atmel studio 6.1\atmelstudio.exe] => (Allow) C:\program files (x86)\atmel\atmel studio 6.1\atmelstudio.exe

FirewallRules: [UDP Query User{729F9377-991A-4CEF-8BBE-124CC023EAB4}C:\program files (x86)\atmel\atmel studio 6.1\atmelstudio.exe] => (Allow) C:\program files (x86)\atmel\atmel studio 6.1\atmelstudio.exe

FirewallRules: [TCP Query User{35722E53-695C-47CD-942A-494344A44998}C:\program files (x86)\atmel\atmel studio 6.1\atmelstudio.exe] => (Allow) C:\program files (x86)\atmel\atmel studio 6.1\atmelstudio.exe

FirewallRules: [{9BB31094-ECCA-4DF7-B118-98A3058A0B03}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

FirewallRules: [{1A27C70E-53E2-4770-ADC2-99C01FA2BFD1}] => (Allow) C:\Program Files (x86)\Common Files\Nero\BDCore\Nero Blu-ray Player\Blu-rayPlayer.exe

FirewallRules: [{A06AFEFD-7651-41D6-9820-8ECCDBB720C4}] => (Allow) C:\Program Files (x86)\Common Files\Nero\BDCore\Nero Blu-ray Player\Blu-rayPlayer.exe

FirewallRules: [{8F3DEDAF-4750-45B6-B524-9FA3A60B18E5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{EC25472E-3436-4BC2-BE92-8ADA9A2B19A5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{4689DAE9-F1BE-4819-B649-5B6D3C564642}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{F45578C9-C699-42FF-814B-7BC2559B5C05}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{35FF9653-9A86-4495-91CE-A9FD4CE97E5E}] => (Block) C:\program files (x86)\java\jre7\bin\java.exe

FirewallRules: [{F818EE3B-4A53-4E54-83E4-3654CB33CE9D}] => (Block) C:\program files (x86)\java\jre7\bin\java.exe

FirewallRules: [UDP Query User{67B30224-20A3-4783-8DC5-540175A81570}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe

FirewallRules: [TCP Query User{EDF2DB55-A336-4B01-A6A7-66DE932B3E57}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe

FirewallRules: [{B9F2ED9D-8724-4363-977B-1DCB5FDAC88F}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe

FirewallRules: [{6ABD00B9-0C9C-4305-9544-EA3F703646C5}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe

FirewallRules: [{2ABA5B1F-1ABF-48C8-BCCC-81F6445351EF}] => (Allow) C:\Program Files\dell stage\dell stage\stage_primary.exe

FirewallRules: [{F9115D4D-3375-4AB5-9AA4-216A763DB6BB}] => (Allow) C:\Program Files\dell stage\musicstage\musicstageengine.exe

FirewallRules: [{10862B7B-D333-4069-AD8F-15210430A3C3}] => (Allow) C:\Program Files\dell stage\dell stage\accuweather\accuweather.exe

FirewallRules: [{80804CAD-C137-4D0C-8BFC-000E22A908B0}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe

FirewallRules: [{BD85B19A-020D-4822-8BD6-2478BC327806}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe

FirewallRules: [{77758AC5-1501-4D13-B8B8-A81624C3603D}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe

FirewallRules: [{2224CB27-30F6-49B3-B114-D80FB898D9AA}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

FirewallRules: [{9427388E-D8E1-4293-BFC7-6C637BBA47D1}] => (Allow) LPort=1900

FirewallRules: [{9DF95864-5138-4B84-8B19-0775F45EC534}] => (Allow) LPort=2869

FirewallRules: [{0E0E75DD-970F-4CE6-BD00-2664DDBE22F3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{C5985148-15C3-42F5-A657-8517E761FF0B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

FirewallRules: [{3CC4B87A-0D96-4884-99EA-0F2E67A5ABA1}] => (Allow) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe

FirewallRules: [{FAA8B028-B431-498A-B645-E0CB9EA2374E}] => (Allow) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe

FirewallRules: [{C8E71021-6650-4408-908F-0B99F601E3CC}] => (Allow) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe

FirewallRules: [{1345B303-BCF9-4359-AE08-554FDEA18725}] => (Allow) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe

FirewallRules: [{23095152-DCC1-4397-AB48-9F342B3525D3}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe

FirewallRules: [{F07C1AEA-DE4D-44F0-ACCD-F32CD897E192}] => (Allow) LPort=9700

FirewallRules: [{EC82B548-8EC9-47D7-AEC5-611EADB84897}] => (Allow) LPort=9702

FirewallRules: [{2810AAF7-2831-4693-8D09-C97DBB84FEE8}] => (Allow) LPort=9701

FirewallRules: [{B48B41A8-79A8-4E1E-9E86-82A7A9A69C36}] => (Allow) LPort=9700

FirewallRules: [{7178F5A9-8495-465D-9177-2C83BF7C30B7}] => (Allow) C:\Program Files (x86)\Dell\VideoStage\VideoStage.exe

FirewallRules: [{7CDE62B3-64E8-449A-BA53-9023C4A206FF}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe

FirewallRules: [{EF9B059B-3501-4105-B328-F6F0AA920ED5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:

==================

Error: (08/14/2015 10:40:37 PM) (Source: ESENT) (EventID: 413) (User: )

Description: SettingSyncHost (8560) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (08/14/2015 10:40:37 PM) (Source: ESENT) (EventID: 488) (User: )

Description: SettingSyncHost (8560) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8).

Error: (08/14/2015 10:40:27 PM) (Source: ESENT) (EventID: 413) (User: )

Error: (08/14/2015 10:40:27 PM) (Source: ESENT) (EventID: 488) (User: )

Error: (08/14/2015 10:40:16 PM) (Source: ESENT) (EventID: 413) (User: )

Error: (08/14/2015 10:40:16 PM) (Source: ESENT) (EventID: 488) (User: )

Error: (08/14/2015 10:40:06 PM) (Source: ESENT) (EventID: 413) (User: )

Error: (08/14/2015 10:40:06 PM) (Source: ESENT) (EventID: 488) (User: )

Error: (08/14/2015 10:39:56 PM) (Source: ESENT) (EventID: 413) (User: )

Error: (08/14/2015 10:39:56 PM) (Source: ESENT) (EventID: 488) (User: )

System errors:

=============

Error: (08/14/2015 10:37:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Dell Digital Delivery Service service terminated unexpectedly. It has done this 1 time(s).

Error: (08/14/2015 10:35:21 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (08/14/2015 10:34:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Net.Pipe Listener Adapter service failed to start due to the following error:

%%1053

Error: (08/14/2015 10:34:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Net.Pipe Listener Adapter service to connect.

Error: (08/14/2015 10:34:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Net.Msmq Listener Adapter service failed to start due to the following error:

%%1053

Error: (08/14/2015 10:34:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Net.Msmq Listener Adapter service to connect.

Error: (08/14/2015 10:34:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Phone IP over USB Transport (IpOverUsbSvc) service to connect.

Error: (08/14/2015 10:33:56 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error:

%%1058

Error: (08/14/2015 10:33:02 PM) (Source: Service Control Manager) (EventID: 7024) (User: )

Description: The Background Intelligent Transfer Service service terminated with the following service-specific error:

%%2147943515

Error: (08/14/2015 10:33:02 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)

Description: The BITS service failed to start. Error 2147943515.

Microsoft Office:

=========================

CodeIntegrity:

===================================

Date: 2015-08-15 06:20:42.633

Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-08-15 06:20:42.367

Date: 2015-08-14 17:52:57.595

Date: 2015-08-14 17:52:57.582

Date: 2015-08-14 17:52:57.567

Date: 2015-08-14 17:52:57.550

Date: 2015-08-14 17:52:57.536

Date: 2015-08-14 17:52:57.521

Date: 2015-08-14 17:52:57.501

Date: 2015-08-14 17:52:57.487

==================== Memory info ===========================

Processor: Intel® Core™ i5-2450M CPU @ 2.50GHz

Percentage of memory in use: 43%

Total physical RAM: 6050.05 MB

Available physical RAM: 3404.8 MB

Total Virtual: 12194.05 MB

Available Virtual: 9400.07 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:586.23 GB) (Free:435.31 GB) NTFS

Drive d: (TestVolume) (Fixed) (Total:97.65 GB) (Free:97.5 GB) NTFS

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 49FB5B1A)

Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)

Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=586.2 GB) - (Type=07 NTFS)

Partition 4: (Not Active) - (Size=97.7 GB) - (Type=OF Extended)

==================== End of log ============================

Run date: 2015-08-15 11:34:00

-----------------------------

11:34:00.951 OS Version: Windows x64 6.2.9200

11:34:00.951 Number of processors: 4 586 0x2A07

11:34:00.951 ComputerName: RTS-PC UserName: RTS

11:34:05.124 Initialize success

11:34:05.327 VM: initialized successfully

11:34:05.343 VM: Intel CPU supported virtualizedSuspended

11:34:08.220 VM: disk I/O iaStor.sys

11:34:35.775 AVAST engine defs: 15081406

11:35:22.568 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1

11:35:22.568 Disk 0 Vendor: Hitachi_ JE4O Size: 715404MB BusType: 3

11:35:23.147 Disk 0 MBR read successfully

11:35:23.147 Disk 0 MBR scan

11:35:23.225 Disk 0 Windows 7 default MBR code

11:35:23.272 Disk 0 Partition 1 00 DE Dell Utility DELL 8.0 100 MB offset 2048

11:35:23.303 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848

11:35:23.350 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 600302 MB offset 30926848

11:35:23.365 Disk 0 Partition - 00 0F Extended LBA 99999 MB offset 1260347392

11:35:23.428 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 99998 MB offset 1260349440

11:35:23.944 Disk 0 scanning C:\WINDOWS\system32\drivers

11:36:23.896 Service scanning

11:37:37.611 Modules scanning

11:37:37.627 Disk 0 trace - called modules:

11:37:37.658 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll

11:37:37.674 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffe001f4632060]

11:37:37.674 3 CLASSPNP.SYS[fffff801a06546c5] -> nt!IofCallDriver -> [0xffffe001f21bf040]

11:37:37.674 5 ACPI.sys[fffff8019f821361] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xffffe001f147d050]

11:37:39.674 AVAST engine scan C:\WINDOWS

11:38:28.991 AVAST engine scan C:\WINDOWS\system32

11:53:29.534 AVAST engine scan C:\WINDOWS\system32\drivers

11:55:27.257 AVAST engine scan C:\Users\RTS

14:25:00.678 AVAST engine scan C:\ProgramData

14:32:26.478 Disk 0 statistics 8199176/0/0 @ 5.81 MB/s

14:32:26.493 Scan finished successfully

14:40:46.250 Disk 0 MBR has been saved successfully to "C:\Users\RTS\Desktop\MBR.dat"

14:40:46.328 The log file has been saved successfully to "C:\Users\RTS\Desktop\aswMBR.txt"

Advertisements

Register to Remove

#2 ken545

Forum God

Retired Classroom Teacher
23,225 posts

Interests:Fighting Malware and cooking some great Italian and TexMex food

Posted 19 August 2015 - 04:41 PM

:welcome:

Your log doesn't really look bad at all, let do a few things

Open notepad , Go to Start --> All Programs --> Accessories --> Notepad.

Please copy the entire contents Inside of the code box below beginning with START and ending with END

(To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste).

Name the file Fixlist, Save it to your desktop where you have FRST/FRST64 or the fix wont work, . Then open up FRST/FRST64 and click on FIX (Not Scan) It won't take long, after your computer reboots you will find a FIXLOG.TXT on your desktop, post it please

Start
CloseProcesses:
CreateRestorePoint: 
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
SearchScopes: HKU\S-1-5-21-1286904689-2793304105-449274170-1000 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL =
Hosts:
CMD: ipconfig /flushdns
EmptyTemp:
End

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

====================================================================

Download Malwarebytes' Anti-Malware TO YOUR DESKTOP

Windows XP : Double click on the icon to run it.

Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"

0841859c-1a35-4dbd-b41a-e720629e3e22_zps

On the Dashboard click on Update Now

Go to the Setting Tab

Under Setting go to Detection and Protection

Under PUP and PUM make sure both are set to show Treat Detections as Malware

Go to Advanced setting and make sure Automatically Quarantine Detected Items is checked

Then on the Dashboard click on Scan

Make sure to select THREAT SCAN

Then click on Scan

When the scan is finished and the log pops up...select Copy to Clipboard

Please paste the log back into this thread for review

Exit Malwarebytes

The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.

Find us on Facebook
Please LIKE and SHARE

Just a reminder that threads will be closed if no reply in 3 days.

#3 poporacer

Authentic Member

Authentic Member
107 posts

Posted 19 August 2015 - 07:33 PM

The first time I ran FRST it became unresponsive. I waited 20 minutes and it didn't progress so I closed it out. It had created the log. I restarted it and it completed normally and produced a log. Both logs were identical. Here is the log:

Fix result of Farbar Recovery Scan Tool (x64) Version:14-08-2015 01
Ran by RTS (2015-08-19 16:29:36) Run:2
Running from C:\Users\RTS\Desktop
Loaded Profiles: RTS (Available Profiles: RTS & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
SearchScopes: HKU\S-1-5-21-1286904689-2793304105-449274170-1000 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL =
Hosts:
CMD: ipconfig /flushdns
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value not found.
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Local Page => value not found.
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Local Page => value not found.
HKU\S-1-5-21-1286904689-2793304105-449274170-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} => key not found.
HKCR\CLSID\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} => key not found.
C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.

========= ipconfig /flushdns =========

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========

EmptyTemp: => 1.5 GB temporary data Removed.

The system needed a reboot..

==== End of Fixlog 16:30:27 ====

And the Malware scan

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/19/2015
Scan Time: 4:43 PM
Logfile:
Administrator: Yes

Version: 2.1.8.1057
Malware Database: v2015.08.19.09
Rootkit Database: v2015.08.16.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: RTS

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 482743
Time Elapsed: 49 min, 31 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

#4 ken545

Forum God

Retired Classroom Teacher
23,225 posts

Interests:Fighting Malware and cooking some great Italian and TexMex food

Posted 20 August 2015 - 03:39 AM

Good Morning,

Looks like your good to go, hows your system behaving now ?

The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.

Find us on Facebook
Please LIKE and SHARE

Just a reminder that threads will be closed if no reply in 3 days.

#5 poporacer

Authentic Member

Authentic Member
107 posts

Posted 23 August 2015 - 08:10 AM

Things are running fine. I appreciate all of your help. It is greatly appreciated.

#6 ken545

Forum God

Retired Classroom Teacher
23,225 posts

Interests:Fighting Malware and cooking some great Italian and TexMex food

Posted 23 August 2015 - 09:04 AM

That's good to know, glad we could help

Take care my friend

Ken

The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.

Find us on Facebook
Please LIKE and SHARE

Just a reminder that threads will be closed if no reply in 3 days.

#7 ken545

Forum God

Retired Classroom Teacher
23,225 posts

Interests:Fighting Malware and cooking some great Italian and TexMex food

Posted 23 August 2015 - 09:04 AM

Since this issue appears to be resolved ... this Topic has been closed. Glad we could be of assistance.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please follow the instructions here http://forums.whatth...ed_t106388.html
and start a New Topic.

The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.

Find us on Facebook
Please LIKE and SHARE

Just a reminder that threads will be closed if no reply in 3 days.

Body Background

skin color theme

Edge Hijack [Solved]

#1 poporacer

Advertisements

Register to Remove

#2 ken545

#3 poporacer

#4 ken545

#5 poporacer

#6 ken545

#7 ken545

Related Topics

1 user(s) are reading this topic

About What the Tech

Follow Us

Body Background

skin color theme

Edge Hijack [Solved]

#1 poporacer

Advertisements Register to Remove

#2 ken545

#3 poporacer

#4 ken545

#5 poporacer

#6 ken545

#7 ken545

Related Topics

1 user(s) are reading this topic

About What the Tech

Follow Us

Sign In

Advertisements

Register to Remove