Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Possible infection, wireless indicator has a red cross through but is

Started by Dom2276 , Oct 01 2013 12:51 AM

  • This topic is locked This topic is locked

#76
CompCav
Posted 03 November 2013 - 06:11 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Step 1

Download the enclosed file.
Attached File  fixlist.txt   209bytes   117 downloads
Save it to the desktop.

Run FRST as you did before, except that this time around click on the Fix button.

The tool will make a log on the desktop (Fixlog.txt) please post it it your reply.



Step 2


Download and Install Combofix

Delete your current copy of ComboFix.
Download a fresh copy of ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
  • Double click on ComboFix.exe & follow the prompts.
  • Accept the disclaimer and allow to update if it asks

    Posted Image

    Posted Image
  • When finished, it shall produce a log for you.
  • Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programs being marked for deletion then reboot, that will cure it.



Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now



Step 3

Please post:

Fixlog.txt
ComboFix.txt


Also please update me on the current issues with this computer.
  • 0

Advertisements

#77
Dom2276
Posted 04 November 2013 - 02:01 AM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
ComboFix 13-11-03.02 - Dom 04/11/2013 20:41:26.4.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.8086.4785 [GMT 13:00]
Running from: c:\users\Dom\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\TEMP\sqlite-3.7.2-sqlitejdbc.dll
.
.
((((((((((((((((((((((((( Files Created from 2013-10-04 to 2013-11-04 )))))))))))))))))))))))))))))))
.
.
2013-11-04 07:52 . 2013-11-04 07:52 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-11-04 07:52 . 2013-11-04 07:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-11-03 03:17 . 2013-11-03 03:17 -------- d-----w- C:\FRST
2013-10-31 10:00 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2013-10-31 10:00 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2013-10-31 10:00 . 2012-08-24 18:13 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2013-10-31 10:00 . 2012-08-24 18:09 458712 ----a-w- c:\windows\system32\drivers\cng.sys
2013-10-31 10:00 . 2012-08-24 18:05 340992 ----a-w- c:\windows\system32\schannel.dll
2013-10-31 10:00 . 2012-08-24 18:03 1448448 ----a-w- c:\windows\system32\lsasrv.dll
2013-10-31 10:00 . 2012-08-24 16:57 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-10-31 10:00 . 2012-08-24 16:57 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2013-10-31 10:00 . 2012-08-24 16:53 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2013-10-31 09:56 . 2013-10-31 09:57 -------- d-----w- c:\programdata\AVG2014
2013-10-31 09:56 . 2013-10-31 09:56 -------- d-----w- C:\$AVG
2013-10-31 09:55 . 2013-10-31 09:55 -------- d-----w- c:\program files (x86)\AVG
2013-10-31 09:53 . 2013-11-04 04:57 -------- d-----w- c:\programdata\MFAData
2013-10-31 08:01 . 2013-10-31 10:09 -------- d-----w- c:\windows\system32\catroot2
2013-10-31 07:47 . 2013-10-31 07:47 -------- d-----w- c:\program files (x86)\Common Files\Microsoft
2013-10-31 07:43 . 2013-10-30 12:12 -------- d-----w- c:\windows\Panther
2013-10-31 07:24 . 2013-10-30 11:50 -------- d-----w- C:\$WINDOWS.~Q
2013-10-31 07:04 . 2013-10-31 07:15 -------- d-----w- C:\$INPLACE.~TR
2013-10-31 00:59 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-10-31 00:59 . 2013-04-17 06:24 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-10-30 23:58 . 2013-10-30 23:59 -------- d-----w- C:\WINSSLog
2013-10-30 21:46 . 2013-09-04 12:12 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2013-10-30 21:46 . 2013-09-04 12:11 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-10-30 21:46 . 2013-09-04 12:11 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-10-30 21:46 . 2013-09-04 12:11 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys
2013-10-30 21:46 . 2013-09-04 12:11 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2013-10-30 21:46 . 2013-09-04 12:11 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2013-10-30 21:46 . 2013-09-04 12:11 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2013-10-30 14:47 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-10-30 14:40 . 2011-12-30 06:26 515584 ----a-w- c:\windows\system32\timedate.cpl
2013-10-30 14:40 . 2011-12-30 05:27 478720 ----a-w- c:\windows\SysWow64\timedate.cpl
2013-10-30 14:39 . 2013-07-19 01:58 2048 ----a-w- c:\windows\system32\tzres.dll
2013-10-30 14:39 . 2013-07-19 01:41 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2013-10-30 14:29 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-10-30 14:29 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2013-10-30 14:29 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2013-10-30 14:27 . 2012-11-02 05:59 478208 ----a-w- c:\windows\system32\dpnet.dll
2013-10-30 14:26 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2013-10-30 14:24 . 2012-08-11 00:56 715776 ----a-w- c:\windows\system32\kerberos.dll
2013-10-30 14:23 . 2013-08-29 00:49 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-10-30 14:23 . 2012-03-17 07:58 75120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2013-10-30 14:23 . 2012-04-07 12:31 3216384 ----a-w- c:\windows\system32\msi.dll
2013-10-30 14:23 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\SysWow64\msi.dll
2013-10-30 14:23 . 2013-10-14 07:12 10280728 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{676E6E38-6754-44FC-AD59-EFF4828D470D}\mpengine.dll
2013-10-30 14:16 . 2012-11-30 05:45 362496 ----a-w- c:\windows\system32\wow64win.dll
2013-10-30 14:16 . 2012-11-30 05:45 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2013-10-30 14:16 . 2012-11-30 05:43 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2013-10-30 14:15 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2013-10-30 14:15 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2013-10-30 14:15 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2013-10-30 14:15 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2013-10-30 14:15 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2013-10-30 14:15 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2013-10-30 14:15 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2013-10-30 14:13 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-10-30 14:13 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-10-30 13:48 . 2013-04-10 05:48 1732608 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2013-10-30 13:48 . 2013-04-10 05:46 1367040 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-10-30 13:48 . 2013-04-10 05:03 936448 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-10-30 13:48 . 2013-04-10 05:46 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2013-10-30 13:48 . 2013-04-10 05:46 1393152 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2013-10-30 13:48 . 2013-01-03 06:00 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-10-30 13:48 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2013-10-30 13:48 . 2011-02-18 10:51 31232 ----a-w- c:\windows\system32\prevhost.exe
2013-10-30 13:48 . 2011-02-18 05:39 31232 ----a-w- c:\windows\SysWow64\prevhost.exe
2013-10-30 13:48 . 2013-01-24 06:01 223752 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-10-30 13:48 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2013-10-30 13:48 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2013-10-30 13:47 . 2011-02-12 11:34 267776 ----a-w- c:\windows\system32\FXSCOVER.exe
2013-10-30 13:47 . 2011-05-03 05:29 976896 ----a-w- c:\windows\system32\inetcomm.dll
2013-10-30 13:47 . 2011-05-03 04:30 741376 ----a-w- c:\windows\SysWow64\inetcomm.dll
2013-10-30 13:47 . 2011-12-16 08:46 634880 ----a-w- c:\windows\system32\msvcrt.dll
2013-10-30 13:47 . 2011-12-16 07:52 690688 ----a-w- c:\windows\SysWow64\msvcrt.dll
2013-10-30 13:22 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-10-30 13:04 . 2013-09-25 12:46 80541720 ----a-w- c:\windows\system32\MRT.exe
2013-10-30 13:00 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2013-10-30 13:00 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2013-10-30 13:00 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2013-10-30 13:00 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2013-10-30 13:00 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2013-10-30 12:46 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2013-10-30 12:46 . 2011-08-27 05:37 861696 ----a-w- c:\windows\system32\oleaut32.dll
2013-10-30 12:46 . 2011-08-27 05:37 331776 ----a-w- c:\windows\system32\oleacc.dll
2013-10-30 12:46 . 2011-08-27 04:26 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
2013-10-30 12:46 . 2011-08-27 04:26 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2013-10-30 12:46 . 2013-08-01 12:09 983488 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-10-30 12:46 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-10-30 12:46 . 2011-02-23 04:55 90624 ----a-w- c:\windows\system32\drivers\bowser.sys
2013-10-30 12:46 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll
2013-10-30 12:46 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2013-10-30 12:46 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2013-10-30 12:39 . 2013-10-30 12:39 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-10-30 12:37 . 2013-10-30 12:37 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-10-30 12:37 . 2013-10-30 12:37 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-10-30 12:24 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2013-10-30 12:24 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2013-10-30 12:24 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2013-10-30 12:13 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2013-10-30 12:13 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2013-10-30 12:13 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2013-10-30 12:13 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2013-10-30 12:13 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2013-10-30 12:13 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2013-10-30 12:13 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2013-10-30 12:13 . 2012-06-02 02:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2013-10-30 12:13 . 2012-06-02 02:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2013-10-30 12:12 . 2013-10-30 12:12 -------- d-----w- C:\Recovery
2013-10-30 11:41 . 2013-10-30 11:41 -------- d-----w- c:\users\Default\Roaming
2013-10-30 11:41 . 2013-11-04 07:54 -------- d-----w- c:\users\Default\AppData\Local\SoftThinks
2013-10-30 11:41 . 2013-10-30 11:41 -------- d-----w- c:\users\Default\AppData\Local\Google
2013-10-30 10:51 . 2013-10-30 11:39 -------- d-----w- c:\users\UpdatusUser
2013-10-30 10:51 . 2013-10-31 09:22 -------- d-----w- c:\users\Dom
2013-10-30 10:49 . 2012-10-02 19:51 3536817 ----a-w- c:\windows\system32\nvcoproc.bin
2013-10-30 10:49 . 2012-10-02 19:51 3293544 ----a-w- c:\windows\system32\nvsvc64.dll
2013-10-30 10:49 . 2012-10-02 19:51 6200680 ----a-w- c:\windows\system32\nvcpl.dll
2013-10-30 10:49 . 2012-10-02 19:50 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2013-10-30 10:49 . 2012-10-02 19:50 866664 ----a-w- c:\windows\system32\nv3dappshext.dll
2013-10-30 10:49 . 2012-10-02 19:50 63336 ----a-w- c:\windows\system32\nvshext.dll
2013-10-30 10:49 . 2012-10-02 19:50 55144 ----a-w- c:\windows\system32\nv3dappshextr.dll
2013-10-30 10:49 . 2012-10-02 19:50 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2013-10-30 10:49 . 2012-10-02 19:50 118120 ----a-w- c:\windows\system32\nvmctray.dll
2013-10-30 10:49 . 2013-10-30 10:49 -------- d-----w- c:\programdata\NVIDIA Corporation
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-31 07:56 . 2013-05-22 02:18 181064 ----a-w- c:\windows\PSEXESVC.EXE
2013-10-31 06:57 . 2013-10-04 20:29 3178 ----a-w- C:\FixitRegBackup.reg
2013-10-18 05:20 . 2012-03-29 22:17 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-10-18 05:20 . 2012-01-20 01:56 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-06 19:59 . 2012-01-20 03:01 505128 ----a-w- c:\windows\SysWow64\msvcp71.dll
2013-10-06 19:59 . 2012-01-20 03:01 353576 ----a-w- c:\windows\SysWow64\msvcr71.dll
2013-10-06 19:59 . 2012-01-20 03:01 29480 ----a-w- c:\windows\SysWow64\msxml3a.dll
2013-09-30 21:09 . 2013-09-30 21:09 30720 ----a-w- c:\windows\system32\MediaDB64.dll
2013-09-30 21:09 . 2013-09-30 21:09 908800 ----a-w- c:\windows\system32\ContentDirectoryPresenter64.dll
2013-09-30 20:46 . 2013-09-30 20:46 25600 ----a-w- c:\windows\SysWow64\MediaDB.dll
2013-09-30 20:11 . 2013-09-30 20:11 706560 ----a-w- c:\windows\SysWow64\ContentDirectoryPresenter.dll
2013-09-25 08:07 . 2013-09-25 08:07 148792 ----a-w- c:\windows\system32\drivers\avgdiska.sys
2013-09-10 23:17 . 2013-09-10 23:17 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-09-10 05:19 . 2013-06-24 07:50 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-09-08 09:11 . 2013-09-08 09:11 31544 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2013-09-03 01:35 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-09-01 21:59 . 2013-09-01 21:59 212280 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2013-09-01 21:29 . 2013-09-01 21:29 294712 ----a-w- c:\windows\system32\drivers\avgloga.sys
2013-09-01 21:26 . 2013-09-01 21:26 192824 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2013-09-01 21:26 . 2013-09-01 21:26 241464 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2013-08-29 01:48 . 2013-10-30 14:24 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-08-20 09:53 . 2013-08-20 09:53 123704 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AppleIEDAV"="c:\program files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe" [2013-09-04 1315144]
"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2013-09-15 59720]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2013-09-25 20133824]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2013-09-14 59720]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-01-30 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AccuWeatherWidget"="c:\program files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" [2012-02-01 968048]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-05-10 37960]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"BDRegion"="c:\program files (x86)\Cyberlink\Shared Files\brs.exe" [2013-04-03 181208]
"CanonQuickMenu"="c:\program files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" [2012-04-03 1273448]
"Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2011-04-13 503942]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" [2010-11-17 514544]
"IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2009-05-19 136544]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-09-30 152392]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
"PDVD9LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD9\Language\Language.exe" [2010-09-18 50472]
"RemoteControl9"="c:\program files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [2010-10-01 87336]
"RIMBBLaunchAgent.exe"="c:\program files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-11-02 90448]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]
"AVG_UI"="c:\program files (x86)\AVG\AVG2014\avgui.exe" [2013-10-07 4908592]
.
c:\users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Intel® Turbo Boost Technology Monitor 2.0.lnk - c:\program files\Intel\TurboBoost\SignalIslandUi.exe [2010-11-30 204288]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
PHOTOfunSTUDIO 8.1 AE.lnk - c:\program files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe -e "c:\program files (x86)\Panasonic\PHOTOfunSTUDIO 8.1 AE\PHOTOfunSTUDIO.exe" [2012-10-18 229048]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 CLKMSVC10_9EC60124;CyberLink Product - 2012/01/19 21:01;c:\program files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe;c:\program files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 hitmanpro36;Hitman Pro 3.5 Support Driver;c:\windows\system32\drivers\hitmanpro36.sys;c:\windows\SYSNATIVE\drivers\hitmanpro36.sys [x]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys;c:\windows\SYSNATIVE\drivers\Impcd.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 NvStUSB;NVIDIA Stereoscopic 3D USB driver;c:\windows\system32\drivers\nvstusb.sys;c:\windows\SYSNATIVE\drivers\nvstusb.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TurboBoost;Intel® Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 MDFSYSNT;MacDrive file system driver; [x]
S0 MDPMGRNT;MacDrive Partition Driver;c:\windows\system32\DRIVERS\MDPMGRNT.SYS;c:\windows\SYSNATIVE\DRIVERS\MDPMGRNT.SYS [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys;c:\windows\SYSNATIVE\DRIVERS\stdcfltn.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 CBDisk;CBDisk;c:\windows\system32\drivers\CBDisk.sys;c:\windows\SYSNATIVE\drivers\CBDisk.sys [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvkflt.sys [x]
S2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AllShare Framework DMS;AllShare Framework DMS;c:\program files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe;c:\program files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 M4LIC;Mediafour M4LIC service;c:\program files (x86)\Common Files\Mediafour\M4LIC.EXE;c:\program files (x86)\Common Files\Mediafour\M4LIC.EXE [x]
S2 MacDrive8Service;MacDrive 8 service;c:\program files\Mediafour\MacDrive 8\MacDrive8Service.exe;c:\program files\Mediafour\MacDrive 8\MacDrive8Service.exe [x]
S2 NGRegClnSrv;NETGATE Registry Cleaner Service;c:\program files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe;c:\program files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe [x]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
S2 OpenVPNAccessClient;OpenVPN Access Client;c:\program files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe;c:\program files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [x]
S2 Samsung Link Service;Samsung Link Service;c:\program files\Samsung\Samsung Link\Samsung Link.exe;c:\program files\Samsung\Samsung Link\Samsung Link.exe [x]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [x]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys;c:\windows\SYSNATIVE\DRIVERS\Accelern.sys [x]
S3 AVer7231_x64;AVerMedia 7231 capture service;c:\windows\system32\DRIVERS\AVer7231_x64.sys;c:\windows\SYSNATIVE\DRIVERS\AVer7231_x64.sys [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys;c:\windows\SYSNATIVE\DRIVERS\CtClsFlt.sys [x]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 qicflt;upper Device Filter Driver;c:\windows\system32\DRIVERS\qicflt.sys;c:\windows\SYSNATIVE\DRIVERS\qicflt.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - CLKMDRV10_9EC60124
.
Contents of the 'Scheduled Tasks' folder
.
2013-11-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 05:20]
.
2013-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-01-30 12:39]
.
2013-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-01-30 12:39]
.
2013-11-04 c:\windows\Tasks\Windows Backup and Restore Center.job
- c:\program files (x86)\Common Files\Microsoft\Windows\Windows Recovery Environment\SDRSVC.exe [2013-10-31 07:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-09-25 04:37 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-05 416024]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2011-02-18 6611048]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-01-18 2188904]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-07-29 497648]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-10-18 10357008]
"CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2009-03-18 767312]
"FreeFallProtection"="c:\program files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe" [2010-12-17 686704]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"Mouse Suite 98 Daemon"="ICO.EXE" [2006-09-29 90624]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 190536]
"Samsung Link"="c:\program files\Samsung\Samsung Link\Samsung Link Tray Agent.exe" [2013-10-16 597576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.google.co.nz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: network.proxy.type -
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-45695403.sys
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-MacDrive volume icons - (no file)
AddRemove-dBpoweramp DSP Effects - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Music Converter - c:\windows\system32\SpoonUninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
c:\program files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Completion time: 2013-11-04 21:00:43 - machine was rebooted
ComboFix-quarantined-files.txt 2013-11-04 08:00
ComboFix2.txt 2013-10-31 06:18
ComboFix3.txt 2013-10-03 23:02
.
Pre-Run: 25,338,847,232 bytes free
Post-Run: 25,681,436,672 bytes free
.
- - End Of File - - 22ED5D53F492AD5619E2E2FBEBFD6AD2
  • 0

#78
Dom2276
Posted 04 November 2013 - 02:03 AM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 31-10-2013
Ran by Dom at 2013-11-04 20:36:53 Run:1
Running from C:\Users\Dom\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
C:\Users\Dom\AppData\Local\Temp\_MEI107442



*****************

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => Value deleted successfully.
HKCR\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => Key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\skype-ie-addon-data => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => Key not found.
C:\Users\Dom\AppData\Local\Temp\_MEI107442 => Moved successfully.

==== End of Fixlog ====
  • 0

#79
Dom2276
Posted 04 November 2013 - 02:05 AM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Computer is running fine, shall I try windows updates?
  • 0

#80
CompCav
Posted 04 November 2013 - 06:00 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Yes and if it does not update please let me know any updates that do not work.
  • 0

#81
Dom2276
Posted 05 November 2013 - 12:41 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Same 5 updates loop. 4 install and 1 fails and the it all starts again. Her are the offending items.

Security Update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (KB2538242)

Installation date: ‎06/‎11/‎2013 07:27

Installation status: Successful

Update type: Important

A security issue has been identified leading to MFC application vulnerability in DLL planting due to MFC not specifying the full path to system/localization DLLs. You can protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

More information:
http://go.microsoft..../?LinkId=216804

Help and Support:
http://support.microsoft.com

Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2600217)

Installation date: ‎06/‎11/‎2013 07:32

Installation status: Successful

Update type: Recommended

This update addresses stability, reliability, and performance issues in Microsoft .NET Framework 4. After you install this item, you may have to restart your computer.

More information:
http://go.microsoft..../?LinkId=232526

Help and Support:
http://support.microsoft.com


Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2533523)

Installation date: ‎06/‎11/‎2013 07:36

Installation status: Successful

Update type: Recommended

This update addresses stability, reliability, and performance issues in Microsoft .NET Framework 4. After you install this item, you may have to restart your computer.

More information:
http://go.microsoft..../?LinkId=219466

Help and Support:
http://support.microsoft.com

Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2487367)

Installation date: ‎06/‎11/‎2013 07:36

Installation status: Successful

Update type: Important

A security issue has been identified that could allow an attacker to compromise your Windows-based system that is running the Microsoft .NET Framework and gain access to information. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

More information:
http://go.microsoft..../?LinkID=242826

Help and Support:
http://support.microsoft.com


Security Update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2538243)

Installation date: ‎06/‎11/‎2013 07:36

Installation status: Failed

Error details: Code 64C

Update type: Important

A security issue has been identified leading to MFC application vulnerability in DLL planting due to MFC not specifying the full path to system/localization DLLs. You can protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

More information:
http://go.microsoft..../?LinkId=216803

Help and Support:
http://support.microsoft.com
  • 0

#82
CompCav
Posted 05 November 2013 - 04:44 PM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
OK we may have the infection come back due to Google Sync based on our recent experience with the main infection you have had twice so please do these two scans:


Step 1


  • Right click on the OTL icon and select Run as administrator to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Select Scan All Users
  • Select Lop Check and Purity Check
  • Under the Custom Scan box paste this in
    netsvcs
    BASESERVICES
    %SYSTEMDRIVE%\*.exe
    /md5start
    consrv.dll
    explorer.exe
    winlogon.exe
    Userinit.exe
    services.*
    svchost.exe
    /md5stop
    C:\Windows\assembly\tmp\U\*.* /s
    C:\Program Files\Common Files\ComObjects\*.* /s
    C:\windows\*. /RP /s
    dir C:\ /S /A:L /C
    CREATERESTOREPOINT
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan will not take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt
  • Post the log


Step 2

  • Right click to run as administrator. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.


Step 3

Please post:

OTL.txt
FRST.txt


Also please let me know if there are any other issues remaining besides the updates that fail.
  • 0

#83
Dom2276
Posted 05 November 2013 - 07:01 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
No other problems now other than windows update.

OTL logfile created on: 06/11/2013 13:46:04 - Run 7
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dom\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

7.90 Gb Total Physical Memory | 4.46 Gb Available Physical Memory | 56.53% Memory free
15.79 Gb Paging File | 11.69 Gb Available in Paging File | 74.03% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 679.00 Gb Total Space | 23.66 Gb Free Space | 3.48% Space Free | Partition Type: NTFS

Computer Name: DOM-PC | User Name: Dom | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/10/18 18:17:05 | 000,310,352 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2013/10/07 19:54:20 | 004,908,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe
PRC - [2013/10/03 22:00:24 | 003,538,480 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
PRC - [2013/10/01 12:02:38 | 000,755,080 | ---- | M] (Samsung) -- C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
PRC - [2013/09/30 19:21:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.exe
PRC - [2013/09/25 21:47:22 | 000,301,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
PRC - [2013/09/25 17:37:00 | 020,133,824 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
PRC - [2013/09/16 13:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2013/09/16 02:34:06 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
PRC - [2013/09/14 15:38:54 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
PRC - [2013/09/14 15:27:52 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
PRC - [2013/09/05 04:23:44 | 001,315,144 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
PRC - [2013/05/10 12:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/03 15:00:46 | 000,181,208 | ---- | M] (cyberlink) -- C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
PRC - [2012/10/03 02:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012/02/02 00:50:58 | 000,968,048 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
PRC - [2012/01/12 04:00:22 | 000,229,048 | ---- | M] (Panasonic Corporation) -- C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe
PRC - [2011/11/02 15:00:44 | 000,090,448 | ---- | M] (Research In Motion Limited) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
PRC - [2011/10/19 06:50:10 | 001,001,808 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2011/10/19 06:50:04 | 001,354,064 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
PRC - [2011/10/19 06:49:52 | 000,936,272 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2011/10/19 06:49:48 | 000,846,160 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
PRC - [2011/09/23 05:14:16 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/09/23 05:11:26 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/09/23 05:06:12 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/09/22 05:30:12 | 004,109,312 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011/09/17 03:39:24 | 000,115,048 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2011/04/14 05:39:14 | 000,503,942 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2010/12/21 13:24:38 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/12/21 13:24:36 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/12/18 05:25:22 | 000,686,704 | ---- | M] () -- C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
PRC - [2010/11/18 05:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2010/10/02 11:55:28 | 000,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe
PRC - [2010/09/30 22:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2010/08/13 05:45:00 | 000,024,064 | ---- | M] () -- C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
PRC - [2009/07/29 23:54:36 | 000,205,312 | ---- | M] (Mediafour Corporation) -- C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE
PRC - [2009/05/20 06:11:52 | 000,136,544 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe


========== Modules (No Company Name) ==========

MOD - [2013/11/06 11:20:09 | 001,358,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\c5f2c02bd940c74019ed4a183c7830c0\System.WorkflowServices.ni.dll
MOD - [2013/11/06 11:19:43 | 001,707,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\c94852f43f7ac59fcbe4c54b119788d2\System.ServiceModel.Web.ni.dll
MOD - [2013/11/06 11:19:39 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\96afc74588c6581e299884469ea0dced\System.Xml.Linq.ni.dll
MOD - [2013/11/06 11:19:10 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a2920ed81e097f8551231a9350697bbd\PresentationFramework.Aero.ni.dll
MOD - [2013/11/06 11:18:38 | 014,340,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\bcf51dc88597d0835c819a2d5a755b74\PresentationFramework.ni.dll
MOD - [2013/11/06 11:18:29 | 012,238,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\51478a61dbd40488e320a0061e23c4df\PresentationCore.ni.dll
MOD - [2013/11/06 11:18:21 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\4eef5a3a4d0ed6d6fd882947a70df530\WindowsBase.ni.dll
MOD - [2013/11/06 11:17:33 | 001,084,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\a42743bb1ed71d59b6594b67cf6c9384\System.IdentityModel.ni.dll
MOD - [2013/11/06 11:17:31 | 002,347,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e043ad64456256a8ee5b934e227d9782\System.Runtime.Serialization.ni.dll
MOD - [2013/11/06 11:17:30 | 000,256,000 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\1327ad2637aab17189c5461fbf30dc19\SMDiagnostics.ni.dll
MOD - [2013/11/06 11:17:29 | 017,477,632 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\4774201dc923674852e089053f76e76e\System.ServiceModel.ni.dll
MOD - [2013/11/06 11:16:56 | 011,914,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\6ebbfafc5521934f7e1c154937a2788b\System.Web.ni.dll
MOD - [2013/11/06 11:16:42 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ef0a534be135cd8f0d99d938d8b1814a\System.Windows.Forms.ni.dll
MOD - [2013/11/06 11:16:37 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013/11/06 11:16:29 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\8f5b881951592b2fd05f710650bf7e04\System.Core.ni.dll
MOD - [2013/11/06 11:16:23 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
MOD - [2013/11/06 11:16:20 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29f3ae8d313e62b4daed1107ccd29f9f\System.Configuration.ni.dll
MOD - [2013/11/06 11:16:19 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013/11/06 11:16:15 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2013/11/06 07:23:20 | 000,805,888 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\wx._gdi_.pyd
MOD - [2013/11/06 07:23:20 | 000,557,056 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\pysqlite2._sqlite.pyd
MOD - [2013/11/06 07:23:20 | 000,320,512 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32com.shell.shell.pyd
MOD - [2013/11/06 07:23:20 | 000,128,512 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\_elementtree.pyd
MOD - [2013/11/06 07:23:20 | 000,098,816 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32api.pyd
MOD - [2013/11/06 07:23:20 | 000,070,656 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\wx._html2.pyd
MOD - [2013/11/06 07:23:20 | 000,044,032 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\_socket.pyd
MOD - [2013/11/06 07:23:20 | 000,026,624 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\_multiprocessing.pyd
MOD - [2013/11/06 07:23:20 | 000,022,528 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32ts.pyd
MOD - [2013/11/06 07:23:20 | 000,011,264 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32crypt.pyd
MOD - [2013/11/06 07:23:19 | 001,175,040 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\wx._core_.pyd
MOD - [2013/11/06 07:23:19 | 001,153,024 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\_ssl.pyd
MOD - [2013/11/06 07:23:19 | 001,062,400 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\wx._controls_.pyd
MOD - [2013/11/06 07:23:19 | 000,811,008 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\wx._windows_.pyd
MOD - [2013/11/06 07:23:19 | 000,735,232 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\wx._misc_.pyd
MOD - [2013/11/06 07:23:19 | 000,711,680 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\_hashlib.pyd
MOD - [2013/11/06 07:23:19 | 000,686,080 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\unicodedata.pyd
MOD - [2013/11/06 07:23:19 | 000,504,832 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\windows._cacheinvalidation.pyd
MOD - [2013/11/06 07:23:19 | 000,364,544 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\pythoncom27.dll
MOD - [2013/11/06 07:23:19 | 000,127,488 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\pyexpat.pyd
MOD - [2013/11/06 07:23:19 | 000,122,368 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\wx._wizard.pyd
MOD - [2013/11/06 07:23:19 | 000,119,808 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32file.pyd
MOD - [2013/11/06 07:23:19 | 000,110,080 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\PyWinTypes27.dll
MOD - [2013/11/06 07:23:19 | 000,108,544 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32security.pyd
MOD - [2013/11/06 07:23:19 | 000,087,040 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\_ctypes.pyd
MOD - [2013/11/06 07:23:19 | 000,038,912 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32inet.pyd
MOD - [2013/11/06 07:23:19 | 000,035,840 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32process.pyd
MOD - [2013/11/06 07:23:19 | 000,025,600 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32pdh.pyd
MOD - [2013/11/06 07:23:19 | 000,018,432 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32event.pyd
MOD - [2013/11/06 07:23:19 | 000,017,408 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\win32profile.pyd
MOD - [2013/11/06 07:23:19 | 000,010,240 | ---- | M] () -- C:\Users\Dom\AppData\Local\Temp\_MEI91802\select.pyd
MOD - [2013/09/14 13:51:02 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
MOD - [2013/09/14 13:50:36 | 001,242,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
MOD - [2012/02/02 00:50:58 | 000,968,048 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
MOD - [2012/02/02 00:44:34 | 008,151,040 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
MOD - [2012/02/02 00:44:34 | 002,278,400 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
MOD - [2011/11/02 12:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/02 12:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/09/23 05:14:16 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2010/12/18 05:25:22 | 000,686,704 | ---- | M] () -- C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
MOD - [2010/11/25 17:44:02 | 000,375,280 | ---- | M] () -- c:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
MOD - [2010/11/18 05:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
MOD - [2010/01/21 14:34:10 | 008,793,952 | ---- | M] () -- C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2010/01/10 09:18:18 | 004,254,560 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF


========== Services (SafeList) ==========

SRV:64bit: - [2013/10/17 09:56:38 | 000,605,768 | ---- | M] (Copyright 2013 SAMSUNG) [Auto | Running] -- C:\Program Files\Samsung\Samsung Link\Samsung Link.exe -- (Samsung Link Service)
SRV:64bit: - [2013/10/01 12:03:26 | 000,404,360 | ---- | M] (Samsung) [Auto | Running] -- C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe -- (AllShare Framework DMS)
SRV:64bit: - [2013/05/27 18:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013/02/21 18:03:56 | 000,618,832 | ---- | M] (NETGATE Technologies s.r.o.) [Auto | Running] -- C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe -- (NGRegClnSrv)
SRV:64bit: - [2011/11/02 08:37:56 | 001,518,352 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2011/11/02 08:25:42 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2011/11/02 08:22:28 | 000,844,560 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2011/10/21 13:33:22 | 000,135,440 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2011/10/20 09:25:00 | 000,661,504 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2010/11/30 10:00:56 | 000,149,504 | ---- | M] (Intel® Corporation) [On_Demand | Running] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/23 13:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/01/07 23:16:32 | 000,218,112 | ---- | M] (Mediafour Corporation) [Auto | Running] -- C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe -- (MacDrive8Service)
SRV:64bit: - [2009/11/18 15:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV - [2013/10/18 18:20:33 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/10/03 22:00:24 | 003,538,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/09/25 21:47:22 | 000,301,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe -- (avgwd)
SRV - [2013/09/16 13:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/06/04 04:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/10 12:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/03 15:00:46 | 000,247,768 | ---- | M] (CyberLink) [Auto | Stopped] -- c:\Program Files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe -- (CLKMSVC10_9EC60124)
SRV - [2012/10/09 00:42:54 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/10/03 02:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/10/19 06:50:10 | 001,001,808 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2011/10/19 06:50:04 | 001,354,064 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2011/10/19 06:49:52 | 000,936,272 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2011/09/23 05:06:12 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2010/12/21 13:24:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/12/21 13:24:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/11/26 00:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/26 00:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/09/30 22:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0)
SRV - [2010/08/26 15:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/08/13 05:45:00 | 000,024,064 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe -- (OpenVPNAccessClient)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/29 23:54:36 | 000,205,312 | ---- | M] (Mediafour Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE -- (M4LIC)
SRV - [2009/06/11 10:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/09/25 21:07:30 | 000,148,792 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgdiska.sys -- (Avgdiska)
DRV:64bit: - [2013/09/08 22:11:42 | 000,031,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2013/09/02 10:59:14 | 000,212,280 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2013/09/02 10:29:18 | 000,294,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2013/09/02 10:26:50 | 000,192,824 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2013/09/02 10:26:42 | 000,241,464 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2013/08/20 22:53:58 | 000,123,704 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2013/08/01 16:07:06 | 000,251,192 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2013/06/19 09:50:08 | 000,139,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2013/02/09 03:45:38 | 000,036,736 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901)
DRV:64bit: - [2012/10/09 00:42:36 | 000,030,056 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2012/10/09 00:42:14 | 000,284,008 | ---- | M] (NVIDIA Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nvkflt.sys -- (nvkflt)
DRV:64bit: - [2012/08/24 03:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/24 03:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/24 03:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/08/22 01:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/06/30 11:53:19 | 000,030,496 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hitmanpro36.sys -- (hitmanpro36)
DRV:64bit: - [2012/03/01 19:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/12/10 08:45:00 | 000,060,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2011/12/02 14:57:06 | 008,615,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64)
DRV:64bit: - [2011/11/15 14:13:00 | 000,327,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2011/09/14 05:14:44 | 000,212,992 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/09/14 05:14:42 | 000,095,744 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/07/21 02:39:58 | 012,287,456 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/06/10 19:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/11 19:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 19:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/21 06:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2011/01/13 14:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/12/18 06:06:32 | 001,404,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/12/17 11:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2010/12/14 06:34:14 | 000,027,760 | ---- | M] (ST Microelectronics) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelern.sys -- (Acceler)
DRV:64bit: - [2010/12/13 03:18:36 | 000,121,960 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvstusb.sys -- (NvStUSB)
DRV:64bit: - [2010/11/30 10:00:04 | 000,016,120 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/11/21 16:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/10/20 13:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/16 13:28:18 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/08/20 11:05:12 | 000,021,616 | ---- | M] (ST Microelectronics) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stdcfltn.sys -- (stdcfltn)
DRV:64bit: - [2010/07/13 15:38:06 | 000,029,288 | ---- | M] (Quanta Computer) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\qicflt.sys -- (qicflt)
DRV:64bit: - [2010/06/11 14:14:42 | 001,799,808 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVer7231_x64.sys -- (AVer7231_x64)
DRV:64bit: - [2010/03/19 22:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/02/28 04:32:14 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010/02/04 22:14:20 | 000,304,232 | ---- | M] (Mediafour Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\MDFSYSNT.SYS -- (MDFSYSNT)
DRV:64bit: - [2010/01/14 00:15:54 | 000,070,344 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\CBDisk.sys -- (CBDisk)
DRV:64bit: - [2009/09/24 02:23:08 | 000,032,352 | ---- | M] (Mediafour Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\MDPMGRNT.SYS -- (MDPMGRNT)
DRV:64bit: - [2009/07/14 14:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 14:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 14:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/11 09:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/11 09:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/11 09:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/11 09:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/04/09 03:28:46 | 000,068,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2006/11/02 07:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/14 14:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{62E361EE-1F0E-41C0-96DF-C0E2F918BDA2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {99F4E0CF-C394-42E8-9CEA-E40795E1836A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{62E361EE-1F0E-41C0-96DF-C0E2F918BDA2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = ${SEARCH_URL}{searchTerms}
IE - HKLM\..\SearchScopes\{99F4E0CF-C394-42E8-9CEA-E40795E1836A}: "URL" = http://www.google.co...g}&sourceid=ie7






IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.nz/
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...GGHP_en-GBGB469
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\SearchScopes\{99F4E0CF-C394-42E8-9CEA-E40795E1836A}: "URL" = http://www.google.co...GGHP_en-GBGB469
IE - HKU\S-1-5-21-2560220840-281653925-362234918-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..extensions.enabledAddons: [email protected]:4.1.3
FF - prefs.js..network.proxy.no_proxies_on: ""
FF - prefs.js..network.proxy.socks_remote_dns: ""
FF - prefs.js..network.proxy.type: ""
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\samsung.com/SamsungLinkPCPlugin: C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF - HKCU\Software\MozillaPlugins\samsung.com/SamsungLinkPCPlugin: C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/10/31 00:11:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK

[2013/10/31 00:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Extensions
[2013/08/19 13:16:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Extensions\net.openvpn.client
[2013/10/31 00:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\extensions
[2013/10/31 00:35:00 | 000,000,000 | ---D | M] (FoxyProxy Standard) -- C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\extensions\[email protected]
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/10/31 00:11:42 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/03/13 17:39:39 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/03/13 17:38:32 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/03/13 17:38:32 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - plugin: iTunes Application Detector (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: Google Docs = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.4_0\
CHR - Extension: Google Drive = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/11/04 20:54:56 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3:64bit: - HKU\S-1-5-21-2560220840-281653925-362234918-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe ()
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Mouse Suite 98 Daemon] C:\Windows\SysNative\ICO.EXE (Primax Electronics Ltd.)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Samsung Link] C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe (Copyright 2013 SAMSUNG)
O4:64bit: - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [PDVD9LanguageShortcut] c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RemoteControl9] c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (Apple Inc.)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKU\S-1-5-21-2560220840-281653925-362234918-1001..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2560220840-281653925-362234918-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16:64bit: - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{35886345-E09F-404A-87AC-366C87DCA054}: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O20:64bit: - AppInit_DLLs: (C:\Windows\System32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/11/06 12:20:40 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Roaming\PCDr
[2013/11/05 21:04:40 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\CrashDumps
[2013/11/04 20:55:26 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/11/04 20:38:23 | 005,143,677 | R--- | C] (Swearware) -- C:\Users\Dom\Desktop\ComboFix.exe
[2013/11/03 16:17:56 | 000,000,000 | ---D | C] -- C:\FRST
[2013/11/03 16:17:04 | 001,957,098 | ---- | C] (Farbar) -- C:\Users\Dom\Desktop\FRST64.exe
[2013/11/02 01:00:02 | 004,121,952 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Dom\Desktop\tdsskiller.exe
[2013/10/31 23:09:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2013/10/31 23:09:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2013/10/31 23:09:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2013/10/31 23:09:10 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2013/10/31 23:09:10 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2013/10/31 23:09:10 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2013/10/31 23:09:10 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2013/10/31 23:09:10 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2013/10/31 23:09:10 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2013/10/31 23:09:09 | 005,773,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2013/10/31 23:09:09 | 004,916,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2013/10/31 23:09:09 | 003,174,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2013/10/31 23:09:09 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2013/10/31 23:09:09 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2013/10/31 23:09:09 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2013/10/31 23:09:09 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2013/10/31 23:09:09 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2013/10/31 23:09:09 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2013/10/31 23:09:09 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2013/10/31 23:09:09 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2013/10/31 23:09:09 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2013/10/31 23:09:09 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2013/10/31 23:09:09 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2013/10/31 23:09:09 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2013/10/31 23:09:09 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2013/10/31 23:00:47 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2013/10/31 23:00:47 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2013/10/31 23:00:46 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2013/10/31 22:57:42 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Roaming\AVG2014
[2013/10/31 22:57:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2013/10/31 22:56:09 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2014
[2013/10/31 22:56:09 | 000,000,000 | ---D | C] -- C:\$AVG
[2013/10/31 22:55:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2013/10/31 22:53:39 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\MFAData
[2013/10/31 22:53:39 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2013/10/31 22:53:39 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\Avg2014
[2013/10/31 21:03:47 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013/10/31 21:01:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\catroot2
[2013/10/31 20:47:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Microsoft
[2013/10/31 20:43:20 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2013/10/31 20:24:20 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~Q
[2013/10/31 20:04:52 | 000,000,000 | ---D | C] -- C:\$INPLACE.~TR
[2013/10/31 18:25:29 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/10/31 18:25:29 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/10/31 18:25:29 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/10/31 18:25:29 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/10/31 18:25:29 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/10/31 18:25:29 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/10/31 18:25:29 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/10/31 18:25:29 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/10/31 18:25:29 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/10/31 18:25:29 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/10/31 18:25:29 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/10/31 18:25:29 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/10/31 18:25:29 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/10/31 18:25:29 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/10/31 18:25:29 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/10/31 18:25:29 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/10/31 18:25:29 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/10/31 18:25:29 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/10/31 18:25:29 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/10/31 18:25:29 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/10/31 18:25:29 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/10/31 18:25:29 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/10/31 18:25:29 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/10/31 18:25:29 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/10/31 18:25:29 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/10/31 18:25:29 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/10/31 18:25:29 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/10/31 18:25:29 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/10/31 18:25:29 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/10/31 18:25:29 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/10/31 18:25:29 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/10/31 18:25:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/10/31 18:25:29 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/10/31 18:25:29 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/10/31 18:25:29 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/10/31 18:25:29 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/10/31 18:25:29 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/10/31 18:25:29 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/10/31 18:25:29 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/10/31 18:25:29 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/10/31 18:25:29 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/10/31 18:25:29 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/10/31 18:25:29 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/10/31 18:25:28 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/10/31 18:25:28 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/10/31 18:25:28 | 000,905,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/10/31 18:25:28 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/10/31 18:25:28 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/10/31 18:25:28 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/10/31 18:25:28 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/10/31 18:25:28 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/10/31 18:25:28 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/10/31 18:25:28 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/10/31 18:25:28 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/10/31 18:25:28 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/10/31 18:25:28 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/10/31 18:25:28 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/10/31 18:25:28 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/10/31 18:25:28 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/10/31 18:25:28 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/10/31 18:25:28 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/10/31 18:25:28 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/10/31 18:25:28 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/10/31 18:25:28 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/10/31 18:25:28 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/10/31 18:25:28 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/10/31 18:25:28 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/10/31 18:25:28 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/10/31 13:59:52 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013/10/31 13:03:43 | 000,000,000 | ---D | C] -- C:\Users\Dom\New folder
[2013/10/31 12:58:30 | 000,000,000 | ---D | C] -- C:\WINSSLog
[2013/10/31 10:47:54 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2013/10/31 10:47:54 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2013/10/31 10:47:54 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2013/10/31 10:47:54 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2013/10/31 10:47:53 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013/10/31 10:47:53 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013/10/31 10:47:48 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2013/10/31 10:47:48 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2013/10/31 10:47:48 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2013/10/31 10:47:48 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/10/31 10:47:48 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/10/31 10:47:48 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/10/31 10:47:48 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/10/31 10:47:48 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/10/31 10:47:48 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/10/31 10:47:48 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/10/31 10:47:48 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/10/31 10:47:47 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2013/10/31 10:47:47 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2013/10/31 10:47:47 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2013/10/31 10:47:47 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2013/10/31 10:47:47 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2013/10/31 10:47:47 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2013/10/31 10:47:47 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2013/10/31 10:47:47 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2013/10/31 10:47:47 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2013/10/31 10:47:47 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2013/10/31 10:47:47 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/10/31 10:47:47 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/10/31 10:47:47 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/10/31 10:47:47 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/10/31 10:47:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/10/31 10:47:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/10/31 10:47:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2013/10/31 10:47:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2013/10/31 10:47:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/10/31 10:47:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/10/31 10:47:46 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2013/10/31 10:46:19 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2013/10/31 10:46:19 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2013/10/31 03:48:32 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2013/10/31 03:48:31 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2013/10/31 03:48:31 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2013/10/31 03:48:31 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2013/10/31 03:48:31 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2013/10/31 03:48:31 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2013/10/31 03:48:31 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2013/10/31 03:48:14 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2013/10/31 03:48:12 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2013/10/31 03:48:11 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2013/10/31 03:48:06 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2013/10/31 03:48:06 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2013/10/31 03:48:06 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2013/10/31 03:48:06 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2013/10/31 03:48:06 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2013/10/31 03:48:06 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2013/10/31 03:48:06 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2013/10/31 03:48:06 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2013/10/31 03:48:06 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2013/10/31 03:48:06 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2013/10/31 03:48:06 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2013/10/31 03:48:06 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2013/10/31 03:48:06 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2013/10/31 03:47:51 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2013/10/31 03:47:50 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2013/10/31 03:47:50 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2013/10/31 03:47:49 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2013/10/31 03:47:49 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2013/10/31 03:47:49 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2013/10/31 03:47:48 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2013/10/31 03:47:48 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2013/10/31 03:47:48 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2013/10/31 03:47:48 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2013/10/31 03:47:48 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2013/10/31 03:47:48 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2013/10/31 03:47:48 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2013/10/31 03:47:48 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2013/10/31 03:47:48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2013/10/31 03:47:47 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2013/10/31 03:47:47 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2013/10/31 03:47:43 | 001,472,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2013/10/31 03:47:43 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2013/10/31 03:47:43 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2013/10/31 03:47:39 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2013/10/31 03:47:39 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2013/10/31 03:47:38 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2013/10/31 03:47:38 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2013/10/31 03:47:37 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2013/10/31 03:47:36 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2013/10/31 03:40:01 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2013/10/31 03:40:01 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2013/10/31 03:38:59 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2013/10/31 03:38:52 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2013/10/31 03:38:51 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2013/10/31 03:38:51 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2013/10/31 03:38:51 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2013/10/31 03:38:51 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2013/10/31 03:38:49 | 000,368,128 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2013/10/31 03:38:49 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2013/10/31 03:38:49 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2013/10/31 03:38:49 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2013/10/31 03:38:49 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2013/10/31 03:38:49 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2013/10/31 03:38:49 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2013/10/31 03:38:49 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2013/10/31 03:38:35 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013/10/31 03:38:34 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2013/10/31 03:38:33 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2013/10/31 03:38:33 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013/10/31 03:38:32 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2013/10/31 03:38:32 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2013/10/31 03:38:31 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2013/10/31 03:38:31 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2013/10/31 03:38:31 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2013/10/31 03:38:31 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/10/31 03:38:31 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/10/31 03:38:31 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2013/10/31 03:38:31 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2013/10/31 03:38:31 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2013/10/31 03:38:31 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2013/10/31 03:38:31 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/10/31 03:38:31 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/10/31 03:38:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2013/10/31 03:38:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2013/10/31 03:38:30 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2013/10/31 03:38:30 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2013/10/31 03:38:30 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2013/10/31 03:38:30 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2013/10/31 03:38:30 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2013/10/31 03:38:30 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2013/10/31 03:38:30 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2013/10/31 03:38:30 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2013/10/31 03:38:30 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2013/10/31 03:38:27 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2013/10/31 03:38:27 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2013/10/31 03:38:24 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys
[2013/10/31 03:29:16 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2013/10/31 03:29:16 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2013/10/31 03:28:37 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2013/10/31 03:28:37 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2013/10/31 03:28:35 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2013/10/31 03:28:35 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys
[2013/10/31 03:28:32 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2013/10/31 03:28:29 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2013/10/31 03:28:29 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2013/10/31 03:28:29 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2013/10/31 03:28:16 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2013/10/31 03:28:16 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2013/10/31 03:28:16 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2013/10/31 03:28:13 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2013/10/31 03:28:06 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2013/10/31 03:28:06 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2013/10/31 03:28:06 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2013/10/31 03:28:04 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2013/10/31 03:28:04 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2013/10/31 03:28:04 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2013/10/31 03:28:04 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2013/10/31 03:28:04 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2013/10/31 03:28:04 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2013/10/31 03:27:15 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll
[2013/10/31 03:27:15 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll
[2013/10/31 03:27:08 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2013/10/31 03:27:05 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2013/10/31 03:27:03 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2013/10/31 03:27:01 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2013/10/31 03:27:01 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2013/10/31 03:26:58 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2013/10/31 03:26:40 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2013/10/31 03:26:40 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2013/10/31 03:26:40 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2013/10/31 03:26:40 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2013/10/31 03:26:30 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\fpb.rs
[2013/10/31 03:26:30 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysNative\fpb.rs
[2013/10/31 03:26:30 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc-nz.rs
[2013/10/31 03:26:30 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc-nz.rs
[2013/10/31 03:26:30 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegibbfc.rs
[2013/10/31 03:26:30 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\csrr.rs
[2013/10/31 03:26:30 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysNative\csrr.rs
[2013/10/31 03:26:30 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cob-au.rs
[2013/10/31 03:26:30 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cob-au.rs
[2013/10/31 03:26:29 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegibbfc.rs
[2013/10/31 03:26:29 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysNative\usk.rs
[2013/10/31 03:26:28 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wpc.dll
[2013/10/31 03:26:28 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\usk.rs
[2013/10/31 03:26:28 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\grb.rs
[2013/10/31 03:26:28 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysNative\grb.rs
[2013/10/31 03:26:28 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-pt.rs
[2013/10/31 03:26:28 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-pt.rs
[2013/10/31 03:26:28 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi.rs
[2013/10/31 03:26:28 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi.rs
[2013/10/31 03:26:28 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\djctq.rs
[2013/10/31 03:26:28 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysNative\djctq.rs
[2013/10/31 03:26:27 | 002,746,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2013/10/31 03:26:26 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2013/10/31 03:26:25 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Wpc.dll
[2013/10/31 03:26:23 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cero.rs
[2013/10/31 03:26:23 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cero.rs
[2013/10/31 03:26:23 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\esrb.rs
[2013/10/31 03:26:23 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysNative\esrb.rs
[2013/10/31 03:26:23 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc.rs
[2013/10/31 03:26:23 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc.rs
[2013/10/31 03:26:23 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-fi.rs
[2013/10/31 03:26:23 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-fi.rs
[2013/10/31 03:24:05 | 005,549,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013/10/31 03:24:04 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013/10/31 03:24:04 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013/10/31 03:24:03 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2013/10/31 03:24:03 | 000,878,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2013/10/31 03:24:03 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2013/10/31 03:24:03 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2013/10/31 03:24:02 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013/10/31 03:24:00 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013/10/31 03:24:00 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013/10/31 03:24:00 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013/10/31 03:24:00 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013/10/31 03:23:59 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013/10/31 03:23:53 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2013/10/31 03:16:08 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2013/10/31 03:16:08 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2013/10/31 03:16:08 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2013/10/31 03:15:25 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2013/10/31 03:15:25 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2013/10/31 03:15:25 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2013/10/31 03:15:25 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2013/10/31 03:14:41 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2013/10/31 03:14:41 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2013/10/31 03:14:40 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2013/10/31 03:14:40 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2013/10/31 03:14:40 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2013/10/31 03:14:39 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2013/10/31 03:14:38 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2013/10/31 03:14:38 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2013/10/31 03:14:38 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2013/10/31 03:14:26 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013/10/31 03:14:00 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2013/10/31 03:14:00 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2013/10/31 03:13:52 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll
[2013/10/31 03:13:51 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll
[2013/10/31 02:48:08 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2013/10/31 02:48:08 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2013/10/31 02:48:04 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2013/10/31 02:48:04 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2013/10/31 02:48:01 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2013/10/31 02:47:57 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2013/10/31 02:47:53 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2013/10/31 02:24:38 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2013/10/31 02:24:38 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2013/10/31 02:24:38 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2013/10/31 02:24:38 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2013/10/31 02:24:38 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2013/10/31 02:24:38 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2013/10/31 02:24:38 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2013/10/31 02:22:51 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2013/10/31 02:22:50 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2013/10/31 02:22:50 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll
[2013/10/31 02:22:50 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll
[2013/10/31 02:22:24 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2013/10/31 02:22:24 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2013/10/31 02:22:06 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2013/10/31 02:22:04 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2013/10/31 02:00:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2013/10/31 02:00:12 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2013/10/31 01:47:36 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2013/10/31 01:47:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2013/10/31 01:47:35 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2013/10/31 01:47:35 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2013/10/31 01:47:35 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2013/10/31 01:47:34 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2013/10/31 01:47:34 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2013/10/31 01:47:29 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2013/10/31 01:47:24 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2013/10/31 01:46:52 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2013/10/31 01:46:40 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2013/10/31 01:46:40 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2013/10/31 01:46:38 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2013/10/31 01:46:38 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2013/10/31 01:46:01 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2013/10/31 01:46:01 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2013/10/31 01:39:02 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013/10/31 01:37:29 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/10/31 01:37:29 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/10/31 01:24:13 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2013/10/31 01:24:13 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2013/10/31 01:13:59 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2013/10/31 01:13:59 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2013/10/31 01:13:59 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2013/10/31 01:13:36 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2013/10/31 01:13:36 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2013/10/31 01:13:36 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2013/10/31 01:13:15 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2013/10/31 01:13:15 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2013/10/31 01:12:44 | 000,000,000 | ---D | C] -- C:\Recovery
[2013/10/30 23:51:15 | 000,000,000 | --SD | C] -- C:\Users\Dom\AppData\Roaming\Microsoft
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Videos
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Saved Games
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Pictures
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Music
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Links
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Favorites
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Downloads
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Documents
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\Desktop
[2013/10/30 23:51:15 | 000,000,000 | R--D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\Temporary Internet Files
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Templates
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Start Menu
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\SendTo
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Recent
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\PrintHood
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\NetHood
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Videos
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Pictures
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Documents\My Music
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\My Documents
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Local Settings
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\History
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Cookies
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\Application Data
[2013/10/30 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Dom\AppData\Local\Application Data
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\Temp
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\Microsoft
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Roaming\Media Center Programs
[2013/10/30 23:51:15 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData
[2013/10/30 23:49:22 | 006,200,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2013/10/30 23:49:22 | 003,293,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2013/10/30 23:49:22 | 002,557,800 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2013/10/30 23:49:22 | 000,866,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll
[2013/10/30 23:49:22 | 000,118,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2013/10/30 23:49:22 | 000,063,336 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2013/10/30 23:49:22 | 000,055,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll
[2013/10/30 23:49:04 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2013/10/30 23:48:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2013/10/30 23:48:56 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2013/10/30 23:48:42 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2013/10/30 23:48:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SRSLabs
[2013/10/30 23:47:19 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013/10/30 23:47:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2013/10/30 23:47:06 | 000,021,616 | ---- | C] (ST Microelectronics) -- C:\Windows\SysNative\drivers\stdcfltn.sys
[2013/10/30 23:47:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2013/10/30 23:47:04 | 000,000,000 | ---D | C] -- C:\Program Files\STMicroelectronics
[2013/10/30 23:45:35 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2013/10/26 11:09:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2013/10/26 11:09:33 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Samsung
[2013/10/23 18:44:03 | 091,157,064 | ---- | C] (Copyright 2013 SAMSUNG) -- C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
[2013/10/22 17:46:03 | 000,000,000 | ---D | C] -- C:\Users\Dom\Desktop\Florence and The Machine - Ceremonials (Deluxe Version) (2011)
[2013/10/18 19:32:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013/10/18 19:32:29 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/10/18 19:32:29 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/10/18 19:32:29 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/10/18 19:31:20 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013/10/18 19:31:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013/10/09 21:43:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/10/09 21:43:01 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/10/09 17:53:29 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2013/10/09 15:22:48 | 000,000,000 | ---D | C] -- C:\Users\Dom\Desktop\Fix WU
[2013/10/07 18:30:09 | 000,875,304 | ---- | C] (Microsoft Corporation) -- C:\Users\Dom\Desktop\NetFxRepairTool.exe

========== Files - Modified Within 30 Days ==========

[2013/11/06 13:47:45 | 000,000,438 | -H-- | M] () -- C:\Windows\tasks\Windows Backup and Restore Center.job
[2013/11/06 13:20:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/06 13:09:55 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/06 07:36:42 | 000,756,850 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/11/06 07:36:42 | 000,648,354 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/11/06 07:36:42 | 000,117,286 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/11/06 07:36:36 | 000,756,850 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/11/06 07:30:13 | 000,025,872 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/11/06 07:30:13 | 000,025,872 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/11/06 07:22:01 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/06 07:21:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/06 07:21:14 | 2064,252,927 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/04 20:54:56 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/11/04 20:38:23 | 005,143,677 | R--- | M] (Swearware) -- C:\Users\Dom\Desktop\ComboFix.exe
[2013/11/03 16:17:16 | 001,957,098 | ---- | M] (Farbar) -- C:\Users\Dom\Desktop\FRST64.exe
[2013/11/02 01:00:02 | 004,121,952 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Dom\Desktop\tdsskiller.exe
[2013/11/02 00:52:58 | 004,012,032 | ---- | M] () -- C:\Users\Dom\Desktop\RogueKillerX64.exe
[2013/10/31 22:57:04 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2014.lnk
[2013/10/31 21:51:47 | 000,002,135 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/10/31 20:56:14 | 000,181,064 | ---- | M] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/10/31 19:57:52 | 000,003,178 | ---- | M] () -- C:\FixitRegBackup.reg
[2013/10/31 18:25:29 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/10/31 18:25:29 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/10/31 18:25:29 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/10/31 18:25:29 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/10/31 18:25:29 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/10/31 18:25:29 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/10/31 18:25:29 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/10/31 18:25:29 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/10/31 18:25:29 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/10/31 18:25:29 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/10/31 18:25:29 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/10/31 18:25:29 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/10/31 18:25:29 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/10/31 18:25:29 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/10/31 18:25:29 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/10/31 18:25:29 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/10/31 18:25:29 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/10/31 18:25:29 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/10/31 18:25:29 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/10/31 18:25:29 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/10/31 18:25:29 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/10/31 18:25:29 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/10/31 18:25:29 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/10/31 18:25:29 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/10/31 18:25:29 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/10/31 18:25:29 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/10/31 18:25:29 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/10/31 18:25:29 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/10/31 18:25:29 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/10/31 18:25:29 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/10/31 18:25:29 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/10/31 18:25:29 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/10/31 18:25:29 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/10/31 18:25:29 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/10/31 18:25:29 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/10/31 18:25:29 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/10/31 18:25:29 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/10/31 18:25:29 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/10/31 18:25:29 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/10/31 18:25:29 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/10/31 18:25:29 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/10/31 18:25:29 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/10/31 18:25:29 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/10/31 18:25:29 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/10/31 18:25:29 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/10/31 18:25:29 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/10/31 18:25:28 | 003,959,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/10/31 18:25:28 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/10/31 18:25:28 | 000,905,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/10/31 18:25:28 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/10/31 18:25:28 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/10/31 18:25:28 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/10/31 18:25:28 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/10/31 18:25:28 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/10/31 18:25:28 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/10/31 18:25:28 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/10/31 18:25:28 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/10/31 18:25:28 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/10/31 18:25:28 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/10/31 18:25:28 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/10/31 18:25:28 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/10/31 18:25:28 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/10/31 18:25:28 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/10/31 18:25:28 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/10/31 18:25:28 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/10/31 18:25:28 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/10/31 18:25:28 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/10/31 18:25:28 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/10/31 18:25:28 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/10/31 18:25:28 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/10/31 10:13:46 | 000,471,704 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/10/31 02:18:01 | 000,001,439 | ---- | M] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/31 01:42:45 | 000,000,134 | ---- | M] () -- C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
[2013/10/31 01:39:02 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013/10/31 01:37:29 | 001,887,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/10/31 01:37:29 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/10/31 01:04:54 | 000,115,640 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2013/10/31 01:04:54 | 000,115,640 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2013/10/31 00:48:50 | 000,022,744 | ---- | M] () -- C:\Windows\SysNative\emptyregdb.dat
[2013/10/30 23:49:36 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/10/30 23:48:46 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013/10/30 23:48:24 | 000,074,462 | ---- | M] () -- C:\Windows\SysNative\drivers\RTWAVES30.dat
[2013/10/30 22:20:57 | 000,003,094 | ---- | M] () -- C:\Users\Dom\Desktop\Windows Compatibility Report.htm
[2013/10/30 22:13:39 | 000,001,890 | ---- | M] () -- C:\Windows\diagwrn.xml
[2013/10/30 22:13:39 | 000,001,890 | ---- | M] () -- C:\Windows\diagerr.xml
[2013/10/30 22:04:57 | 3320,903,680 | ---- | M] () -- C:\Users\Dom\Desktop\Win 7 sp1.iso
[2013/10/26 11:23:24 | 007,020,544 | ---- | M] () -- C:\Users\Dom\Desktop\SideBySide
[2013/10/23 18:48:20 | 091,157,064 | ---- | M] (Copyright 2013 SAMSUNG) -- C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
[2013/10/21 16:34:19 | 000,124,344 | ---- | M] () -- C:\Users\Dom\Desktop\WindowsUpdate.zip
[2013/10/18 18:20:32 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/10/18 18:20:32 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/10/09 21:43:36 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/10/09 19:08:03 | 423,572,207 | ---- | M] () -- C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
[2013/10/09 15:22:25 | 000,021,232 | ---- | M] () -- C:\Users\Dom\Desktop\Fix WU.zip
[2013/10/08 07:50:37 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/10/08 07:46:47 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/10/08 07:46:23 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/10/08 03:54:39 | 001,589,825 | ---- | M] () -- C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
[2013/10/07 18:30:10 | 000,875,304 | ---- | M] (Microsoft Corporation) -- C:\Users\Dom\Desktop\NetFxRepairTool.exe

========== Files Created - No Company Name ==========

[2013/11/02 00:52:55 | 004,012,032 | ---- | C] () -- C:\Users\Dom\Desktop\RogueKillerX64.exe
[2013/10/31 22:57:04 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2014.lnk
[2013/10/31 20:47:03 | 000,000,438 | -H-- | C] () -- C:\Windows\tasks\Windows Backup and Restore Center.job
[2013/10/31 18:25:29 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/10/31 18:25:29 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/10/31 03:29:20 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013/10/31 03:15:25 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013/10/31 01:39:06 | 000,000,134 | ---- | C] () -- C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
[2013/10/31 01:25:25 | 000,756,850 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/10/31 01:16:03 | 000,001,415 | ---- | C] () -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/10/31 01:06:36 | 2064,252,927 | -HS- | C] () -- C:\hiberfil.sys
[2013/10/31 00:48:50 | 000,022,744 | ---- | C] () -- C:\Windows\SysNative\emptyregdb.dat
[2013/10/30 23:51:15 | 000,000,290 | ---- | C] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013/10/30 23:51:15 | 000,000,272 | ---- | C] () -- C:\Users\Dom\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2013/10/30 23:50:53 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2013/10/30 23:50:52 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2013/10/30 23:49:36 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/10/30 23:49:22 | 003,536,817 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2013/10/30 23:48:46 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2013/10/30 23:48:24 | 000,074,462 | ---- | C] () -- C:\Windows\SysNative\drivers\RTWAVES30.dat
[2013/10/30 22:15:40 | 000,003,094 | ---- | C] () -- C:\Users\Dom\Desktop\Windows Compatibility Report.htm
[2013/10/30 22:13:39 | 000,001,890 | ---- | C] () -- C:\Windows\diagwrn.xml
[2013/10/30 22:13:39 | 000,001,890 | ---- | C] () -- C:\Windows\diagerr.xml
[2013/10/30 20:31:49 | 3320,903,680 | ---- | C] () -- C:\Users\Dom\Desktop\Win 7 sp1.iso
[2013/10/22 14:54:23 | 007,020,544 | ---- | C] () -- C:\Users\Dom\Desktop\SideBySide
[2013/10/21 16:34:19 | 000,124,344 | ---- | C] () -- C:\Users\Dom\Desktop\WindowsUpdate.zip
[2013/10/09 21:43:36 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/10/09 18:57:41 | 423,572,207 | ---- | C] () -- C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
[2013/10/09 15:22:24 | 000,021,232 | ---- | C] () -- C:\Users\Dom\Desktop\Fix WU.zip
[2013/10/08 03:54:39 | 001,589,825 | ---- | C] () -- C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
[2013/10/07 11:38:12 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/10/04 11:03:02 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/10/04 11:03:02 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/10/04 11:03:02 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/10/04 11:03:02 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/10/04 11:03:02 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/10/01 09:46:40 | 000,025,600 | ---- | C] () -- C:\Windows\SysWow64\MediaDB.dll
[2013/10/01 09:11:08 | 000,706,560 | ---- | C] () -- C:\Windows\SysWow64\ContentDirectoryPresenter.dll
[2013/09/08 23:31:31 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll
[2013/09/08 23:16:01 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013/09/08 23:09:30 | 002,392,064 | ---- | C] () -- C:\Windows\SysWow64\videotrans.dll
[2013/07/23 19:18:54 | 000,046,592 | ---- | C] () -- C:\Windows\SysWow64\boost_thread-vc90-mt-1_47.dll
[2013/07/23 19:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\boost_date_time-vc90-mt-1_47.dll
[2013/07/23 19:18:42 | 000,704,000 | ---- | C] () -- C:\Windows\SysWow64\boost_regex-vc90-mt-1_47.dll
[2013/07/23 19:18:40 | 000,227,840 | ---- | C] () -- C:\Windows\SysWow64\boost_serialization-vc90-mt-1_47.dll
[2013/07/23 19:18:38 | 000,130,048 | ---- | C] () -- C:\Windows\SysWow64\boost_filesystem-vc90-mt-1_47.dll
[2013/07/23 19:18:38 | 000,012,800 | ---- | C] () -- C:\Windows\SysWow64\boost_system-vc90-mt-1_47.dll
[2012/10/18 06:04:11 | 000,111,932 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
[2012/10/18 06:04:11 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
[2012/10/18 06:04:11 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
[2012/10/18 06:04:11 | 000,026,154 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
[2012/10/18 06:04:11 | 000,024,903 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
[2012/10/18 06:04:11 | 000,021,390 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
[2012/10/18 06:04:11 | 000,020,148 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
[2012/10/18 06:04:11 | 000,011,811 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
[2012/10/18 06:04:11 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
[2012/10/18 06:04:11 | 000,001,146 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_DU.dat
[2012/10/18 06:04:11 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat
[2012/10/18 06:04:11 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat
[2012/10/18 06:04:11 | 000,001,136 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat
[2012/10/18 06:04:11 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat
[2012/10/18 06:04:11 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat
[2012/10/18 06:04:11 | 000,001,120 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_IT.dat
[2012/10/18 06:04:11 | 000,001,107 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_GE.dat
[2012/10/18 06:04:11 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat
[2012/10/18 06:04:11 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2012/02/15 12:45:46 | 000,013,082 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp DSP Effects.dat
[2012/02/15 12:45:41 | 004,022,504 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall.exe
[2012/02/15 12:45:41 | 000,017,950 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Music Converter.dat
[2012/02/04 01:43:57 | 000,103,272 | ---- | C] () -- C:\Users\Dom\GoToAssistDownloadHelper.exe
[2012/01/20 16:02:52 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2012/01/20 16:02:02 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2012/01/20 16:01:59 | 000,218,304 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2012/01/20 16:01:58 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012/01/20 16:01:57 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2012/01/20 16:01:56 | 013,903,872 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_89001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_49001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_33011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A0F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_14001461_61.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_13011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A0F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_09001461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_08071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_060F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_8a.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_aa.bin
[2012/01/20 15:22:52 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_07031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03131461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_ca.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_8a.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_aa.bin
[2012/01/20 15:22:52 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_8a.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_890F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_2B0f1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_29001461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_0B0f1461_ca.bin
[2012/01/20 15:22:52 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_090F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_180F1461_ca.bin
[2012/01/20 15:22:52 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_18071461_aa.bin
[2012/01/20 15:22:52 | 000,000,376 | ---- | C] () -- C:\Windows\11317231_03131461_aa.bin

========== ZeroAccess Check ==========

[2009/07/14 17:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 15:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 14:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 14:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 16:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 14:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/10/31 22:57:42 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\AVG2014
[2013/10/31 00:34:46 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Blio
[2013/10/31 00:34:46 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\calibre
[2013/10/31 00:34:47 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Canon
[2013/10/31 00:34:47 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\dBpoweramp
[2013/10/31 00:34:48 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Dropbox
[2013/10/31 00:34:48 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Fingertapps
[2013/10/31 00:34:49 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Leadertech
[2013/10/31 00:34:57 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Milestone
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\NETGATE Registry Cleaner
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Octane
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Omerta
[2013/10/31 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\OpenVPN Technologies
[2013/11/06 12:20:40 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\PCDr
[2013/10/31 00:35:02 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\redsn0w
[2013/10/31 00:35:03 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Research In Motion
[2013/07/09 17:57:30 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Samsung
[2013/11/04 20:52:20 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\tixati
[2013/10/31 00:35:06 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\ZinioReader4

========== Purity Check ==========



========== Custom Scans ==========

========== Base Services ==========
SRV:64bit: - [2009/07/14 14:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2013/02/27 18:47:10 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2009/07/14 14:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2010/11/21 16:23:51 | 000,849,920 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2010/11/21 16:24:00 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/07/14 14:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/14 14:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2012/07/05 11:13:27 | 000,136,704 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2013/07/09 18:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2013/07/09 17:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2010/11/21 16:24:01 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2010/11/21 16:24:00 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/21 16:24:09 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2011/03/03 19:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2009/07/14 14:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:64bit: - [2009/07/14 14:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/14 14:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:64bit: - [2009/07/14 14:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2010/11/21 16:23:48 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2009/07/14 14:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2009/07/14 14:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2009/07/14 14:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2009/07/14 14:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/14 14:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:64bit: - [2012/10/04 06:44:21 | 000,303,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2009/07/14 14:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2011/05/25 00:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2012/02/11 19:36:02 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:64bit: - [2009/07/14 14:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2010/11/21 16:24:17 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2010/11/21 16:24:01 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2010/11/21 16:24:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2011/11/17 19:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2009/07/14 14:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2010/11/21 16:23:48 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2010/11/21 16:23:55 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/21 16:24:03 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:64bit: - [2010/11/21 16:24:16 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2010/11/21 16:24:32 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/21 16:24:00 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/14 14:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2012/05/01 18:40:20 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2010/11/21 16:23:55 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2010/11/21 16:24:32 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2010/11/21 16:24:32 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2010/11/21 16:25:06 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:64bit: - [2013/05/27 18:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2010/11/21 16:23:55 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:64bit: - [2010/11/21 16:24:28 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2010/11/21 16:24:48 | 000,580,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2010/11/21 16:24:15 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/21 16:24:28 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/07/14 14:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2012/06/03 11:19:43 | 002,428,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2010/11/21 16:24:09 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/14 14:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2010/11/21 16:24:32 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >

< MD5 for: EXPLORER.EXE >
[2011/02/26 18:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2012/01/20 16:35:54 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\erdnt\cache86\explorer.exe
[2011/02/25 19:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 19:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 19:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/21 16:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/02/25 18:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 18:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/21 16:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: SERVICES >
[2009/06/11 10:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\$INPLACE.~TR\Machine\DATA\Windows\System32\drivers\etc\services
[2009/06/11 10:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services

< MD5 for: SERVICES.ASFX >
[2012/04/04 18:54:08 | 000,002,637 | ---- | M] () MD5=016DFC4F3F133AE19338EECD1924886A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ro_RO\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,970 | ---- | M] () MD5=05A68D76420994EF8DF33184BFA98E04 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\uk_UA\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,555 | ---- | M] () MD5=272301585AC133486E70228DA27659AC -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\zh_TW\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,562 | ---- | M] () MD5=27CE9BD3209B549BB776B8C877455A91 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\nb_NO\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,632 | ---- | M] () MD5=2998A4AE8D0EF5122CCB985CF7E9D9D3 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ko_KR\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,545 | ---- | M] () MD5=2EEC9DDBD0B4EE5F65532322C383938A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\zh_CN\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,629 | ---- | M] () MD5=3A0082D76426A87FB4937D426C491C10 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\cs_CZ\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,590 | ---- | M] () MD5=448953BD0CF26CE03D9E7CC1A7B278BC -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\tr_TR\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,605 | ---- | M] () MD5=5A2C5D0DA3EAAB2AA77F16947D0E14FF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\it_IT\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,679 | ---- | M] () MD5=5DD2704563A6A79C466E44CD966B2655 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\hu_HU\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,711 | ---- | M] () MD5=6B0E7B068BD530B8FCEBC04CC8844AA9 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ja_JP\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,582 | ---- | M] () MD5=797FC263D59784AD1498560C34FA7DA1 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sl_SI\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,626 | ---- | M] () MD5=8073B18DC740B965256CE0957E363AC5 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\fr_FR\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,634 | ---- | M] () MD5=912DD5C0C7C8D7572AD598414D56E24A -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\pt_BR\Services\Services.asfx
[2012/04/04 18:53:56 | 000,002,655 | ---- | M] () MD5=ABFBB9D0398492D849690C344C1316BB -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\de_DE\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,638 | ---- | M] () MD5=C2C37202B0E55877A64ADDBDE738284E -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sk_SK\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,589 | ---- | M] () MD5=C313AD3602D4965A1918E86B9F3E84CF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\pl_PL\Services\Services.asfx
[2012/04/04 18:54:10 | 000,002,609 | ---- | M] () MD5=C7FA88C21103C70826F274A0E865AEDF -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ca_ES\Services\Services.asfx
[2012/04/04 18:54:10 | 000,002,576 | ---- | M] () MD5=D27D52045EB6A2EE031F7D2EA0349BC3 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\eu_ES\Services\Services.asfx
[2012/04/04 18:54:02 | 000,002,560 | ---- | M] () MD5=D5642B1BFE0A70231D14C11D3D3FD60D -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\da_DK\Services\Services.asfx
[2012/04/04 18:54:08 | 000,002,588 | ---- | M] () MD5=DB216743CDE75637621E2FD39431BBD4 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\hr_HR\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,620 | ---- | M] () MD5=DCF7A8843832327386B81ABD189AC236 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\es_ES\Services\Services.asfx
[2012/04/04 18:54:04 | 000,002,997 | ---- | M] () MD5=DD3F4DAF426555D8D85FF4D7C5A04F37 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\ru_RU\Services\Services.asfx
[2010/11/16 16:02:32 | 000,000,228 | R--- | M] () MD5=E09422BE0C7636A7B63A1527C4C1372D -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx
[2012/04/04 18:54:02 | 000,002,599 | ---- | M] () MD5=F09D769A94767C3C7E7015A5C6C99A39 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\fi_FI\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,628 | ---- | M] () MD5=F844D742DB53C7D671BF7ED6517414D1 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\nl_NL\Services\Services.asfx
[2012/04/04 18:53:58 | 000,002,582 | ---- | M] () MD5=FED4BDA3B6A9EB9DB59C254D8C987495 -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\sv_SE\Services\Services.asfx

< MD5 for: SERVICES.ASFX1 >
[2010/11/16 16:02:32 | 000,000,228 | R--- | M] () MD5=A7B7A4CC1A717292474115CD3A4AC121 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx1

< MD5 for: SERVICES.ASFX10 >
[2010/11/16 16:02:34 | 000,000,233 | R--- | M] () MD5=3382FAB54FC906B0E40269D903A8D690 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx10

< MD5 for: SERVICES.ASFX11 >
[2010/11/16 16:02:26 | 000,000,227 | R--- | M] () MD5=F36865AB3B9813962B7EDBE66FA1C28A -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx11

< MD5 for: SERVICES.ASFX12 >
[2010/11/16 16:02:30 | 000,000,225 | R--- | M] () MD5=9287C7268CC0F37F1DDE18CEBB128685 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx12

< MD5 for: SERVICES.ASFX13 >
[2010/11/16 16:02:30 | 000,000,228 | R--- | M] () MD5=95326C46AC2654AFF5C8543DFE22CCB3 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx13

< MD5 for: SERVICES.ASFX14 >
[2010/11/16 16:02:26 | 000,000,228 | R--- | M] () MD5=14DA84ECAF57B5ADA36B9093FF04CF32 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx14

< MD5 for: SERVICES.ASFX15 >
[2010/11/16 16:02:26 | 000,000,231 | R--- | M] () MD5=CF94F061685A38BABE0BBD463191EDE7 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx15

< MD5 for: SERVICES.ASFX16 >
[2010/11/16 16:02:34 | 000,000,232 | R--- | M] () MD5=B6E63D87C73CED2D6B433C542C5C3965 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx16

< MD5 for: SERVICES.ASFX17 >
[2010/11/16 16:02:34 | 000,000,230 | R--- | M] () MD5=545E97C4F4CEA743A8D86B685EE2EDBB -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx17

< MD5 for: SERVICES.ASFX18 >
[2010/11/16 16:02:24 | 000,000,230 | R--- | M] () MD5=2577B66F38E0DEA25F328DA4A0FED322 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx18

< MD5 for: SERVICES.ASFX19 >
[2010/11/16 16:02:26 | 000,000,225 | R--- | M] () MD5=0A27F1D6595A69800A43CDE155B1E4A0 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx19

< MD5 for: SERVICES.ASFX2 >
[2010/11/16 16:02:36 | 000,000,264 | R--- | M] () MD5=0652D24D4E2799851A6DF1705E2BFFDA -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx2

< MD5 for: SERVICES.ASFX20 >
[2010/11/16 16:02:38 | 000,000,231 | R--- | M] () MD5=C85F2519DC6AECF93F67AA613A320136 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx20

< MD5 for: SERVICES.ASFX21 >
[2010/11/16 16:02:26 | 000,000,231 | R--- | M] () MD5=8C95C0528EA7049A1DFC7A7342461D75 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx21

< MD5 for: SERVICES.ASFX22 >
[2010/11/16 16:02:24 | 000,000,231 | R--- | M] () MD5=9F2731666F5771CC5C1E4EEDC8FB8607 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx22

< MD5 for: SERVICES.ASFX23 >
[2010/11/16 16:02:26 | 000,000,225 | R--- | M] () MD5=0E89BE53F56B22390CF61584B649CE01 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx23

< MD5 for: SERVICES.ASFX24 >
[2010/11/16 16:02:32 | 000,000,229 | R--- | M] () MD5=E57594DB9B9D78AB4B53D34CAFEB8497 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx24

< MD5 for: SERVICES.ASFX25 >
[2010/11/16 16:02:36 | 000,000,232 | R--- | M] () MD5=611CB9CC21D2DDAD711690671F70EF39 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx25

< MD5 for: SERVICES.ASFX3 >
[2010/11/16 16:02:34 | 000,000,229 | R--- | M] () MD5=F9824728970AC8199BABDC9CBA5E038C -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx3

< MD5 for: SERVICES.ASFX4 >
[2010/11/16 16:02:26 | 000,000,226 | R--- | M] () MD5=55EA57D90AE22BDF0132597EF0D7C9C7 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx4

< MD5 for: SERVICES.ASFX5 >
[2010/11/16 16:02:34 | 000,000,233 | R--- | M] () MD5=846C265B751189E88B74F0155DB6B828 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx5

< MD5 for: SERVICES.ASFX6 >
[2010/11/16 16:02:36 | 000,000,231 | R--- | M] () MD5=89BD37C4118540FD5AA8CDD0C24D6C0A -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx6

< MD5 for: SERVICES.ASFX7 >
[2010/11/16 16:02:34 | 000,000,245 | R--- | M] () MD5=0B82FAB8FF5F988C5311DF1144A7D740 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx7

< MD5 for: SERVICES.ASFX8 >
[2010/11/16 16:02:34 | 000,000,231 | R--- | M] () MD5=5226417D3C8206000A8983BDC1243075 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx8

< MD5 for: SERVICES.ASFX9 >
[2010/11/16 16:02:30 | 000,000,234 | R--- | M] () MD5=EBD8D036504F2935675F5F432F076DBA -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.asfx9

< MD5 for: SERVICES.CFG >
[2013/05/10 20:57:30 | 000,558,879 | ---- | M] () MD5=3679F8D3253DC110D1D8F2AE115EE00C -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Services\Services.cfg
[2010/11/16 16:02:22 | 000,032,633 | R--- | M] () MD5=EA1C35DD541D60819D55482130BD585D -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA7FFFFB744AA0000000010\10.0.0\services.cfg

< MD5 for: SERVICES.EXE >
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\erdnt\cache64\services.exe
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/14 14:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2011/04/12 21:17:17 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2011/04/12 21:17:17 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/14 17:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/14 17:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/11 09:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/11 09:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof

< MD5 for: SERVICES.MSC >
[2011/04/12 21:17:16 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/11 09:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2011/04/12 21:17:18 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/11 10:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2011/04/12 21:17:16 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/11 09:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2011/04/12 21:17:18 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/11 10:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PNG >
[2013/05/03 19:21:28 | 000,001,509 | ---- | M] () MD5=F4EC3ABEAE15FA9BB42D721E9D543F44 -- C:\Program Files\My Dell\images\icons\png\24_24\services.png

< MD5 for: SERVICES.PTXML >
[2009/07/14 09:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/14 09:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml

< MD5 for: SERVICES.SBS >
[2013/07/16 14:21:30 | 000,034,818 | ---- | M] () MD5=E2ACBC77020C8D5CE97CA61D0D859A44 -- C:\Program Files (x86)\Spybot - Search & Destroy\Includes\Services.sbs

< MD5 for: SERVICES.WHM >
[2008/11/10 08:49:56 | 000,003,678 | ---- | M] () MD5=78C07607AD198E5769746185F8EF2D78 -- C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\pc\html\www.craplist.net\services.whm

< MD5 for: SVCHOST.EXE >
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 14:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2013/04/05 02:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 14:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache86\userinit.exe
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/21 16:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\erdnt\cache64\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/21 16:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\erdnt\cache64\winlogon.exe
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/21 16:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2013/04/05 02:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< C:\Windows\assembly\tmp\U\*.* /s >
[2009/07/14 18:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 18:08:49 | 000,009,318 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/01/31 01:39:07 | 000,000,888 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012/01/31 01:39:07 | 000,000,892 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012/03/30 11:17:05 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/10/31 20:47:03 | 000,000,438 | -H-- | C] () -- C:\Windows\Tasks\Windows Backup and Restore Center.job

< C:\Program Files\Common Files\ComObjects\*.* /s >

< C:\windows\*. /RP /s >

< dir C:\ /S /A:L /C >
Volume in drive C is OS
Volume Serial Number is D05A-98DF
Directory of C:\
14/07/2009 18:08 <JUNCTION> Documents and Settings [C:\Users]
0 File(s) 0 bytes
Directory of C:\ProgramData
14/07/2009 18:08 <JUNCTION> Application Data [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 18:08 <JUNCTION> Documents [C:\Users\Public\Documents]
14/07/2009 18:08 <JUNCTION> Favorites [C:\Users\Public\Favorites]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users
14/07/2009 18:08 <SYMLINKD> All Users [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Default User [C:\Users\Default]
0 File(s) 0 bytes
Directory of C:\Users\All Users
14/07/2009 18:08 <JUNCTION> Application Data [C:\ProgramData]
14/07/2009 18:08 <JUNCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 18:08 <JUNCTION> Documents [C:\Users\Public\Documents]
14/07/2009 18:08 <JUNCTION> Favorites [C:\Users\Public\Favorites]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default
14/07/2009 18:08 <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
14/07/2009 18:08 <JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
14/07/2009 18:08 <JUNCTION> My Documents [C:\Users\Default\Documents]
14/07/2009 18:08 <JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
14/07/2009 18:08 <JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
14/07/2009 18:08 <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
14/07/2009 18:08 <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
14/07/2009 18:08 <JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
14/07/2009 18:08 <JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default\AppData\Local
14/07/2009 18:08 <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
14/07/2009 18:08 <JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
14/07/2009 18:08 <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Default\Documents
14/07/2009 18:08 <JUNCTION> My Music [C:\Users\Default\Music]
14/07/2009 18:08 <JUNCTION> My Pictures [C:\Users\Default\Pictures]
14/07/2009 18:08 <JUNCTION> My Videos [C:\Users\Default\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Dom
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\Dom\AppData\Roaming]
30/10/2013 23:51 <JUNCTION> Cookies [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Cookies]
30/10/2013 23:51 <JUNCTION> Local Settings [C:\Users\Dom\AppData\Local]
30/10/2013 23:51 <JUNCTION> My Documents [C:\Users\Dom\Documents]
30/10/2013 23:51 <JUNCTION> NetHood [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
30/10/2013 23:51 <JUNCTION> PrintHood [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
30/10/2013 23:51 <JUNCTION> Recent [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Recent]
30/10/2013 23:51 <JUNCTION> SendTo [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\SendTo]
30/10/2013 23:51 <JUNCTION> Start Menu [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu]
30/10/2013 23:51 <JUNCTION> Templates [C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Dom\AppData\Local
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\Dom\AppData\Local]
30/10/2013 23:51 <JUNCTION> History [C:\Users\Dom\AppData\Local\Microsoft\Windows\History]
30/10/2013 23:51 <JUNCTION> Temporary Internet Files [C:\Users\Dom\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Dom\Documents
30/10/2013 23:51 <JUNCTION> My Music [C:\Users\Dom\Music]
30/10/2013 23:51 <JUNCTION> My Pictures [C:\Users\Dom\Pictures]
30/10/2013 23:51 <JUNCTION> My Videos [C:\Users\Dom\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Public\Documents
14/07/2009 18:08 <JUNCTION> My Music [C:\Users\Public\Music]
14/07/2009 18:08 <JUNCTION> My Pictures [C:\Users\Public\Pictures]
14/07/2009 18:08 <JUNCTION> My Videos [C:\Users\Public\Videos]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Roaming]
30/10/2013 23:51 <JUNCTION> Cookies [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Cookies]
30/10/2013 23:51 <JUNCTION> Local Settings [C:\Users\UpdatusUser\AppData\Local]
30/10/2013 23:51 <JUNCTION> My Documents [C:\Users\UpdatusUser\Documents]
30/10/2013 23:51 <JUNCTION> NetHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
30/10/2013 23:51 <JUNCTION> PrintHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
30/10/2013 23:51 <JUNCTION> Recent [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Recent]
30/10/2013 23:51 <JUNCTION> SendTo [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\SendTo]
30/10/2013 23:51 <JUNCTION> Start Menu [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu]
30/10/2013 23:51 <JUNCTION> Templates [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser\AppData\Local
30/10/2013 23:51 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Local]
30/10/2013 23:51 <JUNCTION> History [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\History]
30/10/2013 23:51 <JUNCTION> Temporary Internet Files [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser\Documents
30/10/2013 23:51 <JUNCTION> My Music [C:\Users\UpdatusUser\Music]
30/10/2013 23:51 <JUNCTION> My Pictures [C:\Users\UpdatusUser\Pictures]
30/10/2013 23:51 <JUNCTION> My Videos [C:\Users\UpdatusUser\Videos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
65 Dir(s) 25,366,618,112 bytes free

< End of report >
  • 0

#84
Dom2276
Posted 05 November 2013 - 07:05 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Dom (administrator) on DOM-PC on 06-11-2013 14:02:54
Running from C:\Users\Dom\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Adobe Systems Incorporated) c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkDMS.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Mediafour Corporation) C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE
(Mediafour Corporation) C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
() C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Primax Electronics Ltd.) C:\Windows\System32\ICO.EXE
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Panasonic Corporation) C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
(cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\IEXPLORE.EXE
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6611048 2011-02-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2188904 2011-01-19] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2531624 2010-12-18] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE [767312 2009-03-18] (CANON INC.)
HKLM\...\Run: [FreeFallProtection] - C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2010-12-18] ()
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-11-02] (Intel® Corporation)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-30] ()
HKLM\...\Run: [Mouse Suite 98 Daemon] - C:\Windows\System32\ICO.EXE [90624 2006-09-29] (Primax Electronics Ltd.)
HKLM\...\Run: [Start WingMan Profiler] - C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-15] (Logitech Inc.)
HKLM\...\Run: [Samsung Link] - C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [597576 2013-10-17] (Copyright 2013 SAMSUNG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [AppleIEDAV] - C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1315144 2013-09-05] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-09-16] (Apple Inc.)
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files (x86)\Google\Drive\googledrivesync.exe [20133824 2013-09-25] (Google)
HKCU\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-01-31] (Google Inc.)
HKLM-x32\...\Run: [AccuWeatherWidget] - C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj [2835443 2012-02-02] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [37960 2013-05-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-22] (Apple Inc.)
HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-03] (cyberlink)
HKLM-x32\...\Run: [CanonQuickMenu] - C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-04] (CANON INC.)
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-26] (Dell, Inc.)
HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-14] (Creative Technology Ltd)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-18] ()
HKLM-x32\...\Run: [IJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [136544 2009-05-20] (CANON INC.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] - C:\Program Files (x86)\Cyberlink\PowerDVD9\Language\Language.exe [50472 2010-09-18] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl9] - C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-02] (CyberLink Corp.)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [90448 2011-11-02] (Research In Motion Limited)
HKLM-x32\...\Run: [RoxWatchTray] - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-26] (Sonic Solutions)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-08] (Elaborate Bytes AG)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4908592 2013-10-07] (AVG Technologies CZ, s.r.o.)
HKU\UpdatusUser\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516096 2010-11-21] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [247144 2012-10-09] (NVIDIA Corporation)
Startup: C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk
ShortcutTarget: Intel® Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.nz/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = ${SEARCH_URL}{searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "socks_remote_dns", ""
FF NetworkProxy: "type", ""
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: samsung.com/SamsungLinkPCPlugin - C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF Plugin HKCU: samsung.com/SamsungLinkPCPlugin - C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Extension: FoxyProxy Basic - C:\Users\Dom\AppData\Roaming\Mozilla\Firefox\Profiles\tyh94w6u.default\Extensions\[email protected]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK

Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.70.11) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.4_0
CHR Extension: (Google Drive) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Gmail) - C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.20\AllShareFrameworkManagerDMS.exe [404360 2013-10-01] (Samsung)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3538480 2013-10-03] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [301152 2013-09-25] (AVG Technologies CZ, s.r.o.)
S2 CLKMSVC10_9EC60124; c:\Program Files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe [247768 2013-04-03] (CyberLink)
R2 M4LIC; C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE [205312 2009-07-29] (Mediafour Corporation)
R2 MacDrive8Service; C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe [218112 2010-01-07] (Mediafour Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-11-02] ()
R2 NGRegClnSrv; C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe [618832 2013-02-21] (NETGATE Technologies s.r.o.)
R2 OpenVPNAccessClient; C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [24064 2010-08-13] ()
R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [605768 2013-10-17] (Copyright 2013 SAMSUNG)

==================== Drivers (Whitelisted) ====================

R3 AVer7231_x64; C:\Windows\System32\DRIVERS\AVer7231_x64.sys [1799808 2010-06-11] (AVerMedia TECHNOLOGIES, Inc.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [148792 2013-09-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [241464 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192824 2013-09-02] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-08-20] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-08] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 CBDisk; C:\Windows\system32\drivers\CBDisk.sys [70344 2010-01-14] (EldoS Corporation)
S3 hitmanpro36; C:\Windows\system32\drivers\hitmanpro36.sys [30496 2012-06-30] ()
R0 MDFSYSNT; C:\Windows\System32\Drivers\MDFSYSNT.sys [304232 2010-02-04] (Mediafour Corporation)
R0 MDPMGRNT; C:\Windows\System32\DRIVERS\MDPMGRNT.SYS [32352 2009-09-24] (Mediafour Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-19] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-19] (Microsoft Corporation)
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [284008 2012-10-09] (NVIDIA Corporation)
S3 NvStUSB; C:\Windows\system32\drivers\nvstusb.sys [121960 2010-12-13] ()
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-06 13:58 - 2013-11-06 13:58 - 00352804 _____ C:\Users\Dom\Desktop\OTL.Txt
2013-11-06 12:20 - 2013-11-06 12:20 - 00000000 ____D C:\Users\Dom\AppData\Roaming\PCDr
2013-11-05 21:04 - 2013-11-05 21:04 - 00000000 ____D C:\Users\Dom\AppData\Local\CrashDumps
2013-11-04 21:00 - 2013-11-04 21:00 - 00038326 _____ C:\ComboFix.txt
2013-11-04 20:38 - 2013-11-04 20:38 - 05143677 ____R (Swearware) C:\Users\Dom\Desktop\ComboFix.exe
2013-11-04 00:54 - 2013-11-04 00:54 - 00003252 _____ C:\Windows\System32\Tasks\{D880F4A1-2786-4CB4-A700-83EDC7D0515B}
2013-11-03 16:19 - 2013-11-03 16:20 - 00044653 _____ C:\Users\Dom\Desktop\Addition.txt
2013-11-03 16:17 - 2013-11-03 16:17 - 01957098 _____ (Farbar) C:\Users\Dom\Desktop\FRST64.exe
2013-11-03 16:17 - 2013-11-03 16:17 - 00000000 ____D C:\FRST
2013-11-02 01:00 - 2013-11-02 01:00 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\Dom\Desktop\tdsskiller.exe
2013-11-02 00:52 - 2013-11-02 00:52 - 04012032 _____ C:\Users\Dom\Desktop\RogueKillerX64.exe
2013-10-31 23:09 - 2012-08-24 03:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-10-31 23:09 - 2012-08-24 03:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-10-31 23:09 - 2012-08-24 03:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-10-31 23:09 - 2012-08-24 03:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-10-31 23:09 - 2012-08-24 02:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-10-31 23:09 - 2012-08-24 02:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-10-31 23:09 - 2012-08-24 02:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-31 23:09 - 2012-08-24 02:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-31 23:09 - 2012-08-24 02:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-31 23:09 - 2012-08-24 02:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-10-31 23:09 - 2012-08-24 02:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-31 23:09 - 2012-08-24 02:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-10-31 23:09 - 2012-08-24 02:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-31 23:09 - 2012-08-24 01:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-31 23:09 - 2012-08-24 00:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-10-31 23:09 - 2012-08-24 00:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-31 23:09 - 2012-08-24 00:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-10-31 23:09 - 2012-08-24 00:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-10-31 23:09 - 2012-08-23 23:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-31 23:09 - 2012-08-23 23:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-10-31 23:09 - 2012-08-23 23:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-31 23:09 - 2012-08-23 23:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-31 23:09 - 2012-08-23 22:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-10-31 23:09 - 2012-08-23 21:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-31 23:09 - 2012-08-23 21:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-31 23:00 - 2012-08-25 07:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-31 23:00 - 2012-08-25 07:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-31 23:00 - 2012-08-25 07:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-31 23:00 - 2012-08-25 07:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-31 23:00 - 2012-08-25 05:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-31 23:00 - 2012-08-25 05:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-31 23:00 - 2012-08-25 05:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-31 23:00 - 2012-05-05 00:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-31 23:00 - 2012-05-04 22:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-31 22:57 - 2013-10-31 22:57 - 00000967 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-10-31 22:57 - 2013-10-31 22:57 - 00000000 ____D C:\Users\Dom\AppData\Roaming\AVG2014
2013-10-31 22:56 - 2013-10-31 22:57 - 00000000 ____D C:\ProgramData\AVG2014
2013-10-31 22:56 - 2013-10-31 22:56 - 00000000 ____D C:\$AVG
2013-10-31 22:55 - 2013-10-31 22:55 - 00000000 ____D C:\Program Files (x86)\AVG
2013-10-31 22:53 - 2013-11-06 09:42 - 00000000 ____D C:\ProgramData\MFAData
2013-10-31 22:53 - 2013-10-31 22:57 - 00000000 ____D C:\Users\Dom\AppData\Local\Avg2014
2013-10-31 22:53 - 2013-10-31 22:53 - 00000000 ____D C:\Users\Dom\AppData\Local\MFAData
2013-10-31 22:32 - 2013-10-31 22:32 - 00756776 _____ (Microsoft Corporation) C:\Users\Dom\Downloads\OneCareCleanup (1).exe
2013-10-31 20:47 - 2013-11-06 13:47 - 00000438 ____H C:\Windows\Tasks\Windows Backup and Restore Center.job
2013-10-31 20:47 - 2013-10-31 20:47 - 00003382 _____ C:\Windows\System32\Tasks\Windows Backup and Restore Center
2013-10-31 20:43 - 2013-10-31 01:12 - 00000000 ____D C:\Windows\Panther
2013-10-31 20:36 - 2013-10-31 20:36 - 00262144 _____ C:\Windows\system32\config\userdiff
2013-10-31 20:24 - 2013-10-31 00:50 - 00000000 ____D C:\$WINDOWS.~Q
2013-10-31 20:04 - 2013-10-31 20:15 - 00000000 ____D C:\$INPLACE.~TR
2013-10-31 19:19 - 2013-10-31 19:19 - 00040921 _____ C:\ComboFix.txt 2.txt
2013-10-31 18:25 - 2013-10-31 18:25 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-31 18:25 - 2013-10-31 18:25 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-31 18:25 - 2013-10-31 18:25 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-31 18:25 - 2013-10-31 18:25 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-31 18:25 - 2013-10-31 18:25 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-31 18:25 - 2013-10-31 18:25 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-31 18:25 - 2013-10-31 18:25 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-31 18:25 - 2013-10-31 18:25 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-31 18:25 - 2013-10-31 18:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-31 18:25 - 2013-10-31 18:25 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-31 18:25 - 2013-10-31 18:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-31 13:59 - 2013-04-17 20:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-31 13:59 - 2013-04-17 19:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-31 13:03 - 2013-10-31 13:03 - 00000000 ____D C:\Users\Dom\New folder
2013-10-31 12:58 - 2013-10-31 12:59 - 00000000 ____D C:\WINSSLog
2013-10-31 12:57 - 2013-10-31 12:57 - 00756776 _____ (Microsoft Corporation) C:\Users\Dom\Downloads\OneCareCleanup.exe
2013-10-31 10:47 - 2013-01-14 10:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 10:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-31 10:47 - 2013-01-14 09:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-31 10:47 - 2013-01-14 09:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-31 10:47 - 2013-01-14 09:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-31 10:47 - 2013-01-14 09:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-31 10:47 - 2013-01-14 08:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-31 10:47 - 2013-01-14 08:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-31 10:47 - 2013-01-14 08:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-31 10:47 - 2013-01-14 08:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-31 10:47 - 2013-01-14 08:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-31 10:47 - 2013-01-14 08:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-31 10:47 - 2013-01-14 08:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-31 10:47 - 2013-01-14 08:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-31 10:47 - 2013-01-14 08:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-31 10:47 - 2013-01-14 08:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-31 10:47 - 2013-01-14 08:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-31 10:47 - 2013-01-14 08:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-31 10:47 - 2013-01-14 08:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-31 10:47 - 2013-01-14 08:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-31 10:47 - 2013-01-14 08:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-31 10:47 - 2013-01-14 08:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-31 10:47 - 2013-01-14 08:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-31 10:47 - 2013-01-14 08:10 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-31 10:47 - 2013-01-14 08:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-31 10:47 - 2013-01-14 07:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-31 10:47 - 2013-01-14 07:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-31 10:47 - 2013-01-14 07:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-31 10:47 - 2013-01-14 06:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-31 10:47 - 2013-01-14 06:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-31 10:47 - 2013-01-04 19:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-31 10:47 - 2013-01-04 19:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-31 10:46 - 2013-09-05 01:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-31 10:46 - 2013-09-05 01:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-31 03:48 - 2013-02-27 19:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-10-31 03:48 - 2013-02-27 18:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-31 03:48 - 2013-02-27 18:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-10-31 03:48 - 2013-02-27 17:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-10-31 03:48 - 2011-06-16 18:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-10-31 03:48 - 2011-06-16 17:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-10-31 03:48 - 2011-05-04 18:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-10-31 03:48 - 2011-05-04 18:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-10-31 03:48 - 2011-05-04 18:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-10-31 03:48 - 2011-05-04 18:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-10-31 03:48 - 2011-05-04 18:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-10-31 03:48 - 2011-05-04 17:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-10-31 03:48 - 2011-05-04 17:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-10-31 03:48 - 2011-05-04 17:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-10-31 03:48 - 2011-05-04 17:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-10-31 03:48 - 2011-05-04 17:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-10-31 03:48 - 2010-12-23 23:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-10-31 03:48 - 2010-12-23 23:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-10-31 03:48 - 2010-12-23 23:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-10-31 03:48 - 2010-12-23 18:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-10-31 03:48 - 2010-12-23 18:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-10-31 03:48 - 2010-12-23 18:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-10-31 03:47 - 2013-07-09 18:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-31 03:47 - 2013-07-09 18:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-31 03:47 - 2013-07-09 18:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-31 03:47 - 2013-07-09 18:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-31 03:47 - 2013-07-09 17:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-31 03:47 - 2013-07-09 17:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-31 03:47 - 2013-07-09 17:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-31 03:47 - 2013-07-09 17:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-31 03:47 - 2013-07-05 01:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-31 03:47 - 2013-07-05 00:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-31 03:47 - 2013-04-13 03:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-31 03:47 - 2013-03-19 18:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-31 03:47 - 2013-03-19 18:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-31 03:47 - 2012-10-10 07:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-10-31 03:47 - 2012-10-10 07:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-10-31 03:47 - 2012-10-10 06:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-10-31 03:47 - 2012-10-10 06:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-10-31 03:47 - 2012-01-04 23:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-10-31 03:47 - 2012-01-04 21:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-10-31 03:47 - 2011-11-17 19:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-10-31 03:47 - 2011-11-17 18:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-10-31 03:47 - 2011-10-26 18:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-10-31 03:47 - 2011-10-26 17:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-10-31 03:47 - 2011-07-09 15:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-10-31 03:47 - 2011-06-15 23:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-10-31 03:47 - 2011-06-15 23:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-31 03:47 - 2011-06-15 23:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-10-31 03:47 - 2011-06-15 23:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-10-31 03:47 - 2011-06-15 21:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-10-31 03:47 - 2011-04-27 15:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-10-31 03:47 - 2011-04-27 15:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-10-31 03:47 - 2011-04-09 19:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-10-31 03:47 - 2011-04-09 18:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-10-31 03:47 - 2011-02-25 19:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-10-31 03:47 - 2011-02-25 18:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-10-31 03:40 - 2011-12-30 19:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-10-31 03:40 - 2011-12-30 18:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-10-31 03:39 - 2013-07-19 14:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-31 03:39 - 2013-07-19 14:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-31 03:38 - 2013-08-05 15:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-31 03:38 - 2013-08-02 15:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-31 03:38 - 2013-08-02 15:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-31 03:38 - 2013-08-02 15:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-31 03:38 - 2013-08-02 14:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 14:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-31 03:38 - 2013-08-02 13:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-31 03:38 - 2013-08-02 13:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 13:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 13:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-31 03:38 - 2013-08-02 13:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-31 03:38 - 2013-06-06 18:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-31 03:38 - 2013-06-06 18:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-31 03:38 - 2013-06-06 18:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-31 03:38 - 2013-06-06 18:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-31 03:38 - 2013-06-06 17:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-31 03:38 - 2013-06-06 17:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-31 03:38 - 2013-06-06 17:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-31 03:38 - 2013-06-06 16:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-31 03:38 - 2013-06-06 16:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-31 03:38 - 2013-06-06 16:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-31 03:38 - 2013-02-12 17:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-31 03:38 - 2012-11-01 18:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-10-31 03:38 - 2012-11-01 18:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-10-31 03:38 - 2012-11-01 17:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-10-31 03:38 - 2012-11-01 17:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-10-31 03:38 - 2012-08-23 07:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-10-31 03:38 - 2012-07-05 09:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-10-31 03:38 - 2011-03-11 19:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-10-31 03:38 - 2011-03-11 19:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-10-31 03:38 - 2011-03-11 18:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-10-31 03:38 - 2011-03-11 18:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-10-31 03:38 - 2010-06-26 16:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-10-31 03:38 - 2010-06-26 16:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-10-31 03:29 - 2012-07-26 17:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-10-31 03:29 - 2012-07-26 15:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-10-31 03:29 - 2012-06-03 03:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-10-31 03:28 - 2013-07-25 22:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-31 03:28 - 2013-07-25 21:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-31 03:28 - 2013-07-12 23:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-31 03:28 - 2013-07-12 23:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-31 03:28 - 2013-07-09 18:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-10-31 03:28 - 2013-07-09 17:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-10-31 03:28 - 2013-07-03 17:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-31 03:28 - 2013-07-03 17:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-31 03:28 - 2013-06-26 11:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-31 03:28 - 2012-10-04 06:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-10-31 03:28 - 2012-10-04 06:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-10-31 03:28 - 2012-10-04 06:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-10-31 03:28 - 2012-10-04 06:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-10-31 03:28 - 2012-10-04 06:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-10-31 03:28 - 2012-10-04 06:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-10-31 03:28 - 2012-10-04 05:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-10-31 03:28 - 2012-10-04 05:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-10-31 03:28 - 2012-10-04 05:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-10-31 03:28 - 2012-10-04 05:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-10-31 03:28 - 2012-06-02 18:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-10-31 03:28 - 2012-05-01 18:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-10-31 03:28 - 2012-04-26 18:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-10-31 03:28 - 2012-04-26 18:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-31 03:28 - 2012-04-26 18:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-10-31 03:28 - 2012-01-13 20:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-10-31 03:28 - 2011-11-17 19:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-10-31 03:28 - 2011-11-17 19:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-10-31 03:28 - 2011-11-17 19:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-10-31 03:28 - 2011-11-17 19:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-10-31 03:28 - 2011-04-23 11:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-10-31 03:28 - 2011-03-03 19:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-10-31 03:28 - 2011-03-03 19:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-10-31 03:28 - 2011-03-03 19:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-10-31 03:28 - 2011-03-03 18:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-10-31 03:28 - 2011-03-03 18:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-10-31 03:27 - 2013-07-05 01:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-31 03:27 - 2013-07-05 01:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-31 03:27 - 2013-07-05 00:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-31 03:27 - 2013-07-05 00:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-31 03:27 - 2013-07-04 23:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-31 03:27 - 2013-06-04 19:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-31 03:27 - 2013-06-04 17:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-10-31 03:27 - 2012-11-22 18:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-10-31 03:27 - 2012-11-22 17:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-10-31 03:27 - 2012-11-20 18:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-31 03:27 - 2012-11-20 17:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-10-31 03:27 - 2012-11-02 18:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-10-31 03:27 - 2012-11-02 18:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-10-31 03:27 - 2011-04-29 16:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-10-31 03:27 - 2011-04-29 16:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-10-31 03:27 - 2011-04-29 16:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-10-31 03:26 - 2013-09-14 14:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-31 03:26 - 2013-09-08 15:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-31 03:26 - 2013-09-08 15:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-31 03:26 - 2013-09-08 15:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-31 03:26 - 2013-08-28 14:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-31 03:26 - 2013-06-15 17:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-10-31 03:26 - 2012-12-08 02:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-10-31 03:26 - 2012-12-08 02:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-10-31 03:26 - 2012-12-08 01:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-10-31 03:26 - 2012-12-08 01:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-10-31 03:26 - 2012-12-08 00:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-10-31 03:26 - 2012-12-08 00:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-10-31 03:26 - 2012-12-08 00:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-10-31 03:26 - 2012-12-07 23:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-10-31 03:26 - 2012-08-22 10:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-10-31 03:26 - 2012-04-28 16:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-31 03:26 - 2011-08-17 18:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-31 03:26 - 2011-08-17 18:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-31 03:26 - 2011-08-17 17:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-10-31 03:26 - 2011-08-17 17:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-10-31 03:24 - 2013-08-29 15:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-31 03:24 - 2013-08-29 15:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-31 03:24 - 2013-08-29 15:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-31 03:24 - 2013-08-29 15:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-31 03:24 - 2013-08-29 15:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-31 03:24 - 2013-08-29 14:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-31 03:24 - 2013-08-29 14:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-31 03:24 - 2013-08-29 14:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-31 03:24 - 2013-08-29 14:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-31 03:24 - 2013-08-29 14:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-31 03:24 - 2013-08-29 14:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-31 03:24 - 2013-08-29 13:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-31 03:24 - 2013-08-29 13:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-31 03:24 - 2013-08-29 13:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-31 03:24 - 2012-08-11 13:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-10-31 03:24 - 2012-08-11 12:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-10-31 03:23 - 2013-08-29 13:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-31 03:23 - 2012-04-08 01:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-10-31 03:23 - 2012-04-08 00:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-10-31 03:23 - 2012-03-17 20:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-31 03:16 - 2012-11-30 18:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-10-31 03:16 - 2012-11-30 18:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-10-31 03:16 - 2012-11-30 18:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-10-31 03:16 - 2012-11-30 12:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-10-31 03:16 - 2012-11-30 12:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-10-31 03:15 - 2012-07-26 16:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-10-31 03:15 - 2012-07-26 16:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-10-31 03:15 - 2012-07-26 16:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-10-31 03:15 - 2012-07-26 16:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-10-31 03:15 - 2012-07-26 16:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-10-31 03:15 - 2012-07-26 15:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-10-31 03:15 - 2012-07-26 15:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-10-31 03:15 - 2012-06-03 03:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-10-31 03:14 - 2013-07-26 15:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-31 03:14 - 2013-07-26 15:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-31 03:14 - 2013-07-26 14:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-31 03:14 - 2013-07-26 14:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-10-31 03:14 - 2013-04-26 18:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-31 03:14 - 2013-04-26 17:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-31 03:14 - 2012-09-26 11:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-10-31 03:14 - 2012-09-26 11:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-10-31 03:14 - 2011-02-06 06:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-10-31 03:14 - 2011-02-06 06:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-31 03:14 - 2011-02-06 06:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-31 03:14 - 2011-02-06 06:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-31 03:14 - 2011-02-06 06:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-31 03:14 - 2011-02-06 06:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-10-31 03:14 - 2011-02-06 06:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-31 03:13 - 2013-05-10 18:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-31 03:13 - 2013-05-10 16:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-31 02:48 - 2013-01-24 19:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-10-31 02:48 - 2013-01-03 19:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-31 02:48 - 2012-08-23 07:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-10-31 02:48 - 2012-05-05 21:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-10-31 02:48 - 2012-05-05 20:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-10-31 02:48 - 2011-02-18 23:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-10-31 02:48 - 2011-02-18 18:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-10-31 02:47 - 2011-12-16 21:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-31 02:47 - 2011-12-16 20:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-10-31 02:47 - 2011-05-03 18:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-10-31 02:47 - 2011-05-03 17:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-10-31 02:47 - 2011-02-13 00:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-10-31 02:24 - 2012-07-07 09:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-10-31 02:24 - 2011-04-28 16:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-10-31 02:24 - 2011-03-11 19:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-10-31 02:24 - 2011-03-11 19:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-10-31 02:24 - 2011-03-11 19:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-10-31 02:24 - 2011-03-11 19:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-10-31 02:24 - 2011-03-11 18:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-10-31 02:24 - 2011-03-11 18:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-10-31 02:24 - 2011-03-11 17:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-10-31 02:22 - 2013-05-13 18:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-10-31 02:22 - 2013-05-13 16:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-31 02:22 - 2013-05-13 16:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-10-31 02:22 - 2013-05-13 16:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-10-31 02:22 - 2012-06-06 19:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-10-31 02:22 - 2012-06-06 18:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-10-31 02:22 - 2011-10-15 19:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-10-31 02:22 - 2011-10-15 18:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-10-31 02:04 - 2013-09-26 01:46 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-31 02:00 - 2012-03-01 19:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-10-31 02:00 - 2012-03-01 19:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-10-31 02:00 - 2012-03-01 19:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-10-31 02:00 - 2012-03-01 18:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-10-31 02:00 - 2012-03-01 18:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-10-31 01:47 - 2013-07-20 23:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-31 01:47 - 2013-07-20 23:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-31 01:47 - 2012-07-05 11:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-31 01:47 - 2012-07-05 11:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-10-31 01:47 - 2012-07-05 11:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-10-31 01:47 - 2012-07-05 10:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-10-31 01:47 - 2012-07-05 10:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-10-31 01:47 - 2012-05-14 18:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-10-31 01:47 - 2012-02-11 19:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-10-31 01:47 - 2012-02-11 19:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-10-31 01:47 - 2011-05-25 00:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-31 01:47 - 2011-05-24 23:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-10-31 01:47 - 2011-05-24 23:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-10-31 01:47 - 2011-05-24 23:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-10-31 01:47 - 2011-05-24 23:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-10-31 01:46 - 2013-08-28 14:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-31 01:46 - 2013-08-02 01:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-31 01:46 - 2013-04-10 19:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-31 01:46 - 2011-11-20 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-10-31 01:46 - 2011-11-20 03:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-10-31 01:46 - 2011-08-27 18:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-31 01:46 - 2011-08-27 18:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-10-31 01:46 - 2011-08-27 17:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-10-31 01:46 - 2011-08-27 17:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-10-31 01:46 - 2011-02-23 17:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-10-31 01:46 - 2011-02-04 00:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-31 01:39 - 2013-10-31 01:42 - 00000134 _____ C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
2013-10-31 01:39 - 2013-10-31 01:39 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-10-31 01:37 - 2013-10-31 01:37 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-31 01:37 - 2013-10-31 01:37 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-31 01:36 - 2013-10-31 01:54 - 00017426 _____ C:\Windows\IE11_main.log
2013-10-31 01:25 - 2013-11-06 07:36 - 00756850 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-31 01:24 - 2012-02-17 19:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-10-31 01:24 - 2012-02-17 18:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-10-31 01:24 - 2012-02-17 17:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-10-31 01:18 - 2013-10-31 10:17 - 00128392 _____ C:\Users\Dom\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-31 01:16 - 2013-10-31 18:32 - 00001415 _____ C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-31 01:13 - 2012-06-03 11:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-10-31 01:13 - 2012-06-03 11:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-10-31 01:13 - 2012-06-03 11:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-10-31 01:13 - 2012-06-03 11:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-10-31 01:13 - 2012-06-03 11:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-10-31 01:13 - 2012-06-03 11:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-10-31 01:13 - 2012-06-03 11:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-10-31 01:13 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-10-31 01:13 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-10-31 01:12 - 2013-10-31 01:12 - 00000020 ___SH C:\Users\Dom\ntuser.ini
2013-10-31 01:12 - 2013-10-31 01:12 - 00000000 ____D C:\Recovery
2013-10-31 01:04 - 2013-11-06 13:43 - 01705866 _____ C:\Windows\WindowsUpdate.log
2013-10-31 00:48 - 2013-10-31 00:48 - 00022744 _____ C:\Windows\system32\emptyregdb.dat
2013-10-31 00:41 - 2013-11-06 07:22 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-10-31 00:41 - 2013-11-06 07:22 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2013-10-30 23:51 - 2013-10-31 22:22 - 00000000 ____D C:\Users\Dom
2013-10-30 23:51 - 2009-07-14 17:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-30 23:51 - 2009-07-14 17:54 - 00000000 ___RD C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-30 23:51 - 2009-07-14 17:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-30 23:51 - 2009-07-14 17:49 - 00000000 ___RD C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-30 23:50 - 2013-10-30 23:50 - 00001355 _____ C:\Windows\TSSysprep.log
2013-10-30 23:49 - 2013-10-30 23:49 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2013-10-30 23:49 - 2013-10-30 23:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-30 23:49 - 2012-10-03 08:51 - 06200680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-10-30 23:49 - 2012-10-03 08:51 - 03536817 _____ C:\Windows\system32\nvcoproc.bin
2013-10-30 23:49 - 2012-10-03 08:51 - 03293544 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 02557800 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 00891240 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-10-30 23:49 - 2012-10-03 08:50 - 00866664 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 00118120 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 00063336 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-10-30 23:49 - 2012-10-03 08:50 - 00055144 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2013-10-30 23:48 - 2013-10-31 00:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-30 23:48 - 2013-10-30 23:59 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-30 23:48 - 2013-10-30 23:48 - 00074462 _____ C:\Windows\system32\Drivers\RTWAVES30.dat
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____D C:\Windows\system32\SRSLabs
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____D C:\Program Files\Synaptics
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Program Files\STMicroelectronics
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Program Files\Realtek
2013-10-30 23:47 - 2010-08-20 11:05 - 00021616 _____ (ST Microelectronics) C:\Windows\system32\Drivers\stdcfltn.sys
2013-10-30 22:27 - 2013-10-31 00:50 - 00006072 _____ C:\Windows\comsetup.log
2013-10-30 22:15 - 2013-10-30 22:20 - 00003094 _____ C:\Users\Dom\Desktop\Windows Compatibility Report.htm
2013-10-30 22:13 - 2013-10-30 22:13 - 00001890 _____ C:\Windows\diagwrn.xml
2013-10-30 22:13 - 2013-10-30 22:13 - 00001890 _____ C:\Windows\diagerr.xml
2013-10-30 20:31 - 2013-10-30 22:04 - 3320903680 _____ C:\Users\Dom\Desktop\Win 7 sp1.iso
2013-10-26 11:09 - 2013-10-31 22:22 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Samsung
2013-10-23 18:44 - 2013-10-23 18:48 - 91157064 _____ (Copyright 2013 SAMSUNG) C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
2013-10-22 17:46 - 2013-10-31 00:35 - 00000000 ____D C:\Users\Dom\Desktop\Florence and The Machine - Ceremonials (Deluxe Version) (2011)
2013-10-22 14:54 - 2013-10-26 11:23 - 07020544 _____ C:\Users\Dom\Desktop\SideBySide
2013-10-21 16:34 - 2013-10-21 16:34 - 00124344 _____ C:\Users\Dom\Desktop\WindowsUpdate.zip
2013-10-18 19:32 - 2013-10-18 19:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-18 19:32 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-18 19:32 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-18 19:32 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-18 19:31 - 2013-10-18 19:32 - 00004833 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-18 19:31 - 2013-07-02 08:34 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-10-09 21:43 - 2013-10-31 00:14 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-09 21:43 - 2013-10-09 21:43 - 00001785 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-09 18:57 - 2013-10-09 19:08 - 423572207 _____ C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
2013-10-09 17:53 - 2013-10-31 00:18 - 00000000 ____D C:\Windows\CheckSur
2013-10-09 15:22 - 2013-10-31 00:35 - 00000000 ____D C:\Users\Dom\Desktop\Fix WU
2013-10-09 15:22 - 2013-10-09 15:22 - 00021232 _____ C:\Users\Dom\Desktop\Fix WU.zip
2013-10-08 03:54 - 2013-10-08 03:54 - 01589825 _____ C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
2013-10-07 18:30 - 2013-10-07 18:30 - 00875304 _____ (Microsoft Corporation) C:\Users\Dom\Desktop\NetFxRepairTool.exe
2013-10-07 11:38 - 2013-10-07 11:38 - 00000207 _____ C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2013-10-07 11:37 - 2013-10-07 11:37 - 00000000 ____D C:\RegBackup
2013-10-07 11:13 - 2013-10-31 00:13 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-10-07 11:13 - 2013-10-07 11:13 - 00002161 _____ C:\Users\Dom\Desktop\Tweaking.com - Windows Repair (All in One).lnk

==================== One Month Modified Files and Folders =======

2013-11-06 13:58 - 2013-11-06 13:58 - 00352804 _____ C:\Users\Dom\Desktop\OTL.Txt
2013-11-06 13:47 - 2013-10-31 20:47 - 00000438 ____H C:\Windows\Tasks\Windows Backup and Restore Center.job
2013-11-06 13:43 - 2013-10-31 01:04 - 01705866 _____ C:\Windows\WindowsUpdate.log
2013-11-06 13:20 - 2012-03-30 11:17 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-06 13:09 - 2012-01-31 01:39 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-06 12:20 - 2013-11-06 12:20 - 00000000 ____D C:\Users\Dom\AppData\Roaming\PCDr
2013-11-06 12:17 - 2013-05-23 07:42 - 00003440 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-11-06 11:23 - 2012-02-02 04:15 - 00000000 ____D C:\Users\Dom\AppData\Roaming\vlc
2013-11-06 09:42 - 2013-10-31 22:53 - 00000000 ____D C:\ProgramData\MFAData
2013-11-06 07:36 - 2013-10-31 01:25 - 00756850 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-11-06 07:36 - 2009-07-14 18:13 - 00756850 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-06 07:30 - 2009-07-14 17:45 - 00025872 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-06 07:30 - 2009-07-14 17:45 - 00025872 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-06 07:22 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-11-06 07:22 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-11-06 07:22 - 2012-01-31 01:39 - 00000888 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-06 07:22 - 2012-01-20 15:27 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-11-06 07:21 - 2012-01-20 16:47 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-06 07:21 - 2009-07-14 18:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-06 07:21 - 2009-07-14 17:51 - 01589577 _____ C:\Windows\setupact.log
2013-11-05 21:04 - 2013-11-05 21:04 - 00000000 ____D C:\Users\Dom\AppData\Local\CrashDumps
2013-11-04 21:00 - 2013-11-04 21:00 - 00038326 _____ C:\ComboFix.txt
2013-11-04 21:00 - 2013-10-04 11:02 - 00000000 ____D C:\Qoobox
2013-11-04 20:55 - 2009-07-14 15:34 - 00000215 _____ C:\Windows\system.ini
2013-11-04 20:53 - 2010-11-21 16:47 - 00027404 _____ C:\Windows\PFRO.log
2013-11-04 20:52 - 2013-03-19 17:24 - 00000000 ____D C:\Users\Dom\AppData\Roaming\tixati
2013-11-04 20:38 - 2013-11-04 20:38 - 05143677 ____R (Swearware) C:\Users\Dom\Desktop\ComboFix.exe
2013-11-04 00:54 - 2013-11-04 00:54 - 00003252 _____ C:\Windows\System32\Tasks\{D880F4A1-2786-4CB4-A700-83EDC7D0515B}
2013-11-03 16:20 - 2013-11-03 16:19 - 00044653 _____ C:\Users\Dom\Desktop\Addition.txt
2013-11-03 16:17 - 2013-11-03 16:17 - 01957098 _____ (Farbar) C:\Users\Dom\Desktop\FRST64.exe
2013-11-03 16:17 - 2013-11-03 16:17 - 00000000 ____D C:\FRST
2013-11-02 21:58 - 2013-06-03 20:19 - 00000000 ____D C:\Program Files (x86)\GRID 2
2013-11-02 15:16 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\rescache
2013-11-02 01:00 - 2013-11-02 01:00 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\Dom\Desktop\tdsskiller.exe
2013-11-02 00:57 - 2012-06-21 09:01 - 00000000 ____D C:\Users\Dom\Desktop\RK_Quarantine
2013-11-02 00:52 - 2013-11-02 00:52 - 04012032 _____ C:\Users\Dom\Desktop\RogueKillerX64.exe
2013-11-02 00:42 - 2012-01-30 12:12 - 00000000 ___RD C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-31 23:34 - 2012-01-20 16:04 - 00000000 ____D C:\ProgramData\Sonic
2013-10-31 23:29 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-31 22:57 - 2013-10-31 22:57 - 00000967 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-10-31 22:57 - 2013-10-31 22:57 - 00000000 ____D C:\Users\Dom\AppData\Roaming\AVG2014
2013-10-31 22:57 - 2013-10-31 22:56 - 00000000 ____D C:\ProgramData\AVG2014
2013-10-31 22:57 - 2013-10-31 22:53 - 00000000 ____D C:\Users\Dom\AppData\Local\Avg2014
2013-10-31 22:56 - 2013-10-31 22:56 - 00000000 ____D C:\$AVG
2013-10-31 22:55 - 2013-10-31 22:55 - 00000000 ____D C:\Program Files (x86)\AVG
2013-10-31 22:53 - 2013-10-31 22:53 - 00000000 ____D C:\Users\Dom\AppData\Local\MFAData
2013-10-31 22:32 - 2013-10-31 22:32 - 00756776 _____ (Microsoft Corporation) C:\Users\Dom\Downloads\OneCareCleanup (1).exe
2013-10-31 22:22 - 2013-10-30 23:51 - 00000000 ____D C:\Users\Dom
2013-10-31 22:22 - 2013-10-26 11:09 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Samsung
2013-10-31 21:51 - 2013-05-01 08:45 - 00002135 _____ C:\Windows\epplauncher.mif
2013-10-31 20:56 - 2013-05-22 15:18 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-10-31 20:54 - 2009-07-14 15:34 - 00000546 _____ C:\Windows\win.ini
2013-10-31 20:47 - 2013-10-31 20:47 - 00003382 _____ C:\Windows\System32\Tasks\Windows Backup and Restore Center
2013-10-31 20:43 - 2009-07-14 18:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2013-10-31 20:43 - 2009-07-14 18:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2013-10-31 20:36 - 2013-10-31 20:36 - 00262144 _____ C:\Windows\system32\config\userdiff
2013-10-31 20:15 - 2013-10-31 20:04 - 00000000 ____D C:\$INPLACE.~TR
2013-10-31 19:57 - 2013-10-05 09:29 - 00003178 _____ C:\FixitRegBackup.reg
2013-10-31 19:48 - 2013-07-10 17:26 - 00348672 ___SH C:\Users\Dom\Desktop\Thumbs.db
2013-10-31 19:19 - 2013-10-31 19:19 - 00040921 _____ C:\ComboFix.txt 2.txt
2013-10-31 19:18 - 2009-07-14 16:20 - 00000000 __RHD C:\Users\Default
2013-10-31 18:32 - 2013-10-31 01:16 - 00001415 _____ C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-31 18:28 - 2013-03-22 16:00 - 00016037 _____ C:\Windows\IE10_main.log
2013-10-31 18:25 - 2013-10-31 18:25 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-31 18:25 - 2013-10-31 18:25 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-31 18:25 - 2013-10-31 18:25 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-31 18:25 - 2013-10-31 18:25 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-31 18:25 - 2013-10-31 18:25 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-31 18:25 - 2013-10-31 18:25 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-31 18:25 - 2013-10-31 18:25 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-31 18:25 - 2013-10-31 18:25 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-31 18:25 - 2013-10-31 18:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-31 18:25 - 2013-10-31 18:25 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-31 18:25 - 2013-10-31 18:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-31 18:25 - 2013-10-31 18:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-31 18:25 - 2013-10-31 18:25 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-31 13:03 - 2013-10-31 13:03 - 00000000 ____D C:\Users\Dom\New folder
2013-10-31 12:59 - 2013-10-31 12:58 - 00000000 ____D C:\WINSSLog
2013-10-31 12:57 - 2013-10-31 12:57 - 00756776 _____ (Microsoft Corporation) C:\Users\Dom\Downloads\OneCareCleanup.exe
2013-10-31 12:44 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-10-31 12:44 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-10-31 12:44 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-10-31 12:44 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-31 10:17 - 2013-10-31 01:18 - 00128392 _____ C:\Users\Dom\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-31 10:13 - 2009-07-14 17:45 - 00471704 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-31 10:11 - 2009-07-14 18:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-31 10:11 - 2009-07-14 18:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-31 10:11 - 2009-07-14 16:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-31 03:35 - 2012-01-30 12:12 - 00000000 ___RD C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-31 03:16 - 2011-04-12 21:28 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-31 02:10 - 2013-03-22 16:38 - 00004706 _____ C:\Windows\IE9_main.log
2013-10-31 02:07 - 2013-08-14 07:33 - 00000000 ____D C:\Windows\system32\MRT
2013-10-31 01:54 - 2013-10-31 01:36 - 00017426 _____ C:\Windows\IE11_main.log
2013-10-31 01:42 - 2013-10-31 01:39 - 00000134 _____ C:\Users\Dom\Desktop\Internet Explorer Troubleshooting.url
2013-10-31 01:39 - 2013-10-31 01:39 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-10-31 01:37 - 2013-10-31 01:37 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-31 01:37 - 2013-10-31 01:37 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-31 01:18 - 2009-07-14 16:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-31 01:17 - 2009-07-14 18:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-31 01:12 - 2013-10-31 20:43 - 00000000 ____D C:\Windows\Panther
2013-10-31 01:12 - 2013-10-31 01:12 - 00000020 ___SH C:\Users\Dom\ntuser.ini
2013-10-31 01:12 - 2013-10-31 01:12 - 00000000 ____D C:\Recovery
2013-10-31 01:12 - 2009-07-14 18:32 - 00000000 ____D C:\Windows\system32\restore
2013-10-31 01:12 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\Recovery
2013-10-31 01:04 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\Registration
2013-10-31 00:50 - 2013-10-31 20:24 - 00000000 ____D C:\$WINDOWS.~Q
2013-10-31 00:50 - 2013-10-30 22:27 - 00006072 _____ C:\Windows\comsetup.log
2013-10-31 00:48 - 2013-10-31 00:48 - 00022744 _____ C:\Windows\system32\emptyregdb.dat
2013-10-31 00:47 - 2013-09-27 23:48 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2013-10-31 00:47 - 2012-01-31 02:38 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2013-10-31 00:47 - 2009-07-14 16:20 - 00000000 __RSD C:\Windows\Media
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle
2013-10-31 00:41 - 2013-10-31 00:41 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2013-10-31 00:41 - 2009-07-14 17:46 - 00005157 _____ C:\Windows\DtcInstall.log
2013-10-31 00:41 - 2009-07-14 16:20 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-31 00:41 - 2009-07-14 16:20 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-31 00:41 - 2009-07-14 16:20 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-31 00:41 - 2009-07-14 16:20 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-31 00:38 - 2013-09-04 18:01 - 00000000 ____D C:\Users\Dom\Samsung Link
2013-10-31 00:38 - 2012-11-21 18:35 - 00000000 ____D C:\Users\Dom\SyncUP
2013-10-31 00:36 - 2013-01-27 22:42 - 00000000 ____D C:\Users\Dom\Downloads\The Game - Jesus Piece (Deluxe Edition) [iTunes] (2012-Album) [STumPZ-ReleaSe]
2013-10-31 00:36 - 2012-11-24 00:07 - 00000000 ___RD C:\Users\Dom\Google Drive
2013-10-31 00:36 - 2012-11-08 11:47 - 00000000 ___RD C:\Users\Dom\Dropbox
2013-10-31 00:36 - 2012-02-21 07:10 - 00000000 ____D C:\Users\Dom\Downloads\SATC
2013-10-31 00:35 - 2013-10-22 17:46 - 00000000 ____D C:\Users\Dom\Desktop\Florence and The Machine - Ceremonials (Deluxe Version) (2011)
2013-10-31 00:35 - 2013-10-09 15:22 - 00000000 ____D C:\Users\Dom\Desktop\Fix WU
2013-10-31 00:35 - 2013-09-27 16:36 - 00000000 ____D C:\Users\Dom\AppData\Roaming\NETGATE Registry Cleaner
2013-10-31 00:35 - 2013-09-20 17:35 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Octane
2013-10-31 00:35 - 2013-09-11 12:26 - 00000000 ____D C:\Users\Dom\Documents\Rockstar Games
2013-10-31 00:35 - 2013-08-19 13:16 - 00000000 ____D C:\Users\Dom\AppData\Roaming\OpenVPN Technologies
2013-10-31 00:35 - 2013-08-04 07:27 - 00000000 ____D C:\Users\Dom\Desktop\fb2
2013-10-31 00:35 - 2013-08-04 07:18 - 00000000 ____D C:\Users\Dom\Desktop\fb
2013-10-31 00:35 - 2013-07-10 17:19 - 00000000 ____D C:\Users\Dom\Documents\TV Share
2013-10-31 00:35 - 2013-06-18 11:32 - 00000000 ____D C:\Users\Dom\Documents\NeocoreGames
2013-10-31 00:35 - 2013-06-17 16:18 - 00000000 ____D C:\Users\Dom\Documents\Court Case
2013-10-31 00:35 - 2013-06-17 16:08 - 00000000 ____D C:\Users\Dom\Desktop\St Lucia Pics
2013-10-31 00:35 - 2013-06-05 17:36 - 00000000 ____D C:\Users\Dom\AppData\Roaming\redsn0w
2013-10-31 00:35 - 2013-06-05 17:34 - 00000000 ____D C:\Users\Dom\Desktop\redsn0w_win_0.9.15b3
2013-10-31 00:35 - 2013-06-01 04:07 - 00000000 ____D C:\Users\Dom\Documents\FIFA 13
2013-10-31 00:35 - 2013-05-25 05:11 - 00000000 ____D C:\Users\Dom\Documents\4A Games
2013-10-31 00:35 - 2013-05-23 16:49 - 00000000 ____D C:\Users\Dom\Documents\My Games
2013-10-31 00:35 - 2013-05-11 18:25 - 00000000 ____D C:\Users\Dom\Desktop\janine pics
2013-10-31 00:35 - 2013-03-13 17:04 - 00000000 ____D C:\Users\Dom\Downloads\ErykahBaduDiscography
2013-10-31 00:35 - 2013-02-26 21:28 - 00000000 ____D C:\Users\Dom\Documents\Fax
2013-10-31 00:35 - 2013-02-25 17:24 - 00000000 ____D C:\Users\Dom\Downloads\Blade II (2002)
2013-10-31 00:35 - 2013-02-18 21:32 - 00000000 ____D C:\Users\Dom\CSECDViewer
2013-10-31 00:35 - 2013-02-15 23:43 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Omerta
2013-10-31 00:35 - 2013-02-08 19:02 - 00000000 ____D C:\Users\Dom\Desktop\Court Case
2013-10-31 00:35 - 2013-01-29 00:05 - 00000000 ____D C:\Users\Dom\Desktop\Kindle Books
2013-10-31 00:35 - 2012-12-18 18:06 - 00000000 ____D C:\Users\Dom\Desktop\honeymoonie
2013-10-31 00:35 - 2012-12-05 11:18 - 00000000 ____D C:\Users\Dom\Desktop\New folder (2)
2013-10-31 00:35 - 2012-11-12 09:25 - 00000000 ____D C:\Users\Dom\Documents\The Art of Flight
2013-10-31 00:35 - 2012-11-01 15:14 - 00000000 ____D C:\Users\Dom\Documents\BlackBerry
2013-10-31 00:35 - 2012-11-01 15:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Research In Motion
2013-10-31 00:35 - 2012-11-01 14:54 - 00000000 ____D C:\Users\Dom\Downloads\Brave.2012.R5.DVDRip.XViD.LiNE-UNiQUE
2013-10-31 00:35 - 2012-10-24 07:16 - 00000000 ____D C:\Users\Dom\Desktop\D n B Set
2013-10-31 00:35 - 2012-06-08 11:39 - 00000000 ____D C:\Users\Dom\Downloads\Kindle Library 12-26-10
2013-10-31 00:35 - 2012-05-23 04:00 - 00000000 ____D C:\Users\Dom\Desktop\2012_05_22
2013-10-31 00:35 - 2012-05-05 08:49 - 00000000 ____D C:\Users\Dom\Documents\Trials 2
2013-10-31 00:35 - 2012-05-05 08:47 - 00000000 ____D C:\Users\Dom\Desktop\Trials 2 Second Edition
2013-10-31 00:35 - 2012-04-16 08:26 - 00000000 ____D C:\Users\Dom\Documents\My Received Files
2013-10-31 00:35 - 2012-04-10 11:34 - 00000000 ____D C:\Users\Dom\AppData\Roaming\WinRAR
2013-10-31 00:35 - 2012-04-10 00:57 - 00000000 ____D C:\Users\Dom\Documents\New folder
2013-10-31 00:35 - 2012-03-23 15:13 - 00000000 ____D C:\Users\Dom\Documents\CyberLink
2013-10-31 00:35 - 2012-03-19 12:17 - 00000000 ____D C:\Users\Dom\Documents\OneNote Notebooks
2013-10-31 00:35 - 2012-02-16 05:58 - 00000000 ____D C:\Users\Dom\Documents\Ubisoft
2013-10-31 00:35 - 2012-02-02 04:18 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Skype
2013-10-31 00:35 - 2012-02-01 07:55 - 00000000 ____D C:\Users\Dom\Documents\Outlook Files
2013-10-31 00:35 - 2012-01-31 02:31 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Roxio Burn
2013-10-31 00:35 - 2012-01-30 22:31 - 00000000 ____D C:\Users\Dom\AppData\Roaming\ZinioReader4
2013-10-31 00:35 - 2012-01-30 12:28 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Nero
2013-10-31 00:35 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Roxio
2013-10-31 00:34 - 2013-09-08 23:18 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Media Player Classic
2013-10-31 00:34 - 2013-06-22 23:12 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Milestone
2013-10-31 00:34 - 2013-06-01 18:30 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Leadertech
2013-10-31 00:34 - 2013-03-19 17:24 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2013-10-31 00:34 - 2013-02-14 00:25 - 00000000 ____D C:\Users\Dom\AppData\Roaming\calibre
2013-10-31 00:34 - 2013-02-03 15:53 - 00000000 ____D C:\Users\Dom\AppData\Roaming\dBpoweramp
2013-10-31 00:34 - 2012-11-08 11:44 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Dropbox
2013-10-31 00:34 - 2012-10-18 06:04 - 00000000 ____D C:\Users\Dom\AppData\Roaming\InstallShield
2013-10-31 00:34 - 2012-06-21 06:52 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Malwarebytes
2013-10-31 00:34 - 2012-04-10 11:34 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-10-31 00:34 - 2012-03-23 15:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\CyberLink
2013-10-31 00:34 - 2012-03-08 13:41 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Canon
2013-10-31 00:34 - 2012-02-01 02:53 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Apple Computer
2013-10-31 00:34 - 2012-01-31 03:47 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Blio
2013-10-31 00:34 - 2012-01-31 02:33 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Macrovision
2013-10-31 00:34 - 2012-01-31 01:39 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Google
2013-10-31 00:34 - 2012-01-31 01:21 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Mozilla
2013-10-31 00:34 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Dell Touch Zone
2013-10-31 00:34 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Dell
2013-10-31 00:34 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Creative
2013-10-31 00:34 - 2012-01-30 12:08 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Macromedia
2013-10-31 00:34 - 2012-01-30 12:08 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Intel
2013-10-31 00:32 - 2013-09-21 17:05 - 00000000 ____D C:\Users\Dom\AppData\Local\Urban Trial Freestyle
2013-10-31 00:32 - 2013-09-11 12:23 - 00000000 ____D C:\Users\Dom\AppData\Local\Rockstar Games
2013-10-31 00:32 - 2013-08-19 13:16 - 00000000 ____D C:\Users\Dom\AppData\Local\OpenVPN Technologies
2013-10-31 00:32 - 2013-07-12 15:52 - 00000000 ____D C:\Users\Dom\AppData\Local\SAMSUNG
2013-10-31 00:32 - 2013-06-24 20:50 - 00000000 ____D C:\Users\Dom\AppData\Local\PunkBuster
2013-10-31 00:32 - 2013-05-23 17:34 - 00000000 ____D C:\Users\Dom\AppData\Local\SKIDROW
2013-10-31 00:32 - 2012-11-01 15:13 - 00000000 ____D C:\Users\Dom\AppData\Local\Research In Motion
2013-10-31 00:32 - 2012-10-18 06:04 - 00000000 ____D C:\Users\Dom\AppData\Local\Panasonic
2013-10-31 00:32 - 2012-05-05 08:48 - 00000000 ____D C:\Users\Dom\AppData\Local\Redlynx
2013-10-31 00:32 - 2012-02-15 12:38 - 00000000 ____D C:\Users\Dom\AppData\Local\Sonic_Solutions
2013-10-31 00:32 - 2012-02-14 00:08 - 00000000 ____D C:\Users\Dom\AppData\Local\Ubisoft Game Launcher
2013-10-31 00:32 - 2012-01-30 13:58 - 00000000 ____D C:\Users\Dom\AppData\Local\Nero_AG
2013-10-31 00:32 - 2012-01-30 12:29 - 00000000 ____D C:\Users\Dom\AppData\Roaming\Adobe
2013-10-31 00:32 - 2012-01-30 12:12 - 00000000 ____D C:\Users\Dom\AppData\Local\VirtualStore
2013-10-31 00:32 - 2012-01-30 12:08 - 00000000 ____D C:\Users\Dom\AppData\Local\SoftThinks
2013-10-31 00:31 - 2012-01-30 12:28 - 00000000 ____D C:\Users\Dom\AppData\Local\Nero
2013-10-31 00:30 - 2013-06-05 17:30 - 00000000 ____D C:\Users\Dom\AppData\Local\libimobiledevice
2013-10-31 00:30 - 2013-03-13 16:27 - 00000000 ____D C:\Users\Dom\AppData\Local\MGTEK
2013-10-31 00:30 - 2012-06-28 15:42 - 00000000 ____D C:\Users\Dom\AppData\Local\Macromedia
2013-10-31 00:30 - 2012-04-08 12:33 - 00000000 ____D C:\Users\Dom\AppData\Local\Mozilla
2013-10-31 00:30 - 2012-01-31 03:48 - 00000000 ____D C:\Users\Dom\AppData\Local\Kjs.AppLife.Update
2013-10-31 00:30 - 2012-01-31 02:49 - 00000000 ____D C:\Users\Dom\AppData\Local\Downloaded Installations
2013-10-31 00:30 - 2012-01-31 01:39 - 00000000 ____D C:\Users\Dom\AppData\Local\Google
2013-10-31 00:30 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Local\Dell
2013-10-31 00:28 - 2013-09-08 21:45 - 00000000 ____D C:\Users\Dom\AppData\Local\D5CEBBFC-9741-4C80-8569-B09615F6463C.aplzod
2013-10-31 00:28 - 2013-07-09 22:12 - 00000000 ____D C:\Users\Dom\.swt
2013-10-31 00:28 - 2013-06-05 22:24 - 00000000 ____D C:\Users\Dom\.shsh
2013-10-31 00:28 - 2013-05-25 05:08 - 00000000 ____D C:\Users\Dom\AppData\Local\4A Games
2013-10-31 00:28 - 2012-03-23 15:13 - 00000000 ____D C:\Users\Dom\AppData\Local\Cyberlink
2013-10-31 00:28 - 2012-02-04 01:44 - 00000000 ____D C:\Users\Dom\AppData\Local\Citrix
2013-10-31 00:28 - 2012-02-04 01:43 - 00000000 ____D C:\Users\Dom\AppData\Local\Apps\2.0
2013-10-31 00:28 - 2012-02-01 02:53 - 00000000 ____D C:\Users\Dom\AppData\Local\Apple Computer
2013-10-31 00:28 - 2012-02-01 02:52 - 00000000 ____D C:\Users\Dom\AppData\Local\Apple
2013-10-31 00:28 - 2012-01-30 12:13 - 00000000 ____D C:\Users\Dom\AppData\Local\Adobe
2013-10-31 00:20 - 2013-05-23 16:35 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\2C0A
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0C0A
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0C04
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0816
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0804
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0424
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\041F
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\041E
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\041D
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\041B
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0419
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0416
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0415
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0414
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0413
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0412
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0411
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0410
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040E
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040D
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040C
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040B
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\040A
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0408
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0407
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0406
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0405
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0404
2013-10-31 00:20 - 2013-01-21 16:57 - 00000000 ____D C:\Windows\system32\0401
2013-10-31 00:20 - 2012-02-01 01:27 - 00000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2013-10-31 00:20 - 2012-02-01 01:26 - 00000000 ____D C:\Windows\system32\STRING
2013-10-31 00:20 - 2012-02-01 01:26 - 00000000 ____D C:\Windows\system32\CHM
2013-10-31 00:20 - 2012-01-20 14:56 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-31 00:20 - 2012-01-20 14:56 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-31 00:20 - 2012-01-20 14:50 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-10-31 00:20 - 2012-01-20 14:50 - 00000000 ____D C:\Windows\system32\NV
2013-10-31 00:20 - 2011-04-12 21:28 - 00000000 ____D C:\Windows\ShellNew
2013-10-31 00:20 - 2011-04-12 21:17 - 00000000 ____D C:\Windows\system32\0409
2013-10-31 00:20 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\sysprep
2013-10-31 00:20 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\oobe
2013-10-31 00:20 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-31 00:19 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\Resources
2013-10-31 00:18 - 2013-10-09 17:53 - 00000000 ____D C:\Windows\CheckSur
2013-10-31 00:18 - 2013-10-04 11:02 - 00000000 ____D C:\Windows\erdnt
2013-10-31 00:18 - 2013-10-01 23:45 - 00000000 ____D C:\Windows\ERUNT
2013-10-31 00:18 - 2013-07-12 15:51 - 00000000 ____D C:\ProgramData\SAMSUNG
2013-10-31 00:18 - 2013-06-03 20:35 - 00000000 ____D C:\ProgramData\Steam
2013-10-31 00:18 - 2013-05-24 17:11 - 00000000 ____D C:\ProgramData\RELOADED
2013-10-31 00:18 - 2012-11-01 15:13 - 00000000 ____D C:\ProgramData\Research In Motion
2013-10-31 00:18 - 2012-06-19 12:39 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-31 00:18 - 2012-02-10 10:25 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-10-31 00:18 - 2012-02-04 01:31 - 00000000 ____D C:\ProgramData\PCDr
2013-10-31 00:18 - 2012-02-01 02:52 - 00000000 ____D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2013-10-31 00:18 - 2012-01-31 03:49 - 00000000 ____D C:\Users\Public\Blio
2013-10-31 00:18 - 2012-01-31 02:45 - 00000000 ____D C:\Windows\AutoKMS
2013-10-31 00:18 - 2012-01-20 16:06 - 00000000 ____D C:\ProgramData\Uninstall
2013-10-31 00:18 - 2012-01-20 16:05 - 00000000 ____D C:\ProgramData\PhotoShow Shared Assets
2013-10-31 00:18 - 2012-01-20 16:04 - 00000000 ____D C:\ProgramData\Roxio
2013-10-31 00:18 - 2012-01-20 15:59 - 00000000 ____D C:\Windows\en
2013-10-31 00:18 - 2012-01-20 15:50 - 00000000 ____D C:\Users\Public\Documents\Dell
2013-10-31 00:18 - 2012-01-20 15:38 - 00000000 ____D C:\ProgramData\SmartSound Software Inc
2013-10-31 00:18 - 2012-01-20 15:29 - 00000000 ____D C:\ProgramData\Skype
2013-10-31 00:18 - 2012-01-20 15:13 - 00000000 ____D C:\ProgramData\Sun
2013-10-31 00:18 - 2011-04-12 21:28 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-10-31 00:18 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\Help
2013-10-31 00:18 - 2009-07-14 16:20 - 00000000 ____D C:\Windows\Cursors
2013-10-31 00:16 - 2013-06-24 20:48 - 00000000 ____D C:\ProgramData\Orbit
2013-10-31 00:16 - 2013-05-23 16:49 - 00000000 __SHD C:\ProgramData\DSS
2013-10-31 00:16 - 2013-05-23 16:49 - 00000000 ____D C:\ProgramData\Codemasters
2013-10-31 00:16 - 2013-05-23 07:42 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2013-10-31 00:16 - 2013-03-13 16:12 - 00000000 ____D C:\ProgramData\MGTEK
2013-10-31 00:16 - 2013-02-08 13:07 - 00000000 ___HD C:\ProgramData\CanonIJMyPrinter
2013-10-31 00:16 - 2013-02-08 13:06 - 00000000 ___HD C:\ProgramData\CanonIJQuickMenu
2013-10-31 00:16 - 2013-02-08 13:02 - 00000000 ____D C:\ProgramData\CanonIJWSpt
2013-10-31 00:16 - 2013-01-21 22:04 - 00000000 ____D C:\ProgramData\Cisco Systems
2013-10-31 00:16 - 2012-10-20 09:46 - 00000000 ____D C:\ProgramData\Panasonic
2013-10-31 00:16 - 2012-09-11 10:25 - 00000000 ____D C:\ProgramData\lx_Cats
2013-10-31 00:16 - 2012-06-21 08:51 - 00000000 ____D C:\ProgramData\HitmanPro
2013-10-31 00:16 - 2012-06-21 06:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-31 00:16 - 2012-06-19 12:15 - 00000000 ____D C:\ProgramData\DivX
2013-10-31 00:16 - 2012-05-23 03:53 - 00000000 ____D C:\ProgramData\CanonIJScan
2013-10-31 00:16 - 2012-03-19 13:03 - 00000000 ____D C:\ProgramData\CanonIJEGV
2013-10-31 00:16 - 2012-02-04 01:45 - 00000000 ____D C:\ProgramData\Citrix
2013-10-31 00:16 - 2012-02-01 01:28 - 00000000 ____D C:\ProgramData\CanonBJ
2013-10-31 00:16 - 2012-01-31 02:34 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-31 00:16 - 2012-01-31 02:00 - 00000000 ____D C:\ProgramData\Mediafour
2013-10-31 00:16 - 2012-01-31 01:38 - 00000000 ____D C:\ProgramData\Google
2013-10-31 00:16 - 2012-01-20 16:26 - 00000000 ____D C:\ProgramData\Dell
2013-10-31 00:16 - 2012-01-20 16:14 - 00000000 ____D C:\ProgramData\Nero
2013-10-31 00:16 - 2012-01-20 16:07 - 00000000 ____D C:\ProgramData\McAfee
2013-10-31 00:16 - 2012-01-20 16:03 - 00000000 ____D C:\ProgramData\Macrovision
2013-10-31 00:16 - 2012-01-20 16:01 - 00000000 ____D C:\ProgramData\CyberLink
2013-10-31 00:16 - 2012-01-20 15:46 - 00000000 ____D C:\ProgramData\install_clap
2013-10-31 00:16 - 2012-01-20 15:38 - 00000000 ____D C:\ProgramData\eSellerate
2013-10-31 00:16 - 2012-01-20 15:18 - 00000000 ____D C:\ProgramData\Intel
2013-10-31 00:15 - 2012-02-01 02:52 - 00000000 ____D C:\ProgramData\Apple Computer
2013-10-31 00:15 - 2012-02-01 02:51 - 00000000 ____D C:\ProgramData\Apple
2013-10-31 00:15 - 2012-01-20 15:26 - 00000000 ____D C:\ProgramData\Adobe
2013-10-31 00:14 - 2013-10-09 21:43 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-31 00:14 - 2013-09-08 23:31 - 00000000 ____D C:\Program Files (x86)\Viscom Store RMVB Converter
2013-10-31 00:14 - 2013-05-22 15:08 - 00000000 ____D C:\ProgramData\Ad Muncher
2013-10-31 00:14 - 2012-02-02 04:15 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-10-31 00:14 - 2012-01-20 16:10 - 00000000 ____D C:\Program Files (x86)\Zinio Reader 4
2013-10-31 00:14 - 2012-01-20 15:58 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-10-31 00:13 - 2013-10-07 11:13 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-10-31 00:13 - 2012-06-28 16:33 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2013-10-31 00:13 - 2012-06-19 12:39 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2013-10-31 00:13 - 2012-02-16 05:39 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-10-31 00:13 - 2012-01-20 16:03 - 00000000 ____D C:\Program Files (x86)\Roxio
2013-10-31 00:13 - 2012-01-20 15:38 - 00000000 ____D C:\Program Files (x86)\SmartSound Software
2013-10-31 00:13 - 2012-01-20 15:30 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-31 00:13 - 2012-01-20 15:15 - 00000000 ____D C:\Program Files (x86)\STMicroelectronics
2013-10-31 00:12 - 2013-09-11 11:53 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-10-31 00:12 - 2013-01-21 16:57 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2013-10-31 00:12 - 2012-11-01 15:13 - 00000000 ____D C:\Program Files (x86)\Research In Motion
2013-10-31 00:12 - 2012-02-04 02:00 - 00000000 ____D C:\Program Files (x86)\PlayReady
2013-10-31 00:11 - 2013-10-30 23:48 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-31 00:11 - 2013-09-23 00:21 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-31 00:11 - 2013-09-08 23:15 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-10-31 00:11 - 2013-08-19 13:15 - 00000000 ____D C:\Program Files (x86)\OpenVPN Technologies
2013-10-31 00:11 - 2013-07-02 08:34 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-31 00:11 - 2013-06-22 22:09 - 00000000 ____D C:\Program Files (x86)\Milestone
2013-10-31 00:11 - 2013-05-25 03:02 - 00000000 ____D C:\Program Files (x86)\Metro Last Light
2013-10-31 00:11 - 2013-05-23 16:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-10-31 00:11 - 2012-10-18 06:00 - 00000000 ____D C:\Program Files (x86)\Panasonic
2013-10-31 00:11 - 2012-10-18 06:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2013-10-31 00:11 - 2012-06-21 06:51 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-31 00:11 - 2012-05-14 07:38 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-31 00:11 - 2012-05-05 08:48 - 00000000 ____D C:\Program Files (x86)\OpenAL
2013-10-31 00:11 - 2012-04-08 12:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-31 00:11 - 2012-01-31 03:49 - 00000000 ____D C:\Program Files (x86)\K-NFB Reading Technology Inc
2013-10-31 00:11 - 2012-01-31 02:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2013-10-31 00:11 - 2012-01-31 02:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-10-31 00:11 - 2012-01-31 02:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2013-10-31 00:11 - 2012-01-31 02:00 - 00000000 ____D C:\Program Files (x86)\Mediafour
2013-10-31 00:11 - 2012-01-20 15:58 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-10-31 00:11 - 2009-07-14 18:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-31 00:10 - 2013-02-14 00:24 - 00000000 ____D C:\Program Files (x86)\Hamster Soft
2013-10-31 00:10 - 2012-08-19 13:12 - 00000000 ____D C:\Program Files (x86)\HP Optical USB Mobile Mouse
2013-10-31 00:10 - 2012-02-15 12:45 - 00000000 ____D C:\Program Files (x86)\Illustrate
2013-10-31 00:10 - 2012-01-20 16:45 - 00000000 ____D C:\Program Files (x86)\Intel
2013-10-31 00:10 - 2012-01-20 15:13 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2013-10-31 00:08 - 2013-10-05 21:53 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-31 00:08 - 2012-02-06 04:29 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2013-10-31 00:08 - 2012-01-31 01:38 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-31 00:08 - 2012-01-30 12:16 - 00000000 ____D C:\Program Files (x86)\Dell Touch Software Suite
2013-10-31 00:08 - 2012-01-20 15:50 - 00000000 ____D C:\Program Files (x86)\Dell Stage
2013-10-31 00:08 - 2012-01-20 15:46 - 00000000 ____D C:\Program Files (x86)\Dell
2013-10-31 00:08 - 2012-01-20 15:31 - 00000000 ____D C:\Program Files (x86)\eBay
2013-10-31 00:07 - 2013-07-18 22:38 - 00000000 ____D C:\Program Files (x86)\Company of Heroes 2
2013-10-31 00:07 - 2012-01-20 15:52 - 00000000 ____D C:\Program Files (x86)\Creative
2013-10-31 00:07 - 2012-01-20 15:51 - 00000000 ____D C:\Program Files (x86)\Creative Live! Cam
2013-10-31 00:07 - 2012-01-20 15:46 - 00000000 ____D C:\Program Files (x86)\Cyberlink
2013-10-31 00:03 - 2013-05-23 16:18 - 00000000 ____D C:\Program Files (x86)\Codemasters
2013-10-31 00:03 - 2012-02-04 01:44 - 00000000 ____D C:\Program Files (x86)\Citrix
2013-10-31 00:03 - 2012-02-01 01:25 - 00000000 ____D C:\Program Files (x86)\Canon
2013-10-31 00:03 - 2012-01-20 15:18 - 00000000 ____D C:\Program Files (x86)\Cisco
2013-10-31 00:02 - 2013-05-24 13:54 - 00000000 ____D C:\Program Files (x86)\Call of Juarez Gunslinger
2013-10-31 00:02 - 2013-05-23 16:30 - 00000000 ____D C:\Program Files (x86)\BRS
2013-10-31 00:02 - 2012-02-01 02:52 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-10-31 00:02 - 2012-02-01 02:51 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-10-31 00:02 - 2012-01-20 15:22 - 00000000 ____D C:\Program Files (x86)\AVerMedia
2013-10-31 00:01 - 2012-01-20 15:26 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-30 23:59 - 2013-10-30 23:48 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-30 23:59 - 2013-09-27 16:36 - 00000000 ____D C:\Program Files\NETGATE
2013-10-30 23:59 - 2013-08-19 13:08 - 00000000 ____D C:\Program Files\OpenVPN
2013-10-30 23:59 - 2013-07-09 22:11 - 00000000 ____D C:\Program Files\Samsung
2013-10-30 23:59 - 2013-05-23 07:41 - 00000000 ____D C:\Program Files\My Dell
2013-10-30 23:59 - 2013-05-22 15:08 - 00000000 ____D C:\Program Files (x86)\Ad Muncher
2013-10-30 23:59 - 2013-03-19 17:24 - 00000000 ____D C:\Program Files\tixati
2013-10-30 23:59 - 2012-04-10 11:34 - 00000000 ____D C:\Program Files\WinRAR
2013-10-30 23:59 - 2012-02-04 03:35 - 00000000 ____D C:\Program Files\PlayReady
2013-10-30 23:59 - 2012-01-20 16:26 - 00000000 ____D C:\Program Files\ZinioReader4
2013-10-30 23:59 - 2012-01-20 16:05 - 00000000 ____D C:\Program Files\Roxio
2013-10-30 23:59 - 2012-01-20 15:57 - 00000000 ____D C:\Program Files\Windows Live
2013-10-30 23:56 - 2012-01-31 02:37 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2013-10-30 23:56 - 2012-01-31 02:37 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2013-10-30 23:56 - 2012-01-31 02:37 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2013-10-30 23:55 - 2012-05-14 07:38 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-30 23:55 - 2012-01-31 02:34 - 00000000 ____D C:\Program Files\Microsoft Office
2013-10-30 23:54 - 2013-09-26 19:29 - 00000000 ____D C:\Program Files\CCleaner
2013-10-30 23:54 - 2013-09-23 00:21 - 00000000 ____D C:\Program Files\iTunes
2013-10-30 23:54 - 2013-09-23 00:21 - 00000000 ____D C:\Program Files\iPod
2013-10-30 23:54 - 2013-02-08 13:02 - 00000000 ____D C:\Program Files\Canon
2013-10-30 23:54 - 2012-04-07 08:34 - 00000000 ____D C:\Program Files\Dell Support Center
2013-10-30 23:54 - 2012-02-18 11:09 - 00000000 ____D C:\Program Files\Logitech
2013-10-30 23:54 - 2012-02-18 11:09 - 00000000 ____D C:\Program Files\Common Files\Logitech
2013-10-30 23:54 - 2012-02-01 02:51 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-10-30 23:54 - 2012-02-01 02:51 - 00000000 ____D C:\Program Files\Bonjour
2013-10-30 23:54 - 2012-02-01 01:30 - 00000000 ____D C:\Program Files\Common Files\CANON
2013-10-30 23:54 - 2012-02-01 01:26 - 00000000 ____D C:\Program Files\CanonBJ
2013-10-30 23:54 - 2012-01-31 02:37 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-10-30 23:54 - 2012-01-31 02:34 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2013-10-30 23:54 - 2012-01-31 02:00 - 00000000 ____D C:\Program Files\Mediafour
2013-10-30 23:54 - 2012-01-31 02:00 - 00000000 ____D C:\Program Files\Common Files\Mediafour
2013-10-30 23:54 - 2012-01-31 01:39 - 00000000 ____D C:\Program Files\Google
2013-10-30 23:54 - 2012-01-20 16:45 - 00000000 ____D C:\Program Files\Common Files\Intel
2013-10-30 23:54 - 2012-01-20 16:17 - 00000000 ____D C:\Program Files\dell stage
2013-10-30 23:54 - 2012-01-20 15:23 - 00000000 ____D C:\Program Files\Dell
2013-10-30 23:54 - 2012-01-20 15:16 - 00000000 ____D C:\Program Files\Intel
2013-10-30 23:54 - 2012-01-20 15:13 - 00000000 ____D C:\Program Files\Java
2013-10-30 23:54 - 2012-01-20 14:56 - 00000000 ____D C:\Program Files\Dell Inc
2013-10-30 23:54 - 2009-07-14 16:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-10-30 23:50 - 2013-10-30 23:50 - 00001355 _____ C:\Windows\TSSysprep.log
2013-10-30 23:49 - 2013-10-30 23:49 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2013-10-30 23:49 - 2013-10-30 23:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-30 23:49 - 2009-07-14 17:51 - 00000084 _____ C:\Windows\setuperr.log
2013-10-30 23:48 - 2013-10-30 23:48 - 00074462 _____ C:\Windows\system32\Drivers\RTWAVES30.dat
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____D C:\Windows\system32\SRSLabs
2013-10-30 23:48 - 2013-10-30 23:48 - 00000000 ____D C:\Program Files\Synaptics
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Program Files\STMicroelectronics
2013-10-30 23:47 - 2013-10-30 23:47 - 00000000 ____D C:\Program Files\Realtek
2013-10-30 22:59 - 2012-01-20 16:48 - 01354540 _____ C:\Windows\WindowsUpdate (1).log
2013-10-30 22:20 - 2013-10-30 22:15 - 00003094 _____ C:\Users\Dom\Desktop\Windows Compatibility Report.htm
2013-10-30 22:13 - 2013-10-30 22:13 - 00001890 _____ C:\Windows\diagwrn.xml
2013-10-30 22:13 - 2013-10-30 22:13 - 00001890 _____ C:\Windows\diagerr.xml
2013-10-30 22:04 - 2013-10-30 20:31 - 3320903680 _____ C:\Users\Dom\Desktop\Win 7 sp1.iso
2013-10-26 11:23 - 2013-10-22 14:54 - 07020544 _____ C:\Users\Dom\Desktop\SideBySide
2013-10-23 18:48 - 2013-10-23 18:44 - 91157064 _____ (Copyright 2013 SAMSUNG) C:\Users\Dom\Desktop\SamsungLink_Installer64.exe
2013-10-21 16:34 - 2013-10-21 16:34 - 00124344 _____ C:\Users\Dom\Desktop\WindowsUpdate.zip
2013-10-18 19:32 - 2013-10-18 19:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-18 19:32 - 2013-10-18 19:31 - 00004833 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-18 19:04 - 2012-01-31 01:39 - 00003888 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-18 19:04 - 2012-01-31 01:39 - 00003636 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-18 18:20 - 2012-03-30 11:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-18 18:20 - 2012-03-30 11:17 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-18 18:20 - 2012-01-20 14:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 21:43 - 2013-10-09 21:43 - 00001785 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-09 19:08 - 2013-10-09 18:57 - 423572207 _____ C:\Users\Dom\Desktop\Windows6.1-KB947821-v28-x64.msu
2013-10-09 15:22 - 2013-10-09 15:22 - 00021232 _____ C:\Users\Dom\Desktop\Fix WU.zip
2013-10-08 07:50 - 2013-10-18 19:32 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-18 19:32 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-18 19:32 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-08 03:54 - 2013-10-08 03:54 - 01589825 _____ C:\Users\Dom\Desktop\FixDotNet20131007145431047.cab
2013-10-07 18:30 - 2013-10-07 18:30 - 00875304 _____ (Microsoft Corporation) C:\Users\Dom\Desktop\NetFxRepairTool.exe
2013-10-07 11:38 - 2013-10-07 11:38 - 00000207 _____ C:\Windows\tweaking.com-regbackup-DOM-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2013-10-07 11:37 - 2013-10-07 11:37 - 00000000 ____D C:\RegBackup
2013-10-07 11:13 - 2013-10-07 11:13 - 00002161 _____ C:\Users\Dom\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-10-07 08:59 - 2012-01-20 16:01 - 00505128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2013-10-07 08:59 - 2012-01-20 16:01 - 00353576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2013-10-07 08:59 - 2012-01-20 16:01 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-31 11:26

==================== End Of Log ============================
  • 0

#85
CompCav
Posted 05 November 2013 - 07:27 PM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Step 1

Backing Up Your Registry
  • Download ERUNT
    (ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.)
  • Install ERUNT by following the prompts
    (use the default install settings but say no to the portion that asks you to add ERUNT to the start-up folder, if you like you can enable this option later)
  • Start ERUNT
    (either by double clicking on the desktop icon or choosing to start the program at the end of the setup)
  • Choose a location for the backup
    (the default location is C:\WINDOWS\ERDNT which is acceptable).
  • Make sure that at least the first two check boxes are ticked
  • Press OK
  • Press YES to create the folder.
Posted Image


Step 2

Download Dotnetfx_cleanup tool.zip to your desktop
Unzip the tool
Run the exe file
Click through the EULA popups
Select All Version
Posted Image

  • Once done reboot the computer
  • Download then run the Net 4.0 installer from here
  • Then install
  • Try the update again


Please let me know the results of the update retry.
  • 0

Advertisements

#86
Dom2276
Posted 05 November 2013 - 08:17 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Just 2 updates looping now, with the same one failing.

Security Update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (KB2538242)

Installation date: ‎06/‎11/‎2013 15:15

Installation status: Successful

Update type: Important

A security issue has been identified leading to MFC application vulnerability in DLL planting due to MFC not specifying the full path to system/localization DLLs. You can protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

More information:
http://go.microsoft..../?LinkId=216804

Help and Support:
http://support.microsoft.com


Security Update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2538243)

Installation date: ‎06/‎11/‎2013 15:15

Installation status: Failed

Error details: Code 64C

Update type: Important

A security issue has been identified leading to MFC application vulnerability in DLL planting due to MFC not specifying the full path to system/localization DLLs. You can protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

More information:
http://go.microsoft..../?LinkId=216803

Help and Support:
http://support.microsoft.com
  • 0

#87
Dom2276
Posted 05 November 2013 - 08:23 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
Sorry there are now 16 updates, will get back to you when they have downloaded and installed.
  • 0

#88
CompCav
Posted 05 November 2013 - 08:24 PM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Thanks for the update.
  • 0

#89
Dom2276
Posted 05 November 2013 - 09:42 PM

Dom2276

    Member

  • Topic Starter
  • Member
  • PipPip
  • 59 posts
All the others worked, just the 2 listed above wont install.
  • 0

#90
CompCav
Posted 06 November 2013 - 08:24 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
OK we are going to try several steps, the easiest first to try and solve this issue.


Step 1

Download and install the updates directly

Security Update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (KB2538242)

Please go here.

Download both the X86 and x64 versions to your desktop.

Then run each one by right clicking and selecting Run as administrator.

Please note any error codes or messages when you run each one.

If no errors then reboot and go on to step 2, if errors post a note with the error information.



Step 2


Download and install the updates directly

Security Update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2538243)

Please go here.

Download both the X86 and x64 versions to your desktop.

Then run each one by right clicking and selecting Run as administrator.

Please note any error codes or messages when you run each one.

If no errors then reboot and go on to step 3, if errors post a note with the error information.



Step 3

Check for updates to verify the installations were successful.


Please post information on the status of the updates
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP