FRST scan:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-11-2013 (ATTENTION: ====> FRST version is 29 days old and could be outdated)
Ran by gwengoetter (administrator) on GOETTERS4BACON on 29-12-2013 21:24:13
Running from C:\Users\gwengoetter\Desktop
Windows 8 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Uniblue Systems Ltd) C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6549136 2012-07-02] (Realtek Semiconductor)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [21504 2012-07-25] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-07] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yahoo....r=spigot-yhp-ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK13/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKLM - {8E0E081D-FD81-46C2-AD92-3B939C17F151} URL = http://www.amazon.co...s={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo....psg&type=HPDTDF
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...54371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.co...&l=dis&o=HPDTDF
SearchScopes: HKLM-x32 - {8E0E081D-FD81-46C2-AD92-3B939C17F151} URL = http://www.amazon.co...s={searchTerms}
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo....psg&type=HPDTDF
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.co...54371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - DefaultScope {19DB2D13-91DA-4DA4-A080-AB75B9B9484D} URL = http://search.yahoo....p={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKCU - {19DB2D13-91DA-4DA4-A080-AB75B9B9484D} URL = http://search.yahoo....p={searchTerms}
BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
FireFox:
========
FF ProfilePath: C:\Users\gwengoetter\AppData\Roaming\Mozilla\Firefox\Profiles\uc1hbyhs.default
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.10.2 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.10.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Yahoo! Toolbar - C:\Users\gwengoetter\AppData\Roaming\Mozilla\Firefox\Profiles\uc1hbyhs.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\[email protected]
Chrome:
=======
CHR HomePage: hxxp://search.yahoo.com?type=293224&fr=spigot-yhp-ch
CHR RestoreOnStartup: "hxxp://search.yahoo.com?type=293224&fr=spigot-yhp-ch", "hxxp://www1.delta-search.com/?affID=122123&babsrc=HP_ss&mntrId=E06B083E8E0CFBEA"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Norton Identity Safe) - C:\Users\gwengoetter\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.2.0.18_0\npcoplgn.dll (Symantec Corporation)
CHR Plugin: (MindSpark Toolbar Platform Plugin Stub) - C:\Program Files (x86)\CouponXplorer_5z\bar\1.bin\NP5zStub.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java Platform SE 7 U10) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (WildTangent Games App V2 Presence Detector) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll No File
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.100.18) - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Google Docs) - C:\Users\GWENGO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\GWENGO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\GWENGO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\GWENGO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: () - C:\Users\GWENGO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlaidocmldibgopdbjiopphnjhaehnbn\10.16.70.501_0
CHR Extension: (SearchGBY) - C:\Users\GWENGO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmijdhkcgeclpfjmibnginbbkfcbpep\0.9.73_0
CHR Extension: (Norton Identity Protection) - C:\Users\GWENGO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.2.0.18_0
CHR Extension: (Gmail) - C:\Users\GWENGO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [dbjmkjlcdkfccfpgpbieancamjhaclga] - C:\Program Files (x86)\LyricsNotes\116.crx
CHR HKLM-x32\...\Chrome\Extension: [dlaidocmldibgopdbjiopphnjhaehnbn] - C:\Users\gwengoetter\AppData\Local\CRE\dlaidocmldibgopdbjiopphnjhaehnbn.crx
CHR HKLM-x32\...\Chrome\Extension: [icmijdhkcgeclpfjmibnginbbkfcbpep] - C:\Program Files\SearchGBY\Extensions\Chrome\searchgby.chrome.v0.9.70.crx
==================== Services (Whitelisted) =================
R2 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-07-19] (Hewlett-Packard)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-01] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [208736 2012-11-26] (AVG Technologies CZ, s.r.o.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows ® Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows ® Win 7 DDK provider)
U4 PCSUService;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-29 20:16 - 2013-12-29 20:16 - 00291288 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-29 20:06 - 2013-12-29 20:10 - 00000000 ____D C:\windows\system32\MRT
