Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Possible infection, wireless indicator has a red cross through but is

Started by Dom2276 , Oct 01 2013 12:51 AM

  • This topic is locked This topic is locked

#61
Dom2276
Posted 30 October 2013 - 06:23 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Hi Compcav. Right i did all that, it kind of worked... The wireless icon is back BUT I now have no anti-virus that will turn on or load.AVG refusing to turn on, so i deleted it and used the removal tool to completely get rid of it as i wanted to go back to MSE. I found it far less intrusive. MSE now fails to load with an error cod i have googled but found no info on, strange. Also there were 120 odd updates waiting after repair, most of these worked but I am left with 1 important update failing again, I think its the same one that constantly failed before, there are also 7 optional updates that fail and loop. Maybe one day his will be over!!! Thanks. Dom
  • 0

Advertisements

#62
CompCav
Posted 30 October 2013 - 08:03 PM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Please go back to post number 6 and follow the directions for Step 2 to give ma a new OTL log.
  • 0

#63
Dom2276
Posted 31 October 2013 - 12:49 AM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Here are the logs.

ComboFix 13-10-30.01 - Dom 31/10/2013 18:42:21.3.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.8086.5084 [GMT 13:00]
Running from: c:\users\Dom\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\PCDr\6308\AddOnDownloaded\0779eca6-695c-444d-8ef3-6621f5a112ee.dll
c:\programdata\PCDr\6308\AddOnDownloaded\244ec244-34e7-4b04-85aa-c16ea08f2533.dll
c:\programdata\PCDr\6308\AddOnDownloaded\2c784c13-702f-431e-a492-e9dddd757b25.dll
c:\programdata\PCDr\6308\AddOnDownloaded\394b144a-f70e-44ff-a1ce-7fed69d15b12.dll
c:\programdata\PCDr\6308\AddOnDownloaded\3cc3b539-b998-4728-8055-1201221a38d4.dll
c:\programdata\PCDr\6308\AddOnDownloaded\3df85ce4-1732-4e9b-9fee-111cf95d7191.dll
c:\programdata\PCDr\6308\AddOnDownloaded\50441041-9037-4c34-842c-4a8523e700da.dll
c:\programdata\PCDr\6308\AddOnDownloaded\5ec8c7eb-8ac7-4252-bb47-87f22e27e4a9.dll
c:\programdata\PCDr\6308\AddOnDownloaded\646d4422-eb1f-4e32-8b16-f32fc711fbc0.dll
c:\programdata\PCDr\6308\AddOnDownloaded\66858fdf-b35c-4b24-a074-915d56b3871b.dll
c:\programdata\PCDr\6308\AddOnDownloaded\704dfeb5-9129-4d88-8096-7f3bc80eb1ec.dll
c:\programdata\PCDr\6308\AddOnDownloaded\751275e0-9b7c-49a7-b6d8-eaf73a4eac58.dll
c:\programdata\PCDr\6308\AddOnDownloaded\7ec00d71-b236-42d5-b7d2-aab97a4a1f3d.dll
c:\programdata\PCDr\6308\AddOnDownloaded\8658165e-a29d-4eca-a939-35aff3e05f62.dll
c:\programdata\PCDr\6308\AddOnDownloaded\8fab1a01-d6b6-4640-ac86-c3ddd583c840.dll
c:\programdata\PCDr\6308\AddOnDownloaded\9d97f346-8efc-4e33-9c3b-3eef6c324e61.dll
c:\programdata\PCDr\6308\AddOnDownloaded\a7c185b3-39a9-4aaf-9506-7726c68d6350.dll
c:\programdata\PCDr\6308\AddOnDownloaded\aa7c4756-0f94-474f-8589-eb1b0e71c93b.dll
c:\programdata\PCDr\6308\AddOnDownloaded\ad245130-e9e2-4a7e-8912-a540560daf66.dll
c:\programdata\PCDr\6308\AddOnDownloaded\b96b7bbd-964e-47f1-9323-f48f460042bf.dll
c:\programdata\PCDr\6308\AddOnDownloaded\be543d7a-9241-474e-9567-a20b994760c0.dll
c:\programdata\PCDr\6308\AddOnDownloaded\c0c54ea3-e58e-438a-9c4c-778b0979180a.dll
c:\programdata\PCDr\6308\AddOnDownloaded\f12de547-df4d-4236-9129-baac054f90ab.dll
c:\programdata\PCDr\6308\AddOnDownloaded\f39d056b-fbf9-40c5-806d-7d93eacdc251.dll
c:\programdata\PCDr\6308\AddOnDownloaded\fc470dbb-846d-42d3-bb0a-6363a559f3fb.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\_ctypes.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\_elementtree.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\_hashlib.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\_multiprocessing.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\_socket.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\_ssl.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\msvcp100.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\msvcr100.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\pyexpat.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\pysqlite2._sqlite.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\python27.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\pythoncom27.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\PyWinTypes27.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\select.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\unicodedata.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32api.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32com.shell.shell.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32crypt.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32event.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32file.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32inet.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32pdh.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32process.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32profile.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32security.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\win32ts.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\windows._cacheinvalidation.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\wx._controls_.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\wx._core_.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\wx._gdi_.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\wx._html2.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\wx._misc_.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\wx._windows_.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\wx._wizard.pyd
c:\users\Dom\AppData\Local\Temp\_MEI44682\wxbase294u_net_vc90.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\wxbase294u_vc90.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\wxmsw294u_adv_vc90.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\wxmsw294u_core_vc90.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\wxmsw294u_html_vc90.dll
c:\users\Dom\AppData\Local\Temp\_MEI44682\wxmsw294u_webview_vc90.dll
.
.
((((((((((((((((((((((((( Files Created from 2013-09-28 to 2013-10-31 )))))))))))))))))))))))))))))))
.
.
2013-10-31 07:43 . 2013-10-30 12:12 -------- d-----w- c:\windows\Panther
2013-10-31 07:24 . 2013-10-30 11:50 -------- d-----w- C:\$WINDOWS.~Q
2013-10-31 07:04 . 2013-10-31 07:15 -------- d-----w- C:\$INPLACE.~TR
2013-10-31 06:01 . 2013-10-31 06:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-10-31 00:59 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-10-31 00:59 . 2013-04-17 06:24 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-10-30 23:58 . 2013-10-30 23:59 -------- d-----w- C:\WINSSLog
2013-10-30 21:46 . 2013-09-04 12:12 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2013-10-30 21:46 . 2013-09-04 12:11 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-10-30 21:46 . 2013-09-04 12:11 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-10-30 21:46 . 2013-09-04 12:11 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys
2013-10-30 21:46 . 2013-09-04 12:11 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2013-10-30 21:46 . 2013-09-04 12:11 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2013-10-30 21:46 . 2013-09-04 12:11 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2013-10-30 14:47 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-10-30 14:40 . 2011-12-30 06:26 515584 ----a-w- c:\windows\system32\timedate.cpl
2013-10-30 14:40 . 2011-12-30 05:27 478720 ----a-w- c:\windows\SysWow64\timedate.cpl
2013-10-30 14:39 . 2013-07-19 01:58 2048 ----a-w- c:\windows\system32\tzres.dll
2013-10-30 14:39 . 2013-07-19 01:41 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2013-10-30 14:29 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-10-30 14:29 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2013-10-30 14:29 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2013-10-30 14:27 . 2012-11-02 05:59 478208 ----a-w- c:\windows\system32\dpnet.dll
2013-10-30 14:26 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2013-10-30 14:24 . 2012-08-11 00:56 715776 ----a-w- c:\windows\system32\kerberos.dll
2013-10-30 14:23 . 2013-08-29 00:49 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-10-30 14:23 . 2012-03-17 07:58 75120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2013-10-30 14:23 . 2012-04-07 12:31 3216384 ----a-w- c:\windows\system32\msi.dll
2013-10-30 14:23 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\SysWow64\msi.dll
2013-10-30 14:23 . 2013-10-14 07:12 10280728 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{676E6E38-6754-44FC-AD59-EFF4828D470D}\mpengine.dll
2013-10-30 14:16 . 2012-11-30 05:45 362496 ----a-w- c:\windows\system32\wow64win.dll
2013-10-30 14:16 . 2012-11-30 05:45 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2013-10-30 14:16 . 2012-11-30 05:43 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2013-10-30 14:15 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2013-10-30 14:15 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2013-10-30 14:15 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2013-10-30 14:15 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2013-10-30 14:15 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2013-10-30 14:15 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2013-10-30 14:15 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2013-10-30 14:13 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-10-30 14:13 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-10-30 13:48 . 2013-04-10 05:48 1732608 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2013-10-30 13:48 . 2013-04-10 05:46 1367040 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-10-30 13:48 . 2013-04-10 05:03 936448 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-10-30 13:48 . 2013-04-10 05:46 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2013-10-30 13:48 . 2013-04-10 05:46 1393152 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2013-10-30 13:48 . 2013-01-03 06:00 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-10-30 13:48 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2013-10-30 13:48 . 2011-02-18 10:51 31232 ----a-w- c:\windows\system32\prevhost.exe
2013-10-30 13:48 . 2011-02-18 05:39 31232 ----a-w- c:\windows\SysWow64\prevhost.exe
2013-10-30 13:48 . 2013-01-24 06:01 223752 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-10-30 13:48 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2013-10-30 13:48 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2013-10-30 13:47 . 2011-02-12 11:34 267776 ----a-w- c:\windows\system32\FXSCOVER.exe
2013-10-30 13:47 . 2011-05-03 05:29 976896 ----a-w- c:\windows\system32\inetcomm.dll
2013-10-30 13:47 . 2011-05-03 04:30 741376 ----a-w- c:\windows\SysWow64\inetcomm.dll
2013-10-30 13:47 . 2011-12-16 08:46 634880 ----a-w- c:\windows\system32\msvcrt.dll
2013-10-30 13:47 . 2011-12-16 07:52 690688 ----a-w- c:\windows\SysWow64\msvcrt.dll
2013-10-30 13:22 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-10-30 13:04 . 2013-09-25 12:46 80541720 ----a-w- c:\windows\system32\MRT.exe
2013-10-30 13:00 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2013-10-30 13:00 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2013-10-30 13:00 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2013-10-30 13:00 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2013-10-30 13:00 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2013-10-30 12:46 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2013-10-30 12:46 . 2011-08-27 05:37 861696 ----a-w- c:\windows\system32\oleaut32.dll
2013-10-30 12:46 . 2011-08-27 05:37 331776 ----a-w- c:\windows\system32\oleacc.dll
2013-10-30 12:46 . 2011-08-27 04:26 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
2013-10-30 12:46 . 2011-08-27 04:26 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2013-10-30 12:46 . 2013-08-01 12:09 983488 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-10-30 12:46 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-10-30 12:46 . 2011-02-23 04:55 90624 ----a-w- c:\windows\system32\drivers\bowser.sys
2013-10-30 12:46 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll
2013-10-30 12:46 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2013-10-30 12:46 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2013-10-30 12:39 . 2013-10-30 12:39 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-10-30 12:37 . 2013-10-30 12:37 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-10-30 12:37 . 2013-10-30 12:37 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-10-30 12:24 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2013-10-30 12:24 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2013-10-30 12:24 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2013-10-30 12:13 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2013-10-30 12:13 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2013-10-30 12:13 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2013-10-30 12:13 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2013-10-30 12:13 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2013-10-30 12:13 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2013-10-30 12:13 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2013-10-30 12:13 . 2012-06-02 02:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2013-10-30 12:13 . 2012-06-02 02:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2013-10-30 12:12 . 2013-10-30 12:12 -------- d-----w- C:\Recovery
2013-10-30 11:41 . 2013-10-30 11:41 -------- d-----w- c:\users\Default\Roaming
2013-10-30 11:41 . 2013-10-30 11:41 -------- d-----w- c:\users\Default\AppData\Roaming\TuneUp Software
2013-10-30 11:41 . 2013-10-31 06:03 -------- d-----w- c:\users\Default\AppData\Local\SoftThinks
2013-10-30 11:41 . 2013-10-30 11:41 -------- d-----w- c:\users\Default\AppData\Local\Google
2013-10-30 10:51 . 2013-10-30 11:39 -------- d-----w- c:\users\UpdatusUser
2013-10-30 10:51 . 2013-10-31 00:03 -------- d-----w- c:\users\Dom
2013-10-30 10:49 . 2012-10-02 19:51 3536817 ----a-w- c:\windows\system32\nvcoproc.bin
2013-10-30 10:49 . 2012-10-02 19:51 3293544 ----a-w- c:\windows\system32\nvsvc64.dll
2013-10-30 10:49 . 2012-10-02 19:51 6200680 ----a-w- c:\windows\system32\nvcpl.dll
2013-10-30 10:49 . 2012-10-02 19:50 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2013-10-30 10:49 . 2012-10-02 19:50 866664 ----a-w- c:\windows\system32\nv3dappshext.dll
2013-10-30 10:49 . 2012-10-02 19:50 63336 ----a-w- c:\windows\system32\nvshext.dll
2013-10-30 10:49 . 2012-10-02 19:50 55144 ----a-w- c:\windows\system32\nv3dappshextr.dll
2013-10-30 10:49 . 2012-10-02 19:50 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2013-10-30 10:49 . 2012-10-02 19:50 118120 ----a-w- c:\windows\system32\nvmctray.dll
2013-10-30 10:49 . 2013-10-30 10:49 -------- d-----w- c:\programdata\NVIDIA Corporation
2013-10-30 10:48 . 2013-10-30 11:11 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2013-10-30 10:48 . 2013-10-30 10:59 -------- d-----w- c:\program files\NVIDIA Corporation
2013-10-30 10:48 . 2013-10-30 10:48 -------- d-----w- c:\program files\Synaptics
2013-10-30 10:48 . 2013-10-30 10:48 -------- d-----w- c:\windows\system32\SRSLabs
2013-10-30 10:47 . 2013-10-30 10:47 -------- d-----w- c:\program files\Realtek
2013-10-30 10:47 . 2013-10-30 10:47 -------- d-----w- c:\windows\SysWow64\RTCOM
2013-10-30 10:47 . 2013-10-30 11:20 -------- dc----w- c:\windows\system32\DRVSTORE
2013-10-30 10:47 . 2010-08-19 22:05 21616 ----a-w- c:\windows\system32\drivers\stdcfltn.sys
2013-10-30 10:47 . 2013-10-30 10:47 -------- d-----w- c:\program files\STMicroelectronics
2013-10-18 06:32 . 2013-10-18 06:32 -------- d-----w- c:\programdata\Oracle
2013-10-18 06:32 . 2013-10-07 18:50 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-18 06:31 . 2013-07-01 19:34 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-10-09 08:43 . 2013-10-30 11:14 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-09 04:53 . 2013-10-30 11:18 -------- d-----w- c:\windows\CheckSur
2013-10-08 14:38 . 2013-10-08 14:38 -------- d-----w- C:\b0e2a13b6c8a2e5070
2013-10-07 14:10 . 2013-10-07 14:14 -------- d-----w- C:\436bb64a31e12a643421a2bd
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-18 05:20 . 2012-03-29 22:17 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-10-18 05:20 . 2012-01-20 01:56 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-06 22:44 . 2013-05-22 02:18 181064 ----a-w- c:\windows\PSEXESVC.EXE
2013-10-06 19:59 . 2012-01-20 03:01 505128 ----a-w- c:\windows\SysWow64\msvcp71.dll
2013-10-06 19:59 . 2012-01-20 03:01 353576 ----a-w- c:\windows\SysWow64\msvcr71.dll
2013-10-06 19:59 . 2012-01-20 03:01 29480 ----a-w- c:\windows\SysWow64\msxml3a.dll
2013-09-30 21:09 . 2013-09-30 21:09 30720 ----a-w- c:\windows\system32\MediaDB64.dll
2013-09-30 21:09 . 2013-09-30 21:09 908800 ----a-w- c:\windows\system32\ContentDirectoryPresenter64.dll
2013-09-30 20:46 . 2013-09-30 20:46 25600 ----a-w- c:\windows\SysWow64\MediaDB.dll
2013-09-30 20:11 . 2013-09-30 20:11 706560 ----a-w- c:\windows\SysWow64\ContentDirectoryPresenter.dll
2013-09-10 23:17 . 2013-09-10 23:17 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-09-10 05:19 . 2013-06-24 07:50 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-09-03 01:35 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-08-29 01:48 . 2013-10-30 14:24 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-08-02 17:29 . 2013-09-08 10:16 256088 ----a-w- c:\windows\system32\unrar64.dll
2013-08-02 17:29 . 2013-09-08 10:16 217176 ----a-w- c:\windows\SysWow64\unrar.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AppleIEDAV"="c:\program files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe" [2013-09-04 1315144]
"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2013-09-15 59720]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2013-09-25 20133824]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2013-09-14 59720]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-01-30 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AccuWeatherWidget"="c:\program files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" [2012-02-01 968048]
"Ad Muncher"="c:\program files (x86)\Ad Muncher\AdMunch.exe" [2013-05-22 595144]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-05-10 37960]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"BDRegion"="c:\program files (x86)\Cyberlink\Shared Files\brs.exe" [2013-04-03 181208]
"CanonQuickMenu"="c:\program files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" [2012-04-03 1273448]
"Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2011-04-13 503942]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" [2010-11-17 514544]
"IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2009-05-19 136544]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-09-30 152392]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
"PDVD9LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD9\Language\Language.exe" [2010-09-18 50472]
"RemoteControl9"="c:\program files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [2010-10-01 87336]
"RIMBBLaunchAgent.exe"="c:\program files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-11-02 90448]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
c:\users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Intel® Turbo Boost Technology Monitor 2.0.lnk - c:\program files\Intel\TurboBoost\SignalIslandUi.exe [2010-11-30 204288]
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2010-1-21 243072]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
PHOTOfunSTUDIO 8.1 AE.lnk - c:\program files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe -e "c:\program files (x86)\Panasonic\PHOTOfunSTUDIO 8.1 AE\PHOTOfunSTUDIO.exe" [2012-10-18 229048]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 CLKMSVC10_9EC60124;CyberLink Product - 2012/01/19 21:01;c:\program files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe;c:\program files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe [x]
R2 OpenVPNAccessClient;OpenVPN Access Client;c:\program files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe;c:\program files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [x]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 hitmanpro36;Hitman Pro 3.5 Support Driver;c:\windows\system32\drivers\hitmanpro36.sys;c:\windows\SYSNATIVE\drivers\hitmanpro36.sys [x]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys;c:\windows\SYSNATIVE\drivers\Impcd.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 NvStUSB;NVIDIA Stereoscopic 3D USB driver;c:\windows\system32\drivers\nvstusb.sys;c:\windows\SYSNATIVE\drivers\nvstusb.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TurboBoost;Intel® Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 MDFSYSNT;MacDrive file system driver; [x]
S0 MDPMGRNT;MacDrive Partition Driver;c:\windows\system32\DRIVERS\MDPMGRNT.SYS;c:\windows\SYSNATIVE\DRIVERS\MDPMGRNT.SYS [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys;c:\windows\SYSNATIVE\DRIVERS\stdcfltn.sys [x]
S1 CBDisk;CBDisk;c:\windows\system32\drivers\CBDisk.sys;c:\windows\SYSNATIVE\drivers\CBDisk.sys [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvkflt.sys [x]
S2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AllShare Framework DMS;AllShare Framework DMS;c:\program files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe;c:\program files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
S2 M4LIC;Mediafour M4LIC service;c:\program files (x86)\Common Files\Mediafour\M4LIC.EXE;c:\program files (x86)\Common Files\Mediafour\M4LIC.EXE [x]
S2 MacDrive8Service;MacDrive 8 service;c:\program files\Mediafour\MacDrive 8\MacDrive8Service.exe;c:\program files\Mediafour\MacDrive 8\MacDrive8Service.exe [x]
S2 NGRegClnSrv;NETGATE Registry Cleaner Service;c:\program files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe;c:\program files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe [x]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
S2 Samsung Link Service;Samsung Link Service;c:\program files\Samsung\Samsung Link\Samsung Link.exe;c:\program files\Samsung\Samsung Link\Samsung Link.exe [x]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [x]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys;c:\windows\SYSNATIVE\DRIVERS\Accelern.sys [x]
S3 AVer7231_x64;AVerMedia 7231 capture service;c:\windows\system32\DRIVERS\AVer7231_x64.sys;c:\windows\SYSNATIVE\DRIVERS\AVer7231_x64.sys [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys;c:\windows\SYSNATIVE\DRIVERS\CtClsFlt.sys [x]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 qicflt;upper Device Filter Driver;c:\windows\system32\DRIVERS\qicflt.sys;c:\windows\SYSNATIVE\DRIVERS\qicflt.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - CLKMDRV10_9EC60124
.
Contents of the 'Scheduled Tasks' folder
.
2013-10-31 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 05:20]
.
2013-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-01-30 12:39]
.
2013-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-01-30 12:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-05 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-05 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-05 416024]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2011-02-18 6611048]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-01-18 2188904]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-07-29 497648]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-10-18 10357008]
"CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2009-03-18 767312]
"FreeFallProtection"="c:\program files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe" [2010-12-17 686704]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"Mouse Suite 98 Daemon"="ICO.EXE" [2006-09-29 90624]
"Samsung Link"="c:\program files\Samsung\Samsung Link\Samsung Link Tray Agent.exe" [2013-10-16 597576]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 190536]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.google.co.nz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-MacDrive volume icons - (no file)
AddRemove-dBpoweramp DSP Effects - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Music Converter - c:\windows\system32\SpoonUninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
c:\program files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Completion time: 2013-10-31 19:17:55 - machine was rebooted
ComboFix-quarantined-files.txt 2013-10-31 06:17
ComboFix2.txt 2013-10-03 23:02
.
Pre-Run: 27,392,360,448 bytes free
Post-Run: 28,102,336,512 bytes free
.
- - End Of File - - 82FC1CE0F45F8B08EC46D540D8961CC2








OTL logfile created on: 31/10/2013 19:31:39 - Run 6
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dom\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

7.90 Gb Total Physical Memory | 5.56 Gb Available Physical Memory | 70.45% Memory free
15.79 Gb Paging File | 13.17 Gb Available in Paging File | 83.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 679.00 Gb Total Space | 26.27 Gb Free Space | 3.87% Space Free | Partition Type: NTFS

Computer Name: DOM-PC | User Name: Dom | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/10/18 18:17:05 | 000,310,352 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2013/10/01 12:02:38 | 000,755,080 | ---- | M] (Samsung) -- C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
PRC - [2013/09/30 19:21:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.exe
PRC - [2013/09/16 13:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2013/05/10 12:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/10/03 02:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/10/19 06:50:10 | 001,001,808 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2011/10/19 06:50:04 | 001,354,064 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
PRC - [2011/10/19 06:49:52 | 000,936,272 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2011/09/23 05:14:16 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/09/23 05:11:26 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/09/23 05:06:12 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/09/22 05:30:12 | 004,109,312 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2010/12/21 13:24:38 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/12/21 13:24:36 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/09/30 22:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
PRC - [2009/07/29 23:54:36 | 000,205,312 | ---- | M] (Mediafour Corporation) -- C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE


========== Modules (No Company Name) ==========

MOD - [2013/07/22 11:48:15 | 002,052,096 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2013/07/22 11:48:15 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2013/07/12 18:30:13 | 000,569,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.ServiceModel.Web\3.5.0.0__31bf3856ad364e35\System.ServiceModel.Web.dll
MOD - [2013/07/03 12:09:05 | 005,283,840 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
MOD - [2013/04/24 11:57:26 | 004,554,752 | ---- | M] () -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
MOD - [2013/04/16 11:56:17 | 001,253,376 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
MOD - [2013/04/16 11:56:16 | 005,283,840 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
MOD - [2013/04/16 11:56:15 | 004,218,880 | ---- | M] () -- C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
MOD - [2012/12/12 18:32:26 | 005,025,792 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2012/10/05 23:53:24 | 003,198,976 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2012/10/05 23:53:24 | 000,630,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
MOD - [2012/10/05 23:53:24 | 000,110,592 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMDiagnostics.dll
MOD - [2012/10/05 23:53:23 | 005,988,352 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
MOD - [2012/10/05 23:53:23 | 000,970,752 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
MOD - [2012/10/05 23:53:23 | 000,446,464 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
MOD - [2011/09/23 05:14:16 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2010/11/21 16:25:01 | 000,667,648 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
MOD - [2010/11/21 16:24:58 | 000,139,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml.Linq\3.5.0.0__b77a5c561934e089\System.Xml.Linq.dll
MOD - [2010/11/21 16:24:52 | 000,507,904 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.WorkflowServices\3.5.0.0__31bf3856ad364e35\System.WorkflowServices.dll
MOD - [2009/06/11 10:23:19 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2009/06/11 10:14:43 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.Aero\3.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/10/17 09:56:38 | 000,605,768 | ---- | M] (Copyright 2013 SAMSUNG) [Auto | Running] -- C:\Program Files\Samsung\Samsung Link\Samsung Link.exe -- (Samsung Link Service)
SRV:64bit: - [2013/10/01 12:03:26 | 000,404,360 | ---- | M] (Samsung) [Auto | Running] -- C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe -- (AllShare Framework DMS)
SRV:64bit: - [2013/05/27 18:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013/02/21 18:03:56 | 000,618,832 | ---- | M] (NETGATE Technologies s.r.o.) [Auto | Running] -- C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe -- (NGRegClnSrv)
SRV:64bit: - [2011/11/02 08:37:56 | 001,518,352 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2011/11/02 08:25:42 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2011/11/02 08:22:28 | 000,844,560 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2011/10/21 13:33:22 | 000,135,440 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2011/10/20 09:25:00 | 000,661,504 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2010/11/30 10:00:56 | 000,149,504 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/23 13:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/01/07 23:16:32 | 000,218,112 | ---- | M] (Mediafour Corporation) [Auto | Running] -- C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe -- (MacDrive8Service)
SRV:64bit: - [2009/11/18 15:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV - [2013/10/18 18:20:33 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/09/16 13:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/06/04 04:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/10 12:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/03 15:00:46 | 000,247,768 | ---- | M] (CyberLink) [Auto | Stopped] -- c:\Program Files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe -- (CLKMSVC10_9EC60124)
SRV - [2012/10/09 00:42:54 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/10/03 02:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/10/19 06:50:10 | 001,001,808 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2011/10/19 06:50:04 | 001,354,064 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2011/10/19 06:49:52 | 000,936,272 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2011/09/23 05:06:12 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2010/12/21 13:24:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/12/21 13:24:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/11/26 00:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/26 00:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/09/30 22:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0)
SRV - [2010/08/26 15:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/08/13 05:45:00 | 000,024,064 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe -- (OpenVPNAccessClient)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/29 23:54:36 | 000,205,312 | ---- | M] (Mediafour Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE -- (M4LIC)
SRV - [2009/06/11 10:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/06/19 09:50:08 | 000,139,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2013/02/09 03:45:38 | 000,036,736 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901)
DRV:64bit: - [2012/10/09 00:42:36 | 000,030,056 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2012/10/09 00:42:14 | 000,284,008 | ---- | M] (NVIDIA Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nvkflt.sys -- (nvkflt)
DRV:64bit: - [2012/08/24 03:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/22 01:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/06/30 11:53:19 | 000,030,496 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hitmanpro36.sys -- (hitmanpro36)
DRV:64bit: - [2012/03/01 19:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/12/10 08:45:00 | 000,060,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2011/12/02 14:57:06 | 008,615,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64)
DRV:64bit: - [2011/11/15 14:13:00 | 000,327,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2011/09/14 05:14:44 | 000,212,992 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/09/14 05:14:42 | 000,095,744 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/07/21 02:39:58 | 012,287,456 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/06/10 19:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/11 19:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 19:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/21 06:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2011/01/13 14:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/12/18 06:06:32 | 001,404,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/12/17 11:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2010/12/14 06:34:14 | 000,027,760 | ---- | M] (ST Microelectronics) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelern.sys -- (Acceler)
DRV:64bit: - [2010/12/13 03:18:36 | 000,121,960 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvstusb.sys -- (NvStUSB)
DRV:64bit: - [2010/11/30 10:00:04 | 000,016,120 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/11/21 16:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 16:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 16:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/10/20 13:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/16 13:28:18 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/08/20 11:05:12 | 000,021,616 | ---- | M] (ST Microelectronics) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stdcfltn.sys -- (stdcfltn)
DRV:64bit: - [2010/07/13 15:38:06 | 000,029,288 | ---- | M] (Quanta Computer) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\qicflt.sys -- (qicflt)
DRV:64bit: - [2010/06/11 14:14:42 | 001,799,808 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVer7231_x64.sys -- (AVer7231_x64)
DRV:64bit: - [2010/03/19 22:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/02/28 04:32:14 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010/02/04 22:14:20 | 000,304,232 | ---- | M] (Mediafour Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\MDFSYSNT.SYS -- (MDFSYSNT)
DRV:64bit: - [2010/01/14 00:15:54 | 000,070,344 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\CBDisk.sys -- (CBDisk)
DRV:64bit: - [2009/09/24 02:23:08 | 000,032,352 | ---- | M] (Mediafour Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\MDPMGRNT.SYS -- (MDPMGRNT)
DRV:64bit: - [2009/07/14 14:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 14:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 14:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/11 09:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/11 09:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/11 09:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/11 09:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006/11/02 07:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/14 14:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{62E361EE-1F0E-41C0-96DF-C0E2F918BDA2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {99F4E0CF-C394-42E8-9CEA-E40795E1836A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{62E361EE-1F0E-41C0-96DF-C0E2F918BDA2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = ${SEARCH_URL}{searchTerms}
IE - HKLM\..\SearchScopes\{99F4E0CF-C394-42E8-9CEA-E40795E1836A}: "URL" = http://www.google.co...g}&sourceid=ie7






IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.nz/
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...GGHP_en-GBGB469
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{99F4E0CF-C394-42E8-9CEA-E40795E1836A}: "URL" = http://www.google.co...GGHP_en-GBGB469
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..extensions.enabledAddons: [email protected]:4.1.3
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.socks_remote_dns: true
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\samsung.com/SamsungLinkPCPlugin: C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF - HKCU\Software\MozillaPlugins\samsung.com/SamsungLinkPCPlugin: C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/10/31 00:11:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK

[2013/10/31 00:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Extensions
[2013/08/19 13:16:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Extensions\net.openvpn.client
[2013/10/31 00:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\extensions
[2013/10/31 00:35:00 | 000,000,000 | ---D | M] (FoxyProxy Standard) -- C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\extensions\[email protected]
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/03/13 17:39:39 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/03/13 17:38:32 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/03/13 17:38:32 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - plugin: iTunes Application Detector (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: Google Docs = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.4_0\
CHR - Extension: Google Drive = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/10/31 19:03:26 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll File not found
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll File not found
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3:64bit: - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Mouse Suite 98 Daemon] C:\Windows\SysNative\ICO.EXE (Primax Electronics Ltd.)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Samsung Link] C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe (Copyright 2013 SAMSUNG)
O4:64bit: - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Ad Muncher] C:\Program Files (x86)\Ad Muncher\AdMunch.exe (Murray Hurps Software Pty Ltd)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [PDVD9LanguageShortcut] c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RemoteControl9] c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (Apple Inc.)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk = File not found
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16:64bit: - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{35886345-E09F-404A-87AC-366C87DCA054}: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O20:64bit: - AppInit_DLLs: (C:\Windows\System32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/10/31 20:43:20 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2013/10/31 20:24:20 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~Q
[2013/10/31 20:04:52 | 000,000,000 | ---D | C] -- C:\$INPLACE.~TR
[2013/10/31 19:04:12 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/10/31 13:03:43 | 000,000,000 | ---D | C] -- C:\Users\Dom\New folder
[2013/10/31 12:58:30 | 000,000,000 | ---D | C] -- C:\WINSSLog
[2013/10/31 01:12:44 | 000,000,000 | ---D | C] -- C:\Recovery
[2013/10/30 23:51:15 | 000,000,000 | --SD | C] -- C:\Users\Dom\AppData\Roaming\Microsoft
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Videos
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Saved Games
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Pictures
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Music
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Links
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Favorites
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Downloads
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Documents
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Desktop
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\Temporary Internet Files
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Templates
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Start Menu
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\SendTo
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Recent
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\PrintHood
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\NetHood
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Videos
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Pictures
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Music
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\My Documents
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Local Settings
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\History
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Cookies
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Application Data
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\Application Data
[2013/10/30 23:51:15 | 000,000,000 | -H-D | C] -- C:\Users\Dom\AppData
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\Temp
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\Microsoft
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Roaming\Media Center Programs
[2013/10/30 23:49:04 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2013/10/30 23:48:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2013/10/30 23:48:56 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2013/10/30 23:48:42 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2013/10/30 23:48:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SRSLabs
[2013/10/30 23:47:19 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013/10/30 23:47:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2013/10/30 23:47:06 | 000,021,616 | ---- | C] (ST Microelectronics) -- C:\Windows\SysNative\drivers\stdcfltn.sys
[2013/10/30 23:47:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2013/10/30 23:47:04 | 000,000,000 | ---D | C] -- C:\Program Files\STMicroelectronics
[2013/10/30 23:45:35 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2013/10/29 03:22:36 | 000,000,000 | ---D | C] -- C:\Users\Dom\Desktop\CBS
[2013/10/26 11:09:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2013/10/26 11:09:33 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Samsung
[2013/10/23 18:44:03 | 091,157,064 | ---- | C] (Copyright 2013 SAMSUNG) -- C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
[2013/10/22 17:46:03 | 000,000,000 | ---D | C] -- C:\Users\Dom\Desktop\Florence and The Machine - Ceremonials (Deluxe Version) (2011)
[2013/10/18 19:32:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013/10/18 19:31:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013/10/09 21:43:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/10/09 21:43:01 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/10/09 17:53:29 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2013/10/09 15:22:48 | 000,000,000 | ---D | C] -- C:\Users\Dom\Desktop\Fix WU
[2013/10/09 03:38:20 | 000,000,000 | ---D | C] -- C:\b0e2a13b6c8a2e5070
[2013/10/08 03:10:33 | 000,000,000 | ---D | C] -- C:\436bb64a31e12a643421a2bd
[2013/10/08 02:44:04 | 000,000,000 | ---D | C] -- C:\887bdde0a9ebda26f6
[2013/10/07 18:30:27 | 000,000,000 | ---D | C] -- C:\3a9158e0bcd8f139b354a0
[2013/10/07 12:34:19 | 000,000,000 | ---D | C] -- C:\ae6a10a29e7ca916a3f751ca03d004
[2013/10/07 12:13:28 | 000,000,000 | ---D | C] -- C:\c8032304224819e47e
[2013/10/07 11:50:19 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013/10/07 11:37:47 | 000,000,000 | ---D | C] -- C:\RegBackup
[2013/10/07 11:13:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
[2013/10/07 11:13:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tweaking.com
[2013/10/07 10:46:20 | 000,000,000 | ---D | C] -- C:\f1af4fe9d2d023efc787
[2013/10/07 10:10:19 | 000,000,000 | ---D | C] -- C:\6e3b331e9e902ac912e83cbfbb8881
[2013/10/07 07:43:11 | 000,000,000 | ---D | C] -- C:\bb76aaa282d58f79b761b71e
[2013/10/06 22:05:40 | 000,000,000 | ---D | C] -- C:\1a363c867f2e0588ae69ed
[2013/10/06 03:11:25 | 000,000,000 | ---D | C] -- C:\66b32302be14bf726ecdd485546d34
[2013/10/05 21:53:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2013/10/05 12:55:57 | 000,000,000 | ---D | C] -- C:\f3573ff8e47bcf24d2f125a8
[2013/10/05 10:18:08 | 000,000,000 | ---D | C] -- C:\9dbde98d18b8b01ba48d4e6f6acb
[2013/10/05 09:32:22 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/10/04 13:09:44 | 000,000,000 | ---D | C] -- C:\5a0e81db22e4d3bd6052e7
[2013/10/04 12:27:30 | 000,000,000 | ---D | C] -- C:\b0d11e1ca66fa3ed5e
[2013/10/04 11:42:33 | 005,137,879 | R--- | C] (Swearware) -- C:\Users\Dom\Desktop\ComboFix.exe
[2013/10/04 11:29:59 | 000,000,000 | ---D | C] -- C:\a22a4bab0742e18a6f37a1
[2013/10/04 11:03:02 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/10/04 11:03:02 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/10/04 11:03:02 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/10/04 11:02:57 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/10/04 11:02:43 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/10/04 08:13:33 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Users\Dom\Desktop\aswMBR.exe
[2013/10/04 07:58:26 | 000,000,000 | ---D | C] -- C:\f4f0ab7db8afa1adb9ef748c34
[2013/10/01 23:45:09 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/10/01 23:26:33 | 000,000,000 | ---D | C] -- C:\AdwCleaner

========== Files - Modified Within 30 Days ==========

[2013/10/31 19:20:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/10/31 19:10:18 | 000,025,872 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/10/31 19:10:18 | 000,025,872 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/10/31 19:09:00 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/10/31 19:09:00 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/10/31 19:03:26 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/10/31 19:02:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/10/31 19:02:22 | 2064,252,927 | -HS- | M] () -- C:\hiberfil.sys
[2013/10/31 18:39:03 | 005,137,879 | R--- | M] (Swearware) -- C:\Users\Dom\Desktop\ComboFix.exe
[2013/10/31 18:37:42 | 000,778,834 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/10/31 18:37:42 | 000,664,780 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/10/31 18:37:42 | 000,125,484 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/10/31 18:25:29 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/10/31 18:25:29 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/10/31 18:23:04 | 000,002,135 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/10/31 18:19:37 | 000,764,746 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/10/31 10:13:46 | 000,471,704 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/10/31 02:18:01 | 000,001,439 | ---- | M] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/31 01:42:45 | 000,000,134 | ---- | M] () -- C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
[2013/10/31 01:04:54 | 000,115,640 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2013/10/31 01:04:54 | 000,115,640 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2013/10/31 00:48:50 | 000,022,744 | ---- | M] () -- C:\Windows\SysNative\emptyregdb.dat
[2013/10/30 23:49:36 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/10/30 23:48:46 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013/10/30 23:48:24 | 000,074,462 | ---- | M] () -- C:\Windows\SysNative\drivers\RTWAVES30.dat
[2013/10/30 22:20:57 | 000,003,094 | ---- | M] () -- C:\Users\Dom\Desktop\Windows Compatibility Report.htm
[2013/10/30 22:13:39 | 000,001,890 | ---- | M] () -- C:\Windows\diagwrn.xml
[2013/10/30 22:13:39 | 000,001,890 | ---- | M] () -- C:\Windows\diagerr.xml
[2013/10/30 22:04:57 | 3320,903,680 | ---- | M] () -- C:\Users\Dom\Desktop\Win 7 sp1.iso
[2013/10/29 03:22:50 | 009,678,991 | ---- | M] () -- C:\Users\Dom\Desktop\CBS (2).zip
[2013/10/26 11:23:24 | 007,020,544 | ---- | M] () -- C:\Users\Dom\Desktop\SideBySide
[2013/10/23 18:48:20 | 091,157,064 | ---- | M] (Copyright 2013 SAMSUNG) -- C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
[2013/10/21 16:35:58 | 001,394,772 | ---- | M] () -- C:\Users\Dom\Desktop\CBS.zip
[2013/10/21 16:34:19 | 000,124,344 | ---- | M] () -- C:\Users\Dom\Desktop\WindowsUpdate.zip
[2013/10/09 21:43:36 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/10/09 19:08:03 | 423,572,207 | ---- | M] () -- C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
[2013/10/09 15:22:25 | 000,021,232 | ---- | M] () -- C:\Users\Dom\Desktop\Fix WU.zip
[2013/10/08 03:54:39 | 001,589,825 | ---- | M] () -- C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
[2013/10/07 11:44:03 | 000,181,064 | ---- | M] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/10/07 11:38:12 | 000,000,207 | ---- | M] () -- C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/10/07 11:13:24 | 000,002,161 | ---- | M] () -- C:\Users\Dom\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/10/06 17:05:58 | 000,468,480 | ---- | M] () -- C:\Users\Dom\Desktop\CKScanner.exe
[2013/10/06 01:01:58 | 000,891,167 | ---- | M] () -- C:\Users\Dom\Desktop\SecurityCheck.exe
[2013/10/05 09:29:28 | 000,002,794 | ---- | M] () -- C:\FixitRegBackup.reg
[2013/10/04 08:16:21 | 000,950,272 | ---- | M] () -- C:\Users\Dom\Desktop\RogueKiller.exe
[2013/10/04 08:15:10 | 000,000,512 | ---- | M] () -- C:\Users\Dom\Desktop\MBR.dat
[2013/10/04 08:13:47 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Users\Dom\Desktop\aswMBR.exe
[2013/10/02 22:20:21 | 000,004,701 | ---- | M] () -- C:\WirelessDiagLog.csv

========== Files Created - No Company Name ==========

[2013/10/31 18:25:29 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/10/31 18:25:29 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/10/31 03:29:20 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013/10/31 03:15:25 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013/10/31 01:39:06 | 000,000,134 | ---- | C] () -- C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
[2013/10/31 01:25:25 | 000,764,746 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/10/31 01:16:03 | 000,001,415 | ---- | C] () -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/10/31 01:06:36 | 2064,252,927 | -HS- | C] () -- C:\hiberfil.sys
[2013/10/31 00:48:50 | 000,022,744 | ---- | C] () -- C:\Windows\SysNative\emptyregdb.dat
[2013/10/30 23:51:15 | 000,000,290 | ---- | C] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013/10/30 23:51:15 | 000,000,272 | ---- | C] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2013/10/30 23:50:53 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2013/10/30 23:50:52 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2013/10/30 23:49:36 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/10/30 23:49:22 | 003,536,817 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2013/10/30 23:48:46 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013/10/30 23:48:24 | 000,074,462 | ---- | C] () -- C:\Windows\SysNative\drivers\RTWAVES30.dat
[2013/10/30 22:15:40 | 000,003,094 | ---- | C] () -- C:\Users\Dom\Desktop\Windows Compatibility Report.htm
[2013/10/30 22:13:39 | 000,001,890 | ---- | C] () -- C:\Windows\diagwrn.xml
[2013/10/30 22:13:39 | 000,001,890 | ---- | C] () -- C:\Windows\diagerr.xml
[2013/10/30 20:31:49 | 3320,903,680 | ---- | C] () -- C:\Users\Dom\Desktop\Win 7 sp1.iso
[2013/10/29 03:22:49 | 009,678,991 | ---- | C] () -- C:\Users\Dom\Desktop\CBS (2).zip
[2013/10/22 14:54:23 | 007,020,544 | ---- | C] () -- C:\Users\Dom\Desktop\SideBySide
[2013/10/21 16:35:58 | 001,394,772 | ---- | C] () -- C:\Users\Dom\Desktop\CBS.zip
[2013/10/21 16:34:19 | 000,124,344 | ---- | C] () -- C:\Users\Dom\Desktop\WindowsUpdate.zip
[2013/10/09 21:43:36 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/10/09 18:57:41 | 423,572,207 | ---- | C] () -- C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
[2013/10/09 15:22:24 | 000,021,232 | ---- | C] () -- C:\Users\Dom\Desktop\Fix WU.zip
[2013/10/08 03:54:39 | 001,589,825 | ---- | C] () -- C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
[2013/10/07 11:38:12 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/10/07 11:13:24 | 000,002,161 | ---- | C] () -- C:\Users\Dom\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/10/06 17:05:58 | 000,468,480 | ---- | C] () -- C:\Users\Dom\Desktop\CKScanner.exe
[2013/10/06 01:01:58 | 000,891,167 | ---- | C] () -- C:\Users\Dom\Desktop\SecurityCheck.exe
[2013/10/05 09:29:27 | 000,002,794 | ---- | C] () -- C:\FixitRegBackup.reg
[2013/10/04 11:03:02 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/10/04 11:03:02 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/10/04 11:03:02 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/10/04 11:03:02 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/10/04 11:03:02 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/10/04 08:16:18 | 000,950,272 | ---- | C] () -- C:\Users\Dom\Desktop\RogueKiller.exe
[2013/10/04 08:15:10 | 000,000,512 | ---- | C] () -- C:\Users\Dom\Desktop\MBR.dat
[2013/10/01 09:46:40 | 000,025,600 | ---- | C] () -- C:\Windows\SysWow64\MediaDB.dll
[2013/10/01 09:11:08 | 000,706,560 | ---- | C] () -- C:\Windows\SysWow64\ContentDirectoryPresenter.dll
[2013/09/08 23:31:31 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll
[2013/09/08 23:16:01 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013/09/08 23:09:30 | 002,392,064 | ---- | C] () -- C:\Windows\SysWow64\videotrans.dll
[2013/07/23 19:18:54 | 000,046,592 | ---- | C] () -- C:\Windows\SysWow64\boost_thread-vc90-mt-1_47.dll
[2013/07/23 19:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\boost_date_time-vc90-mt-1_47.dll
[2013/07/23 19:18:42 | 000,704,000 | ---- | C] () -- C:\Windows\SysWow64\boost_regex-vc90-mt-1_47.dll
[2013/07/23 19:18:40 | 000,227,840 | ---- | C] () -- C:\Windows\SysWow64\boost_serialization-vc90-mt-1_47.dll
[2013/07/23 19:18:38 | 000,130,048 | ---- | C] () -- C:\Windows\SysWow64\boost_filesystem-vc90-mt-1_47.dll
[2013/07/23 19:18:38 | 000,012,800 | ---- | C] () -- C:\Windows\SysWow64\boost_system-vc90-mt-1_47.dll
[2012/10/18 06:04:11 | 000,111,932 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
[2012/10/18 06:04:11 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
[2012/10/18 06:04:11 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
[2012/10/18 06:04:11 | 000,026,154 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
[2012/10/18 06:04:11 | 000,024,903 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
[2012/10/18 06:04:11 | 000,021,390 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
[2012/10/18 06:04:11 | 000,020,148 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
[2012/10/18 06:04:11 | 000,011,811 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
[2012/10/18 06:04:11 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
[2012/10/18 06:04:11 | 000,001,146 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_DU.dat
[2012/10/18 06:04:11 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat
[2012/10/18 06:04:11 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat
[2012/10/18 06:04:11 | 000,001,136 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat
[2012/10/18 06:04:11 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat
[2012/10/18 06:04:11 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat
[2012/10/18 06:04:11 | 000,001,120 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_IT.dat
[2012/10/18 06:04:11 | 000,001,107 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_GE.dat
[2012/10/18 06:04:11 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat
[2012/10/18 06:04:11 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2012/02/15 12:45:46 | 000,013,082 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp DSP Effects.dat
[2012/02/15 12:45:41 | 004,022,504 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall.exe
[2012/02/15 12:45:41 | 000,017,950 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Music Converter.dat
[2012/02/04 01:43:57 | 000,103,272 | ---- | C] () -- C:\Users\Dom\GoToAssistDownloadHelper.exe
[2012/01/20 16:02:52 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2012/01/20 16:02:02 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2012/01/20 16:01:59 | 000,218,304 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2012/01/20 16:01:58 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012/01/20 16:01:57 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2012/01/20 16:01:56 | 013,903,872 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_89001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_49001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_33011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A0F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_14001461_61.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_13011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A0F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_09001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_08071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_060F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_07031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03131461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_8a.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_890F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_2B0f1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_29001461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_0B0f1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_090F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_180F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_18071461_aa.bin
[2012/01/20 15:22:52 | 000,000,376 | ---- | C] () -- C:\Windows\11317231_03131461_aa.bin

========== ZeroAccess Check ==========

[2009/07/14 17:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 15:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 14:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 14:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 16:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 14:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/10/31 00:41:13 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013/10/31 00:41:13 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2013/10/31 00:34:46 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Blio
[2013/10/31 00:34:46 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\calibre
[2013/10/31 00:34:47 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Canon
[2013/10/31 00:34:47 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\dBpoweramp
[2013/10/31 00:34:48 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Dropbox
[2013/10/31 00:34:48 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Fingertapps
[2013/10/31 00:34:49 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Leadertech
[2013/10/31 00:34:57 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Milestone
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\NETGATE Registry Cleaner
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Octane
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Omerta
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\OpenVPN Technologies
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\PCDr
[2013/10/31 00:35:02 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\redsn0w
[2013/10/31 00:35:03 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Research In Motion
[2013/07/09 17:57:30 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Samsung
[2013/10/31 00:35:05 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\tixati
[2013/10/31 00:35:06 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\TuneUp Software
[2013/10/31 00:35:06 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\ZinioReader4

========== Purity Check ==========



========== Custom Scans ==========

========== Base Services ==========
SRV:64bit: - [2009/07/14 14:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2013/02/27 18:47:10 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2009/07/14 14:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2010/11/21 16:23:51 | 000,849,920 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2010/11/21 16:24:00 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/07/14 14:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/14 14:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2012/07/05 11:13:27 | 000,136,704 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2013/07/09 18:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2013/07/09 17:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2010/11/21 16:24:01 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2010/11/21 16:24:00 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/21 16:24:09 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2011/03/03 19:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2009/07/14 14:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:64bit: - [2009/07/14 14:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/14 14:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:64bit: - [2009/07/14 14:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2010/11/21 16:23:48 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2009/07/14 14:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2009/07/14 14:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2009/07/14 14:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2009/07/14 14:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/14 14:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:64bit: - [2012/10/04 06:44:21 | 000,303,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2009/07/14 14:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2011/05/25 00:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2012/02/11 19:36:02 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:64bit: - [2009/07/14 14:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2010/11/21 16:24:17 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2010/11/21 16:24:01 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2010/11/21 16:24:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2009/07/14 14:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2010/11/21 16:23:48 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2010/11/21 16:23:55 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/21 16:24:03 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:64bit: - [2010/11/21 16:24:16 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2010/11/21 16:24:32 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/21 16:24:00 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/14 14:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2012/05/01 18:40:20 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2010/11/21 16:23:55 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2010/11/21 16:24:32 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2010/11/21 16:24:32 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2010/11/21 16:25:06 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:64bit: - [2013/05/27 18:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2010/11/21 16:23:55 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:64bit: - [2010/11/21 16:24:28 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2010/11/21 16:24:48 | 000,580,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2010/11/21 16:24:15 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/21 16:24:28 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/07/14 14:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2012/06/03 11:19:43 | 002,428,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2010/11/21 16:24:09 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/14 14:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2010/11/21 16:24:32 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >

< MD5 for: EXPLORER.EXE >
[2011/02/26 18:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2012/01/20 16:35:54 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\erdnt\cache86\explorer.exe
[2011/02/25 19:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 19:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 19:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/21 16:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/02/25 18:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 18:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/21 16:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: SERVICES >
[2009/06/11 10:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\$INPLACE.~TR\Machine\DATA\Windows\System32\drivers\etc\services
[2009/06/11 10:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services

< MD5 for: SERVICES.ASFX >
[2012/04/04 18:54:08 | 000,002,637 | ---- | M] () MD5=016DFC4F3F133AE19338EECD1924886A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ro_RO\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,970 | ---- | M] () MD5=05A68D76420994EF8DF33184BFA98E04 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\uk_UA\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,555 | ---- | M] () MD5=272301585AC133486E70228DA27659AC -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\zh_TW\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,562 | ---- | M] () MD5=27CE9BD3209B549BB776B8C877455A91 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\nb_NO\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,632 | ---- | M] () MD5=2998A4AE8D0EF5122CCB985CF7E9D9D3 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ko_KR\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,545 | ---- | M] () MD5=2EEC9DDBD0B4EE5F65532322C383938A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\zh_CN\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,629 | ---- | M] () MD5=3A0082D76426A87FB4937D426C491C10 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\cs_CZ\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,590 | ---- | M] () MD5=448953BD0CF26CE03D9E7CC1A7B278BC -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\tr_TR\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,605 | ---- | M] () MD5=5A2C5D0DA3EAAB2AA77F16947D0E14FF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\it_IT\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,679 | ---- | M] () MD5=5DD2704563A6A79C466E44CD966B2655 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\hu_HU\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,711 | ---- | M] () MD5=6B0E7B068BD530B8FCEBC04CC8844AA9 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ja_JP\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,582 | ---- | M] () MD5=797FC263D59784AD1498560C34FA7DA1 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sl_SI\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,626 | ---- | M] () MD5=8073B18DC740B965256CE0957E363AC5 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\fr_FR\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,634 | ---- | M] () MD5=912DD5C0C7C8D7572AD598414D56E24A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\pt_BR\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,655 | ---- | M] () MD5=ABFBB9D0398492D849690C344C1316BB -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\de_DE\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,638 | ---- | M] () MD5=C2C37202B0E55877A64ADDBDE738284E -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sk_SK\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,589 | ---- | M] () MD5=C313AD3602D4965A1918E86B9F3E84CF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\pl_PL\Services\Services.asfx
[2012/04/04 18:54:10 | 000,002,609 | ---- | M] () MD5=C7FA88C21103C70826F274A0E865AEDF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ca_ES\Services\Services.asfx
[2012/04/04 18:54:10 | 000,002,576 | ---- | M] () MD5=D27D52045EB6A2EE031F7D2EA0349BC3 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\eu_ES\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,560 | ---- | M] () MD5=D5642B1BFE0A70231D14C11D3D3FD60D -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\da_DK\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,588 | ---- | M] () MD5=DB216743CDE75637621E2FD39431BBD4 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\hr_HR\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,620 | ---- | M] () MD5=DCF7A8843832327386B81ABD189AC236 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\es_ES\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,997 | ---- | M] () MD5=DD3F4DAF426555D8D85FF4D7C5A04F37 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ru_RU\Services\Services.asfx
[2010/11/16 16:02:32 | 000,000,228 | R--- | M] () MD5=E09422BE0C7636A7B63A1527C4C1372D -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx
[2012/04/04 18:54:02 | 000,002,599 | ---- | M] () MD5=F09D769A94767C3C7E7015A5C6C99A39 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\fi_FI\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,628 | ---- | M] () MD5=F844D742DB53C7D671BF7ED6517414D1 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\nl_NL\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,582 | ---- | M] () MD5=FED4BDA3B6A9EB9DB59C254D8C987495 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sv_SE\Services\Services.asfx

< MD5 for: SERVICES.ASFX1 >
[2010/11/16 16:02:32 | 000,000,228 | R--- | M] () MD5=A7B7A4CC1A717292474115CD3A4AC121 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx1

< MD5 for: SERVICES.ASFX10 >
[2010/11/16 16:02:34 | 000,000,233 | R--- | M] () MD5=3382FAB54FC906B0E40269D903A8D690 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx10

< MD5 for: SERVICES.ASFX11 >
[2010/11/16 16:02:26 | 000,000,227 | R--- | M] () MD5=F36865AB3B9813962B7EDBE66FA1C28A -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx11

< MD5 for: SERVICES.ASFX12 >
[2010/11/16 16:02:30 | 000,000,225 | R--- | M] () MD5=9287C7268CC0F37F1DDE18CEBB128685 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx12

< MD5 for: SERVICES.ASFX13 >
[2010/11/16 16:02:30 | 000,000,228 | R--- | M] () MD5=95326C46AC2654AFF5C8543DFE22CCB3 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx13

< MD5 for: SERVICES.ASFX14 >
[2010/11/16 16:02:26 | 000,000,228 | R--- | M] () MD5=14DA84ECAF57B5ADA36B9093FF04CF32 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx14

< MD5 for: SERVICES.ASFX15 >
[2010/11/16 16:02:26 | 000,000,231 | R--- | M] () MD5=CF94F061685A38BABE0BBD463191EDE7 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx15

< MD5 for: SERVICES.ASFX16 >
[2010/11/16 16:02:34 | 000,000,232 | R--- | M] () MD5=B6E63D87C73CED2D6B433C542C5C3965 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx16