2013-12-29 13:44 - 2013-09-23 17:30 - 00419328 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2013-12-29 13:44 - 2013-09-23 17:30 - 00323072 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2013-12-29 13:43 - 2013-06-01 04:25 - 00496640 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2013-12-29 13:43 - 2013-06-01 04:21 - 00595968 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2013-12-29 13:43 - 2013-05-26 18:17 - 00035328 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2013-12-29 13:43 - 2013-05-26 17:59 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2013-12-29 13:43 - 2013-05-24 22:15 - 00362496 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2013-12-29 13:43 - 2013-05-24 21:32 - 00300032 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2013-12-29 13:43 - 2013-03-02 03:23 - 00375808 _____ (Microsoft Corporation) C:\windows\SysWOW64\ReAgent.dll
2013-12-29 13:43 - 2013-03-01 21:44 - 01011200 _____ (Microsoft Corporation) C:\windows\system32\reseteng.dll
2013-12-29 13:42 - 2013-03-02 03:22 - 00361984 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFMediaEngine.dll
2013-12-29 13:42 - 2013-03-01 21:44 - 00468992 _____ (Microsoft Corporation) C:\windows\system32\MFMediaEngine.dll
2013-12-29 13:42 - 2013-02-02 03:39 - 05090816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2013-12-29 13:42 - 2013-02-02 03:21 - 05977600 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2013-12-29 13:41 - 2013-02-05 17:31 - 00622080 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2013-12-29 13:41 - 2013-02-05 17:29 - 00370688 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2013-12-29 13:41 - 2013-02-05 17:28 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2013-12-29 13:41 - 2013-02-05 17:28 - 00215552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2013-12-29 13:41 - 2013-02-02 06:19 - 00329960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2013-12-29 13:41 - 2013-02-02 05:54 - 01933544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2013-12-29 13:41 - 2013-02-02 03:40 - 00410624 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlroamextension.dll
2013-12-29 13:41 - 2013-02-02 03:40 - 00370688 _____ (Microsoft Corporation) C:\windows\SysWOW64\WWanAPI.dll
2013-12-29 13:41 - 2013-02-02 03:40 - 00356352 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSync.dll
2013-12-29 13:41 - 2013-02-02 03:40 - 00197632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.Connectivity.dll
2013-12-29 13:41 - 2013-02-02 03:40 - 00155136 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsRasterService.dll
2013-12-29 13:41 - 2013-02-02 03:40 - 00080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\tasklist.exe
2013-12-29 13:41 - 2013-02-02 03:40 - 00079360 _____ (Microsoft Corporation) C:\windows\SysWOW64\taskkill.exe
2013-12-29 13:41 - 2013-02-02 03:39 - 00157696 _____ (Microsoft Corporation) C:\windows\SysWOW64\mbsmsapi.dll
2013-12-29 13:41 - 2013-02-02 03:39 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\netprofm.dll
2013-12-29 13:41 - 2013-02-02 03:39 - 00055296 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlaapi.dll
2013-12-29 13:41 - 2013-02-02 03:39 - 00018432 _____ (Microsoft Corporation) C:\windows\SysWOW64\npmproxy.dll
2013-12-29 13:41 - 2013-02-02 03:39 - 00015872 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlmproxy.dll
2013-12-29 13:41 - 2013-02-02 03:39 - 00012288 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlmsprep.dll
2013-12-29 13:41 - 2013-02-02 03:38 - 00567808 _____ (Microsoft Corporation) C:\windows\SysWOW64\duser.dll
2013-12-29 13:41 - 2013-02-02 03:24 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\taskkill.exe
2013-12-29 13:41 - 2013-02-02 03:24 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\tasklist.exe
2013-12-29 13:41 - 2013-02-02 03:23 - 00611840 _____ (Microsoft Corporation) C:\windows\system32\wpd_ci.dll
2013-12-29 13:41 - 2013-02-02 03:23 - 00543232 _____ (Microsoft Corporation) C:\windows\system32\wlroamextension.dll
2013-12-29 13:41 - 2013-02-02 03:23 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\WWanAPI.dll
2013-12-29 13:41 - 2013-02-02 03:23 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Connectivity.dll
2013-12-29 13:41 - 2013-02-02 03:23 - 00228352 _____ (Microsoft Corporation) C:\windows\system32\XpsRasterService.dll
2013-12-29 13:41 - 2013-02-02 03:23 - 00105472 _____ (Microsoft Corporation) C:\windows\system32\wpdbusenum.dll
2013-12-29 13:41 - 2013-02-02 03:23 - 00087552 _____ (Microsoft Corporation) C:\windows\system32\wersvc.dll
2013-12-29 13:41 - 2013-02-02 03:22 - 00448512 _____ (Microsoft Corporation) C:\windows\system32\SettingSync.dll
2013-12-29 13:41 - 2013-02-02 03:21 - 00467456 _____ (Microsoft Corporation) C:\windows\system32\netprofmsvc.dll
2013-12-29 13:41 - 2013-02-02 03:21 - 00385024 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2013-12-29 13:41 - 2013-02-02 03:21 - 00225280 _____ (Microsoft Corporation) C:\windows\system32\mbsmsapi.dll
2013-12-29 13:41 - 2013-02-02 03:20 - 00729600 _____ (Microsoft Corporation) C:\windows\system32\duser.dll
2013-12-29 13:41 - 2013-02-02 03:20 - 00260096 _____ (Microsoft Corporation) C:\windows\system32\hotspotauth.dll
2013-12-29 13:41 - 2013-02-02 02:25 - 00297984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ks.sys
2013-12-29 13:41 - 2013-02-02 00:41 - 01437184 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2013-12-29 13:41 - 2013-02-02 00:31 - 01690624 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2013-12-29 13:40 - 2013-06-30 20:42 - 00623448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2013-12-29 13:40 - 2013-06-30 20:42 - 00498008 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2013-12-29 13:40 - 2013-06-30 20:42 - 00079192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2013-12-29 13:40 - 2013-06-30 20:42 - 00021848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2013-12-29 13:40 - 2013-06-28 22:07 - 00032256 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2013-12-29 13:40 - 2013-06-28 22:06 - 00120832 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2013-12-29 13:40 - 2013-04-11 17:30 - 01421312 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2013-12-29 13:40 - 2013-04-11 17:22 - 01838080 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2013-12-29 13:40 - 2013-03-06 01:31 - 19758592 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2013-12-29 13:40 - 2013-03-06 00:03 - 17561600 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2013-12-29 13:40 - 2013-02-11 19:17 - 00020992 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usb8023.sys
2013-12-29 13:39 - 2013-04-27 00:20 - 00733184 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2013-12-29 13:39 - 2013-03-06 02:10 - 00112872 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2013-12-29 13:39 - 2013-03-06 01:31 - 00222208 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2013-12-29 13:39 - 2013-03-06 01:29 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2013-12-29 13:39 - 2013-03-06 00:03 - 00199168 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2013-12-29 13:38 - 2013-10-10 04:32 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2013-12-29 13:38 - 2013-10-10 04:30 - 00162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrobj.dll
2013-12-29 13:38 - 2013-10-10 04:30 - 00156160 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2013-12-29 13:38 - 2013-10-10 04:24 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-29 13:38 - 2013-10-10 04:23 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-29 13:38 - 2013-10-10 04:22 - 00222720 _____ (Microsoft Corporation) C:\windows\system32\scrobj.dll
2013-12-29 13:38 - 2013-10-10 04:22 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-29 13:38 - 2013-07-19 17:13 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-29 13:38 - 2013-07-19 17:13 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-29 13:38 - 2013-05-04 01:59 - 02842112 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2013-12-29 13:38 - 2013-05-03 23:57 - 02620928 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2013-12-29 13:37 - 2013-07-13 01:18 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2013-12-29 13:37 - 2013-07-13 01:16 - 01889280 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2013-12-29 13:37 - 2013-07-13 01:16 - 00068096 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2013-12-29 13:37 - 2013-07-13 01:15 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\apprepapi.dll
2013-12-29 13:37 - 2013-07-13 01:15 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\apprepsync.dll
2013-12-29 13:37 - 2013-07-12 23:24 - 00261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2013-12-29 13:37 - 2013-07-12 23:23 - 01568256 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2013-12-29 13:37 - 2013-07-12 23:23 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\apprepapi.dll
2013-12-29 13:37 - 2013-07-12 23:23 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\apprepsync.dll
2013-12-29 13:37 - 2013-07-01 20:41 - 00337752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBXHCI.SYS
2013-12-29 13:37 - 2013-07-01 20:41 - 00213336 _____ (Microsoft Corporation) C:\windows\system32\Drivers\UCX01000.SYS
2013-12-29 13:37 - 2013-03-14 19:17 - 00861184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2013-12-29 13:36 - 2013-11-23 01:43 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-29 13:36 - 2013-11-23 00:05 - 00368640 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-12-29 13:36 - 2013-08-23 02:22 - 02062848 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2013-12-29 13:36 - 2013-08-22 20:44 - 01711616 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2013-12-29 13:36 - 2013-03-21 22:49 - 02382336 _____ (Microsoft Corporation) C:\windows\SysWOW64\esent.dll
2013-12-29 13:36 - 2013-03-21 17:47 - 02851840 _____ (Microsoft Corporation) C:\windows\system32\esent.dll
2013-12-29 13:35 - 2013-04-02 18:37 - 00025088 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptdlg.dll
2013-12-29 13:35 - 2013-04-02 18:12 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\cryptdlg.dll
2013-12-29 13:34 - 2013-11-06 18:18 - 04036608 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-29 13:34 - 2013-09-27 22:35 - 00288768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-29 13:33 - 2013-08-07 00:15 - 00144896 _____ (Microsoft Corporation) C:\windows\system32\tssdisai.dll
2013-12-29 13:32 - 2013-10-01 18:37 - 02035712 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2013-12-29 13:32 - 2013-10-01 18:26 - 02304512 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2013-12-29 13:32 - 2013-08-02 01:28 - 10116608 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2013-12-29 13:32 - 2013-08-02 00:08 - 08858112 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2013-12-29 13:32 - 2013-03-02 05:39 - 00069864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pdc.sys
2013-12-29 13:32 - 2013-03-01 21:43 - 02146304 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2013-12-29 13:32 - 2013-02-06 20:33 - 00754176 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2013-12-29 13:31 - 2013-11-01 00:38 - 00312320 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-29 13:31 - 2013-10-31 22:49 - 00273408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2013-12-29 12:39 - 2013-12-29 12:39 - 00448512 _____ (OldTimer Tools) C:\Users\gwengoetter\Downloads\TFC.exe
2013-12-28 11:26 - 2013-12-28 11:26 - 02347384 _____ (ESET) C:\Users\gwengoetter\Downloads\esetsmartinstaller_enu(2).exe
2013-12-28 02:08 - 2013-06-16 17:41 - 00997632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2013-12-28 02:08 - 2013-06-01 06:33 - 02233600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2013-12-28 02:08 - 2013-06-01 06:26 - 06987008 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2013-12-28 02:08 - 2013-06-01 04:20 - 02219520 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2013-12-28 02:07 - 2013-06-01 06:54 - 00194816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sdbus.sys
2013-12-28 02:07 - 2013-06-01 06:54 - 00125184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpsd.sys
2013-12-28 02:07 - 2013-06-01 06:34 - 02391280 _____ (Microsoft Corporation) C:\windows\explorer.exe
2013-12-28 02:07 - 2013-06-01 06:26 - 00327936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volsnap.sys
2013-12-28 02:07 - 2013-06-01 05:24 - 02106176 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2013-12-28 02:07 - 2013-06-01 04:25 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2013-12-28 02:07 - 2013-06-01 04:25 - 00067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\samlib.dll
2013-12-28 02:07 - 2013-06-01 04:24 - 01453568 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfcore.dll
2013-12-28 02:07 - 2013-06-01 04:24 - 00850944 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfasfsrcsnk.dll
2013-12-28 02:07 - 2013-06-01 04:24 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscms.dll
2013-12-28 02:07 - 2013-06-01 04:23 - 01842176 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmcore.dll
2013-12-28 02:07 - 2013-06-01 04:23 - 00680960 _____ (Microsoft Corporation) C:\windows\system32\vds.exe
2013-12-28 02:07 - 2013-06-01 04:22 - 00523264 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2013-12-28 02:07 - 2013-06-01 04:22 - 00446976 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2013-12-28 02:07 - 2013-06-01 04:22 - 00190976 _____ (Microsoft Corporation) C:\windows\system32\vdsutil.dll
2013-12-28 02:07 - 2013-06-01 04:22 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\MbaeParserTask.exe
2013-12-28 02:07 - 2013-06-01 04:21 - 00729600 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2013-12-28 02:07 - 2013-06-01 04:21 - 00106496 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2013-12-28 02:07 - 2013-06-01 04:20 - 01527808 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll
2013-12-28 02:07 - 2013-06-01 04:20 - 01048576 _____ (Microsoft Corporation) C:\windows\system32\mfasfsrcsnk.dll
2013-12-28 02:07 - 2013-06-01 04:20 - 00583168 _____ (Microsoft Corporation) C:\windows\system32\mscms.dll
2013-12-28 02:07 - 2013-06-01 04:19 - 00785408 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2013-12-28 02:07 - 2013-06-01 04:19 - 00207872 _____ (Microsoft Corporation) C:\windows\system32\DeviceSetupManager.dll
2013-12-28 02:07 - 2013-05-31 22:08 - 00037632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\BthAvrcpTg.sys
2013-12-28 02:07 - 2013-05-24 17:09 - 01403296 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2013-12-28 02:07 - 2013-05-24 17:09 - 01271584 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2013-12-28 02:07 - 2013-05-24 17:09 - 01217352 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2013-12-28 02:07 - 2013-05-24 17:09 - 01093904 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2013-12-28 02:07 - 2013-04-09 00:33 - 00489576 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2013-12-28 02:07 - 2013-04-09 00:33 - 00446792 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2013-12-28 02:07 - 2013-04-09 00:33 - 00253544 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2013-12-28 02:07 - 2013-04-08 23:48 - 00169472 _____ (Microsoft Corporation) C:\windows\system32\AudioEndpointBuilder.dll
2013-12-28 02:07 - 2013-04-08 18:37 - 00426024 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2013-12-28 02:07 - 2013-04-08 18:37 - 00324368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2013-12-28 02:07 - 2013-03-02 04:59 - 00411880 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2013-12-28 02:03 - 2013-12-28 02:03 - 02347384 _____ (ESET) C:\Users\gwengoetter\Downloads\esetsmartinstaller_enu(1).exe
2013-12-28 01:49 - 2013-10-25 01:18 - 19271168 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-12-28 01:48 - 2013-10-25 01:19 - 02241536 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-12-28 01:48 - 2013-10-25 01:17 - 15404032 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-12-28 01:48 - 2013-10-25 01:17 - 03959808 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-12-28 01:48 - 2013-10-25 01:17 - 02648576 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-12-28 01:48 - 2013-10-24 23:44 - 14356992 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-12-28 01:48 - 2013-10-24 23:43 - 13761536 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-12-28 01:48 - 2013-10-24 23:43 - 02877952 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-12-28 01:48 - 2013-10-24 23:43 - 02049024 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-12-28 01:47 - 2013-10-25 01:19 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-12-28 01:47 - 2013-10-25 01:19 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2013-12-28 01:47 - 2013-10-25 01:19 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-12-28 01:47 - 2013-10-25 01:18 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-28 01:47 - 2013-10-25 01:17 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-28 01:47 - 2013-10-24 23:45 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-12-28 01:47 - 2013-10-24 23:44 - 01140736 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-12-28 01:47 - 2013-10-24 23:43 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-28 01:47 - 2013-10-24 23:43 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-28 01:47 - 2013-05-15 17:37 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll
2013-12-28 01:47 - 2013-05-15 17:35 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2013-12-28 01:47 - 2013-05-14 08:14 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-12-28 01:47 - 2013-05-14 04:23 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-12-28 01:47 - 2013-02-21 05:29 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-12-28 01:47 - 2013-02-21 05:29 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-12-28 01:47 - 2013-02-21 05:29 - 00039424 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-12-28 01:47 - 2013-02-21 05:29 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-12-28 01:47 - 2013-02-21 05:14 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-12-28 01:47 - 2013-02-21 05:14 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-12-28 01:47 - 2013-02-19 04:53 - 00534528 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll
2013-12-28 01:46 - 2013-10-10 06:53 - 00096600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wfplwfs.sys
2013-12-28 01:46 - 2013-10-10 04:21 - 01160192 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2013-12-28 01:46 - 2013-10-10 04:20 - 00723968 _____ (Microsoft Corporation) C:\windows\system32\BFE.DLL
2013-12-28 01:46 - 2013-09-03 22:11 - 00576512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2013-12-28 01:46 - 2013-08-16 00:41 - 00058200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dam.sys
2013-12-28 01:46 - 2013-08-16 00:39 - 02371728 _____ (Microsoft Corporation) C:\windows\system32\WSService.dll
2013-12-28 01:46 - 2013-08-16 00:32 - 00209200 _____ (Microsoft Corporation) C:\windows\system32\NotificationUI.exe
2013-12-28 01:46 - 2013-08-16 00:22 - 04917760 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2013-12-28 01:46 - 2013-08-16 00:21 - 01164288 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2013-12-28 01:46 - 2013-08-16 00:21 - 00688640 _____ (Microsoft Corporation) C:\windows\system32\WSShared.dll
2013-12-28 01:46 - 2013-08-16 00:21 - 00368640 _____ (Microsoft Corporation) C:\windows\system32\sppwinob.dll
2013-12-28 01:46 - 2013-08-16 00:21 - 00204800 _____ (Microsoft Corporation) C:\windows\system32\WSClient.dll
2013-12-28 01:46 - 2013-08-16 00:21 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.dll
2013-12-28 01:46 - 2013-08-16 00:21 - 00183808 _____ (Microsoft Corporation) C:\windows\system32\WSSync.dll
2013-12-28 01:46 - 2013-08-16 00:21 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-28 01:46 - 2013-08-16 00:21 - 00120320 _____ (Microsoft Corporation) C:\windows\system32\sppc.dll
2013-12-28 01:46 - 2013-08-16 00:21 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\setupcln.dll
2013-12-28 01:46 - 2013-08-16 00:20 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2013-12-28 01:46 - 2013-08-15 17:43 - 00562688 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSShared.dll
2013-12-28 01:46 - 2013-08-15 17:43 - 00167424 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSClient.dll
2013-12-28 01:46 - 2013-08-15 17:43 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSSync.dll
2013-12-28 01:46 - 2013-08-15 17:43 - 00143872 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.dll
2013-12-28 01:46 - 2013-08-15 17:43 - 00124928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-28 01:46 - 2013-08-15 17:43 - 00083968 _____ C:\windows\SysWOW64\OEMLicense.dll
2013-12-28 01:46 - 2013-08-15 17:42 - 00091648 _____ (Microsoft Corporation) C:\windows\SysWOW64\sppc.dll
2013-12-28 01:46 - 2013-08-15 17:42 - 00076800 _____ (Microsoft Corporation) C:\windows\SysWOW64\setupcln.dll
2013-12-28 01:46 - 2013-07-01 19:44 - 00036288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdBoot.sys
2013-12-28 01:46 - 2013-07-01 17:08 - 00247216 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdFilter.sys
2013-12-28 01:46 - 2013-06-10 14:16 - 00888832 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2013-12-28 01:46 - 2013-06-10 14:15 - 00381952 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2013-12-28 01:46 - 2013-06-10 14:10 - 00702464 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshwfp.dll
2013-12-28 01:46 - 2013-06-10 14:10 - 00245248 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2013-12-28 01:44 - 2013-10-19 00:45 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-28 01:44 - 2013-10-18 23:04 - 00059392 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2013-12-28 01:44 - 2013-07-05 19:15 - 00652288 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2013-12-28 01:44 - 2013-07-03 21:13 - 00541696 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2013-12-28 01:42 - 2013-10-08 20:33 - 00059416 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2013-12-28 01:42 - 2013-10-08 17:30 - 00628736 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2013-12-28 01:42 - 2013-10-08 17:30 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2013-12-28 01:42 - 2013-10-08 17:30 - 00084992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2013-12-28 01:42 - 2013-10-08 17:30 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2013-12-28 01:42 - 2013-10-08 17:28 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2013-12-28 01:42 - 2013-10-08 17:27 - 03279872 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2013-12-28 01:42 - 2013-10-08 17:27 - 01622016 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2013-12-28 01:42 - 2013-10-08 17:27 - 00773120 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2013-12-28 01:42 - 2013-10-08 17:27 - 00252928 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2013-12-28 01:42 - 2013-10-08 17:27 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2013-12-28 01:42 - 2013-10-08 17:27 - 00142848 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2013-12-28 01:42 - 2013-10-08 17:27 - 00099328 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2013-12-28 01:42 - 2013-10-05 01:10 - 00285016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2013-12-28 01:42 - 2013-10-03 17:09 - 00385528 _____ C:\windows\system32\ApnDatabase.xml
2013-12-28 01:42 - 2013-10-02 18:25 - 01300992 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2013-12-28 01:42 - 2013-10-01 21:50 - 00447320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBHUB3.SYS
2013-12-28 01:42 - 2013-10-01 17:22 - 01022976 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2013-12-28 01:42 - 2013-09-28 00:48 - 00778752 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2013-12-28 01:42 - 2013-09-27 22:58 - 00551424 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2013-12-28 01:42 - 2013-09-19 02:32 - 01455448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2013-12-28 01:42 - 2013-08-30 00:19 - 00626688 _____ (Microsoft Corporation) C:\windows\system32\resutils.dll
2013-12-28 01:42 - 2013-08-30 00:18 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\clusapi.dll
2013-12-28 01:42 - 2013-08-29 18:48 - 00488960 _____ (Microsoft Corporation) C:\windows\SysWOW64\resutils.dll
2013-12-28 01:42 - 2013-08-29 18:47 - 00302080 _____ (Microsoft Corporation) C:\windows\SysWOW64\clusapi.dll
2013-12-28 01:41 - 2013-07-24 18:07 - 13661696 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2013-12-28 01:40 - 2013-09-13 17:36 - 00247296 _____ (Microsoft Corporation) C:\windows\SysWOW64\ubpm.dll
2013-12-28 01:40 - 2013-09-13 17:33 - 00328192 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2013-12-28 01:40 - 2013-08-30 00:43 - 00061784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\crashdmp.sys
2013-12-28 01:40 - 2013-08-30 00:20 - 01173504 _____ (Microsoft Corporation) C:\windows\system32\UIAutomationCore.dll
2013-12-28 01:40 - 2013-08-29 18:48 - 00914432 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAutomationCore.dll
2013-12-28 01:40 - 2013-08-21 01:39 - 00465240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2013-12-28 01:40 - 2013-08-16 00:21 - 00049664 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2013-12-28 01:40 - 2013-08-16 00:21 - 00049152 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2013-12-28 01:40 - 2013-08-15 17:43 - 00020992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2013-12-28 01:40 - 2013-08-10 01:30 - 00151896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2013-12-28 01:40 - 2013-08-10 00:21 - 00817152 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2013-12-28 01:40 - 2013-08-09 22:58 - 00656896 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2013-12-28 01:40 - 2013-07-24 18:10 - 10799104 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2013-12-28 01:40 - 2013-07-11 20:38 - 00599040 _____ (Microsoft Corporation) C:\windows\system32\WSDApi.dll
2013-12-28 01:40 - 2013-07-11 20:30 - 00485376 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSDApi.dll
2013-12-28 01:40 - 2013-03-01 21:45 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2013-12-28 01:40 - 2013-03-01 21:45 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\taskhostex.exe
2013-12-28 01:32 - 2013-07-01 17:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbscan.sys
2013-12-28 01:32 - 2013-07-01 17:14 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbprint.sys
2013-12-28 01:32 - 2013-06-28 22:08 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2013-12-28 01:32 - 2013-06-28 22:07 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2013-12-28 01:32 - 2013-06-22 00:45 - 00785624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2013-12-28 01:32 - 2013-06-22 00:45 - 00054488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdfLdr.sys
2013-12-28 01:32 - 2013-05-03 23:48 - 00027648 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidusb.sys
2013-12-28 01:31 - 2012-12-12 23:00 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2013-12-28 01:31 - 2012-12-12 22:59 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2013-12-28 01:20 - 2013-12-28 01:20 - 00000973 _____ C:\Users\gwengoetter\Desktop\checkup.txt
2013-12-27 21:47 - 2013-12-27 21:47 - 02347384 _____ (ESET) C:\Users\gwengoetter\Downloads\esetsmartinstaller_enu.exe
2013-12-27 21:47 - 2013-12-27 21:47 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-27 21:34 - 2013-12-27 21:34 - 00891200 _____ C:\Users\gwengoetter\Downloads\SecurityCheck.exe
2013-12-27 21:23 - 2013-12-27 21:23 - 00000000 ____D C:\Users\gwengoetter\AppData\Local\Mozilla
2013-12-27 21:21 - 2013-12-27 21:21 - 00001113 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-27 21:21 - 2013-12-27 21:21 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-27 21:21 - 2013-12-27 21:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-21 20:58 - 2013-12-21 20:58 - 00181064 _____ (Sysinternals) C:\windows\PSEXESVC.EXE
2013-12-21 13:35 - 2013-12-21 13:35 - 00001075 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-21 13:35 - 2013-12-21 13:35 - 00000000 ____D C:\Users\gwengoetter\AppData\Roaming\Malwarebytes
2013-12-21 13:35 - 2013-12-21 13:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-21 13:34 - 2013-12-21 13:35 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-21 13:34 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2013-12-21 13:33 - 2013-12-21 13:33 - 00002125 _____ C:\Users\gwengoetter\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-12-21 13:33 - 2013-12-21 13:33 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-12-08 22:19 - 2013-12-08 22:19 - 00000000 ____D C:\Users\gwengoetter\Documents\Symantec
2013-12-08 11:19 - 2013-12-08 11:19 - 00000000 ____D C:\Users\Public\Desktop\CC Support
2013-12-08 11:19 - 2013-12-08 11:09 - 04009167 _____ C:\Users\gwengoetter\Desktop\ServicesRepair.exe
2013-12-05 09:40 - 2013-12-05 09:38 - 00000136 _____ C:\Users\gwengoetter\Desktop\list.bat
2013-12-05 00:35 - 2013-12-21 21:05 - 00002538 _____ C:\Users\gwengoetter\Desktop\FSS.txt
2013-12-05 00:15 - 2013-12-05 00:12 - 00360881 _____ (Farbar) C:\Users\gwengoetter\Desktop\FSS.exe
2013-11-30 23:45 - 2013-11-30 23:41 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\gwengoetter\Desktop\tdsskiller.exe
2013-11-30 13:47 - 2013-11-30 13:48 - 00048965 _____ C:\Users\gwengoetter\Desktop\Addition.txt
2013-11-30 13:45 - 2013-12-29 21:24 - 00012599 _____ C:\Users\gwengoetter\Desktop\FRST.txt
2013-11-30 13:45 - 2013-11-30 23:50 - 00000000 ____D C:\FRST
2013-11-30 13:45 - 2013-11-30 12:22 - 01959070 _____ (Farbar) C:\Users\gwengoetter\Desktop\FRST64.exe
2013-11-30 13:45 - 2013-11-24 11:11 - 01091882 _____ C:\Users\gwengoetter\Desktop\adwcleaner.exe
==================== One Month Modified Files and Folders =======
2013-12-29 21:24 - 2013-11-30 13:45 - 00012599 _____ C:\Users\gwengoetter\Desktop\FRST.txt
2013-12-29 21:17 - 2012-12-28 11:23 - 01905981 _____ C:\windows\WindowsUpdate.log
2013-12-29 21:13 - 2013-01-27 18:51 - 00000938 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-29 21:00 - 2012-07-26 03:12 - 00000000 ____D C:\windows\system32\sru
2013-12-29 20:54 - 2012-07-26 03:12 - 00000000 ____D C:\windows\rescache
2013-12-29 20:43 - 2013-04-03 00:31 - 00000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-12-29 20:27 - 2012-12-28 11:34 - 00003600 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2093230720-1359758338-2908893637-1001
2013-12-29 20:20 - 2012-07-26 02:28 - 00876494 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-29 20:18 - 2012-08-31 23:56 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-12-29 20:17 - 2013-04-17 19:08 - 00000382 _____ C:\windows\Tasks\dsmonitor.job
2013-12-29 20:17 - 2013-01-27 18:51 - 00000934 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-29 20:17 - 2012-12-28 11:28 - 00000000 ___RD C:\Users\gwengoetter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-29 20:17 - 2012-12-28 11:28 - 00000000 ___RD C:\Users\gwengoetter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-29 20:16 - 2013-12-29 20:16 - 00291288 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-29 20:16 - 2012-07-26 02:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-29 20:14 - 2012-07-26 00:37 - 00000000 ____D C:\windows\servicing
2013-12-29 20:12 - 2012-07-26 00:26 - 00524288 ___SH C:\windows\system32\config\BBI
2013-12-29 20:11 - 2012-09-01 00:00 - 00002900 _____ C:\windows\system32\RaCoInst.log
2013-12-29 20:11 - 2012-07-26 03:12 - 00000000 ___RD C:\windows\ToastData
2013-12-29 20:10 - 2013-12-29 20:06 - 00000000 ____D C:\windows\system32\MRT
2013-12-29 20:03 - 2013-02-04 21:48 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-29 20:03 - 2013-02-04 21:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-12-29 19:41 - 2012-07-26 00:38 - 00000000 ____D C:\windows\system32\oobe
2013-12-29 13:06 - 2012-07-26 03:12 - 00000000 ____D C:\windows\AUInstallAgent
2013-12-29 13:02 - 2012-07-26 03:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-29 13:02 - 2012-07-26 03:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-29 13:02 - 2012-07-26 03:12 - 00000000 ____D C:\windows\WinStore
2013-12-29 13:02 - 2012-07-26 03:12 - 00000000 ____D C:\windows\PolicyDefinitions
2013-12-29 13:02 - 2012-07-26 03:12 - 00000000 ____D C:\Program Files\Windows Defender
2013-12-29 13:02 - 2012-07-26 03:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-12-29 13:02 - 2012-07-26 02:52 - 00000000 ____D C:\Program Files\Windows Journal
2013-12-29 12:39 - 2013-12-29 12:39 - 00448512 _____ (OldTimer Tools) C:\Users\gwengoetter\Downloads\TFC.exe
2013-12-28 11:26 - 2013-12-28 11:26 - 02347384 _____ (ESET) C:\Users\gwengoetter\Downloads\esetsmartinstaller_enu(2).exe
2013-12-28 02:03 - 2013-12-28 02:03 - 02347384 _____ (ESET) C:\Users\gwengoetter\Downloads\esetsmartinstaller_enu(1).exe
2013-12-28 01:20 - 2013-12-28 01:20 - 00000973 _____ C:\Users\gwengoetter\Desktop\checkup.txt
2013-12-27 21:47 - 2013-12-27 21:47 - 02347384 _____ (ESET) C:\Users\gwengoetter\Downloads\esetsmartinstaller_enu.exe
2013-12-27 21:47 - 2013-12-27 21:47 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-27 21:34 - 2013-12-27 21:34 - 00891200 _____ C:\Users\gwengoetter\Downloads\SecurityCheck.exe
2013-12-27 21:24 - 2013-01-27 19:32 - 00000000 ____D C:\Users\gwengoetter\AppData\Roaming\mozilla
2013-12-27 21:23 - 2013-12-27 21:23 - 00000000 ____D C:\Users\gwengoetter\AppData\Local\Mozilla
2013-12-27 21:21 - 2013-12-27 21:21 - 00001113 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-27 21:21 - 2013-12-27 21:21 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-27 21:21 - 2013-12-27 21:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-27 21:21 - 2013-01-27 19:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-21 21:05 - 2013-12-05 00:35 - 00002538 _____ C:\Users\gwengoetter\Desktop\FSS.txt
2013-12-21 20:58 - 2013-12-21 20:58 - 00181064 _____ (Sysinternals) C:\windows\PSEXESVC.EXE
2013-12-21 14:08 - 2013-01-27 18:51 - 00003910 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-21 14:08 - 2013-01-27 18:51 - 00003674 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-21 14:05 - 2012-09-01 00:57 - 00000000 ____D C:\ProgramData\Norton
2013-12-21 14:05 - 2012-08-01 21:02 - 00945684 _____ C:\windows\PFRO.log
2013-12-21 13:49 - 2012-07-26 03:12 - 00000000 ___HD C:\windows\ELAMBKUP
2013-12-21 13:49 - 2012-07-26 00:26 - 00262144 ___SH C:\windows\system32\config\ELAM
2013-12-21 13:35 - 2013-12-21 13:35 - 00001075 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-21 13:35 - 2013-12-21 13:35 - 00000000 ____D C:\Users\gwengoetter\AppData\Roaming\Malwarebytes
2013-12-21 13:35 - 2013-12-21 13:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-21 13:35 - 2013-12-21 13:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-21 13:33 - 2013-12-21 13:33 - 00002125 _____ C:\Users\gwengoetter\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-12-21 13:33 - 2013-12-21 13:33 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-12-08 22:19 - 2013-12-08 22:19 - 00000000 ____D C:\Users\gwengoetter\Documents\Symantec
2013-12-08 18:52 - 2013-01-27 18:57 - 00002145 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-08 11:19 - 2013-12-08 11:19 - 00000000 ____D C:\Users\Public\Desktop\CC Support
2013-12-08 11:09 - 2013-12-08 11:19 - 04009167 _____ C:\Users\gwengoetter\Desktop\ServicesRepair.exe
2013-12-05 09:38 - 2013-12-05 09:40 - 00000136 _____ C:\Users\gwengoetter\Desktop\list.bat
2013-12-05 00:43 - 2013-01-01 22:24 - 00000000 ____D C:\Users\gwengoetter\AppData\Roaming\.minecraft
2013-12-05 00:12 - 2013-12-05 00:15 - 00360881 _____ (Farbar) C:\Users\gwengoetter\Desktop\FSS.exe
2013-12-03 19:53 - 2012-07-26 03:14 - 00694240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-03 19:53 - 2012-07-26 03:14 - 00078304 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-01 14:42 - 2013-01-02 20:38 - 90708896 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-11-30 23:50 - 2013-11-30 13:45 - 00000000 ____D C:\FRST
2013-11-30 23:41 - 2013-11-30 23:45 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\gwengoetter\Desktop\tdsskiller.exe
2013-11-30 13:48 - 2013-11-30 13:47 - 00048965 _____ C:\Users\gwengoetter\Desktop\Addition.txt
2013-11-30 13:44 - 2012-07-26 02:21 - 00037308 _____ C:\windows\setupact.log
2013-11-30 12:22 - 2013-11-30 13:45 - 01959070 _____ (Farbar) C:\Users\gwengoetter\Desktop\FRST64.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-21 15:00
==================== End Of Log ============================