< MD5 for: SERVICES.ASFX17 >
[2010/11/16 16:02:34 | 000,000,230 | R--- | M] () MD5=545E97C4F4CEA743A8D86B685EE2EDBB -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx17

< MD5 for: SERVICES.ASFX18 >
[2010/11/16 16:02:24 | 000,000,230 | R--- | M] () MD5=2577B66F38E0DEA25F328DA4A0FED322 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx18

< MD5 for: SERVICES.ASFX19 >
[2010/11/16 16:02:26 | 000,000,225 | R--- | M] () MD5=0A27F1D6595A69800A43CDE155B1E4A0 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx19

< MD5 for: SERVICES.ASFX2 >
[2010/11/16 16:02:36 | 000,000,264 | R--- | M] () MD5=0652D24D4E2799851A6DF1705E2BFFDA -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx2

< MD5 for: SERVICES.ASFX20 >
[2010/11/16 16:02:38 | 000,000,231 | R--- | M] () MD5=C85F2519DC6AECF93F67AA613A320136 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx20

< MD5 for: SERVICES.ASFX21 >
[2010/11/16 16:02:26 | 000,000,231 | R--- | M] () MD5=8C95C0528EA7049A1DFC7A7342461D75 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx21

< MD5 for: SERVICES.ASFX22 >
[2010/11/16 16:02:24 | 000,000,231 | R--- | M] () MD5=9F2731666F5771CC5C1E4EEDC8FB8607 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx22

< MD5 for: SERVICES.ASFX23 >
[2010/11/16 16:02:26 | 000,000,225 | R--- | M] () MD5=0E89BE53F56B22390CF61584B649CE01 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx23

< MD5 for: SERVICES.ASFX24 >
[2010/11/16 16:02:32 | 000,000,229 | R--- | M] () MD5=E57594DB9B9D78AB4B53D34CAFEB8497 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx24

< MD5 for: SERVICES.ASFX25 >
[2010/11/16 16:02:36 | 000,000,232 | R--- | M] () MD5=611CB9CC21D2DDAD711690671F70EF39 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx25

< MD5 for: SERVICES.ASFX3 >
[2010/11/16 16:02:34 | 000,000,229 | R--- | M] () MD5=F9824728970AC8199BABDC9CBA5E038C -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx3

< MD5 for: SERVICES.ASFX4 >
[2010/11/16 16:02:26 | 000,000,226 | R--- | M] () MD5=55EA57D90AE22BDF0132597EF0D7C9C7 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx4

< MD5 for: SERVICES.ASFX5 >
[2010/11/16 16:02:34 | 000,000,233 | R--- | M] () MD5=846C265B751189E88B74F0155DB6B828 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx5

< MD5 for: SERVICES.ASFX6 >
[2010/11/16 16:02:36 | 000,000,231 | R--- | M] () MD5=89BD37C4118540FD5AA8CDD0C24D6C0A -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx6

< MD5 for: SERVICES.ASFX7 >
[2010/11/16 16:02:34 | 000,000,245 | R--- | M] () MD5=0B82FAB8FF5F988C5311DF1144A7D740 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx7

< MD5 for: SERVICES.ASFX8 >
[2010/11/16 16:02:34 | 000,000,231 | R--- | M] () MD5=5226417D3C8206000A8983BDC1243075 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx8

< MD5 for: SERVICES.ASFX9 >
[2010/11/16 16:02:30 | 000,000,234 | R--- | M] () MD5=EBD8D036504F2935675F5F432F076DBA -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx9

< MD5 for: SERVICES.CFG >
[2013/05/10 20:57:30 | 000,558,879 | ---- | M] () MD5=3679F8D3253DC110D1D8F2AE115EE00C -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Services\Services.cfg
[2010/11/16 16:02:22 | 000,032,633 | R--- | M] () MD5=EA1C35DD541D60819D55482130BD585D -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.cfg

< MD5 for: SERVICES.EXE >
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\erdnt\cache64\services.exe
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2011/04/12 21:17:17 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2011/04/12 21:17:17 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/14 17:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/14 17:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/11 09:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/11 09:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof

< MD5 for: SERVICES.MSC >
[2011/04/12 21:17:16 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/11 09:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2011/04/12 21:17:18 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/11 10:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2011/04/12 21:17:16 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/11 09:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2011/04/12 21:17:18 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/11 10:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PNG >
[2013/05/03 19:21:28 | 000,001,509 | ---- | M] () MD5=F4EC3ABEAE15FA9BB42D721E9D543F44 -- C:\Program Files\My Dell\images\icons\png\24_24\services.png

< MD5 for: SERVICES.PTXML >
[2009/07/14 09:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/14 09:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml

< MD5 for: SERVICES.SBS >
[2013/07/16 14:21:30 | 000,034,818 | ---- | M] () MD5=E2ACBC77020C8D5CE97CA61D0D859A44 -- C:\Program Files (x86)\Spybot - Search & Destroy\Includes\Services.sbs

< MD5 for: SERVICES.WHM >
[2008/11/10 08:49:56 | 000,003,678 | ---- | M] () MD5=78C07607AD198E5769746185F8EF2D78 -- C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\pc\html\www.craplist.net\services.whm

< MD5 for: SVCHOST.EXE >
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2013/04/05 02:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache86\userinit.exe
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\erdnt\cache64\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\erdnt\cache64\winlogon.exe
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2013/04/05 02:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< C:\Windows\assembly\tmp\U\*.* /s >
[2009/07/14 18:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 18:08:49 | 000,005,846 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/01/31 01:39:07 | 000,000,888 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012/01/31 01:39:07 | 000,000,892 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012/03/30 11:17:05 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< C:\Program Files\Common Files\ComObjects\*.* /s >

< C:\windows\*. /RP /s >

< dir C:\ /S /A:L /C >
Volume in drive C is OS
Volume Serial Number is D05A-98DF
Directory of C:\
14/07/2009 18:08 <JUNCTION> Documents and Settings [C:\Users]
0 File(s) 0 bytes
Directory of C:\ProgramData
14/07/2009 18:08 <JUNCTION> Application Data [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 18:08 <JUNCTION> Documents [C:\Users\Public\Documents]
14/07/2009 18:08 <JUNCTION> Favorites [C:\Users\Public\Favorites]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users
14/07/2009 18:08 <SYMLINKD> All Users [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Default User [C:\Users\Default]
0 File(s) 0 bytes
Directory of C:\Users\All Users
14/07/2009 18:08 <JUNCTION> Application Data [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 18:08 <JUNCTION> Documents [C:\Users\Public\Documents]
14/07/2009 18:08 <JUNCTION> Favorites [C:\Users\Public\Favorites]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default
14/07/2009 18:08 <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
14/07/2009 18:08 <JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
14/07/2009 18:08 <JUNCTION> My Documents [C:\Users\Default\Documents]
14/07/2009 18:08 <JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
14/07/2009 18:08 <JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
14/07/2009 18:08 <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
14/07/2009 18:08 <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default\AppData\Local
14/07/2009 18:08 <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
14/07/2009 18:08 <JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
14/07/2009 18:08 <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Default\Documents
14/07/2009 18:08 <JUNCTION> My Music [C:\Users\Default\Music]
14/07/2009 18:08 <JUNCTION> My Pictures [C:\Users\Default\Pictures]
14/07/2009 18:08 <JUNCTION> My Videos [C:\Users\Default\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Dom
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\Dom\AppData\Roaming]
30/10/2013 23:51 <JUNCTION> Cookies [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Cookies]
30/10/2013 23:51 <JUNCTION> Local Settings [C:\Users\Dom\AppData\Local]
30/10/2013 23:51 <JUNCTION> My Documents [C:\Users\Dom\Documents]
30/10/2013 23:51 <JUNCTION> NetHood [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
30/10/2013 23:51 <JUNCTION> PrintHood [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
30/10/2013 23:51 <JUNCTION> Recent [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Recent]
30/10/2013 23:51 <JUNCTION> SendTo [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\SendTo]
30/10/2013 23:51 <JUNCTION> Start Menu [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu]
30/10/2013 23:51 <JUNCTION> Templates [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Dom\AppData\Local
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\Dom\AppData\Local]
30/10/2013 23:51 <JUNCTION> History [C:\Users\Dom\AppData\Local\Microsoft\Windows\History]
30/10/2013 23:51 <JUNCTION> Temporary Internet Files [C:\Users\Dom\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Dom\Documents
30/10/2013 23:51 <JUNCTION> My Music [C:\Users\Dom\Music]
30/10/2013 23:51 <JUNCTION> My Pictures [C:\Users\Dom\Pictures]
30/10/2013 23:51 <JUNCTION> My Videos [C:\Users\Dom\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Public\Documents
14/07/2009 18:08 <JUNCTION> My Music [C:\Users\Public\Music]
14/07/2009 18:08 <JUNCTION> My Pictures [C:\Users\Public\Pictures]
14/07/2009 18:08 <JUNCTION> My Videos [C:\Users\Public\Videos]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Roaming]
30/10/2013 23:51 <JUNCTION> Cookies [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Cookies]
30/10/2013 23:51 <JUNCTION> Local Settings [C:\Users\UpdatusUser\AppData\Local]
30/10/2013 23:51 <JUNCTION> My Documents [C:\Users\UpdatusUser\Documents]
30/10/2013 23:51 <JUNCTION> NetHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
30/10/2013 23:51 <JUNCTION> PrintHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
30/10/2013 23:51 <JUNCTION> Recent [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Recent]
30/10/2013 23:51 <JUNCTION> SendTo [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\SendTo]
30/10/2013 23:51 <JUNCTION> Start Menu [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu]
30/10/2013 23:51 <JUNCTION> Templates [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser\AppData\Local
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Local]
30/10/2013 23:51 <JUNCTION> History [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\History]
30/10/2013 23:51 <JUNCTION> Temporary Internet Files [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser\Documents
30/10/2013 23:51 <JUNCTION> My Music [C:\Users\UpdatusUser\Music]
30/10/2013 23:51 <JUNCTION> My Pictures [C:\Users\UpdatusUser\Pictures]
30/10/2013 23:51 <JUNCTION> My Videos [C:\Users\UpdatusUser\Videos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
65 Dir(s) 28,493,475,840 bytes free

< End of report >

Attached Files


  • 0

#64
CompCav
Posted 31 October 2013 - 04:32 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
You must hve done a restore not a repair. Exactly what did you do since you? Did you create the bootable USB?
  • 0

#65
Dom2276
Posted 31 October 2013 - 04:57 AM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
I created a bootable USB and did exactly as requested, pretty sure it was a repair. Shall I go through the process again?
  • 0

#66
CompCav
Posted 31 October 2013 - 05:06 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
No not yet we need to clean up the infection that has returned first.

Let me review the logs and please post do not attach those logs in the future thanks.

How is the computer behaving especially your antivirus now?


Regards,

CompCav
  • 0

#67
CompCav
Posted 31 October 2013 - 05:52 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Step 1

OTL Fix

  • Please reopen Posted Image on your desktop by right clicking and selection Run as administrator.
  • Copy and Paste the following code into the Posted Image textbox.

    :OTL
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.socks_remote_dns: true
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll File not found
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll File not found
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll File not found
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk = File not found
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
[2013/10/09 03:38:20 | 000,000,000 | ---D | C] -- C:\b0e2a13b6c8a2e5070
[2013/10/08 03:10:33 | 000,000,000 | ---D | C] -- C:\436bb64a31e12a643421a2bd
[2013/10/08 02:44:04 | 000,000,000 | ---D | C] -- C:\887bdde0a9ebda26f6
[2013/10/07 18:30:27 | 000,000,000 | ---D | C] -- C:\3a9158e0bcd8f139b354a0
[2013/10/07 12:34:19 | 000,000,000 | ---D | C] -- C:\ae6a10a29e7ca916a3f751ca03d004
[2013/10/07 12:13:28 | 000,000,000 | ---D | C] -- C:\c8032304224819e47e
[2013/10/07 10:46:20 | 000,000,000 | ---D | C] -- C:\f1af4fe9d2d023efc787
[2013/10/07 10:10:19 | 000,000,000 | ---D | C] -- C:\6e3b331e9e902ac912e83cbfbb8881
[2013/10/07 07:43:11 | 000,000,000 | ---D | C] -- C:\bb76aaa282d58f79b761b71e
[2013/10/06 22:05:40 | 000,000,000 | ---D | C] -- C:\1a363c867f2e0588ae69ed
[2013/10/06 03:11:25 | 000,000,000 | ---D | C] -- C:\66b32302be14bf726ecdd485546d34
[2013/10/05 12:55:57 | 000,000,000 | ---D | C] -- C:\f3573ff8e47bcf24d2f125a8
[2013/10/05 10:18:08 | 000,000,000 | ---D | C] -- C:\9dbde98d18b8b01ba48d4e6f6acb
[2013/10/04 13:09:44 | 000,000,000 | ---D | C] -- C:\5a0e81db22e4d3bd6052e7
[2013/10/04 12:27:30 | 000,000,000 | ---D | C] -- C:\b0d11e1ca66fa3ed5e
[2013/10/04 11:29:59 | 000,000,000 | ---D | C] -- C:\a22a4bab0742e18a6f37a1
[2013/10/04 07:58:26 | 000,000,000 | ---D | C] -- C:\f4f0ab7db8afa1adb9ef748c34
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\PCDr
[2013/10/31 00:41:13 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013/10/31 00:41:13 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2013/10/31 00:35:06 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\TuneUp Software


:files
ipconfig /flushdns /c
c:\programdata\PCDr\6308\AddOnDownloaded
c:\users\Dom\AppData\Local\Temp\_MEI44682
:reg


:Commands
[purity]
[resethosts]
[emptyjava]
[emptyflash]
[createrestorepoint]
  • Push Posted Image
  • OTL may ask to reboot the machine. Please do so if asked.
  • Click the OK button.
  • A report will open. Copy and Paste that report in your next reply.
  • If the machine reboots, the log will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, where mmddyyyy_hhmmss is the date and the time of the tool run.


Step 2

  • Download RogueKiller64, make sure you get the correct version for your system and save it on your desktop.
  • Quit all programs
  • Start RogueKiller.exe.
  • Wait until Prescan has finished ...
  • Click on Scan
  • Note: If RogueKiller will not run please try it several times, if it still does not run rename it winlogon.com and try it several times.
Posted Image
  • Wait for the end of the scan.
  • The report has been created on the desktop.
  • Click on the Delete button.
Posted Image
  • The report has been created on the desktop.

  • Next click on ShortcutsFix

    Posted Image
  • The report has been created on the desktop.


Step 3

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.


Step 4


Please post:

OTL fix log
All RKreport.txt text files located on your desktop.
TDSSKiller log

Please give me an update on how the computer is running. Is your antivirus able to run now?
  • 0

#68
Dom2276
Posted 01 November 2013 - 05:40 AM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
I couldn't get MSE to load after trying everything, so reinstalled AVG which appears to be working. Will plough through the processes you posted now and get back to you. Thanks!
  • 0

#69
CompCav
Posted 01 November 2013 - 06:51 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
OK I will await the logs.
  • 0

#70
Dom2276
Posted 01 November 2013 - 10:02 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Here are the logs.

OTL logfile created on: 31/10/2013 19:31:39 - Run 6
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dom\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

7.90 Gb Total Physical Memory | 5.56 Gb Available Physical Memory | 70.45% Memory free
15.79 Gb Paging File | 13.17 Gb Available in Paging File | 83.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 679.00 Gb Total Space | 26.27 Gb Free Space | 3.87% Space Free | Partition Type: NTFS

Computer Name: DOM-PC | User Name: Dom | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/10/18 18:17:05 | 000,310,352 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2013/10/01 12:02:38 | 000,755,080 | ---- | M] (Samsung) -- C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
PRC - [2013/09/30 19:21:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.exe
PRC - [2013/09/16 13:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2013/05/10 12:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/10/03 02:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/10/19 06:50:10 | 001,001,808 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2011/10/19 06:50:04 | 001,354,064 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
PRC - [2011/10/19 06:49:52 | 000,936,272 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2011/09/23 05:14:16 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/09/23 05:11:26 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/09/23 05:06:12 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/09/22 05:30:12 | 004,109,312 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2010/12/21 13:24:38 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/12/21 13:24:36 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/09/30 22:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
PRC - [2009/07/29 23:54:36 | 000,205,312 | ---- | M] (Mediafour Corporation) -- C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE


========== Modules (No Company Name) ==========

MOD - [2013/07/22 11:48:15 | 002,052,096 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2013/07/22 11:48:15 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2013/07/12 18:30:13 | 000,569,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.ServiceModel.Web\3.5.0.0__31bf3856ad364e35\System.ServiceModel.Web.dll
MOD - [2013/07/03 12:09:05 | 005,283,840 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
MOD - [2013/04/24 11:57:26 | 004,554,752 | ---- | M] () -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
MOD - [2013/04/16 11:56:17 | 001,253,376 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
MOD - [2013/04/16 11:56:16 | 005,283,840 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
MOD - [2013/04/16 11:56:15 | 004,218,880 | ---- | M] () -- C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
MOD - [2012/12/12 18:32:26 | 005,025,792 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2012/10/05 23:53:24 | 003,198,976 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2012/10/05 23:53:24 | 000,630,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
MOD - [2012/10/05 23:53:24 | 000,110,592 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMDiagnostics.dll
MOD - [2012/10/05 23:53:23 | 005,988,352 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
MOD - [2012/10/05 23:53:23 | 000,970,752 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
MOD - [2012/10/05 23:53:23 | 000,446,464 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
MOD - [2011/09/23 05:14:16 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2010/11/21 16:25:01 | 000,667,648 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
MOD - [2010/11/21 16:24:58 | 000,139,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml.Linq\3.5.0.0__b77a5c561934e089\System.Xml.Linq.dll
MOD - [2010/11/21 16:24:52 | 000,507,904 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.WorkflowServices\3.5.0.0__31bf3856ad364e35\System.WorkflowServices.dll
MOD - [2009/06/11 10:23:19 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2009/06/11 10:14:43 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.Aero\3.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/10/17 09:56:38 | 000,605,768 | ---- | M] (Copyright 2013 SAMSUNG) [Auto | Running] -- C:\Program Files\Samsung\Samsung Link\Samsung Link.exe -- (Samsung Link Service)
SRV:64bit: - [2013/10/01 12:03:26 | 000,404,360 | ---- | M] (Samsung) [Auto | Running] -- C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe -- (AllShare Framework DMS)
SRV:64bit: - [2013/05/27 18:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013/02/21 18:03:56 | 000,618,832 | ---- | M] (NETGATE Technologies s.r.o.) [Auto | Running] -- C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe -- (NGRegClnSrv)
SRV:64bit: - [2011/11/02 08:37:56 | 001,518,352 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2011/11/02 08:25:42 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2011/11/02 08:22:28 | 000,844,560 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2011/10/21 13:33:22 | 000,135,440 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2011/10/20 09:25:00 | 000,661,504 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2010/11/30 10:00:56 | 000,149,504 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/23 13:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/01/07 23:16:32 | 000,218,112 | ---- | M] (Mediafour Corporation) [Auto | Running] -- C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe -- (MacDrive8Service)
SRV:64bit: - [2009/11/18 15:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV - [2013/10/18 18:20:33 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/09/16 13:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/06/04 04:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/10 12:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/03 15:00:46 | 000,247,768 | ---- | M] (CyberLink) [Auto | Stopped] -- c:\Program Files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe -- (CLKMSVC10_9EC60124)
SRV - [2012/10/09 00:42:54 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/10/03 02:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/10/19 06:50:10 | 001,001,808 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2011/10/19 06:50:04 | 001,354,064 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2011/10/19 06:49:52 | 000,936,272 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2011/09/23 05:06:12 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2010/12/21 13:24:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/12/21 13:24:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/11/26 00:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/26 00:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/09/30 22:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0)
SRV - [2010/08/26 15:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/08/13 05:45:00 | 000,024,064 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe -- (OpenVPNAccessClient)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/29 23:54:36 | 000,205,312 | ---- | M] (Mediafour Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE -- (M4LIC)
SRV - [2009/06/11 10:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/06/19 09:50:08 | 000,139,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2013/02/09 03:45:38 | 000,036,736 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901)
DRV:64bit: - [2012/10/09 00:42:36 | 000,030,056 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2012/10/09 00:42:14 | 000,284,008 | ---- | M] (NVIDIA Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nvkflt.sys -- (nvkflt)
DRV:64bit: - [2012/08/24 03:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/22 01:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/06/30 11:53:19 | 000,030,496 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hitmanpro36.sys -- (hitmanpro36)
DRV:64bit: - [2012/03/01 19:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/12/10 08:45:00 | 000,060,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2011/12/02 14:57:06 | 008,615,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64)
DRV:64bit: - [2011/11/15 14:13:00 | 000,327,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2011/09/14 05:14:44 | 000,212,992 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/09/14 05:14:42 | 000,095,744 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/07/21 02:39:58 | 012,287,456 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/06/10 19:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/11 19:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 19:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/21 06:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2011/01/13 14:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/12/18 06:06:32 | 001,404,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/12/17 11:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2010/12/14 06:34:14 | 000,027,760 | ---- | M] (ST Microelectronics) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelern.sys -- (Acceler)
DRV:64bit: - [2010/12/13 03:18:36 | 000,121,960 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvstusb.sys -- (NvStUSB)
DRV:64bit: - [2010/11/30 10:00:04 | 000,016,120 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/11/21 16:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 16:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 16:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/10/20 13:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/16 13:28:18 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/08/20 11:05:12 | 000,021,616 | ---- | M] (ST Microelectronics) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stdcfltn.sys -- (stdcfltn)
DRV:64bit: - [2010/07/13 15:38:06 | 000,029,288 | ---- | M] (Quanta Computer) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\qicflt.sys -- (qicflt)
DRV:64bit: - [2010/06/11 14:14:42 | 001,799,808 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVer7231_x64.sys -- (AVer7231_x64)
DRV:64bit: - [2010/03/19 22:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/02/28 04:32:14 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010/02/04 22:14:20 | 000,304,232 | ---- | M] (Mediafour Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\MDFSYSNT.SYS -- (MDFSYSNT)
DRV:64bit: - [2010/01/14 00:15:54 | 000,070,344 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\CBDisk.sys -- (CBDisk)
DRV:64bit: - [2009/09/24 02:23:08 | 000,032,352 | ---- | M] (Mediafour Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\MDPMGRNT.SYS -- (MDPMGRNT)
DRV:64bit: - [2009/07/14 14:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 14:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 14:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/11 09:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/11 09:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/11 09:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/11 09:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006/11/02 07:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/14 14:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{62E361EE-1F0E-41C0-96DF-C0E2F918BDA2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {99F4E0CF-C394-42E8-9CEA-E40795E1836A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{62E361EE-1F0E-41C0-96DF-C0E2F918BDA2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = ${SEARCH_URL}{searchTerms}
IE - HKLM\..\SearchScopes\{99F4E0CF-C394-42E8-9CEA-E40795E1836A}: "URL" = http://www.google.co...g}&sourceid=ie7






IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.nz/
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...GGHP_en-GBGB469
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{99F4E0CF-C394-42E8-9CEA-E40795E1836A}: "URL" = http://www.google.co...GGHP_en-GBGB469
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..extensions.enabledAddons: [email protected]:4.1.3
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.socks_remote_dns: true
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\samsung.com/SamsungLinkPCPlugin: C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF - HKCU\Software\MozillaPlugins\samsung.com/SamsungLinkPCPlugin: C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/10/31 00:11:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK

[2013/10/31 00:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Extensions
[2013/08/19 13:16:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Extensions\net.openvpn.client
[2013/10/31 00:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\extensions
[2013/10/31 00:35:00 | 000,000,000 | ---D | M] (FoxyProxy Standard) -- C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\extensions\[email protected]
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/03/13 17:39:39 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/03/13 17:38:32 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/03/13 17:38:32 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - plugin: iTunes Application Detector (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: Google Docs = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.4_0\
CHR - Extension: Google Drive = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/10/31 19:03:26 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll File not found
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll File not found
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3:64bit: - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Mouse Suite 98 Daemon] C:\Windows\SysNative\ICO.EXE (Primax Electronics Ltd.)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Samsung Link] C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe (Copyright 2013 SAMSUNG)
O4:64bit: - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Ad Muncher] C:\Program Files (x86)\Ad Muncher\AdMunch.exe (Murray Hurps Software Pty Ltd)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [PDVD9LanguageShortcut] c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RemoteControl9] c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (Apple Inc.)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk = File not found
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16:64bit: - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{35886345-E09F-404A-87AC-366C87DCA054}: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O20:64bit: - AppInit_DLLs: (C:\Windows\System32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/10/31 20:43:20 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2013/10/31 20:24:20 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~Q
[2013/10/31 20:04:52 | 000,000,000 | ---D | C] -- C:\$INPLACE.~TR
[2013/10/31 19:04:12 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/10/31 13:03:43 | 000,000,000 | ---D | C] -- C:\Users\Dom\New folder
[2013/10/31 12:58:30 | 000,000,000 | ---D | C] -- C:\WINSSLog
[2013/10/31 01:12:44 | 000,000,000 | ---D | C] -- C:\Recovery
[2013/10/30 23:51:15 | 000,000,000 | --SD | C] -- C:\Users\Dom\AppData\Roaming\Microsoft
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Videos
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Saved Games
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Pictures
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Music
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Links
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Favorites
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Downloads
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Documents
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Desktop
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\Temporary Internet Files
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Templates
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Start Menu
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\SendTo
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Recent
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\PrintHood
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\NetHood
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Videos
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Pictures
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Music
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\My Documents
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Local Settings
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\History
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Cookies
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Application Data
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\Application Data
[2013/10/30 23:51:15 | 000,000,000 | -H-D | C] -- C:\Users\Dom\AppData
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\Temp
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\Microsoft
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Roaming\Media Center Programs
[2013/10/30 23:49:04 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2013/10/30 23:48:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2013/10/30 23:48:56 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2013/10/30 23:48:42 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2013/10/30 23:48:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SRSLabs
[2013/10/30 23:47:19 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013/10/30 23:47:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2013/10/30 23:47:06 | 000,021,616 | ---- | C] (ST Microelectronics) -- C:\Windows\SysNative\drivers\stdcfltn.sys
[2013/10/30 23:47:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2013/10/30 23:47:04 | 000,000,000 | ---D | C] -- C:\Program Files\STMicroelectronics
[2013/10/30 23:45:35 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2013/10/29 03:22:36 | 000,000,000 | ---D | C] -- C:\Users\Dom\Desktop\CBS
[2013/10/26 11:09:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2013/10/26 11:09:33 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Samsung
[2013/10/23 18:44:03 | 091,157,064 | ---- | C] (Copyright 2013 SAMSUNG) -- C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
[2013/10/22 17:46:03 | 000,000,000 | ---D | C] -- C:\Users\Dom\Desktop\Florence and The Machine - Ceremonials (Deluxe Version) (2011)
[2013/10/18 19:32:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013/10/18 19:31:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013/10/09 21:43:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/10/09 21:43:01 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/10/09 17:53:29 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2013/10/09 15:22:48 | 000,000,000 | ---D | C] -- C:\Users\Dom\Desktop\Fix WU
[2013/10/09 03:38:20 | 000,000,000 | ---D | C] -- C:\b0e2a13b6c8a2e5070
[2013/10/08 03:10:33 | 000,000,000 | ---D | C] -- C:\436bb64a31e12a643421a2bd
[2013/10/08 02:44:04 | 000,000,000 | ---D | C] -- C:\887bdde0a9ebda26f6
[2013/10/07 18:30:27 | 000,000,000 | ---D | C] -- C:\3a9158e0bcd8f139b354a0
[2013/10/07 12:34:19 | 000,000,000 | ---D | C] -- C:\ae6a10a29e7ca916a3f751ca03d004
[2013/10/07 12:13:28 | 000,000,000 | ---D | C] -- C:\c8032304224819e47e
[2013/10/07 11:50:19 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013/10/07 11:37:47 | 000,000,000 | ---D | C] -- C:\RegBackup
[2013/10/07 11:13:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
[2013/10/07 11:13:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tweaking.com
[2013/10/07 10:46:20 | 000,000,000 | ---D | C] -- C:\f1af4fe9d2d023efc787
[2013/10/07 10:10:19 | 000,000,000 | ---D | C] -- C:\6e3b331e9e902ac912e83cbfbb8881
[2013/10/07 07:43:11 | 000,000,000 | ---D | C] -- C:\bb76aaa282d58f79b761b71e
[2013/10/06 22:05:40 | 000,000,000 | ---D | C] -- C:\1a363c867f2e0588ae69ed
[2013/10/06 03:11:25 | 000,000,000 | ---D | C] -- C:\66b32302be14bf726ecdd485546d34
[2013/10/05 21:53:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2013/10/05 12:55:57 | 000,000,000 | ---D | C] -- C:\f3573ff8e47bcf24d2f125a8
[2013/10/05 10:18:08 | 000,000,000 | ---D | C] -- C:\9dbde98d18b8b01ba48d4e6f6acb
[2013/10/05 09:32:22 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/10/04 13:09:44 | 000,000,000 | ---D | C] -- C:\5a0e81db22e4d3bd6052e7
[2013/10/04 12:27:30 | 000,000,000 | ---D | C] -- C:\b0d11e1ca66fa3ed5e
[2013/10/04 11:42:33 | 005,137,879 | R--- | C] (Swearware) -- C:\Users\Dom\Desktop\ComboFix.exe
[2013/10/04 11:29:59 | 000,000,000 | ---D | C] -- C:\a22a4bab0742e18a6f37a1
[2013/10/04 11:03:02 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/10/04 11:03:02 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/10/04 11:03:02 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/10/04 11:02:57 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/10/04 11:02:43 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/10/04 08:13:33 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Users\Dom\Desktop\aswMBR.exe
[2013/10/04 07:58:26 | 000,000,000 | ---D | C] -- C:\f4f0ab7db8afa1adb9ef748c34
[2013/10/01 23:45:09 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/10/01 23:26:33 | 000,000,000 | ---D | C] -- C:\AdwCleaner

========== Files - Modified Within 30 Days ==========

[2013/10/31 19:20:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/10/31 19:10:18 | 000,025,872 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/10/31 19:10:18 | 000,025,872 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/10/31 19:09:00 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/10/31 19:09:00 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/10/31 19:03:26 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/10/31 19:02:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/10/31 19:02:22 | 2064,252,927 | -HS- | M] () -- C:\hiberfil.sys
[2013/10/31 18:39:03 | 005,137,879 | R--- | M] (Swearware) -- C:\Users\Dom\Desktop\ComboFix.exe
[2013/10/31 18:37:42 | 000,778,834 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/10/31 18:37:42 | 000,664,780 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/10/31 18:37:42 | 000,125,484 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/10/31 18:25:29 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/10/31 18:25:29 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/10/31 18:23:04 | 000,002,135 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/10/31 18:19:37 | 000,764,746 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/10/31 10:13:46 | 000,471,704 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/10/31 02:18:01 | 000,001,439 | ---- | M] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/31 01:42:45 | 000,000,134 | ---- | M] () -- C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
[2013/10/31 01:04:54 | 000,115,640 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2013/10/31 01:04:54 | 000,115,640 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2013/10/31 00:48:50 | 000,022,744 | ---- | M] () -- C:\Windows\SysNative\emptyregdb.dat
[2013/10/30 23:49:36 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/10/30 23:48:46 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013/10/30 23:48:24 | 000,074,462 | ---- | M] () -- C:\Windows\SysNative\drivers\RTWAVES30.dat
[2013/10/30 22:20:57 | 000,003,094 | ---- | M] () -- C:\Users\Dom\Desktop\Windows Compatibility Report.htm
[2013/10/30 22:13:39 | 000,001,890 | ---- | M] () -- C:\Windows\diagwrn.xml
[2013/10/30 22:13:39 | 000,001,890 | ---- | M] () -- C:\Windows\diagerr.xml
[2013/10/30 22:04:57 | 3320,903,680 | ---- | M] () -- C:\Users\Dom\Desktop\Win 7 sp1.iso
[2013/10/29 03:22:50 | 009,678,991 | ---- | M] () -- C:\Users\Dom\Desktop\CBS (2).zip
[2013/10/26 11:23:24 | 007,020,544 | ---- | M] () -- C:\Users\Dom\Desktop\SideBySide
[2013/10/23 18:48:20 | 091,157,064 | ---- | M] (Copyright 2013 SAMSUNG) -- C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
[2013/10/21 16:35:58 | 001,394,772 | ---- | M] () -- C:\Users\Dom\Desktop\CBS.zip
[2013/10/21 16:34:19 | 000,124,344 | ---- | M] () -- C:\Users\Dom\Desktop\WindowsUpdate.zip
[2013/10/09 21:43:36 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/10/09 19:08:03 | 423,572,207 | ---- | M] () -- C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
[2013/10/09 15:22:25 | 000,021,232 | ---- | M] () -- C:\Users\Dom\Desktop\Fix WU.zip
[2013/10/08 03:54:39 | 001,589,825 | ---- | M] () -- C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
[2013/10/07 11:44:03 | 000,181,064 | ---- | M] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/10/07 11:38:12 | 000,000,207 | ---- | M] () -- C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/10/07 11:13:24 | 000,002,161 | ---- | M] () -- C:\Users\Dom\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/10/06 17:05:58 | 000,468,480 | ---- | M] () -- C:\Users\Dom\Desktop\CKScanner.exe
[2013/10/06 01:01:58 | 000,891,167 | ---- | M] () -- C:\Users\Dom\Desktop\SecurityCheck.exe
[2013/10/05 09:29:28 | 000,002,794 | ---- | M] () -- C:\FixitRegBackup.reg
[2013/10/04 08:16:21 | 000,950,272 | ---- | M] () -- C:\Users\Dom\Desktop\RogueKiller.exe
[2013/10/04 08:15:10 | 000,000,512 | ---- | M] () -- C:\Users\Dom\Desktop\MBR.dat
[2013/10/04 08:13:47 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Users\Dom\Desktop\aswMBR.exe
[2013/10/02 22:20:21 | 000,004,701 | ---- | M] () -- C:\WirelessDiagLog.csv

========== Files Created - No Company Name ==========

[2013/10/31 18:25:29 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/10/31 18:25:29 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/10/31 03:29:20 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013/10/31 03:15:25 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013/10/31 01:39:06 | 000,000,134 | ---- | C] () -- C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
[2013/10/31 01:25:25 | 000,764,746 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/10/31 01:16:03 | 000,001,415 | ---- | C] () -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/10/31 01:06:36 | 2064,252,927 | -HS- | C] () -- C:\hiberfil.sys
[2013/10/31 00:48:50 | 000,022,744 | ---- | C] () -- C:\Windows\SysNative\emptyregdb.dat
[2013/10/30 23:51:15 | 000,000,290 | ---- | C] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013/10/30 23:51:15 | 000,000,272 | ---- | C] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2013/10/30 23:50:53 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2013/10/30 23:50:52 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2013/10/30 23:49:36 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/10/30 23:49:22 | 003,536,817 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2013/10/30 23:48:46 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013/10/30 23:48:24 | 000,074,462 | ---- | C] () -- C:\Windows\SysNative\drivers\RTWAVES30.dat
[2013/10/30 22:15:40 | 000,003,094 | ---- | C] () -- C:\Users\Dom\Desktop\Windows Compatibility Report.htm
[2013/10/30 22:13:39 | 000,001,890 | ---- | C] () -- C:\Windows\diagwrn.xml
[2013/10/30 22:13:39 | 000,001,890 | ---- | C] () -- C:\Windows\diagerr.xml
[2013/10/30 20:31:49 | 3320,903,680 | ---- | C] () -- C:\Users\Dom\Desktop\Win 7 sp1.iso
[2013/10/29 03:22:49 | 009,678,991 | ---- | C] () -- C:\Users\Dom\Desktop\CBS (2).zip
[2013/10/22 14:54:23 | 007,020,544 | ---- | C] () -- C:\Users\Dom\Desktop\SideBySide
[2013/10/21 16:35:58 | 001,394,772 | ---- | C] () -- C:\Users\Dom\Desktop\CBS.zip
[2013/10/21 16:34:19 | 000,124,344 | ---- | C] () -- C:\Users\Dom\Desktop\WindowsUpdate.zip
[2013/10/09 21:43:36 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/10/09 18:57:41 | 423,572,207 | ---- | C] () -- C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
[2013/10/09 15:22:24 | 000,021,232 | ---- | C] () -- C:\Users\Dom\Desktop\Fix WU.zip
[2013/10/08 03:54:39 | 001,589,825 | ---- | C] () -- C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
[2013/10/07 11:38:12 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/10/07 11:13:24 | 000,002,161 | ---- | C] () -- C:\Users\Dom\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/10/06 17:05:58 | 000,468,480 | ---- | C] () -- C:\Users\Dom\Desktop\CKScanner.exe
[2013/10/06 01:01:58 | 000,891,167 | ---- | C] () -- C:\Users\Dom\Desktop\SecurityCheck.exe
[2013/10/05 09:29:27 | 000,002,794 | ---- | C] () -- C:\FixitRegBackup.reg
[2013/10/04 11:03:02 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/10/04 11:03:02 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/10/04 11:03:02 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/10/04 11:03:02 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/10/04 11:03:02 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/10/04 08:16:18 | 000,950,272 | ---- | C] () -- C:\Users\Dom\Desktop\RogueKiller.exe
[2013/10/04 08:15:10 | 000,000,512 | ---- | C] () -- C:\Users\Dom\Desktop\MBR.dat
[2013/10/01 09:46:40 | 000,025,600 | ---- | C] () -- C:\Windows\SysWow64\MediaDB.dll
[2013/10/01 09:11:08 | 000,706,560 | ---- | C] () -- C:\Windows\SysWow64\ContentDirectoryPresenter.dll
[2013/09/08 23:31:31 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll
[2013/09/08 23:16:01 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013/09/08 23:09:30 | 002,392,064 | ---- | C] () -- C:\Windows\SysWow64\videotrans.dll
[2013/07/23 19:18:54 | 000,046,592 | ---- | C] () -- C:\Windows\SysWow64\boost_thread-vc90-mt-1_47.dll
[2013/07/23 19:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\boost_date_time-vc90-mt-1_47.dll
[2013/07/23 19:18:42 | 000,704,000 | ---- | C] () -- C:\Windows\SysWow64\boost_regex-vc90-mt-1_47.dll
[2013/07/23 19:18:40 | 000,227,840 | ---- | C] () -- C:\Windows\SysWow64\boost_serialization-vc90-mt-1_47.dll
[2013/07/23 19:18:38 | 000,130,048 | ---- | C] () -- C:\Windows\SysWow64\boost_filesystem-vc90-mt-1_47.dll
[2013/07/23 19:18:38 | 000,012,800 | ---- | C] () -- C:\Windows\SysWow64\boost_system-vc90-mt-1_47.dll
[2012/10/18 06:04:11 | 000,111,932 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
[2012/10/18 06:04:11 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
[2012/10/18 06:04:11 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
[2012/10/18 06:04:11 | 000,026,154 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
[2012/10/18 06:04:11 | 000,024,903 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
[2012/10/18 06:04:11 | 000,021,390 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
[2012/10/18 06:04:11 | 000,020,148 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
[2012/10/18 06:04:11 | 000,011,811 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
[2012/10/18 06:04:11 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
[2012/10/18 06:04:11 | 000,001,146 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_DU.dat
[2012/10/18 06:04:11 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat
[2012/10/18 06:04:11 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat
[2012/10/18 06:04:11 | 000,001,136 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat
[2012/10/18 06:04:11 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat
[2012/10/18 06:04:11 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat
[2012/10/18 06:04:11 | 000,001,120 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_IT.dat
[2012/10/18 06:04:11 | 000,001,107 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_GE.dat
[2012/10/18 06:04:11 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat
[2012/10/18 06:04:11 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2012/02/15 12:45:46 | 000,013,082 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp DSP Effects.dat
[2012/02/15 12:45:41 | 004,022,504 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall.exe
[2012/02/15 12:45:41 | 000,017,950 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Music Converter.dat
[2012/02/04 01:43:57 | 000,103,272 | ---- | C] () -- C:\Users\Dom\GoToAssistDownloadHelper.exe
[2012/01/20 16:02:52 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2012/01/20 16:02:02 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2012/01/20 16:01:59 | 000,218,304 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2012/01/20 16:01:58 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012/01/20 16:01:57 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2012/01/20 16:01:56 | 013,903,872 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_89001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_49001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_33011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A0F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_14001461_61.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_13011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A0F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_09001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_08071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_060F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_07031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03131461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_8a.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_890F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_2B0f1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_29001461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_0B0f1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_090F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_180F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_18071461_aa.bin
[2012/01/20 15:22:52 | 000,000,376 | ---- | C] () -- C:\Windows\11317231_03131461_aa.bin

========== ZeroAccess Check ==========

[2009/07/14 17:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 15:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 14:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 14:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 16:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 14:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/10/31 00:41:13 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013/10/31 00:41:13 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2013/10/31 00:34:46 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Blio
[2013/10/31 00:34:46 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\calibre
[2013/10/31 00:34:47 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Canon
[2013/10/31 00:34:47 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\dBpoweramp
[2013/10/31 00:34:48 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Dropbox
[2013/10/31 00:34:48 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Fingertapps
[2013/10/31 00:34:49 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Leadertech
[2013/10/31 00:34:57 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Milestone
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\NETGATE Registry Cleaner
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Octane
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Omerta
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\OpenVPN Technologies
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\PCDr
[2013/10/31 00:35:02 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\redsn0w
[2013/10/31 00:35:03 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Research In Motion
[2013/07/09 17:57:30 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Samsung
[2013/10/31 00:35:05 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\tixati
[2013/10/31 00:35:06 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\TuneUp Software
[2013/10/31 00:35:06 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\ZinioReader4

========== Purity Check ==========



========== Custom Scans ==========

========== Base Services ==========
SRV:64bit: - [2009/07/14 14:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2013/02/27 18:47:10 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2009/07/14 14:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2010/11/21 16:23:51 | 000,849,920 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2010/11/21 16:24:00 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/07/14 14:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/14 14:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2012/07/05 11:13:27 | 000,136,704 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2013/07/09 18:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2013/07/09 17:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2010/11/21 16:24:01 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2010/11/21 16:24:00 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/21 16:24:09 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2011/03/03 19:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2009/07/14 14:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:64bit: - [2009/07/14 14:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/14 14:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:64bit: - [2009/07/14 14:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2010/11/21 16:23:48 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2009/07/14 14:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2009/07/14 14:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2009/07/14 14:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2009/07/14 14:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/14 14:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:64bit: - [2012/10/04 06:44:21 | 000,303,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2009/07/14 14:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2011/05/25 00:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2012/02/11 19:36:02 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:64bit: - [2009/07/14 14:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2010/11/21 16:24:17 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2010/11/21 16:24:01 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2010/11/21 16:24:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2009/07/14 14:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2010/11/21 16:23:48 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2010/11/21 16:23:55 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/21 16:24:03 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:64bit: - [2010/11/21 16:24:16 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2010/11/21 16:24:32 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/21 16:24:00 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/14 14:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2012/05/01 18:40:20 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2010/11/21 16:23:55 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2010/11/21 16:24:32 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2010/11/21 16:24:32 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2010/11/21 16:25:06 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:64bit: - [2013/05/27 18:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2010/11/21 16:23:55 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:64bit: - [2010/11/21 16:24:28 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2010/11/21 16:24:48 | 000,580,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2010/11/21 16:24:15 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/21 16:24:28 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/07/14 14:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2012/06/03 11:19:43 | 002,428,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2010/11/21 16:24:09 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/14 14:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2010/11/21 16:24:32 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >

< MD5 for: EXPLORER.EXE >
[2011/02/26 18:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2012/01/20 16:35:54 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\erdnt\cache86\explorer.exe
[2011/02/25 19:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 19:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 19:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/21 16:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/02/25 18:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 18:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/21 16:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: SERVICES >
[2009/06/11 10:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\$INPLACE.~TR\Machine\DATA\Windows\System32\drivers\etc\services
[2009/06/11 10:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services

< MD5 for: SERVICES.ASFX >
[2012/04/04 18:54:08 | 000,002,637 | ---- | M] () MD5=016DFC4F3F133AE19338EECD1924886A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ro_RO\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,970 | ---- | M] () MD5=05A68D76420994EF8DF33184BFA98E04 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\uk_UA\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,555 | ---- | M] () MD5=272301585AC133486E70228DA27659AC -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\zh_TW\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,562 | ---- | M] () MD5=27CE9BD3209B549BB776B8C877455A91 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\nb_NO\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,632 | ---- | M] () MD5=2998A4AE8D0EF5122CCB985CF7E9D9D3 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ko_KR\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,545 | ---- | M] () MD5=2EEC9DDBD0B4EE5F65532322C383938A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\zh_CN\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,629 | ---- | M] () MD5=3A0082D76426A87FB4937D426C491C10 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\cs_CZ\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,590 | ---- | M] () MD5=448953BD0CF26CE03D9E7CC1A7B278BC -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\tr_TR\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,605 | ---- | M] () MD5=5A2C5D0DA3EAAB2AA77F16947D0E14FF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\it_IT\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,679 | ---- | M] () MD5=5DD2704563A6A79C466E44CD966B2655 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\hu_HU\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,711 | ---- | M] () MD5=6B0E7B068BD530B8FCEBC04CC8844AA9 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ja_JP\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,582 | ---- | M] () MD5=797FC263D59784AD1498560C34FA7DA1 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sl_SI\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,626 | ---- | M] () MD5=8073B18DC740B965256CE0957E363AC5 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\fr_FR\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,634 | ---- | M] () MD5=912DD5C0C7C8D7572AD598414D56E24A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\pt_BR\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,655 | ---- | M] () MD5=ABFBB9D0398492D849690C344C1316BB -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\de_DE\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,638 | ---- | M] () MD5=C2C37202B0E55877A64ADDBDE738284E -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sk_SK\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,589 | ---- | M] () MD5=C313AD3602D4965A1918E86B9F3E84CF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\pl_PL\Services\Services.asfx
[2012/04/04 18:54:10 | 000,002,609 | ---- | M] () MD5=C7FA88C21103C70826F274A0E865AEDF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ca_ES\Services\Services.asfx
[2012/04/04 18:54:10 | 000,002,576 | ---- | M] () MD5=D27D52045EB6A2EE031F7D2EA0349BC3 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\eu_ES\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,560 | ---- | M] () MD5=D5642B1BFE0A70231D14C11D3D3FD60D -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\da_DK\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,588 | ---- | M] () MD5=DB216743CDE75637621E2FD39431BBD4 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\hr_HR\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,620 | ---- | M] () MD5=DCF7A8843832327386B81ABD189AC236 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\es_ES\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,997 | ---- | M] () MD5=DD3F4DAF426555D8D85FF4D7C5A04F37 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ru_RU\Services\Services.asfx
[2010/11/16 16:02:32 | 000,000,228 | R--- | M] () MD5=E09422BE0C7636A7B63A1527C4C1372D -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx
[2012/04/04 18:54:02 | 000,002,599 | ---- | M] () MD5=F09D769A94767C3C7E7015A5C6C99A39 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\fi_FI\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,628 | ---- | M] () MD5=F844D742DB53C7D671BF7ED6517414D1 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\nl_NL\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,582 | ---- | M] () MD5=FED4BDA3B6A9EB9DB59C254D8C987495 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sv_SE\Services\Services.asfx

< MD5 for: SERVICES.ASFX1 >
[2010/11/16 16:02:32 | 000,000,228 | R--- | M] () MD5=A7B7A4CC1A717292474115CD3A4AC121 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx1

< MD5 for: SERVICES.ASFX10 >
[2010/11/16 16:02:34 | 000,000,233 | R--- | M] () MD5=3382FAB54FC906B0E40269D903A8D690 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx10

< MD5 for: SERVICES.ASFX11 >
[2010/11/16 16:02:26 | 000,000,227 | R--- | M] () MD5=F36865AB3B9813962B7EDBE66FA1C28A -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx11

< MD5 for: SERVICES.ASFX12 >
[2010/11/16 16:02:30 | 000,000,225 | R--- | M] () MD5=9287C7268CC0F37F1DDE18CEBB128685 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx12

< MD5 for: SERVICES.ASFX13 >
[2010/11/16 16:02:30 | 000,000,228 | R--- | M] () MD5=95326C46AC2654AFF5C8543DFE22CCB3 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx13

< MD5 for: SERVICES.ASFX14 >
[2010/11/16 16:02:26 | 000,000,228 | R--- | M] () MD5=14DA84ECAF57B5ADA36B9093FF04CF32 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx14

< MD5 for: SERVICES.ASFX15 >
[2010/11/16 16:02:26 | 000,000,231 | R--- | M] () MD5=CF94F061685A38BABE0BBD463191EDE7 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx15

< MD5 for: SERVICES.ASFX16 >
[2010/11/16 16:02:34 | 000,000,232 | R--- | M] () MD5=B6E63D87C73CED2D6B433C542C5C3965 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx16

< MD5 for: SERVICES.ASFX17 >
[2010/11/16 16:02:34 | 000,000,230 | R--- | M] () MD5=545E97C4F4CEA743A8D86B685EE2EDBB -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx17

< MD5 for: SERVICES.ASFX18 >
[2010/11/16 16:02:24 | 000,000,230 | R--- | M] () MD5=2577B66F38E0DEA25F328DA4A0FED322 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx18

< MD5 for: SERVICES.ASFX19 >
[2010/11/16 16:02:26 | 000,000,225 | R--- | M] () MD5=0A27F1D6595A69800A43CDE155B1E4A0 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx19

< MD5 for: SERVICES.ASFX2 >
[2010/11/16 16:02:36 | 000,000,264 | R--- | M] () MD5=0652D24D4E2799851A6DF1705E2BFFDA -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx2

< MD5 for: SERVICES.ASFX20 >
[2010/11/16 16:02:38 | 000,000,231 | R--- | M] () MD5=C85F2519DC6AECF93F67AA613A320136 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx20

< MD5 for: SERVICES.ASFX21 >
[2010/11/16 16:02:26 | 000,000,231 | R--- | M] () MD5=8C95C0528EA7049A1DFC7A7342461D75 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx21

< MD5 for: SERVICES.ASFX22 >
[2010/11/16 16:02:24 | 000,000,231 | R--- | M] () MD5=9F2731666F5771CC5C1E4EEDC8FB8607 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx22

< MD5 for: SERVICES.ASFX23 >
[2010/11/16 16:02:26 | 000,000,225 | R--- | M] () MD5=0E89BE53F56B22390CF61584B649CE01 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx23

< MD5 for: SERVICES.ASFX24 >
[2010/11/16 16:02:32 | 000,000,229 | R--- | M] () MD5=E57594DB9B9D78AB4B53D34CAFEB8497 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx24

< MD5 for: SERVICES.ASFX25 >
[2010/11/16 16:02:36 | 000,000,232 | R--- | M] () MD5=611CB9CC21D2DDAD711690671F70EF39 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx25

< MD5 for: SERVICES.ASFX3 >
[2010/11/16 16:02:34 | 000,000,229 | R--- | M] () MD5=F9824728970AC8199BABDC9CBA5E038C -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx3

< MD5 for: SERVICES.ASFX4 >
[2010/11/16 16:02:26 | 000,000,226 | R--- | M] () MD5=55EA57D90AE22BDF0132597EF0D7C9C7 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx4

< MD5 for: SERVICES.ASFX5 >
[2010/11/16 16:02:34 | 000,000,233 | R--- | M] () MD5=846C265B751189E88B74F0155DB6B828 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx5

< MD5 for: SERVICES.ASFX6 >
[2010/11/16 16:02:36 | 000,000,231 | R--- | M] () MD5=89BD37C4118540FD5AA8CDD0C24D6C0A -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx6

< MD5 for: SERVICES.ASFX7 >
[2010/11/16 16:02:34 | 000,000,245 | R--- | M] () MD5=0B82FAB8FF5F988C5311DF1144A7D740 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx7

< MD5 for: SERVICES.ASFX8 >
[2010/11/16 16:02:34 | 000,000,231 | R--- | M] () MD5=5226417D3C8206000A8983BDC1243075 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx8

< MD5 for: SERVICES.ASFX9 >
[2010/11/16 16:02:30 | 000,000,234 | R--- | M] () MD5=EBD8D036504F2935675F5F432F076DBA -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx9

< MD5 for: SERVICES.CFG >
[2013/05/10 20:57:30 | 000,558,879 | ---- | M] () MD5=3679F8D3253DC110D1D8F2AE115EE00C -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Services\Services.cfg
[2010/11/16 16:02:22 | 000,032,633 | R--- | M] () MD5=EA1C35DD541D60819D55482130BD585D -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.cfg

< MD5 for: SERVICES.EXE >
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\erdnt\cache64\services.exe
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2011/04/12 21:17:17 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2011/04/12 21:17:17 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/14 17:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/14 17:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/11 09:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/11 09:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof

< MD5 for: SERVICES.MSC >
[2011/04/12 21:17:16 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/11 09:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2011/04/12 21:17:18 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/11 10:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2011/04/12 21:17:16 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/11 09:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2011/04/12 21:17:18 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/11 10:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PNG >
[2013/05/03 19:21:28 | 000,001,509 | ---- | M] () MD5=F4EC3ABEAE15FA9BB42D721E9D543F44 -- C:\Program Files\My Dell\images\icons\png\24_24\services.png

< MD5 for: SERVICES.PTXML >
[2009/07/14 09:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/14 09:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml

< MD5 for: SERVICES.SBS >
[2013/07/16 14:21:30 | 000,034,818 | ---- | M] () MD5=E2ACBC77020C8D5CE97CA61D0D859A44 -- C:\Program Files (x86)\Spybot - Search & Destroy\Includes\Services.sbs

< MD5 for: SERVICES.WHM >
[2008/11/10 08:49:56 | 000,003,678 | ---- | M] () MD5=78C07607AD198E5769746185F8EF2D78 -- C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\pc\html\www.craplist.net\services.whm

< MD5 for: SVCHOST.EXE >
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2013/04/05 02:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache86\userinit.exe
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\erdnt\cache64\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\erdnt\cache64\winlogon.exe
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2013/04/05 02:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< C:\Windows\assembly\tmp\U\*.* /s >
[2009/07/14 18:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 18:08:49 | 000,005,846 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/01/31 01:39:07 | 000,000,888 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012/01/31 01:39:07 | 000,000,892 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012/03/30 11:17:05 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< C:\Program Files\Common Files\ComObjects\*.* /s >

< C:\windows\*. /RP /s >

< dir C:\ /S /A:L /C >
Volume in drive C is OS
Volume Serial Number is D05A-98DF
Directory of C:\
14/07/2009 18:08 <JUNCTION> Documents and Settings [C:\Users]
0 File(s) 0 bytes
Directory of C:\ProgramData
14/07/2009 18:08 <JUNCTION> Application Data [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 18:08 <JUNCTION> Documents [C:\Users\Public\Documents]
14/07/2009 18:08 <JUNCTION> Favorites [C:\Users\Public\Favorites]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users
14/07/2009 18:08 <SYMLINKD> All Users [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Default User [C:\Users\Default]
0 File(s) 0 bytes
Directory of C:\Users\All Users
14/07/2009 18:08 <JUNCTION> Application Data [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 18:08 <JUNCTION> Documents [C:\Users\Public\Documents]
14/07/2009 18:08 <JUNCTION> Favorites [C:\Users\Public\Favorites]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default
14/07/2009 18:08 <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
14/07/2009 18:08 <JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
14/07/2009 18:08 <JUNCTION> My Documents [C:\Users\Default\Documents]
14/07/2009 18:08 <JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
14/07/2009 18:08 <JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
14/07/2009 18:08 <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
14/07/2009 18:08 <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default\AppData\Local
14/07/2009 18:08 <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
14/07/2009 18:08 <JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
14/07/2009 18:08 <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Default\Documents
14/07/2009 18:08 <JUNCTION> My Music [C:\Users\Default\Music]
14/07/2009 18:08 <JUNCTION> My Pictures [C:\Users\Default\Pictures]
14/07/2009 18:08 <JUNCTION> My Videos [C:\Users\Default\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Dom
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\Dom\AppData\Roaming]
30/10/2013 23:51 <JUNCTION> Cookies [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Cookies]
30/10/2013 23:51 <JUNCTION> Local Settings [C:\Users\Dom\AppData\Local]
30/10/2013 23:51 <JUNCTION> My Documents [C:\Users\Dom\Documents]
30/10/2013 23:51 <JUNCTION> NetHood [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
30/10/2013 23:51 <JUNCTION> PrintHood [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
30/10/2013 23:51 <JUNCTION> Recent [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Recent]
30/10/2013 23:51 <JUNCTION> SendTo [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\SendTo]
30/10/2013 23:51 <JUNCTION> Start Menu [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu]
30/10/2013 23:51 <JUNCTION> Templates [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Dom\AppData\Local
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\Dom\AppData\Local]
30/10/2013 23:51 <JUNCTION> History [C:\Users\Dom\AppData\Local\Microsoft\Windows\History]
30/10/2013 23:51 <JUNCTION> Temporary Internet Files [C:\Users\Dom\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Dom\Documents
30/10/2013 23:51 <JUNCTION> My Music [C:\Users\Dom\Music]
30/10/2013 23:51 <JUNCTION> My Pictures [C:\Users\Dom\Pictures]
30/10/2013 23:51 <JUNCTION> My Videos [C:\Users\Dom\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Public\Documents
14/07/2009 18:08 <JUNCTION> My Music [C:\Users\Public\Music]
14/07/2009 18:08 <JUNCTION> My Pictures [C:\Users\Public\Pictures]
14/07/2009 18:08 <JUNCTION> My Videos [C:\Users\Public\Videos]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Roaming]
30/10/2013 23:51 <JUNCTION> Cookies [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Cookies]
30/10/2013 23:51 <JUNCTION> Local Settings [C:\Users\UpdatusUser\AppData\Local]
30/10/2013 23:51 <JUNCTION> My Documents [C:\Users\UpdatusUser\Documents]
30/10/2013 23:51 <JUNCTION> NetHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
30/10/2013 23:51 <JUNCTION> PrintHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
30/10/2013 23:51 <JUNCTION> Recent [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Recent]
30/10/2013 23:51 <JUNCTION> SendTo [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\SendTo]
30/10/2013 23:51 <JUNCTION> Start Menu [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu]
30/10/2013 23:51 <JUNCTION> Templates [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser\AppData\Local
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Local]
30/10/2013 23:51 <JUNCTION> History [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\History]
30/10/2013 23:51 <JUNCTION> Temporary Internet Files [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser\Documents
30/10/2013 23:51 <JUNCTION> My Music [C:\Users\UpdatusUser\Music]
30/10/2013 23:51 <JUNCTION> My Pictures [C:\Users\UpdatusUser\Pictures]
30/10/2013 23:51 <JUNCTION> My Videos [C:\Users\UpdatusUser\Videos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
65 Dir(s) 28,493,475,840 bytes free

< End of report >
  • 0

Advertisements

#71
Dom2276
Posted 01 November 2013 - 10:04 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
RogueKiller V8.7.6 _x64_ [Oct 28 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Dom [Admin rights]
Mode : Scan -- Date : 11/02/2013 00:56:15
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 1 ¤¤¤
[FF][PROXY] tyh94w6u.default : user_pref("network.proxy.type", ""); -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


ÿ₫1

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9750420AS +++++
--- User ---
[MBR] 578fcd808a47353b1fc6e9e2d7ef4c92
[BSP] 0d9bdc844c4d286fe0b40717de6e9b3f : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 101 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 212992 | Size: 20000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 41172992 | Size: 695299 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_S_11022013_005615.txt >>
RKreport[0]_D_10052013_095502.txt;RKreport[0]_S_10052013_095420.txt;RKreport[0]_S_10052013_100118.txt


RogueKiller V8.7.6 _x64_ [Oct 28 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Dom [Admin rights]
Mode : Remove -- Date : 11/02/2013 00:57:19
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 1 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


ÿ₫1

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9750420AS +++++
--- User ---
[MBR] 578fcd808a47353b1fc6e9e2d7ef4c92
[BSP] 0d9bdc844c4d286fe0b40717de6e9b3f : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 101 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 212992 | Size: 20000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 41172992 | Size: 695299 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_11022013_005719.txt >>
RKreport[0]_D_10052013_095502.txt;RKreport[0]_S_10052013_095420.txt;RKreport[0]_S_10052013_100118.txt
RKreport[0]_S_11022013_005615.txt



RogueKiller V8.7.6 _x64_ [Oct 28 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Dom [Admin rights]
Mode : Shortcuts HJfix -- Date : 11/02/2013 00:57:45
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ File attributes restored: ¤¤¤
Desktop: Success 0 / Fail 0
Quick launch: Success 0 / Fail 0
Programs: Success 0 / Fail 0
Start menu: Success 0 / Fail 0
User folder: Success 8 / Fail 0
My documents: Success 1 / Fail 1
My favorites: Success 0 / Fail 0
My pictures: Success 0 / Fail 0
My music: Success 2 / Fail 0
My videos: Success 111 / Fail 0
Local drives: Success 0 / Fail 0
Backup: [NOT FOUND]

Drives:
[C:] \Device\HarddiskVolume3 -- 0x3 --> Restored
[D:] \Device\CdRom0 -- 0x5 --> Skipped

¤¤¤ Infection : ¤¤¤

Finished : << RKreport[0]_SC_11022013_005745.txt >>
RKreport[0]_D_10052013_095502.txt;RKreport[0]_D_11022013_005719.txt;RKreport[0]_S_10052013_095420.txt
RKreport[0]_S_10052013_100118.txt;RKreport[0]_S_11022013_005615.txt
  • 0

#72
Dom2276
Posted 01 November 2013 - 10:12 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Sorry I have to attach the TDSSKiller log, its too big to post.

Attached Files


  • 0

#73
CompCav
Posted 02 November 2013 - 05:52 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Step 1

OTL Fix

  • Please reopen Posted Image on your desktop by right clicking and selection Run as administrator.
  • Copy and Paste the following code into the Posted Image textbox.

    :OTL
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.socks_remote_dns: true
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll File not found
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll File not found
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll File not found
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk = File not found
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
[2013/10/09 03:38:20 | 000,000,000 | ---D | C] -- C:\b0e2a13b6c8a2e5070
[2013/10/08 03:10:33 | 000,000,000 | ---D | C] -- C:\436bb64a31e12a643421a2bd
[2013/10/08 02:44:04 | 000,000,000 | ---D | C] -- C:\887bdde0a9ebda26f6
[2013/10/07 18:30:27 | 000,000,000 | ---D | C] -- C:\3a9158e0bcd8f139b354a0
[2013/10/07 12:34:19 | 000,000,000 | ---D | C] -- C:\ae6a10a29e7ca916a3f751ca03d004
[2013/10/07 12:13:28 | 000,000,000 | ---D | C] -- C:\c8032304224819e47e
[2013/10/07 10:46:20 | 000,000,000 | ---D | C] -- C:\f1af4fe9d2d023efc787
[2013/10/07 10:10:19 | 000,000,000 | ---D | C] -- C:\6e3b331e9e902ac912e83cbfbb8881
[2013/10/07 07:43:11 | 000,000,000 | ---D | C] -- C:\bb76aaa282d58f79b761b71e
[2013/10/06 22:05:40 | 000,000,000 | ---D | C] -- C:\1a363c867f2e0588ae69ed
[2013/10/06 03:11:25 | 000,000,000 | ---D | C] -- C:\66b32302be14bf726ecdd485546d34
[2013/10/05 12:55:57 | 000,000,000 | ---D | C] -- C:\f3573ff8e47bcf24d2f125a8
[2013/10/05 10:18:08 | 000,000,000 | ---D | C] -- C:\9dbde98d18b8b01ba48d4e6f6acb
[2013/10/04 13:09:44 | 000,000,000 | ---D | C] -- C:\5a0e81db22e4d3bd6052e7
[2013/10/04 12:27:30 | 000,000,000 | ---D | C] -- C:\b0d11e1ca66fa3ed5e
[2013/10/04 11:29:59 | 000,000,000 | ---D | C] -- C:\a22a4bab0742e18a6f37a1
[2013/10/04 07:58:26 | 000,000,000 | ---D | C] -- C:\f4f0ab7db8afa1adb9ef748c34
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\PCDr
[2013/10/31 00:41:13 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013/10/31 00:41:13 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2013/10/31 00:35:06 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\TuneUp Software


:files
ipconfig /flushdns /c
c:\programdata\PCDr\6308\AddOnDownloaded
c:\users\Dom\AppData\Local\Temp\_MEI44682
:reg


:Commands
[purity]
[resethosts]
[emptyjava]
[emptyflash]
[createrestorepoint]
  • Push Posted Image
  • OTL may ask to reboot the machine. Please do so if asked.
  • Click the OK button.
  • A report will open. Copy and Paste that report in your next reply.
  • If the machine reboots, the log will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, where mmddyyyy_hhmmss is the date and the time of the tool run.


Step 2

Please download Farbar Recovery Scan Tool, 64 bit version, and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.


Step 3

Please post:

OTL fix log
FRST.txt
Addition.txt
  • 0

#74
Dom2276
Posted 02 November 2013 - 09:16 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Fix Log

========== OTL ==========


Prefs.js: "*.local" removed from network.proxy.no_proxies_on
Prefs.js: true removed from network.proxy.socks_remote_dns
Prefs.js: 0 removed from network.proxy.type
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2\ not found.
File C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
File move failed. C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk scheduled to be moved on reboot.
File move failed. C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk scheduled to be moved on reboot.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ not found.
Registry key HKEY_USERS\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-21-2560220840-281653925-362234918-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Folder C:\b0e2a13b6c8a2e5070\ not found.
Folder C:\436bb64a31e12a643421a2bd\ not found.
Folder C:\887bdde0a9ebda26f6\ not found.
Folder C:\3a9158e0bcd8f139b354a0\ not found.
Folder C:\ae6a10a29e7ca916a3f751ca03d004\ not found.
Folder C:\c8032304224819e47e\ not found.
Folder C:\f1af4fe9d2d023efc787\ not found.
Folder C:\6e3b331e9e902ac912e83cbfbb8881\ not found.
Folder C:\bb76aaa282d58f79b761b71e\ not found.
Folder C:\1a363c867f2e0588ae69ed\ not found.
Folder C:\66b32302be14bf726ecdd485546d34\ not found.
Folder C:\f3573ff8e47bcf24d2f125a8\ not found.
Folder C:\9dbde98d18b8b01ba48d4e6f6acb\ not found.
Folder C:\5a0e81db22e4d3bd6052e7\ not found.
Folder C:\b0d11e1ca66fa3ed5e\ not found.
Folder C:\a22a4bab0742e18a6f37a1\ not found.
Folder C:\f4f0ab7db8afa1adb9ef748c34\ not found.
Folder C:\Users\Dom\AppData\Roaming\PCDr\ not found.
Folder C:\Users\Default\AppData\Roaming\TuneUp Software\ not found.
Folder C:\Users\Default User\AppData\Roaming\TuneUp Software\ not found.
Folder C:\Users\Dom\AppData\Roaming\TuneUp Software\ not found.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Dom\Desktop\cmd.bat deleted successfully.
C:\Users\Dom\Desktop\cmd.txt deleted successfully.
File\Folder c:\programdata\PCDr\6308\AddOnDownloaded not found.
File\Folder c:\users\Dom\AppData\Local\Temp\_MEI44682 not found.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Dom
->Java cache emptied: 0 bytes

User: Public

User: UpdatusUser

Total Java Files Cleaned = 0.00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Dom
->Flash cache emptied: 1819 bytes

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 11032013_160833

Files\Folders moved on Reboot...
File\Folder C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk not found!
File\Folder C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • 0

#75
Dom2276
Posted 02 November 2013 - 09:26 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Farbar log

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Dom (administrator) on DOM-PC on 03-11-2013 16:18:06
Running from C:\Users\Dom\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Adobe Systems Incorporated) c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Mediafour Corporation) C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE
(Mediafour Corporation) C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe
(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
() C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
() C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Primax Electronics Ltd.) C:\Windows\System32\ICO.EXE
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
(cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
(Panasonic Corporation) C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\IEXPLORE.EXE
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6611048 2011-02-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2188904 2011-01-19] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2531624 2010-12-18] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE [767312 2009-03-18] (CANON INC.)
HKLM\...\Run: [FreeFallProtection] - C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2010-12-18] ()
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-11-02] (Intel® Corporation)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-30] ()
HKLM\...\Run: [Mouse Suite 98 Daemon] - C:\Windows\System32\ICO.EXE [90624 2006-09-29] (Primax Electronics Ltd.)
HKLM\...\Run: [Start WingMan Profiler] - C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-15] (Logitech Inc.)
HKLM\...\Run: [Samsung Link] - C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [597576 2013-10-17] (Copyright 2013 SAMSUNG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [AppleIEDAV] - C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1315144 2013-09-05] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-09-16] (Apple Inc.)
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files (x86)\Google\Drive\googledrivesync.exe [20133824 2013-09-25] (Google)
HKCU\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-01-31] (Google Inc.)
HKLM-x32\...\Run: [AccuWeatherWidget] - C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj [2835443 2012-02-02] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [37960 2013-05-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-22] (Apple Inc.)
HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-03] (cyberlink)
HKLM-x32\...\Run: [CanonQuickMenu] - C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-04] (CANON INC.)
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-26] (Dell, Inc.)
HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-14] (Creative Technology Ltd)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-18] ()
HKLM-x32\...\Run: [IJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [136544 2009-05-20] (CANON INC.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] - C:\Program Files (x86)\Cyberlink\PowerDVD9\Language\Language.exe [50472 2010-09-18] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl9] - C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-02] (CyberLink Corp.)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [90448 2011-11-02] (Research In Motion Limited)
HKLM-x32\...\Run: [RoxWatchTray] - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-26] (Sonic Solutions)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-08] (Elaborate Bytes AG)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4908592 2013-10-07] (AVG Technologies CZ, s.r.o.)
HKU\UpdatusUser\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516096 2010-11-21] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [247144 2012-10-09] (NVIDIA Corporation)
Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk
ShortcutTarget: Intel® Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.nz/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = ${SEARCH_URL}{searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "socks_remote_dns", ""
FF NetworkProxy: "type", ""
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: samsung.com/SamsungLinkPCPlugin - C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF Plugin HKCU: samsung.com/SamsungLinkPCPlugin - C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Extension: FoxyProxy Basic - C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\Extensions\[email protected]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK

Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.70.11) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.4_0
CHR Extension: (Google Drive) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Gmail) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe [404360 2013-10-01] (Samsung)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3538480 2013-10-03] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [301152 2013-09-25] (AVG Technologies CZ, s.r.o.)
S2 CLKMSVC10_9EC60124; c:\Program Files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe [247768 2013-04-03] (CyberLink)
R2 M4LIC; C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE [205312 2009-07-29] (Mediafour Corporation)
R2 MacDrive8Service; C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe [218112 2010-01-07] (Mediafour Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-11-02] ()
R2 NGRegClnSrv; C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe [618832 2013-02-21] (NETGATE Technologies s.r.o.)
R2 OpenVPNAccessClient; C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [24064 2010-08-13] ()
R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [605768 2013-10-17] (Copyright 2013 SAMSUNG)

==================== Drivers (Whitelisted) ====================

R3 AVer7231_x64; C:\Windows\System32\DRIVERS\AVer7231_x64.sys [1799808 2010-06-11] (AVerMedia TECHNOLOGIES, Inc.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [148792 2013-09-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [241464 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192824 2013-09-02] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-08-20] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-08] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 CBDisk; C:\Windows\system32\drivers\CBDisk.sys [70344 2010-01-14] (EldoS Corporation)
S3 hitmanpro36; C:\Windows\system32\drivers\hitmanpro36.sys [30496 2012-06-30] ()
R0 MDFSYSNT; C:\Windows\System32\Drivers\MDFSYSNT.sys [304232 2010-02-04] (Mediafour Corporation)
R0 MDPMGRNT; C:\Windows\System32\DRIVERS\MDPMGRNT.SYS [32352 2009-09-24] (Mediafour Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-19] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-19] (Microsoft Corporation)
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [284008 2012-10-09] (NVIDIA Corporation)
S3 NvStUSB; C:\Windows\system32\drivers\nvstusb.sys [121960 2010-12-13] ()
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-03 16:17 - 2013-11-03 16:17 - 01957098 _____ (Farbar) C:\Users\Dom\Desktop\FRST64.exe
2013-11-03 16:17 - 2013-11-03 16:17 - 00000000 ____D C:\FRST
2013-11-02 01:00 - 2013-11-02 01:00 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\Dom\Desktop\tdsskiller.exe
2013-11-02 00:52 - 2013-11-02 00:52 - 04012032 _____ C:\Users\Dom\Desktop\RogueKillerX64.exe
2013-10-31 23:09 - 2012-08-24 03:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-10-31 23:09 - 2012-08-24 03:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-10-31 23:09 - 2012-08-24 03:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-10-31 23:09 - 2012-08-24 03:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-10-31 23:09 - 2012-08-24 02:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-10-31 23:09 - 2012-08-24 02:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-10-31 23:09 - 2012-08-24 02:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-31 23:09 - 2012-08-24 02:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-31 23:09 - 2012-08-24 02:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-31 23:09 - 2012-08-24 02:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-10-31 23:09 - 2012-08-24 02:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-31 23:09 - 2012-08-24 02:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-10-31 23:09 - 2012-08-24 02:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-31 23:09 - 2012-08-24 01:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-31 23:09 - 2012-08-24 00:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-10-31 23:09 - 2012-08-24 00:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-31 23:09 - 2012-08-24 00:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-10-31 23:09 - 2012-08-24 00:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-10-31 23:09 - 2012-08-23 23:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-31 23:09 - 2012-08-23 23:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-10-31 23:09 - 2012-08-23 23:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-31 23:09 - 2012-08-23 23:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-31 23:09 - 2012-08-23 22:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-10-31 23:09 - 2012-08-23 21:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-31 23:09 - 2012-08-23 21:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-31 23:00 - 2012-08-25 07:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-31 23:00 - 2012-08-25 07:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-31 23:00 - 2012-08-25 07:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-31 23:00 - 2012-08-25 07:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-31 23:00 - 2012-08-25 05:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-31 23:00 - 2012-08-25 05:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-31 23:00 - 2012-08-25 05:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-31 23:00 - 2012-05-05 00:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-31 23:00 - 2012-05-04 22:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-31 22:57 - 2013-10-31 22:57 - 00000967 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-10-31 22:57 - 2013-10-31 22:57 - 00000000 ____D C:\Users\Dom\AppData\Roaming\AVG2014
2013-10-31 22:56 - 2013-10-31 22:57 - 00000000 ____D C:\ProgramData\AVG2014
2013-10-31 22:56 - 2013-10-31 22:56 - 00000000 ____D C:\$AVG
2013-10-31 22:55 - 2013-10-31 22:55 - 00000000 ____D C:\Program Files (x86)\AVG
2013-10-31 22:53 - 2013-11-03 16:16 - 00000000 ____D C:\ProgramData\MFAData
2013-10-31 22:53 - 2013-10-31 22:57 - 00000000 ____D C:\Users\Dom\AppData\Local\Avg2014
2013-10-31 22:53 - 2013-10-31 22:53 - 00000000 ____D C:\Users\Dom\AppData\Local\MFAData
2013-10-31 22:32 - 2013-10-31 22:32 - 00756776 _____ (Microsoft Corporation) C:\Users\Dom\Downloads\OneCareCleanup (1).exe
2013-10-31 20:47 - 2013-11-03 16:07 - 00000438 ____H C:\Windows\Tasks\Windows Backup and Restore Center.job
2013-10-31 20:47 - 2013-10-31 20:47 - 00003382 _____ C:\Windows\System32\Tasks\Windows Backup and Restore Center
2013-10-31 20:43 - 2013-10-31 01:12 - 00000000 ____D C:\Windows\Panther
2013-10-31 20:36 - 2013-10-31 20:36 - 00262144 _____ C:\Windows\system32\config\userdiff
2013-10-31 20:24 - 2013-10-31 00:50 - 00000000 ____D C:\$WINDOWS.~Q
2013-10-31 20:04 - 2013-10-31 20:15 - 00000000 ____D C:\$INPLACE.~TR
2013-10-31 19:19 - 2013-10-31 19:19 - 00040921 _____ C:\ComboFix.txt 2.txt
2013-10-31 19:18 - 2013-10-31 19:18 - 00040921 _____ C:\ComboFix.txt
2013-10-31 18:25 - 2013-10-31 18:25 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-31 18:25 - 2013-10-31 18:25 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-31 18:25 - 2013-10-31 18:25 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-31 18:25 - 2013-10-31 18:25 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-31 18:25 - 2013-10-31 18:25 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-31 18:25 - 2013-10-31 18:25 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-31 18:25 - 2013-10-31 18:25 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-31 18:25 - 2013-10-31 18:25 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-31 18:25 - 2013-10-31 18:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-31 18:25 - 2013-10-31 18:25 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-31 18:25 - 2013-10-31 18:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-31 13:59 - 2013-04-17 20:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-31 13:59 - 2013-04-17 19:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-31 13:03 - 2013-10-31 13:03 - 00000000 ____D C:\Users\Dom\New folder
2013-10-31 12:58 - 2013-10-31 12:59 - 00000000 ____D C:\WINSSLog
2013-10-31 12:57 - 2013-10-31 12:57 - 00756776 _____ (Microsoft Corporation) C:\Users\Dom\Downloads\OneCareCleanup.exe
2013-10-31 10:47 - 2013-01-14 10:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-31 10:47 - 2013-01-14 09:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-31 10:47 - 2013-01-14 09:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-31 10:47 - 2013-01-14 09:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-31 10:47 - 2013-01-14 08:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-31 10:47 - 2013-01-14 08:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-31 10:47 - 2013-01-14 08:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-31 10:47 - 2013-01-14 08:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-31 10:47 - 2013-01-14 08:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-31 10:47 - 2013-01-14 08:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-31 10:47 - 2013-01-14 08:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-31 10:47 - 2013-01-14 08:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-31 10:47 - 2013-01-14 08:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-31 10:47 - 2013-01-14 08:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-31 10:47 - 2013-01-14 08:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-31 10:47 - 2013-01-14 08:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-31 10:47 - 2013-01-14 08:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-31 10:47 - 2013-01-14 08:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-31 10:47 - 2013-01-14 08:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-31 10:47 - 2013-01-14 08:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-31 10:47 - 2013-01-14 08:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-31 10:47 - 2013-01-14 08:10 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-31 10:47 - 2013-01-14 08:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-31 10:47 - 2013-01-14 07:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-31 10:47 - 2013-01-14 07:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-31 10:47 - 2013-01-14 07:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-31 10:47 - 2013-01-14 06:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-31 10:47 - 2013-01-14 06:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-31 10:47 - 2013-01-04 19:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-31 10:47 - 2013-01-04 19:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-31 10:46 - 2013-09-05 01:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-31 03:48 - 2013-02-27 19:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-10-31 03:48 - 2013-02-27 18:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-31 03:48 - 2013-02-27 18:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-10-31 03:48 - 2013-02-27 17:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-10-31 03:48 - 2011-06-16 18:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-10-31 03:48 - 2011-06-16 17:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-10-31 03:48 - 2011-05-04 18:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-10-31 03:48 - 2011-05-04 18:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-10-31 03:48 - 2011-05-04 18:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-10-31 03:48 - 2011-05-04 18:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-10-31 03:48 - 2011-05-04 17:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-10-31 03:48 - 2011-05-04 17:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-10-31 03:48 - 2011-05-04 17:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-10-31 03:48 - 2011-05-04 17:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-10-31 03:48 - 2010-12-23 23:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-10-31 03:48 - 2010-12-23 23:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-10-31 03:48 - 2010-12-23 23:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-10-31 03:48 - 2010-12-23 18:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-10-31 03:48 - 2010-12-23 18:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-10-31 03:48 - 2010-12-23 18:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-10-31 03:47 - 2013-07-09 18:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-31 03:47 - 2013-07-09 18:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-31 03:47 - 2013-07-09 18:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-31 03:47 - 2013-07-09 18:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-31 03:47 - 2013-07-09 17:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-31 03:47 - 2013-07-09 17:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-31 03:47 - 2013-07-09 17:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-31 03:47 - 2013-07-09 17:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-31 03:47 - 2013-07-05 01:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-31 03:47 - 2013-07-05 00:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-31 03:47 - 2013-04-13 03:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-31 03:47 - 2013-03-19 18:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-31 03:47 - 2013-03-19 18:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-31 03:47 - 2012-10-10 07:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-10-31 03:47 - 2012-10-10 07:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-10-31 03:47 - 2012-10-10 06:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-10-31 03:47 - 2012-10-10 06:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-10-31 03:47 - 2012-01-04 23:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-10-31 03:47 - 2012-01-04 21:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-10-31 03:47 - 2011-11-17 19:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-10-31 03:47 - 2011-11-17 18:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-10-31 03:47 - 2011-10-26 18:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-10-31 03:47 - 2011-10-26 17:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-10-31 03:47 - 2011-07-09 15:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-10-31 03:47 - 2011-06-15 23:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-10-31 03:47 - 2011-06-15 23:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-31 03:47 - 2011-06-15 23:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-10-31 03:47 - 2011-06-15 23:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-10-31 03:47 - 2011-04-27 15:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-10-31 03:47 - 2011-04-27 15:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-10-31 03:47 - 2011-04-09 19:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-10-31 03:47 - 2011-04-09 18:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-10-31 03:47 - 2011-02-25 19:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-10-31 03:47 - 2011-02-25 18:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-10-31 03:40 - 2011-12-30 19:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-10-31 03:40 - 2011-12-30 18:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-10-31 03:39 - 2013-07-19 14:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-31 03:39 - 2013-07-19 14:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-31 03:38 - 2013-08-05 15:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-31 03:38 - 2013-08-02 15:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-31 03:38 - 2013-08-02 15:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-31 03:38 - 2013-08-02 15:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-31 03:38 - 2013-08-02 14:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-31 03:38 - 2013-08-02 13:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-31 03:38 - 2013-08-02 13:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 13:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 13:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 13:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-31 03:38 - 2013-06-06 18:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-31 03:38 - 2013-06-06 18:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-31 03:38 - 2013-06-06 18:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-31 03:38 - 2013-06-06 18:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-31 03:38 - 2013-06-06 17:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-31 03:38 - 2013-06-06 17:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-31 03:38 - 2013-06-06 17:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-31 03:38 - 2013-06-06 16:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-31 03:38 - 2013-06-06 16:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-31 03:38 - 2013-06-06 16:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-31 03:38 - 2013-02-12 17:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-31 03:38 - 2012-11-01 18:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-10-31 03:38 - 2012-11-01 18:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-10-31 03:38 - 2012-11-01 17:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-10-31 03:38 - 2012-11-01 17:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-10-31 03:38 - 2012-08-23 07:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-10-31 03:38 - 2012-07-05 09:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-10-31 03:38 - 2011-03-11 19:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-10-31 03:38 - 2011-03-11 19:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-10-31 03:38 - 2011-03-11 18:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-10-31 03:38 - 2011-03-11 18:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-10-31 03:38 - 2010-06-26 16:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-10-31 03:38 - 2010-06-26 16:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-10-31 03:29 - 2012-07-26 17:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-10-31 03:29 - 2012-07-26 15:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-10-31 03:29 - 2012-06-03 03:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-10-31 03:28 - 2013-07-25 22:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-31 03:28 - 2013-07-25 21:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-31 03:28 - 2013-07-12 23:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-31 03:28 - 2013-07-12 23:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-31 03:28 - 2013-07-09 18:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-10-31 03:28 - 2013-07-09 17:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-10-31 03:28 - 2013-07-03 17:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-31 03:28 - 2013-07-03 17:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-31 03:28 - 2013-06-26 11:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-31 03:28 - 2012-10-04 06:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-10-31 03:28 - 2012-10-04 06:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-10-31 03:28 - 2012-10-04 06:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-10-31 03:28 - 2012-10-04 06:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-10-31 03:28 - 2012-10-04 06:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-10-31 03:28 - 2012-10-04 06:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-10-31 03:28 - 2012-10-04 05:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-10-31 03:28 - 2012-10-04 05:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-10-31 03:28 - 2012-10-04 05:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-10-31 03:28 - 2012-10-04 05:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-10-31 03:28 - 2012-06-02 18:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-10-31 03:28 - 2012-05-01 18:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-10-31 03:28 - 2012-04-26 18:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-10-31 03:28 - 2012-04-26 18:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-31 03:28 - 2012-04-26 18:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-10-31 03:28 - 2012-01-13 20:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-10-31 03:28 - 2011-11-17 19:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-10-31 03:28 - 2011-11-17 19:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-10-31 03:28 - 2011-11-17 19:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-10-31 03:28 - 2011-11-17 19:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-10-31 03:28 - 2011-04-23 11:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-10-31 03:28 - 2011-03-03 19:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-10-31 03:28 - 2011-03-03 19:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-10-31 03:28 - 2011-03-03 19:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-10-31 03:28 - 2011-03-03 18:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-10-31 03:28 - 2011-03-03 18:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-10-31 03:27 - 2013-07-05 01:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-31 03:27 - 2013-07-05 01:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-31 03:27 - 2013-07-05 00:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-31 03:27 - 2013-07-05 00:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-31 03:27 - 2013-07-04 23:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-31 03:27 - 2013-06-04 19:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-31 03:27 - 2013-06-04 17:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-10-31 03:27 - 2012-11-22 18:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-10-31 03:27 - 2012-11-22 17:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-10-31 03:27 - 2012-11-20 18:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-31 03:27 - 2012-11-20 17:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-10-31 03:27 - 2012-11-02 18:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-10-31 03:27 - 2012-11-02 18:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-10-31 03:27 - 2011-04-29 16:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-10-31 03:27 - 2011-04-29 16:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-10-31 03:27 - 2011-04-29 16:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-10-31 03:26 - 2013-09-14 14:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-31 03:26 - 2013-09-08 15:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-31 03:26 - 2013-09-08 15:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-31 03:26 - 2013-09-08 15:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-31 03:26 - 2013-08-28 14:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-31 03:26 - 2013-06-15 17:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-10-31 03:26 - 2012-12-08 02:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-10-31 03:26 - 2012-12-08 02:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-10-31 03:26 - 2012-12-08 01:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-10-31 03:26 - 2012-12-08 01:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-10-31 03:26 - 2012-12-08 00:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-10-31 03:26 - 2012-08-22 10:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-10-31 03:26 - 2012-04-28 16:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-31 03:26 - 2011-08-17 18:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-31 03:26 - 2011-08-17 18:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-31 03:26 - 2011-08-17 17:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-10-31 03:26 - 2011-08-17 17:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-10-31 03:24 - 2013-08-29 15:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-31 03:24 - 2013-08-29 15:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-31 03:24 - 2013-08-29 15:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-31 03:24 - 2013-08-29 15:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-31 03:24 - 2013-08-29 15:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-31 03:24 - 2013-08-29 14:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-31 03:24 - 2013-08-29 14:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-31 03:24 - 2013-08-29 14:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-31 03:24 - 2013-08-29 14:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-31 03:24 - 2013-08-29 14:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-31 03:24 - 2013-08-29 14:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-31 03:24 - 2013-08-29 13:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-31 03:24 - 2013-08-29 13:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-31 03:24 - 2013-08-29 13:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-31 03:24 - 2012-08-11 13:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-10-31 03:24 - 2012-08-11 12:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-10-31 03:23 - 2013-08-29 13:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-31 03:23 - 2012-04-08 01:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-10-31 03:23 - 2012-04-08 00:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-10-31 03:23 - 2012-03-17 20:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-31 03:16 - 2012-11-30 18:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-10-31 03:16 - 2012-11-30 18:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-10-31 03:16 - 2012-11-30 18:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-10-31 03:16 - 2012-11-30 12:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-10-31 03:16 - 2012-11-30 12:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-10-31 03:15 - 2012-07-26 16:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-10-31 03:15 - 2012-07-26 16:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-10-31 03:15 - 2012-07-26 16:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-10-31 03:15 - 2012-07-26 16:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-10-31 03:15 - 2012-07-26 16:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-10-31 03:15 - 2012-07-26 15:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-10-31 03:15 - 2012-07-26 15:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-10-31 03:15 - 2012-06-03 03:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-10-31 03:14 - 2013-07-26 15:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-31 03:14 - 2013-07-26 15:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-31 03:14 - 2013-07-26 14:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-31 03:14 - 2013-07-26 14:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-10-31 03:14 - 2013-04-26 18:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-31 03:14 - 2013-04-26 17:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-31 03:14 - 2012-09-26 11:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-10-31 03:14 - 2012-09-26 11:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-10-31 03:14 - 2011-02-06 06:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-10-31 03:14 - 2011-02-06 06:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-31 03:14 - 2011-02-06 06:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-31 03:14 - 2011-02-06 06:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-31 03:14 - 2011-02-06 06:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-31 03:14 - 2011-02-06 06:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-10-31 03:14 - 2011-02-06 06:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-31 03:13 - 2013-05-10 18:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-31 03:13 - 2013-05-10 16:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-31 02:48 - 2013-01-24 19:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-10-31 02:48 - 2013-01-03 19:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-31 02:48 - 2012-08-23 07:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-10-31 02:48 - 2012-05-05 21:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-10-31 02:48 - 2012-05-05 20:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-10-31 02:48 - 2011-02-18 23:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-10-31 02:48 - 2011-02-18 18:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-10-31 02:47 - 2011-12-16 21:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-31 02:47 - 2011-12-16 20:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-10-31 02:47 - 2011-05-03 18:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-10-31 02:47 - 2011-05-03 17:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-10-31 02:47 - 2011-02-13 00:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-10-31 02:24 - 2012-07-07 09:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-10-31 02:24 - 2011-04-28 16:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-10-31 02:24 - 2011-03-11 19:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-10-31 02:24 - 2011-03-11 19:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-10-31 02:24 - 2011-03-11 19:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-10-31 02:24 - 2011-03-11 18:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-10-31 02:24 - 2011-03-11 18:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-10-31 02:24 - 2011-03-11 17:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-10-31 02:22 - 2013-05-13 18:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-10-31 02:22 - 2013-05-13 16:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-31 02:22 - 2013-05-13 16:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-10-31 02:22 - 2013-05-13 16:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-10-31 02:22 - 2012-06-06 19:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-10-31 02:22 - 2012-06-06 18:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-10-31 02:22 - 2011-10-15 19:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-10-31 02:22 - 2011-10-15 18:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-10-31 02:04 - 2013-09-26 01:46 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-31 02:00 - 2012-03-01 19:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-10-31 02:00 - 2012-03-01 19:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-10-31 02:00 - 2012-03-01 19:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-10-31 02:00 - 2012-03-01 18:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-10-31 02:00 - 2012-03-01 18:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-10-31 01:47 - 2013-07-20 23:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-31 01:47 - 2013-07-20 23:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-31 01:47 - 2012-07-05 11:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-31 01:47 - 2012-07-05 11:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-10-31 01:47 - 2012-07-05 11:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-10-31 01:47 - 2012-07-05 10:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-10-31 01:47 - 2012-07-05 10:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-10-31 01:47 - 2012-05-14 18:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-10-31 01:47 - 2012-02-11 19:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-10-31 01:47 - 2012-02-11 19:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-10-31 01:47 - 2011-05-25 00:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-31 01:47 - 2011-05-24 23:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-10-31 01:47 - 2011-05-24 23:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-10-31 01:47 - 2011-05-24 23:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-10-31 01:47 - 2011-05-24 23:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-10-31 01:46 - 2013-08-28 14:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-31 01:46 - 2013-08-02 01:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-31 01:46 - 2013-04-10 19:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-31 01:46 - 2011-11-20 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-10-31 01:46 - 2011-11-20 03:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-10-31 01:46 - 2011-08-27 18:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-31 01:46 - 2011-08-27 18:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-10-31 01:46 - 2011-08-27 17:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-10-31 01:46 - 2011-08-27 17:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-10-31 01:46 - 2011-02-23 17:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-10-31 01:46 - 2011-02-04 00:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-31 01:39 - 2013-10-31 01:42 - 00000134 _____ C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
2013-10-31 01:39 - 2013-10-31 01:39 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-10-31 01:37 - 2013-10-31 01:37 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-31 01:37 - 2013-10-31 01:37 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-31 01:36 - 2013-10-31 01:54 - 00017426 _____ C:\Windows\IE11_main.log
2013-10-31 01:25 - 2013-11-02 21:45 - 00756850 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-31 01:24 - 2012-02-17 19:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-10-31 01:24 - 2012-02-17 18:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-10-31 01:24 - 2012-02-17 17:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-10-31 01:18 - 2013-10-31 10:17 - 00128392 _____ C:\Users\Dom\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-31 01:16 - 2013-10-31 18:32 - 00001415 _____ C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-31 01:13 - 2012-06-03 11:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-10-31 01:13 - 2012-06-03 11:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-10-31 01:13 - 2012-06-03 11:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-10-31 01:13 - 2012-06-03 11:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-10-31 01:13 - 2012-06-03 11:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-10-31 01:13 - 2012-06-03 11:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-10-31 01:13 - 2012-06-03 11:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-10-31 01:13 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-10-31 01:13 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-10-31 01:12 - 2013-10-31 01:12 - 00000020 ___SH C:\Users\Dom\ntuser.ini
2013-10-31 01:12 - 2013-10-31 01:12 - 00000000 ____D C:\Recovery
2013-10-31 01:04 - 2013-11-03 16:14 - 01542278 _____ C:\Windows\WindowsUpdate.log
2013-10-31 00:48 - 2013-10-31 00:48 - 00022744 _____ C:\Windows\system32\emptyregdb.dat
2013-10-31 00:41 - 2013-11-03 16:10 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-10-31 00:41 - 2013-11-03 16:10 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2013-10-30 23:51 - 2013-10-31 22:22 - 00000000 ____D C:\Users\Dom
2013-10-30 23:51 - 2009-07-14 17:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-30 23:51 - 2009-07-14 17:54 - 00000000 ___RD C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-30 23:51 - 2009-07-14 17:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-30 23:51 - 2009-07-14 17:49 - 00000000 ___RD C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-30 23:50 - 2013-10-30 23:50 - 00001355 _____ C:\Windows\TSSysprep.log
2013-10-30 23:49 - 2013-10-30 23:49 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2013-10-30 23:49 - 2013-10-30 23:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-30 23:49 - 2012-10-03 08:51 - 06200680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-10-30 23:49 - 2012-10-03 08:51 - 03536817 _____ C:\Windows\system32\nvcoproc.bin
2013-10-30 23:49 - 2012-10-03 08:51 - 03293544 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 02557800 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 00891240 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-10-30 23:49 - 2012-10-03 08:50 - 00866664 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 00118120 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 00063336 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 00055144 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2013-10-30 23:48 - 2013-10-31 00:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-30 23:48 - 2013-10-30 23:59 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-30 23:48 - 2013-10-30 23:48 - 00074462 _____ C:\Windows\system32\Drivers\RTWAVES30.dat
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____D C:\Windows\system32\SRSLabs
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____D C:\Program Files\Synaptics
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Program Files\STMicroelectronics
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Program Files\Realtek
2013-10-30 23:47 - 2010-08-20 11:05 - 00021616 _____ (ST Microelectronics) C:\Windows\system32\Drivers\stdcfltn.sys
2013-10-30 22:27 - 2013-10-31 00:50 - 00006072 _____ C:\Windows\comsetup.log
2013-10-30 22:15 - 2013-10-30 22:20 - 00003094 _____ C:\Users\Dom\Desktop\Windows Compatibility Report.htm
2013-10-30 22:13 - 2013-10-30 22:13 - 00001890 _____ C:\Windows\diagwrn.xml
2013-10-30 22:13 - 2013-10-30 22:13 - 00001890 _____ C:\Windows\diagerr.xml
2013-10-30 20:31 - 2013-10-30 22:04 - 3320903680 _____ C:\Users\Dom\Desktop\Win 7 sp1.iso
2013-10-26 11:09 - 2013-10-31 22:22 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Samsung
2013-10-23 18:44 - 2013-10-23 18:48 - 91157064 _____ (Copyright 2013 SAMSUNG) C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
2013-10-22 17:46 - 2013-10-31 00:35 - 00000000 ____D C:\Users\Dom\Desktop\Florence and The Machine - Ceremonials (Deluxe Version) (2011)
2013-10-22 14:54 - 2013-10-26 11:23 - 07020544 _____ C:\Users\Dom\Desktop\SideBySide
2013-10-21 16:34 - 2013-10-21 16:34 - 00124344 _____ C:\Users\Dom\Desktop\WindowsUpdate.zip
2013-10-18 19:32 - 2013-10-18 19:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-18 19:32 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-18 19:32 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-18 19:32 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-18 19:31 - 2013-10-18 19:32 - 00004833 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-18 19:31 - 2013-07-02 08:34 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-10-09 21:43 - 2013-10-31 00:14 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-09 21:43 - 2013-10-09 21:43 - 00001785 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-09 18:57 - 2013-10-09 19:08 - 423572207 _____ C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
2013-10-09 17:53 - 2013-10-31 00:18 - 00000000 ____D C:\Windows\CheckSur
2013-10-09 15:22 - 2013-10-31 00:35 - 00000000 ____D C:\Users\Dom\Desktop\Fix WU
2013-10-09 15:22 - 2013-10-09 15:22 - 00021232 _____ C:\Users\Dom\Desktop\Fix WU.zip
2013-10-08 03:54 - 2013-10-08 03:54 - 01589825 _____ C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
2013-10-07 18:30 - 2013-10-07 18:30 - 00875304 _____ (Microsoft Corporation) C:\Users\Dom\Desktop\NetFxRepairTool.exe
2013-10-07 11:38 - 2013-10-07 11:38 - 00000207 _____ C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2013-10-07 11:37 - 2013-10-07 11:37 - 00000000 ____D C:\RegBackup
2013-10-07 11:13 - 2013-10-31 00:13 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-10-07 11:13 - 2013-10-07 11:13 - 00002161 _____ C:\Users\Dom\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-10-06 17:05 - 2013-10-06 17:05 - 00468480 _____ () C:\Users\Dom\Desktop\CKScanner.exe
2013-10-06 01:27 - 2013-10-06 01:27 - 00001043 _____ C:\Users\Dom\Desktop\checkup.txt
2013-10-06 01:01 - 2013-10-06 01:01 - 00891167 _____ C:\Users\Dom\Desktop\SecurityCheck.exe
2013-10-05 21:53 - 2013-10-31 00:08 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-05 16:20 - 2013-10-05 16:20 - 00000000 _____ C:\Users\Dom\Desktop\sfcdetails.txt
2013-10-05 09:32 - 2013-10-05 09:32 - 00000000 ____D C:\_OTL
2013-10-05 09:29 - 2013-10-31 19:57 - 00003178 _____ C:\FixitRegBackup.reg
2013-10-04 11:42 - 2013-10-31 18:39 - 05137879 ____R (Swearware) C:\Users\Dom\Desktop\ComboFix.exe
2013-10-04 11:03 - 2011-06-26 19:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-04 11:03 - 2010-11-08 06:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-04 11:03 - 2009-04-20 17:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-04 11:03 - 2000-08-31 13:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-04 11:03 - 2000-08-31 13:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-04 11:03 - 2000-08-31 13:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-04 11:03 - 2000-08-31 13:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-04 11:03 - 2000-08-31 13:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-04 11:02 - 2013-10-31 19:18 - 00000000 ____D C:\Qoobox
2013-10-04 11:02 - 2013-10-31 00:18 - 00000000 ____D C:\Windows\erdnt
2013-10-04 08:15 - 2013-10-04 08:15 - 00001793 _____ C:\Users\Dom\Desktop\aswMBR.txt
2013-10-04 08:15 - 2013-10-04 08:15 - 00000512 _____ C:\Users\Dom\Desktop\MBR.dat
2013-10-04 08:13 - 2013-10-04 08:13 - 04745728 _____ (AVAST Software) C:\Users\Dom\Desktop\aswMBR.exe

==================== One Month Modified Files and Folders =======

2013-11-03 16:18 - 2009-07-14 17:45 - 00025872 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-03 16:18 - 2009-07-14 17:45 - 00025872 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-03 16:17 - 2013-11-03 16:17 - 01957098 _____ (Farbar) C:\Users\Dom\Desktop\FRST64.exe
2013-11-03 16:17 - 2013-11-03 16:17 - 00000000 ____D C:\FRST
2013-11-03 16:16 - 2013-10-31 22:53 - 00000000 ____D C:\ProgramData\MFAData
2013-11-03 16:14 - 2013-10-31 01:04 - 01542278 _____ C:\Windows\WindowsUpdate.log
2013-11-03 16:11 - 2012-01-20 15:27 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-11-03 16:10 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-11-03 16:10 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-11-03 16:10 - 2012-01-31 01:39 - 00000888 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-03 16:10 - 2012-01-20 16:47 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-03 16:10 - 2009-07-14 18:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-03 16:10 - 2009-07-14 17:51 - 01511788 _____ C:\Windows\setupact.log
2013-11-03 16:09 - 2012-01-31 01:39 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-03 16:07 - 2013-10-31 20:47 - 00000438 ____H C:\Windows\Tasks\Windows Backup and Restore Center.job
2013-11-03 16:07 - 2012-03-30 11:17 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-03 01:32 - 2013-03-19 17:24 - 00000000 ____D C:\Users\Dom\AppData\Roaming\tixati
2013-11-02 21:58 - 2013-06-03 20:19 - 00000000 ____D C:\Program Files (x86)\GRID 2
2013-11-02 21:45 - 2013-10-31 01:25 - 00756850 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-11-02 21:45 - 2009-07-14 18:13 - 00756850 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-02 21:11 - 2012-02-02 04:15 - 00000000 ____D C:\Users\Dom\AppData\Roaming\vlc
2013-11-02 15:16 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\rescache
2013-11-02 01:00 - 2013-11-02 01:00 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\Dom\Desktop\tdsskiller.exe
2013-11-02 00:57 - 2012-06-21 09:01 - 00000000 ____D C:\Users\Dom\Desktop\RK_Quarantine
2013-11-02 00:52 - 2013-11-02 00:52 - 04012032 _____ C:\Users\Dom\Desktop\RogueKillerX64.exe
2013-11-02 00:42 - 2012-01-30 12:12 - 00000000 ___RD C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-31 23:34 - 2012-01-20 16:04 - 00000000 ____D C:\ProgramData\Sonic
2013-10-31 23:29 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-31 22:57 - 2013-10-31 22:57 - 00000967 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-10-31 22:57 - 2013-10-31 22:57 - 00000000 ____D C:\Users\Dom\AppData\Roaming\AVG2014
2013-10-31 22:57 - 2013-10-31 22:56 - 00000000 ____D C:\ProgramData\AVG2014
2013-10-31 22:57 - 2013-10-31 22:53 - 00000000 ____D C:\Users\Dom\AppData\Local\Avg2014
2013-10-31 22:56 - 2013-10-31 22:56 - 00000000 ____D C:\$AVG
2013-10-31 22:55 - 2013-10-31 22:55 - 00000000 ____D C:\Program Files (x86)\AVG
2013-10-31 22:53 - 2013-10-31 22:53 - 00000000 ____D C:\Users\Dom\AppData\Local\MFAData
2013-10-31 22:32 - 2013-10-31 22:32 - 00756776 _____ (Microsoft Corporation) C:\Users\Dom\Downloads\OneCareCleanup (1).exe
2013-10-31 22:22 - 2013-10-30 23:51 - 00000000 ____D C:\Users\Dom
2013-10-31 22:22 - 2013-10-26 11:09 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Samsung
2013-10-31 21:51 - 2013-05-01 08:45 - 00002135 _____ C:\Windows\epplauncher.mif
2013-10-31 20:57 - 2010-11-21 16:47 - 00026852 _____ C:\Windows\PFRO.log
2013-10-31 20:56 - 2013-05-22 15:18 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-10-31 20:54 - 2009-07-14 15:34 - 00000546 _____ C:\Windows\win.ini
2013-10-31 20:47 - 2013-10-31 20:47 - 00003382 _____ C:\Windows\System32\Tasks\Windows Backup and Restore Center
2013-10-31 20:43 - 2009-07-14 18:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2013-10-31 20:43 - 2009-07-14 18:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2013-10-31 20:36 - 2013-10-31 20:36 - 00262144 _____ C:\Windows\system32\config\userdiff
2013-10-31 20:15 - 2013-10-31 20:04 - 00000000 ____D C:\$INPLACE.~TR
2013-10-31 19:57 - 2013-10-05 09:29 - 00003178 _____ C:\FixitRegBackup.reg
2013-10-31 19:48 - 2013-07-10 17:26 - 00348672 ___SH C:\Users\Dom\Desktop\Thumbs.db
2013-10-31 19:19 - 2013-10-31 19:19 - 00040921 _____ C:\ComboFix.txt 2.txt
2013-10-31 19:18 - 2013-10-31 19:18 - 00040921 _____ C:\ComboFix.txt
2013-10-31 19:18 - 2013-10-04 11:02 - 00000000 ____D C:\Qoobox
2013-10-31 19:18 - 2009-07-14 16:20 - 00000000 __RHD C:\Users\Default
2013-10-31 19:03 - 2009-07-14 15:34 - 00000215 _____ C:\Windows\system.ini
2013-10-31 18:39 - 2013-10-04 11:42 - 05137879 ____R (Swearware) C:\Users\Dom\Desktop\ComboFix.exe
2013-10-31 18:32 - 2013-10-31 01:16 - 00001415 _____ C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-31 18:28 - 2013-03-22 16:00 - 00016037 _____ C:\Windows\IE10_main.log
2013-10-31 18:25 - 2013-10-31 18:25 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-31 18:25 - 2013-10-31 18:25 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-31 18:25 - 2013-10-31 18:25 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-31 18:25 - 2013-10-31 18:25 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-31 18:25 - 2013-10-31 18:25 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-31 18:25 - 2013-10-31 18:25 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-31 18:25 - 2013-10-31 18:25 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-31 18:25 - 2013-10-31 18:25 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-31 18:25 - 2013-10-31 18:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-31 18:25 - 2013-10-31 18:25 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-31 18:25 - 2013-10-31 18:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-31 13:03 - 2013-10-31 13:03 - 00000000 ____D C:\Users\Dom\New folder
2013-10-31 12:59 - 2013-10-31 12:58 - 00000000 ____D C:\WINSSLog
2013-10-31 12:57 - 2013-10-31 12:57 - 00756776 _____ (Microsoft Corporation) C:\Users\Dom\Downloads\OneCareCleanup.exe
2013-10-31 12:44 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-10-31 12:44 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-10-31 12:44 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-10-31 12:44 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-31 12:04 - 2013-05-23 07:42 - 00003440 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-10-31 10:17 - 2013-10-31 01:18 - 00128392 _____ C:\Users\Dom\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-31 10:13 - 2009-07-14 17:45 - 00471704 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-31 10:11 - 2009-07-14 18:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-31 10:11 - 2009-07-14 18:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-31 10:11 - 2009-07-14 16:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-31 03:35 - 2012-01-30 12:12 - 00000000 ___RD C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-31 03:16 - 2011-04-12 21:28 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-31 02:10 - 2013-03-22 16:38 - 00004706 _____ C:\Windows\IE9_main.log
2013-10-31 02:07 - 2013-08-14 07:33 - 00000000 ____D C:\Windows\system32\MRT
2013-10-31 01:54 - 2013-10-31 01:36 - 00017426 _____ C:\Windows\IE11_main.log
2013-10-31 01:42 - 2013-10-31 01:39 - 00000134 _____ C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
2013-10-31 01:39 - 2013-10-31 01:39 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-10-31 01:37 - 2013-10-31 01:37 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-31 01:37 - 2013-10-31 01:37 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-31 01:18 - 2009-07-14 16:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-31 01:17 - 2009-07-14 18:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-31 01:12 - 2013-10-31 20:43 - 00000000 ____D C:\Windows\Panther
2013-10-31 01:12 - 2013-10-31 01:12 - 00000020 ___SH C:\Users\Dom\ntuser.ini
2013-10-31 01:12 - 2013-10-31 01:12 - 00000000 ____D C:\Recovery
2013-10-31 01:12 - 2009-07-14 18:32 - 00000000 ____D C:\Windows\system32\restore
2013-10-31 01:12 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\Recovery
2013-10-31 01:04 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\Registration
2013-10-31 00:50 - 2013-10-31 20:24 - 00000000 ____D C:\$WINDOWS.~Q
2013-10-31 00:50 - 2013-10-30 22:27 - 00006072 _____ C:\Windows\comsetup.log
2013-10-31 00:48 - 2013-10-31 00:48 - 00022744 _____ C:\Windows\system32\emptyregdb.dat
2013-10-31 00:47 - 2013-09-27 23:48 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2013-10-31 00:47 - 2012-01-31 02:38 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2013-10-31 00:47 - 2009-07-14 16:20 - 00000000 __RSD C:\Windows\Media
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2013-10-31 00:41 - 2009-07-14 17:46 - 00005157 _____ C:\Windows\DtcInstall.log
2013-10-31 00:41 - 2009-07-14 16:20 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-31 00:41 - 2009-07-14 16:20 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-31 00:41 - 2009-07-14 16:20 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-31 00:41 - 2009-07-14 16:20 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-31 00:38 - 2013-09-04 18:01 - 00000000 ____D C:\Users\Dom\Samsung Link
2013-10-31 00:38 - 2012-11-21 18:35 - 00000000 ____D C:\Users\Dom\SyncUP
2013-10-31 00:36 - 2013-01-27 22:42 - 00000000 ____D C:\Users\Dom\Downloads\The Game - Jesus Piece (Deluxe Edition) [iTunes] (2012-Album) [STumPZ-ReleaSe]
2013-10-31 00:36 - 2012-11-24 00:07 - 00000000 ___RD C:\Users\Dom\Google Drive
2013-10-31 00:36 - 2012-11-08 11:47 - 00000000 ___RD C:\Users\Dom\Dropbox
2013-10-31 00:36 - 2012-02-21 07:10 - 00000000 ____D C:\Users\Dom\Downloads\SATC
2013-10-31 00:35 - 2013-10-22 17:46 - 00000000 ____D C:\Users\Dom\Desktop\Florence and The Machine - Ceremonials (Deluxe Version) (2011)
2013-10-31 00:35 - 2013-10-09 15:22 - 00000000 ____D C:\Users\Dom\Desktop\Fix WU
2013-10-31 00:35 - 2013-09-27 16:36 - 00000000 ____D C:\Users\Dom\AppData\Roaming\NETGATE Registry Cleaner
2013-10-31 00:35 - 2013-09-20 17:35 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Octane
2013-10-31 00:35 - 2013-09-11 12:26 - 00000000 ____D C:\Users\Dom\Documents\Rockstar Games
2013-10-31 00:35 - 2013-08-19 13:16 - 00000000 ____D C:\Users\Dom\AppData\Roaming\OpenVPN Technologies
2013-10-31 00:35 - 2013-08-04 07:27 - 00000000 ____D C:\Users\Dom\Desktop\fb2
2013-10-31 00:35 - 2013-08-04 07:18 - 00000000 ____D C:\Users\Dom\Desktop\fb
2013-10-31 00:35 - 2013-07-10 17:19 - 00000000 ____D C:\Users\Dom\Documents\TV Share
2013-10-31 00:35 - 2013-06-18 11:32 - 00000000 ____D C:\Users\Dom\Documents\NeocoreGames
2013-10-31 00:35 - 2013-06-17 16:18 - 00000000 ____D C:\Users\Dom\Documents\Court Case
2013-10-31 00:35 - 2013-06-17 16:08 - 00000000 ____D C:\Users\Dom\Desktop\St Lucia Pics
2013-10-31 00:35 - 2013-06-05 17:36 - 00000000 ____D C:\Users\Dom\AppData\Roaming\redsn0w
2013-10-31 00:35 - 2013-06-05 17:34 - 00000000 ____D C:\Users\Dom\Desktop\redsn0w_win_0.9.15b3
2013-10-31 00:35 - 2013-06-01 04:07 - 00000000 ____D C:\Users\Dom\Documents\FIFA 13
2013-10-31 00:35 - 2013-05-25 05:11 - 00000000 ____D C:\Users\Dom\Documents\4A Games
2013-10-31 00:35 - 2013-05-23 16:49 - 00000000 ____D C:\Users\Dom\Documents\My Games
2013-10-31 00:35 - 2013-05-11 18:25 - 00000000 ____D C:\Users\Dom\Desktop\janine pics
2013-10-31 00:35 - 2013-03-13 17:04 - 00000000 ____D C:\Users\Dom\Downloads\ErykahBaduDiscography
2013-10-31 00:35 - 2013-02-26 21:28 - 00000000 ____D C:\Users\Dom\Documents\Fax
2013-10-31 00:35 - 2013-02-25 17:24 - 00000000 ____D C:\Users\Dom\Downloads\Blade II (2002)
2013-10-31 00:35 - 2013-02-18 21:32 - 00000000 ____D C:\Users\Dom\CSECDViewer
2013-10-31 00:35 - 2013-02-15 23:43 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Omerta
2013-10-31 00:35 - 2013-02-08 19:02 - 00000000 ____D C:\Users\Dom\Desktop\Court Case
2013-10-31 00:35 - 2013-01-29 00:05 - 00000000 ____D C:\Users\Dom\Desktop\Kindle Books
2013-10-31 00:35 - 2012-12-18 18:06 - 00000000 ____D C:\Users\Dom\Desktop\honeymoonie
2013-10-31 00:35 - 2012-12-05 11:18 - 00000000 ____D C:\Users\Dom\Desktop\New folder (2)
2013-10-31 00:35 - 2012-11-12 09:25 - 00000000 ____D C:\Users\Dom\Documents\The Art of Flight
2013-10-31 00:35 - 2012-11-01 15:14 - 00000000 ____D C:\Users\Dom\Documents\BlackBerry
2013-10-31 00:35 - 2012-11-01 15:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Research In Motion
2013-10-31 00:35 - 2012-11-01 14:54 - 00000000 ____D C:\Users\Dom\Downloads\Brave.2012.R5.DVDRip.XViD.LiNE-UNiQUE
2013-10-31 00:35 - 2012-10-24 07:16 - 00000000 ____D C:\Users\Dom\Desktop\D n B Set
2013-10-31 00:35 - 2012-06-08 11:39 - 00000000 ____D C:\Users\Dom\Downloads\Kindle Library 12-26-10
2013-10-31 00:35 - 2012-05-23 04:00 - 00000000 ____D C:\Users\Dom\Desktop\2012_05_22
2013-10-31 00:35 - 2012-05-05 08:49 - 00000000 ____D C:\Users\Dom\Documents\Trials 2
2013-10-31 00:35 - 2012-05-05 08:47 - 00000000 ____D C:\Users\Dom\Desktop\Trials 2 Second Edition
2013-10-31 00:35 - 2012-04-16 08:26 - 00000000 ____D C:\Users\Dom\Documents\My Received Files
2013-10-31 00:35 - 2012-04-10 11:34 - 00000000 ____D C:\Users\Dom\AppData\Roaming\WinRAR
2013-10-31 00:35 - 2012-04-10 00:57 - 00000000 ____D C:\Users\Dom\Documents\New folder
2013-10-31 00:35 - 2012-03-23 15:13 - 00000000 ____D C:\Users\Dom\Documents\CyberLink
2013-10-31 00:35 - 2012-03-19 12:17 - 00000000 ____D C:\Users\Dom\Documents\OneNote Notebooks
2013-10-31 00:35 - 2012-02-16 05:58 - 00000000 ____D C:\Users\Dom\Documents\Ubisoft
2013-10-31 00:35 - 2012-02-02 04:18 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Skype
2013-10-31 00:35 - 2012-02-01 07:55 - 00000000 ____D C:\Users\Dom\Documents\Outlook Files
2013-10-31 00:35 - 2012-01-31 02:31 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Roxio Burn
2013-10-31 00:35 - 2012-01-30 22:31 - 00000000 ____D C:\Users\Dom\AppData\Roaming\ZinioReader4
2013-10-31 00:35 - 2012-01-30 12:28 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Nero
2013-10-31 00:35 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Roxio
2013-10-31 00:34 - 2013-09-08 23:18 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Media Player Classic
2013-10-31 00:34 - 2013-06-22 23:12 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Milestone
2013-10-31 00:34 - 2013-06-01 18:30 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Leadertech
2013-10-31 00:34 - 2013-03-19 17:24 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2013-10-31 00:34 - 2013-02-14 00:25 - 00000000 ____D C:\Users\Dom\AppData\Roaming\calibre
2013-10-31 00:34 - 2013-02-03 15:53 - 00000000 ____D C:\Users\Dom\AppData\Roaming\dBpoweramp
2013-10-31 00:34 - 2012-11-08 11:44 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Dropbox
2013-10-31 00:34 - 2012-10-18 06:04 - 00000000 ____D C:\Users\Dom\AppData\Roaming\InstallShield
2013-10-31 00:34 - 2012-06-21 06:52 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Malwarebytes
2013-10-31 00:34 - 2012-04-10 11:34 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-10-31 00:34 - 2012-03-23 15:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\CyberLink
2013-10-31 00:34 - 2012-03-08 13:41 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Canon
2013-10-31 00:34 - 2012-02-01 02:53 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Apple Computer
2013-10-31 00:34 - 2012-01-31 03:47 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Blio
2013-10-31 00:34 - 2012-01-31 02:33 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Macrovision
2013-10-31 00:34 - 2012-01-31 01:39 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Google
2013-10-31 00:34 - 2012-01-31 01:21 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Mozilla
2013-10-31 00:34 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Dell Touch Zone
2013-10-31 00:34 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Dell
2013-10-31 00:34 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Creative
2013-10-31 00:34 - 2012-01-30 12:08 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Macromedia
2013-10-31 00:34 - 2012-01-30 12:08 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Intel
2013-10-31 00:32 - 2013-09-21 17:05 - 00000000 ____D C:\Users\Dom\AppData\Local\Urban Trial Freestyle
2013-10-31 00:32 - 2013-09-11 12:23 - 00000000 ____D C:\Users\Dom\AppData\Local\Rockstar Games
2013-10-31 00:32 - 2013-08-19 13:16 - 00000000 ____D C:\Users\Dom\AppData\Local\OpenVPN Technologies
2013-10-31 00:32 - 2013-07-12 15:52 - 00000000 ____D C:\Users\Dom\AppData\Local\SAMSUNG
2013-10-31 00:32 - 2013-06-24 20:50 - 00000000 ____D C:\Users\Dom\AppData\Local\PunkBuster
2013-10-31 00:32 - 2013-05-23 17:34 - 00000000 ____D C:\Users\Dom\AppData\Local\SKIDROW
2013-10-31 00:32 - 2012-11-01 15:13 - 00000000 ____D C:\Users\Dom\AppData\Local\Research In Motion
2013-10-31 00:32 - 2012-10-18 06:04 - 00000000 ____D C:\Users\Dom\AppData\Local\Panasonic
2013-10-31 00:32 - 2012-05-05 08:48 - 00000000 ____D C:\Users\Dom\AppData\Local\Redlynx
2013-10-31 00:32 - 2012-02-15 12:38 - 00000000 ____D C:\Users\Dom\AppData\Local\Sonic_Solutions
2013-10-31 00:32 - 2012-02-14 00:08 - 00000000 ____D C:\Users\Dom\AppData\Local\Ubisoft Game Launcher
2013-10-31 00:32 - 2012-01-30 13:58 - 00000000 ____D C:\Users\Dom\AppData\Local\Nero_AG
2013-10-31 00:32 - 2012-01-30 12:29 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Adobe
2013-10-31 00:32 - 2012-01-30 12:12 - 00000000 ____D C:\Users\Dom\AppData\Local\VirtualStore
2013-10-31 00:32 - 2012-01-30 12:08 - 00000000 ____D C:\Users\Dom\AppData\Local\SoftThinks
2013-10-31 00:31 - 2012-01-30 12:28 - 00000000 ____D C:\Users\Dom\AppData\Local\Nero
2013-10-31 00:30 - 2013-06-05 17:30 - 00000000 ____D C:\Users\Dom\AppData\Local\libimobiledevice
2013-10-31 00:30 - 2013-03-13 16:27 - 00000000 ____D C:\Users\Dom\AppData\Local\MGTEK
2013-10-31 00:30 - 2012-06-28 15:42 - 00000000 ____D C:\Users\Dom\AppData\Local\Macromedia
2013-10-31 00:30 - 2012-04-08 12:33 - 00000000 ____D C:\Users\Dom\AppData\Local\Mozilla
2013-10-31 00:30 - 2012-01-31 03:48 - 00000000 ____D C:\Users\Dom\AppData\Local\Kjs.AppLife.Update
2013-10-31 00:30 - 2012-01-31 02:49 - 00000000 ____D C:\Users\Dom\AppData\Local\Downloaded Installations
2013-10-31 00:30 - 2012-01-31 01:39 - 00000000 ____D C:\Users\Dom\AppData\Local\Google
2013-10-31 00:30 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Local\Dell
2013-10-31 00:28 - 2013-09-08 21:45 - 00000000 ____D C:\Users\Dom\AppData\Local\D5CEBBFC-9741-4C80-8569-B09615F6463C.aplzod
2013-10-31 00:28 - 2013-07-09 22:12 - 00000000 ____D C:\Users\Dom\.swt
2013-10-31 00:28 - 2013-06-05 22:24 - 00000000 ____D C:\Users\Dom\.shsh
2013-10-31 00:28 - 2013-05-25 05:08 - 00000000 ____D C:\Users\Dom\AppData\Local\4A Games
2013-10-31 00:28 - 2012-03-23 15:13 - 00000000 ____D C:\Users\Dom\AppData\Local\Cyberlink
2013-10-31 00:28 - 2012-02-04 01:44 - 00000000 ____D C:\Users\Dom\AppData\Local\Citrix
2013-10-31 00:28 - 2012-02-04 01:43 - 00000000 ____D C:\Users\Dom\AppData\Local\Apps\2.0
2013-10-31 00:28 - 2012-02-01 02:53 - 00000000 ____D C:\Users\Dom\AppData\Local\Apple Computer
2013-10-31 00:28 - 2012-02-01 02:52 - 00000000 ____D C:\Users\Dom\AppData\Local\Apple
2013-10-31 00:28 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Local\Adobe
2013-10-31 00:20 - 2013-05-23 16:35 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\2C0A
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0C0A
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0C04
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0816
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0804
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0424
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\041F
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\041E
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\041D
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\041B
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0419
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0416
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0415
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0414
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0413
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0412
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0411
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0410
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040E
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040D
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040C
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040B
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040A
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0408
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0407
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0406
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0405
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0404
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0401
2013-10-31 00:20 - 2012-02-01 01:27 - 00000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2013-10-31 00:20 - 2012-02-01 01:26 - 00000000 ____D C:\Windows\system32\STRING
2013-10-31 00:20 - 2012-02-01 01:26 - 00000000 ____D C:\Windows\system32\CHM
2013-10-31 00:20 - 2012-01-20 14:56 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-31 00:20 - 2012-01-20 14:56 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-31 00:20 - 2012-01-20 14:50 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-10-31 00:20 - 2012-01-20 14:50 - 00000000 ____D C:\Windows\system32\NV
2013-10-31 00:20 - 2011-04-12 21:28 - 00000000 ____D C:\Windows\ShellNew
2013-10-31 00:20 - 2011-04-12 21:17 - 00000000 ____D C:\Windows\system32\0409
2013-10-31 00:20 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\sysprep
2013-10-31 00:20 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\oobe
2013-10-31 00:20 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-31 00:19 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\Resources
2013-10-31 00:18 - 2013-10-09 17:53 - 00000000 ____D C:\Windows\CheckSur
2013-10-31 00:18 - 2013-10-04 11:02 - 00000000 ____D C:\Windows\erdnt
2013-10-31 00:18 - 2013-10-01 23:45 - 00000000 ____D C:\Windows\ERUNT
2013-10-31 00:18 - 2013-07-12 15:51 - 00000000 ____D C:\ProgramData\SAMSUNG
2013-10-31 00:18 - 2013-06-03 20:35 - 00000000 ____D C:\ProgramData\Steam
2013-10-31 00:18 - 2013-05-24 17:11 - 00000000 ____D C:\ProgramData\RELOADED
2013-10-31 00:18 - 2012-11-01 15:13 - 00000000 ____D C:\ProgramData\Research In Motion
2013-10-31 00:18 - 2012-06-19 12:39 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-31 00:18 - 2012-02-10 10:25 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-10-31 00:18 - 2012-02-04 01:31 - 00000000 ____D C:\ProgramData\PCDr
2013-10-31 00:18 - 2012-02-01 02:52 - 00000000 ____D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2013-10-31 00:18 - 2012-01-31 03:49 - 00000000 ____D C:\Users\Public\Blio
2013-10-31 00:18 - 2012-01-31 02:45 - 00000000 ____D C:\Windows\AutoKMS
2013-10-31 00:18 - 2012-01-20 16:06 - 00000000 ____D C:\ProgramData\Uninstall
2013-10-31 00:18 - 2012-01-20 16:05 - 00000000 ____D C:\ProgramData\PhotoShow Shared Assets
2013-10-31 00:18 - 2012-01-20 16:04 - 00000000 ____D C:\ProgramData\Roxio
2013-10-31 00:18 - 2012-01-20 15:59 - 00000000 ____D C:\Windows\en
2013-10-31 00:18 - 2012-01-20 15:50 - 00000000 ____D C:\Users\Public\Documents\Dell
2013-10-31 00:18 - 2012-01-20 15:38 - 00000000 ____D C:\ProgramData\SmartSound Software Inc
2013-10-31 00:18 - 2012-01-20 15:29 - 00000000 ____D C:\ProgramData\Skype
2013-10-31 00:18 - 2012-01-20 15:13 - 00000000 ____D C:\ProgramData\Sun
2013-10-31 00:18 - 2011-04-12 21:28 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-10-31 00:18 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\Help
2013-10-31 00:18 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\Cursors
2013-10-31 00:16 - 2013-06-24 20:48 - 00000000 ____D C:\ProgramData\Orbit
2013-10-31 00:16 - 2013-05-23 16:49 - 00000000 __SHD C:\ProgramData\DSS
2013-10-31 00:16 - 2013-05-23 16:49 - 00000000 ____D C:\ProgramData\Codemasters
2013-10-31 00:16 - 2013-05-23 07:42 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2013-10-31 00:16 - 2013-03-13 16:12 - 00000000 ____D C:\ProgramData\MGTEK
2013-10-31 00:16 - 2013-02-08 13:07 - 00000000 ___HD C:\ProgramData\CanonIJMyPrinter
2013-10-31 00:16 - 2013-02-08 13:06 - 00000000 ___HD C:\ProgramData\CanonIJQuickMenu
2013-10-31 00:16 - 2013-02-08 13:02 - 00000000 ____D C:\ProgramData\CanonIJWSpt
2013-10-31 00:16 - 2013-01-21 22:04 - 00000000 ____D C:\ProgramData\Cisco Systems
2013-10-31 00:16 - 2012-10-20 09:46 - 00000000 ____D C:\ProgramData\Panasonic
2013-10-31 00:16 - 2012-09-11 10:25 - 00000000 ____D C:\ProgramData\lx_Cats
2013-10-31 00:16 - 2012-06-21 08:51 - 00000000 ____D C:\ProgramData\HitmanPro
2013-10-31 00:16 - 2012-06-21 06:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-31 00:16 - 2012-06-19 12:15 - 00000000 ____D C:\ProgramData\DivX
2013-10-31 00:16 - 2012-05-23 03:53 - 00000000 ____D C:\ProgramData\CanonIJScan
2013-10-31 00:16 - 2012-03-19 13:03 - 00000000 ____D C:\ProgramData\CanonIJEGV
2013-10-31 00:16 - 2012-02-04 01:45 - 00000000 ____D C:\ProgramData\Citrix
2013-10-31 00:16 - 2012-02-01 01:28 - 00000000 ____D C:\ProgramData\CanonBJ
2013-10-31 00:16 - 2012-01-31 02:34 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-31 00:16 - 2012-01-31 02:00 - 00000000 ____D C:\ProgramData\Mediafour
2013-10-31 00:16 - 2012-01-31 01:38 - 00000000 ____D C:\ProgramData\Google
2013-10-31 00:16 - 2012-01-20 16:26 - 00000000 ____D C:\ProgramData\Dell
2013-10-31 00:16 - 2012-01-20 16:14 - 00000000 ____D C:\ProgramData\Nero
2013-10-31 00:16 - 2012-01-20 16:07 - 00000000 ____D C:\ProgramData\McAfee
2013-10-31 00:16 - 2012-01-20 16:03 - 00000000 ____D C:\ProgramData\Macrovision
2013-10-31 00:16 - 2012-01-20 16:01 - 00000000 ____D C:\ProgramData\CyberLink
2013-10-31 00:16 - 2012-01-20 15:46 - 00000000 ____D C:\ProgramData\install_clap
2013-10-31 00:16 - 2012-01-20 15:38 - 00000000 ____D C:\ProgramData\eSellerate
2013-10-31 00:16 - 2012-01-20 15:18 - 00000000 ____D C:\ProgramData\Intel
2013-10-31 00:15 - 2012-02-01 02:52 - 00000000 ____D C:\ProgramData\Apple Computer
2013-10-31 00:15 - 2012-02-01 02:51 - 00000000 ____D C:\ProgramData\Apple
2013-10-31 00:15 - 2012-01-20 15:26 - 00000000 ____D C:\ProgramData\Adobe
2013-10-31 00:14 - 2013-10-09 21:43 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-31 00:14 - 2013-09-08 23:31 - 00000000 ____D C:\Program Files (x86)\Viscom Store RMVB Converter
2013-10-31 00:14 - 2013-05-22 15:08 - 00000000 ____D C:\ProgramData\Ad Muncher
2013-10-31 00:14 - 2012-02-02 04:15 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-10-31 00:14 - 2012-01-20 16:10 - 00000000 ____D C:\Program Files (x86)\Zinio Reader 4
2013-10-31 00:14 - 2012-01-20 15:58 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-10-31 00:13 - 2013-10-07 11:13 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-10-31 00:13 - 2012-06-28 16:33 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2013-10-31 00:13 - 2012-06-19 12:39 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2013-10-31 00:13 - 2012-02-16 05:39 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-10-31 00:13 - 2012-01-20 16:03 - 00000000 ____D C:\Program Files (x86)\Roxio
2013-10-31 00:13 - 2012-01-20 15:38 - 00000000 ____D C:\Program Files (x86)\SmartSound Software
2013-10-31 00:13 - 2012-01-20 15:30 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-31 00:13 - 2012-01-20 15:15 - 00000000 ____D C:\Program Files (x86)\STMicroelectronics
2013-10-31 00:12 - 2013-09-11 11:53 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-10-31 00:12 - 2013-01-21 16:57 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2013-10-31 00:12 - 2012-11-01 15:13 - 00000000 ____D C:\Program Files (x86)\Research In Motion
2013-10-31 00:12 - 2012-02-04 02:00 - 00000000 ____D C:\Program Files (x86)\PlayReady
2013-10-31 00:11 - 2013-10-30 23:48 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-31 00:11 - 2013-09-23 00:21 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-31 00:11 - 2013-09-08 23:15 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-10-31 00:11 - 2013-08-19 13:15 - 00000000 ____D C:\Program Files (x86)\OpenVPN Technologies
2013-10-31 00:11 - 2013-07-02 08:34 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-31 00:11 - 2013-06-22 22:09 - 00000000 ____D C:\Program Files (x86)\Milestone
2013-10-31 00:11 - 2013-05-25 03:02 - 00000000 ____D C:\Program Files (x86)\Metro Last Light
2013-10-31 00:11 - 2013-05-23 16:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-10-31 00:11 - 2012-10-18 06:00 - 00000000 ____D C:\Program Files (x86)\Panasonic
2013-10-31 00:11 - 2012-10-18 06:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2013-10-31 00:11 - 2012-06-21 06:51 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-31 00:11 - 2012-05-14 07:38 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-31 00:11 - 2012-05-05 08:48 - 00000000 ____D C:\Program Files (x86)\OpenAL
2013-10-31 00:11 - 2012-04-08 12:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-31 00:11 - 2012-01-31 03:49 - 00000000 ____D C:\Program Files (x86)\K-NFB Reading Technology Inc
2013-10-31 00:11 - 2012-01-31 02:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2013-10-31 00:11 - 2012-01-31 02:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-10-31 00:11 - 2012-01-31 02:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2013-10-31 00:11 - 2012-01-31 02:00 - 00000000 ____D C:\Program Files (x86)\Mediafour
2013-10-31 00:11 - 2012-01-20 15:58 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-10-31 00:11 - 2009-07-14 18:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-31 00:10 - 2013-02-14 00:24 - 00000000 ____D C:\Program Files (x86)\Hamster Soft
2013-10-31 00:10 - 2012-08-19 13:12 - 00000000 ____D C:\Program Files (x86)\HP Optical USB Mobile Mouse
2013-10-31 00:10 - 2012-02-15 12:45 - 00000000 ____D C:\Program Files (x86)\Illustrate
2013-10-31 00:10 - 2012-01-20 16:45 - 00000000 ____D C:\Program Files (x86)\Intel
2013-10-31 00:10 - 2012-01-20 15:13 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2013-10-31 00:08 - 2013-10-05 21:53 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-31 00:08 - 2012-02-06 04:29 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2013-10-31 00:08 - 2012-01-31 01:38 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-31 00:08 - 2012-01-30 12:16 - 00000000 ____D C:\Program Files (x86)\Dell Touch Software Suite
2013-10-31 00:08 - 2012-01-20 15:50 - 00000000 ____D C:\Program Files (x86)\Dell Stage
2013-10-31 00:08 - 2012-01-20 15:46 - 00000000 ____D C:\Program Files (x86)\Dell
2013-10-31 00:08 - 2012-01-20 15:31 - 00000000 ____D C:\Program Files (x86)\eBay
2013-10-31 00:07 - 2013-07-18 22:38 - 00000000 ____D C:\Program Files (x86)\Company of Heroes 2
2013-10-31 00:07 - 2012-01-20 15:52 - 00000000 ____D C:\Program Files (x86)\Creative
2013-10-31 00:07 - 2012-01-20 15:51 - 00000000 ____D C:\Program Files (x86)\Creative Live! Cam
2013-10-31 00:07 - 2012-01-20 15:46 - 00000000 ____D C:\Program Files (x86)\Cyberlink
2013-10-31 00:03 - 2013-05-23 16:18 - 00000000 ____D C:\Program Files (x86)\Codemasters
2013-10-31 00:03 - 2012-02-04 01:44 - 00000000 ____D C:\Program Files (x86)\Citrix
2013-10-31 00:03 - 2012-02-01 01:25 - 00000000 ____D C:\Program Files (x86)\Canon
2013-10-31 00:03 - 2012-01-20 15:18 - 00000000 ____D C:\Program Files (x86)\Cisco
2013-10-31 00:02 - 2013-05-24 13:54 - 00000000 ____D C:\Program Files (x86)\Call of Juarez Gunslinger
2013-10-31 00:02 - 2013-05-23 16:30 - 00000000 ____D C:\Program Files (x86)\BRS
2013-10-31 00:02 - 2012-02-01 02:52 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-10-31 00:02 - 2012-02-01 02:51 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-10-31 00:02 - 2012-01-20 15:22 - 00000000 ____D C:\Program Files (x86)\AVerMedia
2013-10-31 00:01 - 2012-01-20 15:26 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-30 23:59 - 2013-10-30 23:48 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-30 23:59 - 2013-09-27 16:36 - 00000000 ____D C:\Program Files\NETGATE
2013-10-30 23:59 - 2013-08-19 13:08 - 00000000 ____D C:\Program Files\OpenVPN
2013-10-30 23:59 - 2013-07-09 22:11 - 00000000 ____D C:\Program Files\Samsung
2013-10-30 23:59 - 2013-05-23 07:41 - 00000000 ____D C:\Program Files\My Dell
2013-10-30 23:59 - 2013-05-22 15:08 - 00000000 ____D C:\Program Files (x86)\Ad Muncher
2013-10-30 23:59 - 2013-03-19 17:24 - 00000000 ____D C:\Program Files\tixati
2013-10-30 23:59 - 2012-04-10 11:34 - 00000000 ____D C:\Program Files\WinRAR
2013-10-30 23:59 - 2012-02-04 03:35 - 00000000 ____D C:\Program Files\PlayReady
2013-10-30 23:59 - 2012-01-20 16:26 - 00000000 ____D C:\Program Files\ZinioReader4
2013-10-30 23:59 - 2012-01-20 16:05 - 00000000 ____D C:\Program Files\Roxio
2013-10-30 23:59 - 2012-01-20 15:57 - 00000000 ____D C:\Program Files\Windows Live
2013-10-30 23:56 - 2012-01-31 02:37 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2013-10-30 23:56 - 2012-01-31 02:37 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2013-10-30 23:56 - 2012-01-31 02:37 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2013-10-30 23:55 - 2012-05-14 07:38 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-30 23:55 - 2012-01-31 02:34 - 00000000 ____D C:\Program Files\Microsoft Office
2013-10-30 23:54 - 2013-09-26 19:29 - 00000000 ____D C:\Program Files\CCleaner
2013-10-30 23:54 - 2013-09-23 00:21 - 00000000 ____D C:\Program Files\iTunes
2013-10-30 23:54 - 2013-09-23 00:21 - 00000000 ____D C:\Program Files\iPod
2013-10-30 23:54 - 2013-02-08 13:02 - 00000000 ____D C:\Program Files\Canon
2013-10-30 23:54 - 2012-04-07 08:34 - 00000000 ____D C:\Program Files\Dell Support Center
2013-10-30 23:54 - 2012-02-18 11:09 - 00000000 ____D C:\Program Files\Logitech
2013-10-30 23:54 - 2012-02-18 11:09 - 00000000 ____D C:\Program Files\Common Files\Logitech
2013-10-30 23:54 - 2012-02-01 02:51 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-10-30 23:54 - 2012-02-01 02:51 - 00000000 ____D C:\Program Files\Bonjour
2013-10-30 23:54 - 2012-02-01 01:30 - 00000000 ____D C:\Program Files\Common Files\CANON
2013-10-30 23:54 - 2012-02-01 01:26 - 00000000 ____D C:\Program Files\CanonBJ
2013-10-30 23:54 - 2012-01-31 02:37 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-10-30 23:54 - 2012-01-31 02:34 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2013-10-30 23:54 - 2012-01-31 02:00 - 00000000 ____D C:\Program Files\Mediafour
2013-10-30 23:54 - 2012-01-31 02:00 - 00000000 ____D C:\Program Files\Common Files\Mediafour
2013-10-30 23:54 - 2012-01-31 01:39 - 00000000 ____D C:\Program Files\Google
2013-10-30 23:54 - 2012-01-20 16:45 - 00000000 ____D C:\Program Files\Common Files\Intel
2013-10-30 23:54 - 2012-01-20 16:17 - 00000000 ____D C:\Program Files\dell stage
2013-10-30 23:54 - 2012-01-20 15:23 - 00000000 ____D C:\Program Files\Dell
2013-10-30 23:54 - 2012-01-20 15:16 - 00000000 ____D C:\Program Files\Intel
2013-10-30 23:54 - 2012-01-20 15:13 - 00000000 ____D C:\Program Files\Java
2013-10-30 23:54 - 2012-01-20 14:56 - 00000000 ____D C:\Program Files\Dell Inc
2013-10-30 23:54 - 2009-07-14 16:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-10-30 23:50 - 2013-10-30 23:50 - 00001355 _____ C:\Windows\TSSysprep.log
2013-10-30 23:49 - 2013-10-30 23:49 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2013-10-30 23:49 - 2013-10-30 23:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-30 23:49 - 2009-07-14 17:51 - 00000084 _____ C:\Windows\setuperr.log
2013-10-30 23:48 - 2013-10-30 23:48 - 00074462 _____ C:\Windows\system32\Drivers\RTWAVES30.dat
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____D C:\Windows\system32\SRSLabs
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____D C:\Program Files\Synaptics
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Program Files\STMicroelectronics
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Program Files\Realtek
2013-10-30 22:59 - 2012-01-20 16:48 - 01354540 _____ C:\Windows\WindowsUpdate (1).log
2013-10-30 22:20 - 2013-10-30 22:15 - 00003094 _____ C:\Users\Dom\Desktop\Windows Compatibility Report.htm
2013-10-30 22:13 - 2013-10-30 22:13 - 00001890 _____ C:\Windows\diagwrn.xml
2013-10-30 22:13 - 2013-10-30 22:13 - 00001890 _____ C:\Windows\diagerr.xml
2013-10-30 22:04 - 2013-10-30 20:31 - 3320903680 _____ C:\Users\Dom\Desktop\Win 7 sp1.iso
2013-10-26 11:23 - 2013-10-22 14:54 - 07020544 _____ C:\Users\Dom\Desktop\SideBySide
2013-10-23 18:48 - 2013-10-23 18:44 - 91157064 _____ (Copyright 2013 SAMSUNG) C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
2013-10-21 16:34 - 2013-10-21 16:34 - 00124344 _____ C:\Users\Dom\Desktop\WindowsUpdate.zip
2013-10-18 19:32 - 2013-10-18 19:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-18 19:32 - 2013-10-18 19:31 - 00004833 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-18 19:04 - 2012-01-31 01:39 - 00003888 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-18 19:04 - 2012-01-31 01:39 - 00003636 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-18 18:20 - 2012-03-30 11:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-18 18:20 - 2012-03-30 11:17 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-18 18:20 - 2012-01-20 14:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 21:43 - 2013-10-09 21:43 - 00001785 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-09 19:08 - 2013-10-09 18:57 - 423572207 _____ C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
2013-10-09 15:22 - 2013-10-09 15:22 - 00021232 _____ C:\Users\Dom\Desktop\Fix WU.zip
2013-10-08 07:50 - 2013-10-18 19:32 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-18 19:32 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-18 19:32 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-08 03:54 - 2013-10-08 03:54 - 01589825 _____ C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
2013-10-07 18:30 - 2013-10-07 18:30 - 00875304 _____ (Microsoft Corporation) C:\Users\Dom\Desktop\NetFxRepairTool.exe
2013-10-07 11:38 - 2013-10-07 11:38 - 00000207 _____ C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2013-10-07 11:37 - 2013-10-07 11:37 - 00000000 ____D C:\RegBackup
2013-10-07 11:13 - 2013-10-07 11:13 - 00002161 _____ C:\Users\Dom\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-10-07 08:59 - 2012-01-20 16:01 - 00505128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2013-10-07 08:59 - 2012-01-20 16:01 - 00353576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2013-10-07 08:59 - 2012-01-20 16:01 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2013-10-06 17:05 - 2013-10-06 17:05 - 00468480 _____ () C:\Users\Dom\Desktop\CKScanner.exe
2013-10-06 01:27 - 2013-10-06 01:27 - 00001043 _____ C:\Users\Dom\Desktop\checkup.txt
2013-10-06 01:01 - 2013-10-06 01:01 - 00891167 _____ C:\Users\Dom\Desktop\SecurityCheck.exe
2013-10-05 16:20 - 2013-10-05 16:20 - 00000000 _____ C:\Users\Dom\Desktop\sfcdetails.txt
2013-10-05 10:26 - 2013-09-30 19:32 - 00114294 _____ C:\Users\Dom\Desktop\Extras.Txt
2013-10-05 09:32 - 2013-10-05 09:32 - 00000000 ____D C:\_OTL
2013-10-04 08:15 - 2013-10-04 08:15 - 00001793 _____ C:\Users\Dom\Desktop\aswMBR.txt
2013-10-04 08:15 - 2013-10-04 08:15 - 00000512 _____ C:\Users\Dom\Desktop\MBR.dat
2013-10-04 08:13 - 2013-10-04 08:13 - 04745728 _____ (AVAST Software) C:\Users\Dom\Desktop\aswMBR.exe

Some content of TEMP:
====================
C:\Users\Dom\AppData\Local\Temp\i4jdel0.exe
C:\Users\Dom\AppData\Local\Temp\ntdll_dump.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-31 11:26

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by Dom at 2013-11-03 16:19:54
Running from C:\Users\Dom\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

==================== Installed Programs ======================

AccelerometerP11 (x32 Version: 2.00.11.22)
Ad Muncher v4.93.33707 (x32)
Adobe AIR (x32 Version: 2.6.0.19120)
Adobe Community Help (x32 Version: 3.2.1)
Adobe Community Help (x32 Version: 3.2.1.650)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Photoshop Elements 9 (x32 Version: 9.0)
Adobe Premiere Elements 9 (x32 Version: 9.0)
Adobe Reader X (10.1.7) MUI (x32 Version: 10.1.7)
Advanced Audio FX Engine (x32 Version: 1.12.05)
AllShare Framework DMS (Version: 1.3.20)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
AVerMedia H339 Hybrid TV Tuner 2.2.64.64 (x32 Version: 2.2.64.64)
AVG 2014 (Version: 14.0.3615)
AVG 2014 (Version: 14.0.4158)
AVG 2014 (Version: 2014.0.4158)
BlackBerry Desktop Software 7.1 (x32 Version: 7.1.0.32)
BlackBerry Device Software Updater (x32 Version: 7.1.0.34)
Blio (x32 Version: 2.3.8153)
Bonjour (Version: 3.0.0.10)
Call of Juarez Gunslinger © Ubisoft version 1 (x32 Version: 1)
Canon Easy-WebPrint EX (x32)
Canon IJ Network Scan Utility (x32)
Canon IJ Network Tool (x32)
Canon IJ Scan Utility (x32)
Canon MG2200 series MP Drivers (Version: 1.00)
Canon MG2200 series On-screen Manual (x32 Version: 7.5.0)
Canon MP Navigator EX 3.0 (x32)
Canon MP560 series MP Drivers
Canon MP560 series User Registration (x32)
Canon My Printer (x32 Version: 3.0.0)
Canon Quick Menu (x32 Version: 2.0.0)
Canon Utilities Easy-PhotoPrint EX (x32)
Canon Utilities Solution Menu (x32)
Company of Heroes 2 (x32 Version: 1)
CyberLink PowerDVD 9.6 (x32 Version: 9.6.1.6523)
D3DX10 (x32 Version: 15.4.2368.0902)
dBpoweramp DSP Effects (x32 Version: Release 7)
dBpoweramp Music Converter (x32 Version: Release 14.2)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Dell DataSafe Local Backup - Support Software (x32 Version: 9.4.61)
Dell DataSafe Local Backup (x32 Version: 9.4.61)
Dell DataSafe Online (x32 Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (x32 Version: 1.00.0000)
Dell MusicStage (x32 Version: 1.6.225.0)
Dell PhotoStage (x32 Version: 1.5.0.65)
Dell Stage (x32 Version: 1.7.209.0)
Dell Stage Remote (x32 Version: 2.0.0.50)
Dell VideoStage (x32 Version: 1.2.0.1712)
Dell Webcam Central (x32 Version: 2.00.44)
DirectX 9 Runtime (x32 Version: 1.00.0000)
DiRT 3 (x32 Version: 1.0.0000.130)
Driver San Francisco (x32 Version: 1.4.0.0)
eBay (x32 Version: 1.4.0)
Elements 9 Organizer (x32 Version: 9.0)
Elements STI Installer (x32 Version: 1.0)
ESET Online Scanner v3 (x32)
Google Drive (x32 Version: 1.11.4865.2530)
Google Drive (x32 Version: 1.12.5329.1887)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4601.54)
Google Update Helper (x32 Version: 1.3.21.165)
Grand Theft Auto IV (x32 Version: 1.00.0000)
GRID 2 Update v1.0.85.8679 Incl. DLC (x32 Version: 1)
Hamster Free EbookConverter (x32 Version: 1.0.0.13)
HiJackThis (x32 Version: 1.0.0)
iCloud (Version: 3.0.2.163)
Intel PROSet Wireless
Intel PROSet Wireless (x32)
Intel® Control Center (x32 Version: 1.2.1.1007)
Intel® Management Engine Components (x32 Version: 7.0.0.1144)
Intel® Processor Graphics (x32 Version: 8.15.10.2455)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.1.0608)
Intel® PROSet/Wireless WiFi Software (Version: 14.03.0000)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Internet TV for Windows Media Center (x32 Version: 4.2.2.0)
iTunes (Version: 11.1.1.11)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.5)
Java™ 7 Update 1 (64-bit) (Version: 7.0.10)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
K-Lite Codec Pack 10.0.0 Full (x32 Version: 10.0.0)
Logitech Gaming Software 5.10 (Version: 5.10.127)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Security Client (Version: 4.3.0215.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
MotoGP™13 (x32 Version: 1.00.0000)
Mouse Suite
Mozilla Firefox 11.0 (x86 en-US) (x32 Version: 11.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
My Dell (Version: 3.4.6308.28)
NETGATE Registry Cleaner
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA Optimus 1.10.8 (Version: 1.10.8)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Omerta - City of Gangsters (x32 Version: 2.0.0.4)
OpenAL (x32)
OpenVPN Client (x32 Version: 1.5.6)
PHOTOfunSTUDIO 8.1 AE (x32 Version: 8.01.510)
PhotoShowExpress (x32 Version: 2.0.063)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (x32 Version: 1.3.0)
Quickset64 (Version: 11.0.10)
Rapture3D 2.4.8 Game (x32)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6312)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.27.0)
Rockstar Games Social Club (x32 Version: 1.00.0000)
Roxio Activation Module (x32 Version: 1.0)
Roxio BackOnTrack (x32 Version: 1.3.3)
Roxio Burn (x32 Version: 1.8)
Roxio Creator Starter (x32 Version: 1.0.439)
Roxio Creator Starter (x32 Version: 12.1.77.0)
Roxio Creator Starter (x32 Version: 5.0.0)
Roxio Express Labeler 3 (x32 Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Samsung Link 1.7.0.1310170956 (Version: 1.7.0.1310170956)
Shared C Run-time for x64 (Version: 10.0.0)
Skype Click to Call (x32 Version: 6.13.13771)
Skype™ 6.5 (x32 Version: 6.5.158)
SmartSound Quicktracks for Premiere Elements 9.0 (x32 Version: 3.12.3090)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0)
Spybot - Search & Destroy (x32 Version: 1.6.2)
Synaptics Pointing Device Driver (Version: 15.2.6.0)
Tixati (x32)
Tweaking.com - Windows Repair (All in One) (x32 Version: 1.9.18)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
VirtualCloneDrive (x32)
Viscom Store RMVB Converter (x32)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1)
VLC media player 2.0.8 (x32 Version: 2.0.8)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Media Center Add-in for Silverlight (x32 Version: 4.7.3.0)
WinRAR 4.11 (64-bit) (Version: 4.11.0)
Zinio Reader 4 (x32 Version: 4.2.4164)

==================== Restore Points =========================

31-10-2013 09:55:36 Installed AVG 2014
31-10-2013 09:55:53 Installed AVG 2014
31-10-2013 10:00:48 Windows Update
01-11-2013 11:42:50 OTL Restore Point - 02/11/2013 00:42:46
02-11-2013 04:16:38 Windows Update
02-11-2013 07:31:27 Windows Update
02-11-2013 08:10:35 Windows Update
02-11-2013 08:38:37 Windows Update
03-11-2013 03:08:45 OTL Restore Point - 03/11/2013 16:08:45

==================== Hosts content: ==========================

2009-07-14 15:34 - 2013-11-03 16:08 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {06FE50D5-8E3B-48E3-8067-2776CCDC1F25} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {1067DB9D-FBCD-4E38-933C-903244C5B4C0} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {10D87B9E-B838-48B5-AED4-22CC4B473245} - System32\Tasks\{F7E0F4B7-216C-48D8-98CD-7D6ABD84F092} => Iexplore.exe http://ui.skype.com/...;page=tsInstall
Task: {1C95A167-9CA2-47E1-82E3-8C47F51B59F0} - System32\Tasks\Windows Backup and Restore Center => C:\Program Files (x86)\Common Files\Microsoft\Windows\Windows Recovery Environment\SDRSVC.exe [2013-10-31] (Microsoft Corporation)
Task: {25B45A37-79DB-49F4-A0D5-F98B0B4C84F4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-02] (Apple Inc.)
Task: {47D687E8-5A41-48E4-BFE8-1D4EA9B0BDF1} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2013-09-06] (PC-Doctor, Inc.)
Task: {491CC758-3584-48FB-A246-F5AB389DC216} - \SidebarExecute No Task File
Task: {5091373D-FED3-4F18-94DF-8FD5A1813A6E} - System32\Tasks\{6E11A7DA-D2E3-4A81-AFC7-4AF32BDA9E69} => Iexplore.exe http://ui.skype.com/...#38;page=tsBing
Task: {698268B5-E205-4D89-971E-A77A9BBFE23D} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2013-09-06] (PC-Doctor, Inc.)
Task: {77BF4695-428E-4BF2-A321-B9DC59728D54} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-18] (Adobe Systems Incorporated)
Task: {BC847255-0DB3-4AD9-897C-AA84A90CBB80} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {D5AB2372-DAF4-425F-96F7-12A24A33E4A8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-31] (Google Inc.)
Task: {EDBC2EFB-3FEA-47D3-AC9B-DB9A8148E1CD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-31] (Google Inc.)
Task: {FBDA7E07-D032-4CEB-B9C7-458A197A1108} - System32\Tasks\SystemToolsDailyTest => C:\Windows\System32\uaclauncher.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Windows Backup and Restore Center.job => C:\Program Files (x86)\Common Files\Microsoft\Windows\Windows Recovery Environment\SDRSVC.exe

==================== Loaded Modules (whitelisted) =============

2010-01-10 09:17 - 2010-01-10 09:17 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-01-21 14:40 - 2010-01-21 14:40 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2012-04-10 11:34 - 2012-02-18 08:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2012-01-20 16:01 - 2011-07-21 02:04 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-11-02 07:58 - 2011-11-02 07:58 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2013-10-26 11:09 - 2013-10-17 09:56 - 00012800 _____ () C:\Program Files\Samsung\Samsung Link\JniSys.dll
2013-10-26 11:09 - 2013-10-17 09:56 - 00043520 _____ () C:\Program Files\Samsung\Samsung Link\JniIO.dll
2013-10-01 12:00 - 2013-10-01 12:00 - 00036864 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\64bit\JNIInterface.dll
2013-10-01 12:00 - 2013-10-01 12:00 - 00144384 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\64bit\ASFAPI.dll
2013-10-01 12:01 - 2013-10-01 12:01 - 00018944 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\64bit\MediaDB_Manager.dll
2013-10-01 10:09 - 2013-10-01 10:09 - 00030720 _____ () C:\Windows\system32\MediaDB64.dll
2013-10-01 10:09 - 2013-10-01 10:09 - 00908800 _____ () C:\Windows\system32\ContentDirectoryPresenter64.dll
2013-10-01 12:01 - 2013-10-01 12:01 - 00521728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\64bit\DMS_Manager.dll
2013-07-23 19:19 - 2013-07-23 19:19 - 00049152 _____ () C:\Windows\system32\boost_date_time-vc90-mt-1_47.dll
2013-07-23 19:19 - 2013-07-23 19:19 - 00016896 _____ () C:\Windows\system32\boost_system-vc90-mt-1_47.dll
2013-07-23 19:19 - 2013-07-23 19:19 - 00058880 _____ () C:\Windows\system32\boost_thread-vc90-mt-1_47.dll
2013-07-23 19:19 - 2013-07-23 19:19 - 00299520 _____ () C:\Windows\system32\boost_serialization-vc90-mt-1_47.dll
2013-10-01 09:47 - 2013-10-01 09:47 - 01112576 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\DMSManager.dll
2013-10-01 09:11 - 2013-10-01 09:11 - 00706560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\ContentDirectoryPresenter.dll
2013-10-01 09:46 - 2013-10-01 09:46 - 00107008 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\DCMCDP.dll
2013-10-01 09:11 - 2013-10-01 09:11 - 00102400 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\FolderCDP.dll
2013-10-01 09:10 - 2013-10-01 09:10 - 00077312 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\MetadataFramework.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00520234 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\sqlite3.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00450560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\MoodExtractor.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 05717504 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\DCMImgExtractor.dll
2013-08-12 19:27 - 2013-08-12 19:27 - 00028672 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AutoChaptering.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00147456 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\libexpat.dll
2013-08-12 19:27 - 2013-08-12 19:27 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\VideoThumb.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 04671488 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\avcodec-52.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00070656 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\avutil-50.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00686080 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\avformat-52.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00152064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\swscale-0.dll
2013-08-09 17:07 - 2013-08-09 17:07 - 00028160 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AudioExtractor.dll
2013-08-09 17:07 - 2013-08-09 17:07 - 00064000 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\ID3Driver.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00366592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\tag.dll
2013-04-12 08:58 - 2013-04-12 08:58 - 00289792 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\libThumbnail.dll
2013-08-09 17:07 - 2013-08-09 17:07 - 00023040 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\RichInfoDriver.dll
2013-08-23 10:51 - 2013-08-23 10:51 - 00017920 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\VideoExtractor.dll
2013-08-23 10:51 - 2013-08-23 10:51 - 00117248 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\ThumbnailMaker.dll
2013-08-23 10:51 - 2013-08-23 10:51 - 01033216 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\ImageMagickWrapper.dll
2013-08-22 18:17 - 2013-08-22 18:17 - 00134144 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\VideoMetadataDriver.dll
2013-08-09 17:07 - 2013-08-09 17:07 - 00290816 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\libKeyFrame.dll
2013-08-09 17:07 - 2013-08-09 17:07 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\SECMetaDriver.dll
2013-08-23 10:51 - 2013-08-23 10:51 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\ImageExtractor.dll
2013-04-12 08:58 - 2013-04-12 08:58 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\photoDriver.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00399826 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\libexif-12.dll.dll
2013-08-09 17:07 - 2013-08-09 17:07 - 00013824 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\TextExtractor.dll
2013-10-01 09:47 - 2013-10-01 09:47 - 00032768 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\Autobackup.dll
2013-04-19 16:38 - 2013-04-19 16:38 - 00055808 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\RosettaAllShare.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00227840 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\boost_serialization-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00038912 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\boost_date_time-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00012800 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\boost_system-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00046592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\boost_thread-vc90-mt-1_47.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00044032 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\us.dll
2011-11-02 12:26 - 2011-11-02 12:26 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-02 12:26 - 2011-11-02 12:26 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-07-05 18:35 - 2009-07-05 18:35 - 00028160 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\servicemanager.pyd
2009-07-05 18:35 - 2009-07-05 18:35 - 00110592 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\pywintypes26.dll
2009-07-05 18:35 - 2009-07-05 18:35 - 00041472 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32service.pyd
2009-07-05 18:35 - 2009-07-05 18:35 - 00096256 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32api.pyd
2009-10-26 21:27 - 2009-10-26 21:27 - 00153088 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\pyexpat.pyd
2009-10-26 21:25 - 2009-10-26 21:25 - 00040448 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\_socket.pyd
2009-10-26 21:25 - 2009-10-26 21:25 - 00645120 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\_ssl.pyd
2010-03-17 01:05 - 2010-03-17 01:05 - 00020480 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\zope.interface._zope_interface_coptimizations.pyd
2009-10-26 21:27 - 2009-10-26 21:27 - 00311808 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\_hashlib.pyd
2009-10-26 21:25 - 2009-10-26 21:25 - 00073728 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\_ctypes.pyd
2009-10-26 21:27 - 2009-10-26 21:27 - 00011776 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\select.pyd
2010-05-06 01:44 - 2010-05-06 01:44 - 00010752 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.rand.pyd
2010-05-06 01:44 - 2010-05-06 01:44 - 00051200 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.crypto.pyd
2010-05-06 01:44 - 2010-05-06 01:44 - 00039936 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.SSL.pyd
2009-07-05 18:35 - 2009-07-05 18:35 - 00036352 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32process.pyd
2010-05-06 01:43 - 2010-05-06 01:43 - 00008192 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\twisted.protocols._c_urlarg.pyd
2009-07-05 18:35 - 2009-07-05 18:35 - 00110592 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32security.pyd
2009-07-05 18:35 - 2009-07-05 18:35 - 00017920 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32event.pyd
2009-07-06 16:16 - 2009-07-06 16:16 - 00111104 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32file.pyd
2009-07-05 18:35 - 2009-07-05 18:35 - 00024064 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32pipe.pyd
2013-09-14 13:51 - 2013-09-14 13:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 13:50 - 2013-09-14 13:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2012-02-02 00:44 - 2012-02-02 00:44 - 08151040 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
2012-02-02 00:44 - 2012-02-02 00:44 - 02278400 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
2010-01-10 09:18 - 2010-01-10 09:18 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-01-21 14:34 - 2010-01-21 14:34 - 08793952 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2013-11-03 16:11 - 2013-11-03 16:11 - 00098816 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32api.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00110080 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\pywintypes27.dll
2013-11-03 16:11 - 2013-11-03 16:11 - 00364544 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\pythoncom27.dll
2013-11-03 16:11 - 2013-11-03 16:11 - 00044032 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\_socket.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 01153024 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\_ssl.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00320512 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32com.shell.shell.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00711680 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\_hashlib.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 01175040 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\wx._core_.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00805888 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\wx._gdi_.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00811008 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\wx._windows_.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 01062400 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\wx._controls_.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00735232 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\wx._misc_.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00128512 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\_elementtree.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00127488 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\pyexpat.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00557056 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\pysqlite2._sqlite.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00087040 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\_ctypes.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00119808 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32file.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00108544 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32security.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00018432 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32event.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00038912 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32inet.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00122368 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\wx._wizard.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00686080 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\unicodedata.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00026624 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\_multiprocessing.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00070656 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\wx._html2.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00010240 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\select.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00025600 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32pdh.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00504832 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\windows._cacheinvalidation.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00011264 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32crypt.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00035840 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32process.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00017408 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32profile.pyd
2013-11-03 16:11 - 2013-11-03 16:11 - 00022528 _____ () C:\Users\Dom\AppData\Local\Temp\_MEI107442\win32ts.pyd
2010-11-25 17:44 - 2010-11-25 17:44 - 00375280 _____ () c:\program files (x86)\common files\roxio shared\dllshared\SQLite352.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\45695403.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\45695403.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Bluetooth Device (Personal Area Network)
Description: Bluetooth Device (Personal Area Network)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/03/2013 03:40:04 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2138

Error: (11/03/2013 03:40:04 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2138

Error: (11/03/2013 03:40:04 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/03/2013 01:42:10 AM) (Source: Application Hang) (User: )
Description: The program IEXPLORE.EXE version 10.0.9200.16720 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 5728

Start Time: 01ced7c8ccaf9f33

Termination Time: 24

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id: 2d672c69-43bc-11e3-b96e-848f69c42f15

Error: (11/03/2013 01:41:06 AM) (Source: Application Hang) (User: )
Description: The program IEXPLORE.EXE version 10.0.9200.16720 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 416c

Start Time: 01ced79da15ae05b

Termination Time: 43

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id: fdbe5e36-43bb-11e3-b96e-848f69c42f15

Error: (11/03/2013 01:39:46 AM) (Source: Application Hang) (User: )
Description: The program IEXPLORE.EXE version 10.0.9200.16720 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 524c

Start Time: 01ced7c62b8c10b4

Termination Time: 5

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id:

Error: (11/02/2013 09:38:47 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft Visual C++ 2005 Redistributable -- Error 1714.The older version of Microsoft Visual C++ 2005 Redistributable cannot be removed. Contact your technical support group. System Error 1612.

Error: (11/02/2013 09:38:47 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft Visual C++ 2005 Redistributable -- Error 1714.The older version of Microsoft Visual C++ 2005 Redistributable cannot be removed. Contact your technical support group. System Error 1612.

Error: (11/02/2013 09:10:44 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft Visual C++ 2005 Redistributable -- Error 1714.The older version of Microsoft Visual C++ 2005 Redistributable cannot be removed. Contact your technical support group. System Error 1612.

Error: (11/02/2013 09:10:44 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft Visual C++ 2005 Redistributable -- Error 1714.The older version of Microsoft Visual C++ 2005 Redistributable cannot be removed. Contact your technical support group. System Error 1612.


System errors:
=============
Error: (11/03/2013 04:13:21 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (11/03/2013 04:13:21 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (11/03/2013 04:12:38 PM) (Source: WMPNetworkSvc) (User: )
Description: A new media server was not initialized because RegisterRunningDevice() encountered error '0x80070005'. Restart your computer, and then restart the WMPNetworkSvc service.

Error: (11/03/2013 04:12:38 PM) (Source: WMPNetworkSvc) (User: )
Description: A new media server was not initialized because RegisterRunningDevice() encountered error '0x80070005'. Restart your computer, and then restart the WMPNetworkSvc service.

Error: (11/03/2013 04:09:14 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\IWMSSvc.dll

Error: (11/03/2013 04:09:14 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\IWMSSvc.dll

Error: (11/03/2013 04:09:14 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\IWMSSvc.dll

Error: (11/03/2013 04:09:09 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\IWMSSvc.dll

Error: (11/03/2013 04:07:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\IWMSSvc.dll

Error: (11/03/2013 03:40:02 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\IWMSSvc.dll


Microsoft Office Sessions:
=========================
Error: (11/03/2013 03:40:04 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2138

Error: (11/03/2013 03:40:04 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2138

Error: (11/03/2013 03:40:04 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/03/2013 01:42:10 AM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE10.0.9200.16720572801ced7c8ccaf9f3324C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE2d672c69-43bc-11e3-b96e-848f69c42f15

Error: (11/03/2013 01:41:06 AM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE10.0.9200.16720416c01ced79da15ae05b43C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEfdbe5e36-43bb-11e3-b96e-848f69c42f15

Error: (11/03/2013 01:39:46 AM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE10.0.9200.16720524c01ced7c62b8c10b45C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Error: (11/02/2013 09:38:47 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: Product: Microsoft Visual C++ 2005 Redistributable -- Error 1714.The older version of Microsoft Visual C++ 2005 Redistributable cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (11/02/2013 09:38:47 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: Product: Microsoft Visual C++ 2005 Redistributable -- Error 1714.The older version of Microsoft Visual C++ 2005 Redistributable cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (11/02/2013 09:10:44 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: Product: Microsoft Visual C++ 2005 Redistributable -- Error 1714.The older version of Microsoft Visual C++ 2005 Redistributable cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (11/02/2013 09:10:44 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: Product: Microsoft Visual C++ 2005 Redistributable -- Error 1714.The older version of Microsoft Visual C++ 2005 Redistributable cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)


CodeIntegrity Errors:
===================================
Date: 2013-10-31 18:51:16.504
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-31 18:51:16.472
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-30 14:48:40.061
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3hub.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-30 14:48:39.967
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3hub.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-30 04:14:22.218
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3hub.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-30 04:14:22.140
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3hub.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-27 22:31:51.825
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3hub.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-27 22:31:51.747
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3hub.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-26 11:05:01.764
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3hub.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-10-26 11:05:01.655
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3hub.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP